$ rpki-client -vvf repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38312e302f32342d3234203d3e20313530323034.roa File: 3130332e342e38312e302f32342d3234203d3e20313530323034.roa (raw, json) Hash identifier: IgBk8nUZZ29ZSChbWhRLqEMkR6u+A1fqdcf9ejFY80Y= Subject key identifier: 71:D8:7F:7C:48:C1:D2:23:B5:19:25:BE:CC:22:E3:09:03:8D:D9:57 Certificate issuer: /CN=0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E Certificate serial: 1210BF3BEBF4A98AAFE31DF96142549F90D68F1B Authority key identifier: 0E:2E:7A:9C:F1:1C:69:2E:C8:E5:6F:03:52:7B:DF:92:FA:00:1A:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38312e302f32342d3234203d3e20313530323034.roa Signing time: Wed 22 Jan 2025 12:00:00 +0000 ROA not before: Wed 22 Jan 2025 11:55:00 +0000 ROA not after: Wed 21 Jan 2026 12:00:00 +0000 asID: 150204 IP address blocks: 103.4.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.crl rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 06:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:10:bf:3b:eb:f4:a9:8a:af:e3:1d:f9:61:42:54:9f:90:d6:8f:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E Validity Not Before: Jan 22 11:55:00 2025 GMT Not After : Jan 21 12:00:00 2026 GMT Subject: CN=71D87F7C48C1D223B51925BECC22E309038DD957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:11:9d:5a:1c:36:ef:c6:4b:75:51:1d:cc:b0: 66:60:af:90:45:a7:4a:b2:dc:97:54:ef:bb:a9:93: c2:38:b4:ab:5a:91:83:c4:c9:6b:53:51:91:f4:02: 09:20:f9:9c:ab:1a:b7:91:6f:ed:39:27:5b:57:1f: 42:d5:06:7b:07:32:fb:f1:7e:77:3f:7a:72:41:c1: 00:50:06:9c:6e:68:e1:b8:e4:66:49:a1:c4:7b:37: b5:20:f2:f8:90:ed:96:47:02:8f:c1:7d:87:1d:56: 24:22:c7:27:7e:af:06:86:5d:c1:15:ac:b2:1c:83: df:bd:ba:e5:c5:64:5d:26:73:8b:bc:b6:64:c9:58: ed:7c:0d:30:aa:d0:9e:64:4a:f0:6d:69:07:32:84: bf:6f:75:2b:9d:d9:90:43:4c:64:95:07:47:e7:b2: 55:59:f3:09:9b:c7:0e:0f:5b:79:95:ac:3f:47:d5: 2f:16:68:71:a6:09:84:ee:5e:40:42:05:87:af:3f: 53:47:80:c5:e5:0d:90:ef:8a:90:0e:2a:dc:6b:44: f3:82:f2:d3:06:b6:01:53:c2:6c:19:eb:74:8b:95: 4b:8f:10:76:71:fd:4c:65:3e:8f:82:be:c1:81:1f: 71:12:63:97:cb:1f:c1:77:e2:07:d7:a0:00:8a:55: 3a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D8:7F:7C:48:C1:D2:23:B5:19:25:BE:CC:22:E3:09:03:8D:D9:57 X509v3 Authority Key Identifier: keyid:0E:2E:7A:9C:F1:1C:69:2E:C8:E5:6F:03:52:7B:DF:92:FA:00:1A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38312e302f32342d3234203d3e20313530323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.81.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:51:f3:80:03:ec:4e:0b:be:f6:e1:fd:fc:18:53:17:cc:d5: 8e:e2:f6:15:d1:20:c5:42:42:43:33:95:27:83:63:03:75:d0: d6:c2:a3:1d:0a:cb:d6:a5:0c:97:60:ae:90:53:a8:e3:1d:b8: 3f:f6:e2:8e:ce:a1:56:92:28:5a:42:1b:f6:a8:38:1a:c5:1e: 62:1a:8c:de:e7:2f:93:23:32:ff:af:17:7e:86:e4:61:19:01: 9e:8e:58:5a:b5:13:d9:b7:35:cc:58:db:fd:ca:f1:3b:4c:11: 40:df:f6:c9:70:87:1b:82:29:77:ea:52:cf:cf:58:ad:48:b1: 6a:e4:12:06:48:95:9f:91:5c:14:34:9f:30:17:d4:e6:87:d4: 9e:e8:cc:8c:04:d2:d1:76:40:2b:5f:b7:55:6a:25:99:e5:15: 69:2e:e7:9f:97:30:20:bb:a2:b9:36:0f:dd:ac:a1:39:c8:6f: b8:db:b4:2a:59:fe:6a:c5:3e:9e:f5:1c:1c:a1:fd:22:14:60: 46:2b:f4:b9:b8:10:8e:85:1e:2a:81:dc:91:41:f9:b6:93:30: 07:0c:93:1b:e3:84:9b:66:86:ab:2d:b3:99:ca:d4:ca:6d:89: d8:a6:85:18:f9:99:55:37:53:18:bc:17:36:b4:46:fb:6f:08: a9:f2:b3:87 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEhC/O+v0qYqv4x35YUJUn5DWjxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUyRTdBOUNGMTFDNjkyRUM4RTU2RjAzNTI3QkRGOTJG QTAwMUE0RTAeFw0yNTAxMjIxMTU1MDBaFw0yNjAxMjExMjAwMDBaMDMxMTAvBgNV BAMTKDcxRDg3RjdDNDhDMUQyMjNCNTE5MjVCRUNDMjJFMzA5MDM4REQ5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjEZ1aHDbvxkt1UR3MsGZgr5BF p0qy3JdU77upk8I4tKtakYPEyWtTUZH0Agkg+ZyrGreRb+05J1tXH0LVBnsHMvvx fnc/enJBwQBQBpxuaOG45GZJocR7N7Ug8viQ7ZZHAo/BfYcdViQixyd+rwaGXcEV rLIcg9+9uuXFZF0mc4u8tmTJWO18DTCq0J5kSvBtaQcyhL9vdSud2ZBDTGSVB0fn slVZ8wmbxw4PW3mVrD9H1S8WaHGmCYTuXkBCBYevP1NHgMXlDZDvipAOKtxrRPOC 8tMGtgFTwmwZ63SLlUuPEHZx/UxlPo+CvsGBH3ESY5fLH8F34gfXoACKVTpbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUcdh/fEjB0iO1GSW+zCLjCQON2VcwHwYDVR0j BBgwFoAUDi56nPEcaS7I5W8DUnvfkvoAGk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDE5NTg5YS1kNTI1LTQwZmMtODk0YS0xMmU0NDAxMGUzZTQvMC8wRTJFN0E5Q0Yx MUM2OTJFQzhFNTZGMDM1MjdCREY5MkZBMDAxQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEUyRTdBOUNGMTFDNjkyRUM4RTU2RjAzNTI3QkRGOTJGQTAw MUE0RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMTk1ODlhLWQ1MjUtNDBmYy04 OTRhLTEyZTQ0MDEwZTNlNC8wLzMxMzAzMzJlMzQyZTM4MzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzAzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBFEwDQYJKoZIhvcN AQELBQADggEBAJpR84AD7E4Lvvbh/fwYUxfM1Y7i9hXRIMVCQkMzlSeDYwN10NbC ox0Ky9alDJdgrpBTqOMduD/24o7OoVaSKFpCG/aoOBrFHmIajN7nL5MjMv+vF36G 5GEZAZ6OWFq1E9m3NcxY2/3K8TtMEUDf9slwhxuCKXfqUs/PWK1IsWrkEgZIlZ+R XBQ0nzAX1OaH1J7ozIwE0tF2QCtft1VqJZnlFWku55+XMCC7ork2D92soTnIb7jb tCpZ/mrFPp71HByh/SIUYEYr9Lm4EI6FHiqB3JFB+baTMAcMkxvjhJtmhqsts5nK 1MptidimhRj5mVU3Uxi8Fza0RvtvCKnys4c= -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:39 2025 by rpki-client