$ rpki-client -vvf repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313339343139.roa File: 3130332e34332e32342e302f32332d3233203d3e20313339343139.roa (raw, json) Hash identifier: hbNG6hIOkdyYmaAkCW7DcbNe2DcTn/F6KWsqvk9yDQk= Subject key identifier: CE:FA:ED:13:6D:B2:F2:C3:CF:A8:9E:25:74:2E:2E:77:13:3C:18:E8 Certificate issuer: /CN=08A94FD7F0E8A287AD318D7A26254192431E175F Certificate serial: 36756BA6B7AACA7B6BB6169172E46113FD068685 Authority key identifier: 08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313339343139.roa Signing time: Wed 12 Mar 2025 13:32:47 +0000 ROA not before: Wed 12 Mar 2025 13:27:47 +0000 ROA not after: Wed 11 Mar 2026 13:32:47 +0000 asID: 139419 IP address blocks: 103.43.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:75:6b:a6:b7:aa:ca:7b:6b:b6:16:91:72:e4:61:13:fd:06:86:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08A94FD7F0E8A287AD318D7A26254192431E175F Validity Not Before: Mar 12 13:27:47 2025 GMT Not After : Mar 11 13:32:47 2026 GMT Subject: CN=CEFAED136DB2F2C3CFA89E25742E2E77133C18E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:62:36:5a:73:53:59:c9:5e:0c:10:d7:69:b3: 42:8f:64:e0:da:3e:49:d9:af:94:f2:3d:d8:e9:9e: 75:08:72:85:7a:64:03:ff:69:18:57:56:27:e4:64: d9:eb:31:95:c2:0e:ef:85:1e:23:99:d8:7d:95:68: 9f:8d:a1:d0:29:bc:4b:20:bd:bc:16:cf:e6:f1:3d: ac:3b:c4:34:1e:18:f8:c4:5b:41:a3:8d:b5:ff:0c: 50:55:00:6d:f2:62:4e:93:4f:8e:72:4d:b7:ee:b5: ff:e0:27:bc:14:c3:35:a7:5b:7d:5e:ba:cc:e1:90: 51:d7:bd:7f:40:c1:c8:ac:21:30:e2:ac:13:27:c7: 88:bc:59:02:4f:ae:36:69:19:42:a0:56:a6:b9:66: 2d:08:90:5b:b7:9f:a5:6a:d6:4e:29:b1:8b:04:78: 58:95:11:1d:07:38:bd:d4:66:a6:ae:5a:a6:55:72: 80:df:34:a3:e5:22:f0:61:26:d8:8e:55:40:f8:aa: 5a:c0:f5:52:d9:59:82:ed:49:7f:a4:09:c7:6f:e0: e3:1d:41:ba:55:f5:9a:98:76:ab:d9:02:da:b0:8a: 16:3b:e4:35:12:1a:8c:2e:01:3d:dc:6f:db:24:8b: 77:9f:10:41:fe:fd:0a:78:79:3a:38:3e:f1:80:5a: 04:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FA:ED:13:6D:B2:F2:C3:CF:A8:9E:25:74:2E:2E:77:13:3C:18:E8 X509v3 Authority Key Identifier: keyid:08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313339343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.24.0/23 Signature Algorithm: sha256WithRSAEncryption a5:47:16:c2:87:25:c6:20:ee:c5:54:db:0a:c6:94:36:88:55: ed:ef:a9:dc:72:d1:40:cc:62:38:44:02:d4:4c:41:a0:9c:fb: fe:e6:79:b2:b4:f6:35:73:d6:9b:22:67:f9:ac:8c:f7:e7:05: ea:a6:47:d0:99:0d:1e:55:1e:1a:cb:54:04:ee:b2:94:ee:00: f3:fa:a7:36:27:ab:2e:53:83:73:0e:f6:41:e4:18:ee:a9:c7: 7b:a9:b9:ab:0c:40:c3:7b:db:54:35:55:61:f3:f7:37:f2:88: 62:10:72:66:fe:6d:ff:d1:76:a3:aa:e6:96:1b:2b:d5:68:80: b6:84:e9:87:f3:9b:59:b9:a9:05:8f:10:06:55:6e:5c:23:e2: c4:02:19:80:3a:89:71:ee:e9:c3:95:9d:8b:36:b0:df:10:4d: c0:89:62:d1:68:62:29:6a:d4:1d:5d:c1:b5:90:15:76:27:47: 78:4e:34:5d:4e:75:45:04:ae:bd:a6:89:a3:26:82:47:22:01: ea:ee:02:7b:a2:c4:d8:5a:37:44:ba:61:49:39:67:45:e8:51: f9:39:73:21:5d:af:46:2c:33:9a:a7:be:6c:51:f9:4a:6a:63: fc:60:aa:bb:2b:c2:2a:c0:93:ee:cf:d6:be:3a:dd:5a:b3:bb: 1e:05:01:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNnVrpreqyntrthaRcuRhE/0GhoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0 MzFFMTc1RjAeFw0yNTAzMTIxMzI3NDdaFw0yNjAzMTExMzMyNDdaMDMxMTAvBgNV BAMTKENFRkFFRDEzNkRCMkYyQzNDRkE4OUUyNTc0MkUyRTc3MTMzQzE4RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyYjZac1NZyV4MENdps0KPZODa PknZr5TyPdjpnnUIcoV6ZAP/aRhXVifkZNnrMZXCDu+FHiOZ2H2VaJ+NodApvEsg vbwWz+bxPaw7xDQeGPjEW0GjjbX/DFBVAG3yYk6TT45yTbfutf/gJ7wUwzWnW31e uszhkFHXvX9AwcisITDirBMnx4i8WQJPrjZpGUKgVqa5Zi0IkFu3n6Vq1k4psYsE eFiVER0HOL3UZqauWqZVcoDfNKPlIvBhJtiOVUD4qlrA9VLZWYLtSX+kCcdv4OMd QbpV9ZqYdqvZAtqwihY75DUSGowuAT3cb9ski3efEEH+/Qp4eTo4PvGAWgTlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzvrtE22y8sPPqJ4ldC4udxM8GOgwHwYDVR0j BBgwFoAUCKlP1/DoooetMY16JiVBkkMeF18wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjA4M2Q0NC03ODM1LTQ0M2QtODUzYS0wYTc5Y2YwMGU5NTAvMC8wOEE5NEZEN0Yw RThBMjg3QUQzMThEN0EyNjI1NDE5MjQzMUUxNzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0MzFF MTc1Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMDgzZDQ0LTc4MzUtNDQzZC04 NTNhLTBhNzljZjAwZTk1MC8wLzMxMzAzMzJlMzQzMzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzOTM0MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcrGDANBgkqhkiG 9w0BAQsFAAOCAQEApUcWwoclxiDuxVTbCsaUNohV7e+p3HLRQMxiOEQC1ExBoJz7 /uZ5srT2NXPWmyJn+ayM9+cF6qZH0JkNHlUeGstUBO6ylO4A8/qnNierLlODcw72 QeQY7qnHe6m5qwxAw3vbVDVVYfP3N/KIYhByZv5t/9F2o6rmlhsr1WiAtoTph/Ob WbmpBY8QBlVuXCPixAIZgDqJce7pw5Wdizaw3xBNwIli0WhiKWrUHV3BtZAVdidH eE40XU51RQSuvaaJoyaCRyIB6u4Ce6LE2Fo3RLphSTlnRehR+TlzIV2vRiwzmqe+ bFH5Smpj/GCquyvCKsCT7s/WvjrdWrO7HgUBWQ== -----END CERTIFICATE-----Generated at Sun Apr 6 14:02:01 2025 by rpki-client