$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38322e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: tR60fCiZjd5v06AalA8X8w/5DLly0Afx7eBLVEc/3V8= Subject key identifier: 47:6E:F8:8B:45:4E:04:36:93:48:F2:AA:87:76:F6:63:FB:66:44:DC Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 3CEDC395616729FAF98D52C26B777803E1D2E9A6 Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa Signing time: Tue 28 Jan 2025 04:00:01 +0000 ROA not before: Tue 28 Jan 2025 03:55:01 +0000 ROA not after: Tue 27 Jan 2026 04:00:01 +0000 asID: 45723 IP address blocks: 103.28.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ed:c3:95:61:67:29:fa:f9:8d:52:c2:6b:77:78:03:e1:d2:e9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Jan 28 03:55:01 2025 GMT Not After : Jan 27 04:00:01 2026 GMT Subject: CN=476EF88B454E04369348F2AA8776F663FB6644DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f5:76:74:4f:5c:77:b6:fc:47:ac:ec:c7:9d: 73:30:08:8e:c4:ed:f0:c6:02:8e:11:7b:a9:c9:29: fa:4b:57:f7:27:6e:4a:9a:2c:16:4f:9f:4e:00:9a: ca:1d:91:70:6c:69:46:4f:df:ec:eb:ad:ba:56:16: b0:5f:26:ba:59:17:76:05:84:62:d0:4b:69:ca:62: 5d:d4:b2:71:3b:8e:88:ca:14:3b:a5:6a:82:26:90: 85:22:60:7a:87:d6:0c:53:2c:8e:ed:5f:31:b2:ad: 4f:a0:d7:e9:d3:74:bc:7f:b5:d7:d6:8c:2f:93:c2: c5:33:8a:4c:5c:de:6f:35:2d:21:4e:f4:8d:f0:74: ce:75:d6:b3:f0:d9:77:6c:a3:64:28:65:d6:67:df: 6f:ef:fc:67:07:32:0c:02:b9:e9:78:44:d9:1e:f1: 33:3a:59:72:ac:70:f9:0e:6b:9b:a7:7d:b7:dc:1c: 5c:82:fe:c7:ca:b2:35:2c:33:7b:aa:24:cc:cd:55: 4d:33:7f:21:a2:4f:ac:86:41:ff:e0:53:bb:90:d6: ab:94:f8:f8:b6:28:d2:64:20:90:dd:b4:5d:56:60: 63:a8:f5:46:7f:e0:d2:67:f6:e4:5a:17:49:36:58: 6f:08:06:d9:da:55:6c:c2:be:cd:7a:02:55:95:0d: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6E:F8:8B:45:4E:04:36:93:48:F2:AA:87:76:F6:63:FB:66:44:DC X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.82.0/24 Signature Algorithm: sha256WithRSAEncryption b9:e6:83:66:7b:78:ea:0f:ff:6d:14:36:55:c2:36:5e:d1:e5: c2:5f:2a:16:ef:4c:8c:5a:c3:cc:ea:ae:cc:74:f0:a5:6c:2d: 11:c4:03:ec:21:fd:ce:9a:4f:28:bf:b3:49:86:62:3f:88:f8: d5:06:06:1b:b8:5e:be:2a:7e:81:62:f0:00:dd:20:07:bf:31: 72:b1:2b:58:b9:8b:0e:3f:d2:6a:16:9a:6a:d3:bd:87:03:99: a2:7c:18:b2:b3:ff:dd:9b:31:7c:80:87:b4:21:56:27:6e:e5: 0e:99:93:a6:dc:57:7b:8f:46:ff:cd:86:64:04:a0:9d:a9:bd: 93:b0:50:de:48:9e:91:cb:a8:5d:8e:1d:f7:9c:26:01:cb:eb: e3:89:c5:a1:10:b0:5a:8b:8f:7b:8e:a0:87:3a:2d:db:81:3d: d6:6d:ae:5b:fa:0e:ae:48:ea:80:11:7e:f3:65:00:6f:4d:74: 6d:d7:34:1a:d4:99:e4:6e:02:82:94:bb:3c:ff:50:4a:21:72: 47:75:84:d8:27:63:02:fe:0a:e3:ab:18:63:be:fd:86:d4:a2: d4:4a:c6:41:50:09:d9:06:85:5c:a6:28:b7:9b:01:40:1e:c8: 6d:fe:ff:61:66:b6:a2:f0:a1:d1:f1:f0:08:c1:1b:e8:ac:a6: d9:f0:ce:f4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPO3DlWFnKfr5jVLCa3d4A+HS6aYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNTAxMjgwMzU1MDFaFw0yNjAxMjcwNDAwMDFaMDMxMTAvBgNV BAMTKDQ3NkVGODhCNDU0RTA0MzY5MzQ4RjJBQTg3NzZGNjYzRkI2NjQ0REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ9XZ0T1x3tvxHrOzHnXMwCI7E 7fDGAo4Re6nJKfpLV/cnbkqaLBZPn04AmsodkXBsaUZP3+zrrbpWFrBfJrpZF3YF hGLQS2nKYl3UsnE7jojKFDulaoImkIUiYHqH1gxTLI7tXzGyrU+g1+nTdLx/tdfW jC+TwsUzikxc3m81LSFO9I3wdM511rPw2Xdso2QoZdZn32/v/GcHMgwCuel4RNke 8TM6WXKscPkOa5unfbfcHFyC/sfKsjUsM3uqJMzNVU0zfyGiT6yGQf/gU7uQ1quU +Pi2KNJkIJDdtF1WYGOo9UZ/4NJn9uRaF0k2WG8IBtnaVWzCvs16AlWVDRD3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUR274i0VOBDaTSPKqh3b2Y/tmRNwwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFIwDQYJKoZIhvcN AQELBQADggEBALnmg2Z7eOoP/20UNlXCNl7R5cJfKhbvTIxaw8zqrsx08KVsLRHE A+wh/c6aTyi/s0mGYj+I+NUGBhu4Xr4qfoFi8ADdIAe/MXKxK1i5iw4/0moWmmrT vYcDmaJ8GLKz/92bMXyAh7QhVidu5Q6Zk6bcV3uPRv/NhmQEoJ2pvZOwUN5InpHL qF2OHfecJgHL6+OJxaEQsFqLj3uOoIc6LduBPdZtrlv6Dq5I6oARfvNlAG9NdG3X NBrUmeRuAoKUuzz/UEohckd1hNgnYwL+CuOrGGO+/YbUotRKxkFQCdkGhVymKLeb AUAeyG3+/2FmtqLwodHx8AjBG+isptnwzvQ= -----END CERTIFICATE-----Generated at Mon Apr 7 09:25:30 2025 by rpki-client