$ rpki-client -vvf repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131362e31332e302f32342d3234203d3e20313331373639.roa File: 3130332e3131362e31332e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: jSYEjMFXMgVZcL2ZGiFEKnhzKMu/9GiCugDhrbE5OB8= Subject key identifier: 38:81:C0:A2:A7:E8:52:95:E0:CC:CD:88:4B:03:CA:16:F4:C5:49:B0 Certificate issuer: /CN=35369AC685201508541197F86A8FDAC2375BE30A Certificate serial: 2719D0E4D394C1EADEEBB2DBF5346061542B7E97 Authority key identifier: 35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131362e31332e302f32342d3234203d3e20313331373639.roa Signing time: Thu 16 Jan 2025 09:00:01 +0000 ROA not before: Thu 16 Jan 2025 08:55:01 +0000 ROA not after: Thu 15 Jan 2026 09:00:01 +0000 asID: 131769 IP address blocks: 103.116.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:19:d0:e4:d3:94:c1:ea:de:eb:b2:db:f5:34:60:61:54:2b:7e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35369AC685201508541197F86A8FDAC2375BE30A Validity Not Before: Jan 16 08:55:01 2025 GMT Not After : Jan 15 09:00:01 2026 GMT Subject: CN=3881C0A2A7E85295E0CCCD884B03CA16F4C549B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:fd:00:b2:cc:3c:dc:9b:3f:ef:7f:1d:a4: b5:91:18:87:1c:8d:c4:6c:54:b7:03:2c:08:a5:92: 11:82:ce:86:96:4e:d1:01:04:3b:27:98:51:79:db: 56:2b:ce:c7:34:b7:77:34:9f:0e:f0:09:fa:82:d7: 42:b9:b2:b1:15:23:e0:17:b2:0e:5b:48:72:96:87: d8:61:3f:39:92:b9:24:b4:84:04:27:c7:dc:fe:a0: 8b:ce:1e:e2:62:c5:4d:4f:d8:b5:70:2d:2b:f4:43: c3:d1:97:28:bc:b3:28:22:76:7a:3b:e0:81:23:20: 6d:59:8c:45:61:32:cb:0c:22:e4:41:8d:13:c2:99: e9:e1:e3:40:21:65:c3:09:4b:b3:b4:63:78:4c:5b: ac:e7:1e:fe:46:58:18:e9:61:d6:28:27:cc:64:01: 89:48:13:fb:55:85:bb:64:ab:7c:3e:e8:65:e4:03: 58:e6:dd:af:08:38:b3:12:24:78:64:24:17:e7:59: 3a:62:16:1b:41:71:59:9d:00:f3:3b:c1:10:b4:12: 05:73:5e:ea:22:74:12:d1:79:cb:47:47:77:64:32: f4:e0:d4:b7:e5:b1:ca:61:ce:06:ba:fa:85:15:09: ab:95:87:50:46:44:e8:d8:77:9d:ac:91:11:4d:92: 1e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:81:C0:A2:A7:E8:52:95:E0:CC:CD:88:4B:03:CA:16:F4:C5:49:B0 X509v3 Authority Key Identifier: keyid:35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131362e31332e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.13.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:89:f5:45:80:8a:29:df:91:2e:d1:eb:b0:68:da:05:f8:7b: 0c:67:41:fb:af:30:99:6e:44:ca:36:29:c0:02:46:1b:01:bb: 7b:fe:84:aa:63:e9:fd:93:5b:ea:6b:55:46:50:2a:db:c3:ef: d2:c3:15:4f:c0:44:e6:f6:fd:d6:64:3d:c2:d4:6a:c4:59:b4: 8f:5c:93:69:44:3e:69:32:a0:f2:21:0f:2f:16:23:b5:19:d1: 5a:0d:61:ac:fd:83:cc:2d:44:ac:c5:d8:84:88:e6:95:ee:51: 34:d1:e2:1b:cd:db:86:b3:ad:d1:6b:f5:90:74:3d:56:3b:1a: f2:fb:4c:89:59:dc:3c:cb:2c:b5:20:a5:ba:fb:7a:92:2a:12: a0:8f:2e:96:9b:ba:68:c5:f1:86:b2:a4:bb:de:dc:4d:0b:2c: a9:0d:fe:56:95:54:7a:28:bb:a6:c4:29:8b:ae:42:c9:c6:ff: cb:95:30:8a:be:d4:0d:0f:fb:b3:74:99:c3:6d:ff:45:1e:9f: ad:dd:32:58:6d:89:ef:21:f0:6d:35:cc:1a:d3:bc:07:48:46: 02:07:7b:94:c1:22:64:95:f8:9a:5e:90:78:81:4b:bd:78:09: 16:ee:86:99:0f:61:5f:56:bb:4b:4f:9f:6d:48:6a:37:30:85: 91:9f:4f:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJxnQ5NOUwere67Lb9TRgYVQrfpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIz NzVCRTMwQTAeFw0yNTAxMTYwODU1MDFaFw0yNjAxMTUwOTAwMDFaMDMxMTAvBgNV BAMTKDM4ODFDMEEyQTdFODUyOTVFMENDQ0Q4ODRCMDNDQTE2RjRDNTQ5QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Jf0Assw83Js/738dpLWRGIcc jcRsVLcDLAilkhGCzoaWTtEBBDsnmFF521Yrzsc0t3c0nw7wCfqC10K5srEVI+AX sg5bSHKWh9hhPzmSuSS0hAQnx9z+oIvOHuJixU1P2LVwLSv0Q8PRlyi8sygidno7 4IEjIG1ZjEVhMssMIuRBjRPCmenh40AhZcMJS7O0Y3hMW6znHv5GWBjpYdYoJ8xk AYlIE/tVhbtkq3w+6GXkA1jm3a8IOLMSJHhkJBfnWTpiFhtBcVmdAPM7wRC0EgVz XuoidBLRectHR3dkMvTg1Lflscphzga6+oUVCauVh1BGROjYd52skRFNkh51AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOIHAoqfoUpXgzM2ISwPKFvTFSbAwHwYDVR0j BBgwFoAUNTaaxoUgFQhUEZf4ao/awjdb4wowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTRhY2EzYy02M2RjLTRjMWItYTdlOC1hY2JhZTgyMWNkZTUvMC8zNTM2OUFDNjg1 MjAxNTA4NTQxMTk3Rjg2QThGREFDMjM3NUJFMzBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIzNzVC RTMwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNGFjYTNjLTYzZGMtNGMxYi1h N2U4LWFjYmFlODIxY2RlNS8wLzMxMzAzMzJlMzEzMTM2MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3QNMA0GCSqG SIb3DQEBCwUAA4IBAQCcifVFgIop35Eu0euwaNoF+HsMZ0H7rzCZbkTKNinAAkYb Abt7/oSqY+n9k1vqa1VGUCrbw+/SwxVPwETm9v3WZD3C1GrEWbSPXJNpRD5pMqDy IQ8vFiO1GdFaDWGs/YPMLUSsxdiEiOaV7lE00eIbzduGs63Ra/WQdD1WOxry+0yJ Wdw8yyy1IKW6+3qSKhKgjy6Wm7poxfGGsqS73txNCyypDf5WlVR6KLumxCmLrkLJ xv/LlTCKvtQND/uzdJnDbf9FHp+t3TJYbYnvIfBtNcwa07wHSEYCB3uUwSJklfia XpB4gUu9eAkW7oaZD2FfVrtLT59tSGo3MIWRn0/H -----END CERTIFICATE-----Generated at Sun Apr 6 10:33:56 2025 by rpki-client