$ rpki-client -vvf repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa File: 3130332e3138392e39342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: HzhAdkWVPqyzjRfrKdf+sGJ5e8Q6OGeF8fvX/eoLEO8= Subject key identifier: 3F:A3:D7:0F:61:BD:F1:97:A0:C8:A6:B0:E2:ED:74:8F:D6:AA:3A:83 Certificate issuer: /CN=945AD192B10F71CE48362295A9C6281FE3395786 Certificate serial: 5285656B81BA82767067CC5B125835D53E4CF91F Authority key identifier: 94:5A:D1:92:B1:0F:71:CE:48:36:22:95:A9:C6:28:1F:E3:39:57:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa Signing time: Mon 24 Mar 2025 09:00:02 +0000 ROA not before: Mon 24 Mar 2025 08:55:02 +0000 ROA not after: Mon 23 Mar 2026 09:00:02 +0000 asID: 4800 IP address blocks: 103.189.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.crl rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:85:65:6b:81:ba:82:76:70:67:cc:5b:12:58:35:d5:3e:4c:f9:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=945AD192B10F71CE48362295A9C6281FE3395786 Validity Not Before: Mar 24 08:55:02 2025 GMT Not After : Mar 23 09:00:02 2026 GMT Subject: CN=3FA3D70F61BDF197A0C8A6B0E2ED748FD6AA3A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4b:38:6e:9e:cd:f2:5c:95:1d:d5:6e:53:ea: 5b:14:92:cb:8f:87:cf:53:f4:37:ed:8c:74:50:74: 4b:8d:ba:f5:94:7d:3a:35:d1:07:af:60:7c:36:81: d6:6a:61:a9:90:10:ee:2f:84:32:16:e2:cb:fd:d9: 77:f1:22:1b:51:79:db:9b:4d:c6:87:e4:77:6c:4f: bf:77:c4:e7:27:ad:c7:7a:30:0a:8e:d4:29:8e:fa: 8d:00:8d:50:3a:1a:e3:82:3e:40:97:15:1b:75:36: 9a:b1:ed:ac:9c:a6:be:5b:d6:b8:4c:0d:33:4a:4d: a7:68:4f:ba:47:2d:dd:4c:51:d5:90:36:4c:75:56: 65:e6:8e:f7:eb:71:c0:28:1f:bb:3b:79:32:cb:ff: a9:88:17:c9:a0:3d:71:3b:d8:c2:39:32:4d:22:c3: ae:fc:0c:61:52:05:9a:23:89:cb:91:65:7e:42:d9: bc:d5:9f:c3:7f:8a:92:7f:5c:5e:58:41:16:b1:07: 0d:db:d6:97:49:85:31:73:b7:af:53:a2:bb:77:0b: 66:2b:0e:78:ca:19:90:29:26:97:8a:00:a0:cf:3e: dc:6b:6a:22:b8:80:16:a6:b2:c2:1c:de:3d:ca:14: 82:14:29:8a:d9:bf:6a:43:e3:a2:a3:09:de:c7:e1: eb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:D7:0F:61:BD:F1:97:A0:C8:A6:B0:E2:ED:74:8F:D6:AA:3A:83 X509v3 Authority Key Identifier: keyid:94:5A:D1:92:B1:0F:71:CE:48:36:22:95:A9:C6:28:1F:E3:39:57:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.94.0/23 Signature Algorithm: sha256WithRSAEncryption 66:6b:76:44:49:ec:48:3b:ef:5f:05:2c:b6:08:68:1f:45:54: b4:6a:5b:f7:72:de:20:c4:5c:8c:ab:d8:cf:c9:b9:75:7f:a0: f0:dd:54:ec:6a:ca:c9:91:b0:da:57:80:74:39:22:c9:5f:20: 99:ff:ad:0c:c4:e3:19:a5:9c:1a:b3:2e:6b:42:16:f6:94:9b: c5:ed:0c:48:fc:76:9d:d6:45:a8:21:79:41:84:3a:d7:93:57: a2:43:3d:ed:45:4b:d6:43:ab:c8:35:bc:13:3c:66:3e:26:83: 2d:9c:84:ca:f5:cb:3f:56:28:d6:44:3e:09:0b:24:a6:8e:94: d3:d2:dd:0a:15:93:0f:94:32:dc:e8:c1:26:e7:f1:68:ac:20: 08:e4:a5:47:ab:03:35:51:f4:f6:4a:e7:c5:38:22:59:60:13: 6a:7f:bc:30:76:c8:99:c7:05:9e:8f:1d:75:0f:d3:e7:ec:9f: 9e:b0:5c:7e:71:da:14:ca:65:00:06:84:39:9d:2c:45:e9:0c: eb:19:9f:c5:b7:f6:3b:94:85:d4:ce:fe:e6:4f:8c:a1:f0:44: 77:7a:25:ba:0f:5f:fc:eb:80:c1:1f:59:72:46:92:9f:3b:9f: c6:57:52:de:3a:7f:d3:0c:bb:d8:b4:44:c5:d9:37:f6:48:9b: f8:6c:a5:80 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUoVla4G6gnZwZ8xbElg11T5M+R8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQ1QUQxOTJCMTBGNzFDRTQ4MzYyMjk1QTlDNjI4MUZF MzM5NTc4NjAeFw0yNTAzMjQwODU1MDJaFw0yNjAzMjMwOTAwMDJaMDMxMTAvBgNV BAMTKDNGQTNENzBGNjFCREYxOTdBMEM4QTZCMEUyRUQ3NDhGRDZBQTNBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKSzhuns3yXJUd1W5T6lsUksuP h89T9DftjHRQdEuNuvWUfTo10QevYHw2gdZqYamQEO4vhDIW4sv92XfxIhtRedub TcaH5HdsT793xOcnrcd6MAqO1CmO+o0AjVA6GuOCPkCXFRt1Npqx7aycpr5b1rhM DTNKTadoT7pHLd1MUdWQNkx1VmXmjvfrccAoH7s7eTLL/6mIF8mgPXE72MI5Mk0i w678DGFSBZojicuRZX5C2bzVn8N/ipJ/XF5YQRaxBw3b1pdJhTFzt69Tort3C2Yr DnjKGZApJpeKAKDPPtxraiK4gBamssIc3j3KFIIUKYrZv2pD46KjCd7H4esZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUP6PXD2G98ZegyKaw4u10j9aqOoMwHwYDVR0j BBgwFoAUlFrRkrEPcc5INiKVqcYoH+M5V4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2E1MjA0NS1hNmZjLTQ1YjEtYmU1OS04MjU3MzVjOTZmNTQvMC85NDVBRDE5MkIx MEY3MUNFNDgzNjIyOTVBOUM2MjgxRkUzMzk1Nzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQ1QUQxOTJCMTBGNzFDRTQ4MzYyMjk1QTlDNjI4MUZFMzM5 NTc4Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYTUyMDQ1LWE2ZmMtNDViMS1i ZTU5LTgyNTczNWM5NmY1NC8wLzMxMzAzMzJlMzEzODM5MmUzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvV4wDQYJKoZIhvcN AQELBQADggEBAGZrdkRJ7Eg7718FLLYIaB9FVLRqW/dy3iDEXIyr2M/JuXV/oPDd VOxqysmRsNpXgHQ5IslfIJn/rQzE4xmlnBqzLmtCFvaUm8XtDEj8dp3WRagheUGE OteTV6JDPe1FS9ZDq8g1vBM8Zj4mgy2chMr1yz9WKNZEPgkLJKaOlNPS3QoVkw+U MtzowSbn8WisIAjkpUerAzVR9PZK58U4IllgE2p/vDB2yJnHBZ6PHXUP0+fsn56w XH5x2hTKZQAGhDmdLEXpDOsZn8W39juUhdTO/uZPjKHwRHd6JboPX/zrgMEfWXJG kp87n8ZXUt46f9MMu9i0RMXZN/ZIm/hspYA= -----END CERTIFICATE-----Generated at Sun Apr 6 17:44:10 2025 by rpki-client