$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32342d3234203d3e20313338313239.roa File: 3130332e3133322e3233362e302f32342d3234203d3e20313338313239.roa (raw, json) Hash identifier: i9nBXlvSxbioIMa6/RyGmFvQTR4AM5zzTQEPL/AB/CY= Subject key identifier: 2A:57:2B:A2:A6:EE:13:C8:56:82:4E:D7:7C:E1:8E:10:A3:97:E9:45 Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 75B881461BE3B8B71C4874BF639BF4C11806F0E4 Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32342d3234203d3e20313338313239.roa Signing time: Mon 03 Mar 2025 09:15:00 +0000 ROA not before: Mon 03 Mar 2025 09:10:00 +0000 ROA not after: Mon 02 Mar 2026 09:15:00 +0000 asID: 138129 IP address blocks: 103.132.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 11:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b8:81:46:1b:e3:b8:b7:1c:48:74:bf:63:9b:f4:c1:18:06:f0:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Mar 3 09:10:00 2025 GMT Not After : Mar 2 09:15:00 2026 GMT Subject: CN=2A572BA2A6EE13C856824ED77CE18E10A397E945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8d:82:5f:4e:75:57:67:e0:41:c0:24:21:03: b1:e4:15:13:7e:a5:06:53:bf:04:8c:5d:97:ad:e0: f8:c2:70:f5:be:fa:52:6a:58:17:0c:43:dd:21:9d: e7:54:07:a6:9a:97:ae:1b:c7:c2:c8:43:29:4f:30: f9:5b:68:eb:38:c1:20:63:2d:1e:44:0c:41:5f:fb: 7e:77:7a:a9:d6:c1:79:5f:93:75:c6:9c:c7:58:34: 70:bd:f2:69:74:c1:c6:81:55:87:79:cf:91:32:f1: 02:7a:5e:66:51:46:36:e7:fc:8e:54:c0:3f:97:dd: d0:62:44:78:c3:4f:20:32:c6:be:29:10:d1:df:a2: a2:bc:2a:59:ea:db:e5:8d:c5:0d:4b:92:0d:5f:b3: 65:f8:70:f0:32:91:c0:f0:e2:06:6d:22:24:43:b8: ff:0d:d9:56:17:6c:b2:01:9a:8d:88:f6:9b:99:00: c3:f1:cc:1b:e1:d5:6a:03:53:2f:5b:37:49:a7:92: 35:0e:84:b4:76:b8:26:0e:61:43:d9:44:4c:cc:d9: a0:6c:bb:83:ef:58:e8:cd:8a:c3:db:12:50:ce:05: f0:54:ef:42:b4:38:e2:d4:2c:ff:85:a8:8c:fe:59: e1:2d:ba:e8:ba:4c:b8:5e:17:53:12:78:5a:7a:2d: 30:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:57:2B:A2:A6:EE:13:C8:56:82:4E:D7:7C:E1:8E:10:A3:97:E9:45 X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32342d3234203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.236.0/24 Signature Algorithm: sha256WithRSAEncryption b6:63:14:c4:0a:6c:ba:c0:3e:39:84:58:ad:ce:9f:b3:f2:f5: fa:7b:cb:64:c5:98:ab:96:c1:c0:9d:b0:68:54:c7:cd:ce:13: df:31:07:c9:9c:8c:2e:c3:ee:fd:94:33:bd:2a:4d:3b:a0:28: 48:78:06:55:f9:2c:db:1f:53:c9:60:be:b2:0a:51:82:50:f2: 49:c4:61:45:ff:80:6c:d3:ae:a2:29:5f:f2:ae:b9:ef:36:dc: f6:7d:5e:ea:f3:90:a4:8e:14:d7:d7:fe:fd:e5:7b:26:f0:78: 73:3b:e6:19:99:db:30:57:a7:ca:9f:38:3c:7c:ef:d5:c2:ae: 80:b9:a7:b2:64:00:f3:04:b9:1c:2d:cb:9b:2a:ca:73:50:03: e1:75:ad:c6:06:d8:20:bb:97:76:e2:eb:59:9a:79:0d:71:38: 86:d5:25:27:5f:99:53:27:45:af:9c:4b:92:73:f5:e0:a5:1e: ee:57:00:1c:c7:73:18:67:dc:30:8a:4b:e9:d4:f3:be:e1:56: 3e:0b:46:b1:16:51:41:9c:9b:99:d6:b9:45:30:c8:65:ad:aa: 86:ec:8f:12:ad:2e:88:06:22:bb:3c:54:58:38:03:b2:85:30: 91:30:9b:fa:d1:06:3b:09:97:29:a2:2c:f0:cf:91:78:1b:d2: 6a:69:96:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdbiBRhvjuLccSHS/Y5v0wRgG8OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNTAzMDMwOTEwMDBaFw0yNjAzMDIwOTE1MDBaMDMxMTAvBgNV BAMTKDJBNTcyQkEyQTZFRTEzQzg1NjgyNEVENzdDRTE4RTEwQTM5N0U5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYjYJfTnVXZ+BBwCQhA7HkFRN+ pQZTvwSMXZet4PjCcPW++lJqWBcMQ90hnedUB6aal64bx8LIQylPMPlbaOs4wSBj LR5EDEFf+353eqnWwXlfk3XGnMdYNHC98ml0wcaBVYd5z5Ey8QJ6XmZRRjbn/I5U wD+X3dBiRHjDTyAyxr4pENHfoqK8Klnq2+WNxQ1Lkg1fs2X4cPAykcDw4gZtIiRD uP8N2VYXbLIBmo2I9puZAMPxzBvh1WoDUy9bN0mnkjUOhLR2uCYOYUPZREzM2aBs u4PvWOjNisPbElDOBfBU70K0OOLULP+FqIz+WeEtuui6TLheF1MSeFp6LTAbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKlcroqbuE8hWgk7XfOGOEKOX6UUwHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhOwwDQYJ KoZIhvcNAQELBQADggEBALZjFMQKbLrAPjmEWK3On7Py9fp7y2TFmKuWwcCdsGhU x83OE98xB8mcjC7D7v2UM70qTTugKEh4BlX5LNsfU8lgvrIKUYJQ8knEYUX/gGzT rqIpX/Kuue823PZ9XurzkKSOFNfX/v3leybweHM75hmZ2zBXp8qfODx879XCroC5 p7JkAPMEuRwty5sqynNQA+F1rcYG2CC7l3bi61maeQ1xOIbVJSdfmVMnRa+cS5Jz 9eClHu5XABzHcxhn3DCKS+nU877hVj4LRrEWUUGcm5nWuUUwyGWtqobsjxKtLogG Irs8VFg4A7KFMJEwm/rRBjsJlymiLPDPkXgb0mpplqo= -----END CERTIFICATE-----Generated at Sun Apr 6 21:33:18 2025 by rpki-client