$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa File: 3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa (raw, json) Hash identifier: wZ4FpNzX3drEBgShz+olo2TjY92RiWtb59UljgCmsAs= Subject key identifier: A0:76:DF:E9:0B:C6:C1:4A:FB:F4:50:20:88:E8:59:7F:B3:04:35:D2 Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Certificate serial: 0363EEE99E0547E2488AEE66F15B4D768633DAFC Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa Signing time: Tue 25 Mar 2025 09:00:00 +0000 ROA not before: Tue 25 Mar 2025 08:55:00 +0000 ROA not after: Tue 24 Mar 2026 09:00:00 +0000 asID: 150186 IP address blocks: 103.146.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:63:ee:e9:9e:05:47:e2:48:8a:ee:66:f1:5b:4d:76:86:33:da:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Validity Not Before: Mar 25 08:55:00 2025 GMT Not After : Mar 24 09:00:00 2026 GMT Subject: CN=A076DFE90BC6C14AFBF4502088E8597FB30435D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a3:98:89:c9:24:18:57:ba:6e:b6:27:3e:c4: 38:19:7e:7c:3f:61:4a:1b:d1:05:aa:7a:ba:42:25: f1:66:d3:6a:ed:bc:98:a0:9f:ee:0c:7a:6f:3f:b0: ac:23:78:60:48:98:9a:9b:3a:28:bc:52:ee:87:70: 07:7b:78:7b:f7:1d:d1:60:b8:63:52:e4:f9:3e:eb: 6c:34:c1:dc:e1:87:23:a4:cc:5a:25:8a:1d:9c:e6: b3:06:43:1b:e3:60:e5:3d:26:46:6b:90:1c:b4:a0: f8:e5:60:9b:75:67:77:52:a3:58:39:88:a1:c2:c9: db:b8:22:44:07:dd:f4:b2:4d:10:85:81:83:b3:53: a4:f5:01:e1:5c:df:cf:ca:f0:80:5a:e9:8b:85:3b: 60:80:2c:90:58:54:95:fc:a6:c5:4c:06:95:f9:10: a7:2c:43:5c:4d:b6:59:88:df:20:a3:d2:49:12:ea: bb:11:60:87:6e:e6:bb:5c:45:e9:c7:5a:99:c2:17: cd:a2:7b:46:7d:d6:a7:74:cd:55:21:8c:17:1f:79: 37:7e:54:23:70:4c:0f:b9:8a:7d:2b:99:d6:c4:70: bb:ad:3f:41:41:6c:e7:fc:0a:38:24:fb:37:46:48: 72:0b:81:2d:35:c3:9a:62:47:df:8c:b9:32:19:ec: 8f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:76:DF:E9:0B:C6:C1:4A:FB:F4:50:20:88:E8:59:7F:B3:04:35:D2 X509v3 Authority Key Identifier: keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.145.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ee:3e:81:b0:d3:71:18:c7:9b:58:28:ab:7b:b6:c1:21:9c: ff:7b:eb:04:46:82:06:20:82:5d:f2:6f:b3:66:f5:61:6f:3c: 66:23:8c:30:98:89:17:60:ff:62:2a:54:96:ac:a6:6b:d1:46: 5c:55:c4:97:62:b4:c5:89:24:44:01:b1:e6:98:02:dc:cd:e7: 6a:62:f5:48:67:ba:53:11:07:6f:ce:c5:60:ea:02:26:fd:de: b1:a3:ae:79:8e:fc:7e:f4:cf:4e:27:a4:4a:7e:af:5b:93:53: 9e:88:4e:90:8d:65:53:57:6a:b8:c4:38:9e:0d:b3:14:a2:3b: 15:7a:42:a7:95:e4:8b:2b:ec:a8:89:5c:d3:5f:2d:5c:07:98: 5f:1e:76:d1:f9:e0:27:de:86:40:c6:be:83:0a:51:ff:2e:b1: 94:52:3d:44:2e:65:03:99:4b:4a:85:2d:f2:59:26:c5:cb:38: c2:90:62:8c:54:78:31:4c:57:b1:db:99:f9:ce:d5:59:a7:f7: f5:48:36:76:94:76:57:7b:10:4d:e5:13:5b:1b:dc:d3:b6:02: fc:36:8c:6d:df:9a:eb:0d:59:e5:71:43:4e:f8:b9:cf:60:69: 1f:d0:ab:e7:ee:83:1c:11:2d:b1:33:96:cc:7b:ff:81:f8:a4: 7c:20:ab:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA2Pu6Z4FR+JIiu5m8VtNdoYz2vwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0 MjNGMjMwMjAeFw0yNTAzMjUwODU1MDBaFw0yNjAzMjQwOTAwMDBaMDMxMTAvBgNV BAMTKEEwNzZERkU5MEJDNkMxNEFGQkY0NTAyMDg4RTg1OTdGQjMwNDM1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUo5iJySQYV7putic+xDgZfnw/ YUob0QWqerpCJfFm02rtvJign+4Mem8/sKwjeGBImJqbOii8Uu6HcAd7eHv3HdFg uGNS5Pk+62w0wdzhhyOkzFolih2c5rMGQxvjYOU9JkZrkBy0oPjlYJt1Z3dSo1g5 iKHCydu4IkQH3fSyTRCFgYOzU6T1AeFc38/K8IBa6YuFO2CALJBYVJX8psVMBpX5 EKcsQ1xNtlmI3yCj0kkS6rsRYIdu5rtcRenHWpnCF82ie0Z91qd0zVUhjBcfeTd+ VCNwTA+5in0rmdbEcLutP0FBbOf8Cjgk+zdGSHILgS01w5piR9+MuTIZ7I9FAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoHbf6QvGwUr79FAgiOhZf7MENdIwHwYDVR0j BBgwFoAUOllHRPG+ovBMdDetdxM91EI/IwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMC8zQTU5NDc0NEYx QkVBMkYwNEM3NDM3QUQ3NzEzM0RENDQyM0YyMzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0MjNG MjMwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYzLTRjYTQtNDkzNi1i ZjhiLTg0ZDhjMmQxZjAyZC8wLzMxMzAzMzJlMzEzNDM2MmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkpEwDQYJ KoZIhvcNAQELBQADggEBABruPoGw03EYx5tYKKt7tsEhnP976wRGggYggl3yb7Nm 9WFvPGYjjDCYiRdg/2IqVJaspmvRRlxVxJditMWJJEQBseaYAtzN52pi9UhnulMR B2/OxWDqAib93rGjrnmO/H70z04npEp+r1uTU56ITpCNZVNXarjEOJ4NsxSiOxV6 QqeV5Isr7KiJXNNfLVwHmF8edtH54CfehkDGvoMKUf8usZRSPUQuZQOZS0qFLfJZ JsXLOMKQYoxUeDFMV7HbmfnO1Vmn9/VINnaUdld7EE3lE1sb3NO2Avw2jG3fmusN WeVxQ074uc9gaR/Qq+fugxwRLbEzlsx7/4H4pHwgq9E= -----END CERTIFICATE-----Generated at Sun Apr 6 23:32:56 2025 by rpki-client