$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134352e302f32342d3234203d3e20313337333334.roa File: 3130332e3131322e3134352e302f32342d3234203d3e20313337333334.roa (raw, json) Hash identifier: 5++6GE8clmDTKMQEM/qEom9bf+61Ah3qelMFdhmesaA= Subject key identifier: 46:E2:2D:50:13:9F:D0:80:11:A0:45:DB:FC:0E:2A:6F:25:D0:26:CA Certificate issuer: /CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Certificate serial: 2A5CC8DCD691523671764045CE7324809CA59D01 Authority key identifier: 09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134352e302f32342d3234203d3e20313337333334.roa Signing time: Sun 24 Nov 2024 12:00:03 +0000 ROA not before: Sun 24 Nov 2024 11:55:03 +0000 ROA not after: Sun 23 Nov 2025 12:00:03 +0000 asID: 137334 IP address blocks: 103.112.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 22:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5c:c8:dc:d6:91:52:36:71:76:40:45:ce:73:24:80:9c:a5:9d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Validity Not Before: Nov 24 11:55:03 2024 GMT Not After : Nov 23 12:00:03 2025 GMT Subject: CN=46E22D50139FD08011A045DBFC0E2A6F25D026CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:2b:95:5a:1a:de:4a:7c:eb:00:71:60:d3: dd:1f:f8:be:90:98:a9:59:92:b1:14:21:6a:07:1a: 2e:48:a2:82:d8:b0:d9:20:e4:0d:da:fd:5d:18:27: 7f:62:1c:23:ea:57:b1:1e:b7:c8:3d:e9:fc:75:db: d7:8a:3c:fa:e3:cb:e7:41:1c:c8:ca:3d:04:92:7a: 57:fd:7d:aa:ce:84:f4:3a:bb:dd:f0:b8:09:98:fb: eb:1f:bc:7f:ee:3e:bc:02:9a:ba:3b:b4:b7:ba:98: b2:4b:71:43:d0:e6:aa:3f:5a:56:ed:7c:87:48:e2: dc:24:db:50:84:d5:23:19:63:02:2b:14:c9:88:8f: 9f:f3:72:22:cf:29:ca:e4:be:98:bf:3d:df:1a:11: 8a:d2:63:d4:32:1d:2c:2b:b1:47:6f:54:35:6b:f6: 2e:66:a2:5a:3b:cc:5e:fd:0d:0c:2a:2e:40:e4:b0: 9a:c6:c4:a3:ac:6e:1d:96:60:fd:ab:b0:33:29:86: e8:78:46:41:9f:0b:67:98:46:c7:43:80:29:27:77: 15:ce:cb:2c:46:18:80:f8:f5:48:92:a2:55:2e:c0: f0:fa:ee:80:f6:8d:7c:2f:eb:7c:5d:33:98:21:92: a7:21:d9:b9:16:00:4e:b7:4a:a5:c1:d8:8c:d2:fc: 5f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E2:2D:50:13:9F:D0:80:11:A0:45:DB:FC:0E:2A:6F:25:D0:26:CA X509v3 Authority Key Identifier: keyid:09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134352e302f32342d3234203d3e20313337333334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.145.0/24 Signature Algorithm: sha256WithRSAEncryption ba:1b:48:f3:23:79:bc:f6:95:a8:a4:ee:28:61:2a:d2:4e:a2: 33:ac:e0:f2:a6:d9:ae:ca:39:be:22:8f:71:10:32:16:48:c2: b9:45:bb:43:0e:9f:01:a9:56:2f:93:26:d3:b6:5f:18:47:09: 85:6d:ec:8c:79:cf:83:64:36:99:df:63:46:cb:20:3b:67:a0: 82:99:43:ee:d9:3c:ff:c6:56:22:08:84:7b:37:f6:64:17:71: 04:40:db:5f:01:a1:15:46:e8:01:4f:94:d3:90:b7:23:d9:43: 2a:db:2e:b6:ab:d5:cd:2b:ac:2e:15:53:1c:02:be:08:1a:0b: da:8d:57:33:b9:68:cd:2b:14:17:73:0e:28:11:bb:0b:96:5a: c1:08:2a:aa:a5:36:60:b8:82:82:b3:7b:3c:40:2a:c6:b5:ad: 1d:29:2f:07:67:07:8e:12:94:e6:59:81:88:25:88:27:7b:85: f0:b8:64:67:7c:97:19:fa:1e:84:8f:6f:e1:93:7d:26:6a:7a: db:4c:ac:42:c6:5a:a7:68:74:d1:56:29:bd:77:29:76:cc:c9: 74:0c:f1:3c:10:fe:7f:0e:fb:2a:df:fa:3e:fb:a5:0e:5f:ff: fd:17:85:17:d7:7a:f2:6f:84:af:df:b9:1c:ac:ae:b9:f1:ac: 8b:e0:c4:b7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKlzI3NaRUjZxdkBFznMkgJylnQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJC MkM5ODEzQzAeFw0yNDExMjQxMTU1MDNaFw0yNTExMjMxMjAwMDNaMDMxMTAvBgNV BAMTKDQ2RTIyRDUwMTM5RkQwODAxMUEwNDVEQkZDMEUyQTZGMjVEMDI2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEEyuVWhreSnzrAHFg090f+L6Q mKlZkrEUIWoHGi5IooLYsNkg5A3a/V0YJ39iHCPqV7Eet8g96fx129eKPPrjy+dB HMjKPQSSelf9farOhPQ6u93wuAmY++sfvH/uPrwCmro7tLe6mLJLcUPQ5qo/Wlbt fIdI4twk21CE1SMZYwIrFMmIj5/zciLPKcrkvpi/Pd8aEYrSY9QyHSwrsUdvVDVr 9i5molo7zF79DQwqLkDksJrGxKOsbh2WYP2rsDMphuh4RkGfC2eYRsdDgCkndxXO yyxGGID49UiSolUuwPD67oD2jXwv63xdM5ghkqch2bkWAE63SqXB2IzS/F/jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURuItUBOf0IARoEXb/A4qbyXQJsowHwYDVR0j BBgwFoAUCU1VbKC1WvSmNoc6Gx5wMrLJgTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwOGViMy05MzdkLTQzMDQtOTE2Ny00NjNkN2M1OGQ1ZTQvMC8wOTRENTU2Q0Ew QjU1QUY0QTYzNjg3M0ExQjFFNzAzMkIyQzk4MTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJCMkM5 ODEzQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDA4ZWIzLTkzN2QtNDMwNC05 MTY3LTQ2M2Q3YzU4ZDVlNC8wLzMxMzAzMzJlMzEzMTMyMmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncJEwDQYJ KoZIhvcNAQELBQADggEBALobSPMjebz2laik7ihhKtJOojOs4PKm2a7KOb4ij3EQ MhZIwrlFu0MOnwGpVi+TJtO2XxhHCYVt7Ix5z4NkNpnfY0bLIDtnoIKZQ+7ZPP/G ViIIhHs39mQXcQRA218BoRVG6AFPlNOQtyPZQyrbLrar1c0rrC4VUxwCvggaC9qN VzO5aM0rFBdzDigRuwuWWsEIKqqlNmC4goKzezxAKsa1rR0pLwdnB44SlOZZgYgl iCd7hfC4ZGd8lxn6HoSPb+GTfSZqettMrELGWqdodNFWKb13KXbMyXQM8TwQ/n8O +yrf+j77pQ5f//0XhRfXevJvhK/fuRysrrnxrIvgxLc= -----END CERTIFICATE-----Generated at Sun Apr 6 13:49:11 2025 by rpki-client