$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38312e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: bmUaC8QF2Qe4Z7nZ16NBvJcYRhSFqhjOc2UpYEbn/vA= Subject key identifier: E4:FF:00:96:FC:9F:C8:19:11:24:91:71:F4:E4:8D:C8:EB:83:EA:20 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 171EA90A5EACB602AE545E3837845C2F558561DA Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa Signing time: Tue 28 Jan 2025 04:00:00 +0000 ROA not before: Tue 28 Jan 2025 03:55:00 +0000 ROA not after: Tue 27 Jan 2026 04:00:00 +0000 asID: 45723 IP address blocks: 103.28.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:1e:a9:0a:5e:ac:b6:02:ae:54:5e:38:37:84:5c:2f:55:85:61:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Jan 28 03:55:00 2025 GMT Not After : Jan 27 04:00:00 2026 GMT Subject: CN=E4FF0096FC9FC81911249171F4E48DC8EB83EA20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:69:03:e3:80:54:eb:1e:e8:ad:db:5c:3b:f9: 5e:33:d0:a6:55:20:ef:b7:0c:23:b1:44:6e:67:f4: a8:05:75:40:ee:2d:ad:43:de:d5:58:38:e5:8d:d0: 26:be:38:b7:4e:25:45:74:6e:52:b0:4b:75:fe:a1: 5d:b6:f2:58:2a:00:40:be:34:8d:00:fc:7e:7c:7a: 98:55:62:11:74:2e:f5:b7:3a:07:06:81:66:62:44: 8d:11:d9:8f:64:3d:a7:46:f9:cb:f7:a6:c7:c2:ce: 70:79:c0:34:65:a4:d7:8b:4f:9f:54:e4:0c:0f:12: 8d:1a:aa:b8:42:69:ca:59:da:e3:45:9b:f5:07:e9: a7:fb:98:68:a9:8b:e8:d3:93:a6:8a:9e:a5:01:f3: b7:e0:f5:39:e8:13:21:1c:d0:01:10:fc:58:26:ac: 54:91:b4:ef:f5:6e:8c:e0:15:d6:07:88:fe:66:cb: 3e:be:a8:ab:8f:e6:a2:40:0f:b0:40:f4:09:37:18: 9f:14:13:84:98:11:e3:d8:b0:12:4f:24:06:36:23: e0:c2:4f:f7:5c:66:d1:7c:0b:8e:56:0c:57:57:40: 14:ee:f2:77:15:91:e4:97:86:48:2e:0b:95:70:07: 82:4e:9b:6c:f7:e7:98:04:4f:54:0e:36:4e:64:7f: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:FF:00:96:FC:9F:C8:19:11:24:91:71:F4:E4:8D:C8:EB:83:EA:20 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38312e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.81.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:71:c1:ee:36:b3:25:80:ce:8b:7c:5a:4b:b3:1a:c7:f6:ad: 88:bd:06:41:e9:e9:1c:b7:d0:24:04:3b:88:07:82:91:21:e8: 49:81:bd:10:4d:ba:3f:e8:fb:d9:fa:c3:b7:a6:80:8a:e8:7d: 18:10:7e:1f:74:20:4e:8b:2d:94:27:52:fd:20:29:ba:0f:6a: fa:50:43:68:0b:59:cc:4d:af:a5:32:66:a3:3f:2a:8b:70:d3: 0b:6c:be:22:28:3f:37:24:20:15:9d:10:10:5b:3c:d2:d9:49: c6:a4:3c:a4:69:6a:83:cb:a4:91:17:4c:00:83:2f:06:ef:3c: d1:67:b5:f9:f4:aa:ac:d5:c1:a0:bd:61:ca:0f:81:ce:6c:01: 87:77:80:6f:cc:aa:ed:27:72:81:c1:81:0e:49:4a:8f:71:bb: fc:74:d2:e4:b6:8b:ce:77:7a:a0:9d:02:b6:d3:3b:55:67:2b: c4:41:b0:2e:0f:8b:25:9f:b9:c4:94:b8:0c:2a:03:94:a4:c5: d5:87:04:05:c6:ab:88:43:59:34:fd:3f:3a:de:75:31:22:6d: 39:e6:c4:b4:9c:e3:bd:48:0a:37:0e:45:d2:ce:a1:b1:a0:b5: 91:3b:7f:14:45:90:59:2c:20:5f:ae:98:03:03:08:3a:33:95: 0c:0a:8f:12 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFx6pCl6stgKuVF44N4RcL1WFYdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNTAxMjgwMzU1MDBaFw0yNjAxMjcwNDAwMDBaMDMxMTAvBgNV BAMTKEU0RkYwMDk2RkM5RkM4MTkxMTI0OTE3MUY0RTQ4REM4RUI4M0VBMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwaQPjgFTrHuit21w7+V4z0KZV IO+3DCOxRG5n9KgFdUDuLa1D3tVYOOWN0Ca+OLdOJUV0blKwS3X+oV228lgqAEC+ NI0A/H58ephVYhF0LvW3OgcGgWZiRI0R2Y9kPadG+cv3psfCznB5wDRlpNeLT59U 5AwPEo0aqrhCacpZ2uNFm/UH6af7mGipi+jTk6aKnqUB87fg9TnoEyEc0AEQ/Fgm rFSRtO/1bozgFdYHiP5myz6+qKuP5qJAD7BA9Ak3GJ8UE4SYEePYsBJPJAY2I+DC T/dcZtF8C45WDFdXQBTu8ncVkeSXhkguC5VwB4JOm2z355gET1QONk5kf64VAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5P8AlvyfyBkRJJFx9OSNyOuD6iAwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFEwDQYJKoZIhvcN AQELBQADggEBAHtxwe42syWAzot8WkuzGsf2rYi9BkHp6Ry30CQEO4gHgpEh6EmB vRBNuj/o+9n6w7emgIrofRgQfh90IE6LLZQnUv0gKboPavpQQ2gLWcxNr6UyZqM/ Kotw0wtsviIoPzckIBWdEBBbPNLZScakPKRpaoPLpJEXTACDLwbvPNFntfn0qqzV waC9YcoPgc5sAYd3gG/Mqu0ncoHBgQ5JSo9xu/x00uS2i853eqCdArbTO1VnK8RB sC4PiyWfucSUuAwqA5SkxdWHBAXGq4hDWTT9PzredTEibTnmxLSc471ICjcORdLO obGgtZE7fxRFkFksIF+umAMDCDozlQwKjxI= -----END CERTIFICATE-----Generated at Mon Apr 7 09:25:34 2025 by rpki-client