$ rpki-client -vvf repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32322d3234203d3e20313336313237.roa File: 3130332e39372e342e302f32322d3234203d3e20313336313237.roa (raw, json) Hash identifier: Fuo7Zv6Qy+uY4bdbE0UwMy6jWa9ZEF+DnD6ctpiueL4= Subject key identifier: AD:36:92:F8:5A:94:46:E5:BA:A3:F9:B8:67:BE:3C:16:EF:2E:F2:31 Certificate issuer: /CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Certificate serial: 4A269456FBFC496C2F26A623D17C278E7086F675 Authority key identifier: 8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32322d3234203d3e20313336313237.roa Signing time: Sat 15 Feb 2025 07:11:35 +0000 ROA not before: Sat 15 Feb 2025 07:06:35 +0000 ROA not after: Sat 14 Feb 2026 07:11:35 +0000 asID: 136127 IP address blocks: 103.97.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:26:94:56:fb:fc:49:6c:2f:26:a6:23:d1:7c:27:8e:70:86:f6:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Validity Not Before: Feb 15 07:06:35 2025 GMT Not After : Feb 14 07:11:35 2026 GMT Subject: CN=AD3692F85A9446E5BAA3F9B867BE3C16EF2EF231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:7f:0b:d8:b0:56:16:10:d5:1b:ea:12:15: 4e:a0:89:ac:4c:a3:46:1d:b0:15:06:82:f8:0e:4b: 4d:8d:54:0e:e0:12:b5:a1:3e:96:db:d8:93:09:7c: 15:bb:07:c9:f7:51:c4:2c:ec:64:b4:e8:3c:fc:86: 62:26:eb:bd:51:39:23:b1:53:f2:f0:60:be:ac:60: b6:b2:d9:b7:c9:c3:22:36:e8:98:41:4b:e3:3c:d9: 60:af:c2:67:c1:a9:f1:ba:84:c2:4b:5a:7d:5c:05: 43:eb:c9:98:49:a7:00:00:9c:2c:43:46:09:e9:8d: 59:77:db:c3:00:11:65:18:7f:63:b5:50:ac:d0:9d: e9:af:9f:f7:6e:d5:d9:2c:62:94:5c:ec:ee:7e:6c: 76:17:4b:2f:59:0a:dd:46:9a:48:2c:17:db:4e:5e: 50:0c:96:82:83:a1:3c:c4:68:25:61:1a:46:51:60: 2f:b9:a8:f5:b2:7a:f7:db:80:b7:03:7f:a5:91:61: 7d:4b:c5:fd:c3:e7:be:3d:63:e7:cf:2a:1c:43:7f: de:fb:7e:11:99:ce:4f:5d:cd:7f:e6:70:8f:9c:ae: 87:59:d7:d6:a1:f3:f9:97:01:67:cc:a2:f7:35:71: 11:2f:30:bd:32:15:27:49:06:b1:45:ca:73:22:d1: 0b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:36:92:F8:5A:94:46:E5:BA:A3:F9:B8:67:BE:3C:16:EF:2E:F2:31 X509v3 Authority Key Identifier: keyid:8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32322d3234203d3e20313336313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.4.0/22 Signature Algorithm: sha256WithRSAEncryption 98:3b:91:65:0d:4c:82:5f:a4:a4:e4:1b:1d:75:17:b6:bc:8c: 45:8c:f4:11:cf:df:bb:54:49:d5:08:f6:db:a2:7e:14:fd:2a: 01:18:b8:71:d6:65:e0:09:95:12:49:b7:50:54:0e:8e:d4:ae: 95:6d:fa:1c:60:3c:99:85:aa:e7:17:db:03:61:66:cd:45:50: f2:55:7f:35:58:ac:21:17:fb:50:9d:e0:02:75:0b:75:fc:af: c2:77:1b:ad:32:96:d6:cd:70:3d:8a:29:26:2e:fc:f9:49:3e: f4:3d:7c:36:8c:79:cd:34:ec:6b:f3:87:30:81:25:ea:e1:31: 98:a1:34:5e:7c:6d:bd:9b:0f:13:a1:3d:9f:6e:f8:45:7d:d5: 5c:dd:08:36:97:e3:44:5f:0e:01:ed:37:7c:74:43:16:6a:bc: d5:fc:9b:7a:86:6d:fe:5a:87:39:82:cc:cf:67:e4:37:7c:b7: 6e:88:8c:0f:94:57:9a:29:5c:a5:93:33:48:13:86:a2:52:38: 7e:e5:b3:82:c1:74:2c:6f:a8:a5:ae:7f:e8:1e:bc:d8:1e:90: 5b:13:fe:13:a1:cd:93:03:a8:03:9e:f4:ca:a4:70:1f:51:4f: d8:e3:77:74:32:ce:52:e2:ba:77:15:18:bf:c3:77:65:99:be: cc:43:98:f9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSiaUVvv8SWwvJqYj0XwnjnCG9nUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0 NjNBMUEyMjAeFw0yNTAyMTUwNzA2MzVaFw0yNjAyMTQwNzExMzVaMDMxMTAvBgNV BAMTKEFEMzY5MkY4NUE5NDQ2RTVCQUEzRjlCODY3QkUzQzE2RUYyRUYyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC45H8L2LBWFhDVG+oSFU6giaxM o0YdsBUGgvgOS02NVA7gErWhPpbb2JMJfBW7B8n3UcQs7GS06Dz8hmIm671ROSOx U/LwYL6sYLay2bfJwyI26JhBS+M82WCvwmfBqfG6hMJLWn1cBUPryZhJpwAAnCxD RgnpjVl328MAEWUYf2O1UKzQnemvn/du1dksYpRc7O5+bHYXSy9ZCt1GmkgsF9tO XlAMloKDoTzEaCVhGkZRYC+5qPWyevfbgLcDf6WRYX1Lxf3D5749Y+fPKhxDf977 fhGZzk9dzX/mcI+crodZ19ah8/mXAWfMovc1cREvML0yFSdJBrFFynMi0Qs7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrTaS+FqURuW6o/m4Z748Fu8u8jEwHwYDVR0j BBgwFoAUjIiOmWWIUnvF74q9KTZ2w0Y6GiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGIyNzMwMy05ZTNkLTRkNDItYWYyNS02YTBmMTE4MDhmMjcvMC84Qzg4OEU5OTY1 ODg1MjdCQzVFRjhBQkQyOTM2NzZDMzQ2M0ExQTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0NjNB MUEyMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjI3MzAzLTllM2QtNGQ0Mi1h ZjI1LTZhMGYxMTgwOGYyNy8wLzMxMzAzMzJlMzkzNzJlMzQyZTMwMmYzMjMyMmQz MjM0MjAzZDNlMjAzMTMzMzYzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnYQQwDQYJKoZIhvcN AQELBQADggEBAJg7kWUNTIJfpKTkGx11F7a8jEWM9BHP37tUSdUI9tuifhT9KgEY uHHWZeAJlRJJt1BUDo7UrpVt+hxgPJmFqucX2wNhZs1FUPJVfzVYrCEX+1Cd4AJ1 C3X8r8J3G60yltbNcD2KKSYu/PlJPvQ9fDaMec007GvzhzCBJerhMZihNF58bb2b DxOhPZ9u+EV91VzdCDaX40RfDgHtN3x0QxZqvNX8m3qGbf5ahzmCzM9n5Dd8t26I jA+UV5opXKWTM0gThqJSOH7ls4LBdCxvqKWuf+gevNgekFsT/hOhzZMDqAOe9Mqk cB9RT9jjd3QyzlLiuncVGL/Dd2WZvsxDmPk= -----END CERTIFICATE-----Generated at Sun Apr 6 11:44:53 2025 by rpki-client