$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa File: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (raw, json) Hash identifier: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4= Subject key identifier: EB:BD:1B:80:CE:08:20:C6:D0:A5:62:D1:0C:C7:B9:0B:C7:54:9D:FE Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 0B7ECA3B556457165B13AB3F6A2C3A2223F49FBC Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa Signing time: Thu 03 Apr 2025 06:00:01 +0000 ROA not before: Thu 03 Apr 2025 05:55:01 +0000 ROA not after: Thu 02 Apr 2026 06:00:01 +0000 asID: 38496 IP address blocks: 103.91.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:7e:ca:3b:55:64:57:16:5b:13:ab:3f:6a:2c:3a:22:23:f4:9f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Apr 3 05:55:01 2025 GMT Not After : Apr 2 06:00:01 2026 GMT Subject: CN=EBBD1B80CE0820C6D0A562D10CC7B90BC7549DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:91:6e:8c:aa:1d:66:42:24:77:15:be:eb:b2: d0:37:05:6b:b2:71:dc:f9:08:ff:9c:ce:f0:c1:1d: a0:bc:d1:dc:fe:58:ac:59:b0:e0:3d:f3:26:8f:da: 77:84:4d:c5:88:4f:20:ce:34:dd:bd:f7:d1:33:05: 95:e6:03:42:f6:d6:05:00:f5:b7:3e:2f:f9:60:c6: c9:5c:5f:78:98:c3:a4:69:f8:85:df:e5:94:7a:a5: 0f:35:e6:bb:f6:34:a0:64:b7:6a:35:db:4a:25:42: e6:28:bc:35:6a:37:90:86:36:25:44:23:fc:9f:c0: 60:3c:be:53:ba:51:18:34:af:55:fb:ab:60:bb:fd: e7:d3:57:9e:07:94:dc:12:a0:72:09:e2:51:3b:ef: 28:2f:f3:e6:e0:6d:9c:4e:42:0c:d2:1a:18:97:4f: a6:95:38:87:65:7b:9f:23:7b:27:d3:cb:df:c4:8b: b5:e7:1e:56:8b:82:c2:12:ac:e1:2a:13:80:b7:fd: bf:d5:f4:9a:8c:ac:0b:e9:6d:3c:67:23:a3:33:b2: 2e:49:67:3d:e9:7b:cb:76:b4:3a:06:00:3f:01:f3: 56:4c:fc:79:85:18:02:dd:a2:c6:4a:90:db:9b:22: 31:af:5a:3d:94:1b:5b:38:a5:ee:1d:61:fc:c9:45: 3c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:BD:1B:80:CE:08:20:C6:D0:A5:62:D1:0C:C7:B9:0B:C7:54:9D:FE X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/3130332e39312e32382e302f32322d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.28.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:65:fe:7d:5d:42:b5:2c:e2:d5:35:fc:e7:c1:0a:d4:44:34: 11:33:17:70:3f:cc:12:44:dd:d7:c1:ce:fa:4c:76:35:b8:9d: 29:ae:a8:a1:7a:56:51:be:af:86:a7:be:fa:52:b3:9b:01:20: a8:3f:b4:93:56:50:0a:8b:b9:15:bf:80:d9:5c:3f:48:84:33: 69:8e:72:cb:26:78:25:73:f6:b6:70:9b:94:22:89:b0:9b:4f: 0a:4b:e4:b1:0a:ec:00:8f:5e:98:f3:94:54:20:d6:d0:c8:16: bc:51:56:e5:43:bf:e5:7f:5f:92:41:15:8f:be:fa:71:37:2e: 74:53:b6:74:7f:9d:84:0c:e4:16:59:c5:8b:83:0f:0e:a4:3f: 38:ff:08:9d:4c:58:42:36:f6:d3:cb:63:41:06:df:77:8f:a5: f5:64:74:b8:b2:a4:1b:19:e8:25:11:bf:a1:97:c0:97:9e:f3: 33:58:dd:ab:7f:14:21:f0:d8:6c:82:0d:05:b8:4e:37:c0:64: 59:67:69:b2:a5:d0:bf:d2:95:62:1e:72:dd:21:0d:66:0b:82: cd:93:a0:94:b3:f0:1b:1e:27:39:10:ac:f5:13:48:65:60:2c: 10:cf:5b:57:45:74:c2:03:95:b4:6f:4d:5d:d5:e8:d8:ad:36: d9:3c:1c:4c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUC37KO1VkVxZbE6s/aiw6IiP0n7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNTA0MDMwNTU1MDFaFw0yNjA0MDIwNjAwMDFaMDMxMTAvBgNV BAMTKEVCQkQxQjgwQ0UwODIwQzZEMEE1NjJEMTBDQzdCOTBCQzc1NDlERkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTkW6Mqh1mQiR3Fb7rstA3BWuy cdz5CP+czvDBHaC80dz+WKxZsOA98yaP2neETcWITyDONN2999EzBZXmA0L21gUA 9bc+L/lgxslcX3iYw6Rp+IXf5ZR6pQ815rv2NKBkt2o120olQuYovDVqN5CGNiVE I/yfwGA8vlO6URg0r1X7q2C7/efTV54HlNwSoHIJ4lE77ygv8+bgbZxOQgzSGhiX T6aVOIdle58jeyfTy9/Ei7XnHlaLgsISrOEqE4C3/b/V9JqMrAvpbTxnI6Mzsi5J Zz3pe8t2tDoGAD8B81ZM/HmFGALdosZKkNubIjGvWj2UG1s4pe4dYfzJRTxrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU670bgM4IIMbQpWLRDMe5C8dUnf4wHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMxMzAzMzJlMzkzMTJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWxwwDQYJKoZIhvcN AQELBQADggEBAB9l/n1dQrUs4tU1/OfBCtRENBEzF3A/zBJE3dfBzvpMdjW4nSmu qKF6VlG+r4anvvpSs5sBIKg/tJNWUAqLuRW/gNlcP0iEM2mOcssmeCVz9rZwm5Qi ibCbTwpL5LEK7ACPXpjzlFQg1tDIFrxRVuVDv+V/X5JBFY+++nE3LnRTtnR/nYQM 5BZZxYuDDw6kPzj/CJ1MWEI29tPLY0EG33ePpfVkdLiypBsZ6CURv6GXwJee8zNY 3at/FCHw2GyCDQW4TjfAZFlnabKl0L/SlWIect0hDWYLgs2ToJSz8BseJzkQrPUT SGVgLBDPW1dFdMIDlbRvTV3V6NitNtk8HEw= -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:22 2025 by rpki-client