$ rpki-client -vvf repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/3130332e35352e3231362e302f32342d3234203d3e20313333383234.roa File: 3130332e35352e3231362e302f32342d3234203d3e20313333383234.roa (raw, json) Hash identifier: qucHtO3uMMibb76sBUwIFQbYOd1/nWt3/V8e5wQjGY4= Subject key identifier: 84:EF:30:E7:B8:58:AC:4D:B4:EB:6D:3E:B3:C2:D6:1C:AF:2A:D6:7D Certificate issuer: /CN=9A25028550A48EFF7C98BF816A8488BE884E6B4A Certificate serial: 2281CE0EF68AEA60538263462397F01871517C61 Authority key identifier: 9A:25:02:85:50:A4:8E:FF:7C:98:BF:81:6A:84:88:BE:88:4E:6B:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A25028550A48EFF7C98BF816A8488BE884E6B4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/3130332e35352e3231362e302f32342d3234203d3e20313333383234.roa Signing time: Sun 13 Apr 2025 06:00:00 +0000 ROA not before: Sun 13 Apr 2025 05:55:00 +0000 ROA not after: Sun 12 Apr 2026 06:00:00 +0000 asID: 133824 IP address blocks: 103.55.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/9A25028550A48EFF7C98BF816A8488BE884E6B4A.crl rsync://repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/9A25028550A48EFF7C98BF816A8488BE884E6B4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A25028550A48EFF7C98BF816A8488BE884E6B4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 14:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:81:ce:0e:f6:8a:ea:60:53:82:63:46:23:97:f0:18:71:51:7c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A25028550A48EFF7C98BF816A8488BE884E6B4A Validity Not Before: Apr 13 05:55:00 2025 GMT Not After : Apr 12 06:00:00 2026 GMT Subject: CN=84EF30E7B858AC4DB4EB6D3EB3C2D61CAF2AD67D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:39:04:4d:5b:92:54:f7:d9:85:44:d5:ee:ae: 85:c9:8e:7e:0a:c8:3f:c4:4e:80:41:1e:ec:cb:1e: fd:1a:03:9c:25:b2:ce:10:c8:a7:8e:6e:31:6f:51: b2:6e:67:ed:b0:f9:fa:f0:1f:80:4b:75:1d:84:74: 62:1b:b4:4c:24:86:9a:55:e1:00:00:12:74:27:fb: c6:20:a1:a0:c6:b8:96:cd:4e:bd:ba:28:16:99:48: b2:81:57:12:6a:6b:d7:27:fc:e7:d7:a8:15:7f:b3: f3:cf:3f:e2:45:2e:d2:0f:1b:f6:03:c4:9a:0e:6f: d8:6b:f4:80:4a:9c:07:91:70:5a:65:b5:d6:22:4d: 6c:ad:e0:77:d7:ae:a3:6d:6d:e8:86:41:d5:0c:40: 24:aa:85:30:ef:f6:e2:26:9b:a5:f6:18:c5:de:bd: 00:4d:b4:fe:53:6f:a5:55:6d:ff:5c:34:ec:92:9d: 34:bf:19:36:02:a5:e2:24:f5:25:c0:2b:99:81:38: a2:b3:33:ae:ba:6c:55:a0:b5:e0:6d:62:7d:88:ed: 1a:01:7c:c8:1a:e6:e0:f8:23:cf:25:27:6b:14:a4: ad:67:12:7b:77:59:40:df:8b:42:fe:ab:4b:be:4a: a7:11:a1:8f:95:b6:ee:8a:42:be:ea:ca:38:96:82: 1f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EF:30:E7:B8:58:AC:4D:B4:EB:6D:3E:B3:C2:D6:1C:AF:2A:D6:7D X509v3 Authority Key Identifier: keyid:9A:25:02:85:50:A4:8E:FF:7C:98:BF:81:6A:84:88:BE:88:4E:6B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/9A25028550A48EFF7C98BF816A8488BE884E6B4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A25028550A48EFF7C98BF816A8488BE884E6B4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e61f86e-07f0-4c60-adc0-fc68816ac866/0/3130332e35352e3231362e302f32342d3234203d3e20313333383234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.216.0/24 Signature Algorithm: sha256WithRSAEncryption 12:70:c1:27:1f:11:a9:a2:97:0b:97:57:4d:ff:91:e5:8a:d7: 52:83:01:f3:6d:25:b3:19:3c:e2:82:09:3c:8c:29:5c:52:19: 6b:47:0f:89:e3:e6:9b:10:1a:b3:69:21:f6:67:fc:2e:45:f3: 73:69:25:0a:d0:c4:3e:1e:97:3f:c8:2a:58:07:4f:5c:e9:c0: e1:5a:19:a6:c5:24:a9:25:15:21:df:ac:3b:c8:74:85:7a:dd: 80:34:29:cb:32:13:44:20:05:fe:56:0f:4e:c4:50:01:2f:1b: 7d:5a:b6:f8:ed:6c:74:7a:39:07:34:48:a4:1e:02:2c:c1:06: d0:e9:ab:26:af:31:0f:29:96:4a:88:25:ec:7d:44:49:0e:6b: 72:a5:1c:6b:5d:9b:86:6a:e1:50:04:be:70:97:b7:6c:2e:3e: 45:46:11:a4:a1:ea:7b:bb:6c:ad:eb:8a:74:29:f0:d9:2a:97: c3:b2:35:03:47:f6:41:b4:e8:a1:7d:19:f8:32:55:0e:cb:ac: 01:b1:91:f0:f3:38:1e:d5:86:01:a2:50:c2:6f:d1:bd:11:27: c6:d3:00:29:9a:55:04:5d:17:ff:03:97:70:19:fa:60:0b:d3: d2:56:12:c4:c4:6c:af:f3:6f:a7:a5:99:78:40:50:6e:24:ae: 3b:e7:fc:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIoHODvaK6mBTgmNGI5fwGHFRfGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUEyNTAyODU1MEE0OEVGRjdDOThCRjgxNkE4NDg4QkU4 ODRFNkI0QTAeFw0yNTA0MTMwNTU1MDBaFw0yNjA0MTIwNjAwMDBaMDMxMTAvBgNV BAMTKDg0RUYzMEU3Qjg1OEFDNERCNEVCNkQzRUIzQzJENjFDQUYyQUQ2N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOQRNW5JU99mFRNXuroXJjn4K yD/EToBBHuzLHv0aA5wlss4QyKeObjFvUbJuZ+2w+frwH4BLdR2EdGIbtEwkhppV 4QAAEnQn+8YgoaDGuJbNTr26KBaZSLKBVxJqa9cn/OfXqBV/s/PPP+JFLtIPG/YD xJoOb9hr9IBKnAeRcFpltdYiTWyt4HfXrqNtbeiGQdUMQCSqhTDv9uImm6X2GMXe vQBNtP5Tb6VVbf9cNOySnTS/GTYCpeIk9SXAK5mBOKKzM666bFWgteBtYn2I7RoB fMga5uD4I88lJ2sUpK1nEnt3WUDfi0L+q0u+SqcRoY+Vtu6KQr7qyjiWgh/1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhO8w57hYrE20620+s8LWHK8q1n0wHwYDVR0j BBgwFoAUmiUChVCkjv98mL+BaoSIvohOa0owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTYxZjg2ZS0wN2YwLTRjNjAtYWRjMC1mYzY4ODE2YWM4NjYvMC85QTI1MDI4NTUw QTQ4RUZGN0M5OEJGODE2QTg0ODhCRTg4NEU2QjRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUEyNTAyODU1MEE0OEVGRjdDOThCRjgxNkE4NDg4QkU4ODRF NkI0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNjFmODZlLTA3ZjAtNGM2MC1h ZGMwLWZjNjg4MTZhYzg2Ni8wLzMxMzAzMzJlMzUzNTJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzfYMA0GCSqG SIb3DQEBCwUAA4IBAQAScMEnHxGpopcLl1dN/5HlitdSgwHzbSWzGTziggk8jClc UhlrRw+J4+abEBqzaSH2Z/wuRfNzaSUK0MQ+Hpc/yCpYB09c6cDhWhmmxSSpJRUh 36w7yHSFet2ANCnLMhNEIAX+Vg9OxFABLxt9Wrb47Wx0ejkHNEikHgIswQbQ6asm rzEPKZZKiCXsfURJDmtypRxrXZuGauFQBL5wl7dsLj5FRhGkoep7u2yt64p0KfDZ KpfDsjUDR/ZBtOihfRn4MlUOy6wBsZHw8zge1YYBolDCb9G9ESfG0wApmlUEXRf/ A5dwGfpgC9PSVhLExGyv82+npZl4QFBuJK475/zG -----END CERTIFICATE-----Generated at Fri Apr 18 07:59:17 2025 by rpki-client