$ rpki-client -vvf repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31362e302f32332d3234203d3e20313338303830.roa File: 3130332e3133312e31362e302f32332d3234203d3e20313338303830.roa (raw, json) Hash identifier: S6THoBxmFhipoPEMVp8kOy2PvxdrcZ+iF+GpkKl4MNY= Subject key identifier: 4E:16:B4:47:C0:2A:D6:BB:7C:74:FA:5A:34:71:33:D8:1A:88:89:A3 Certificate issuer: /CN=62DD415142DDD76FB165A3918E09BA5891D6ADD0 Certificate serial: 1AA755EC7A9B9BC6C8FC95CA20FBDB97B0EE1060 Authority key identifier: 62:DD:41:51:42:DD:D7:6F:B1:65:A3:91:8E:09:BA:58:91:D6:AD:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31362e302f32332d3234203d3e20313338303830.roa Signing time: Thu 20 Mar 2025 07:14:31 +0000 ROA not before: Thu 20 Mar 2025 07:09:31 +0000 ROA not after: Thu 19 Mar 2026 07:14:31 +0000 asID: 138080 IP address blocks: 103.131.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.crl rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 10:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a7:55:ec:7a:9b:9b:c6:c8:fc:95:ca:20:fb:db:97:b0:ee:10:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62DD415142DDD76FB165A3918E09BA5891D6ADD0 Validity Not Before: Mar 20 07:09:31 2025 GMT Not After : Mar 19 07:14:31 2026 GMT Subject: CN=4E16B447C02AD6BB7C74FA5A347133D81A8889A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7a:0d:f9:24:59:2b:b5:3c:80:5f:39:50:dc: cb:8b:a9:db:00:a8:6e:3b:95:cb:54:0f:8e:8b:53: 46:91:c5:e1:ec:1a:a1:07:4d:18:b3:7d:c7:77:48: 23:e6:09:d2:49:38:6a:17:8a:01:d0:82:04:5d:b1: 25:2e:b6:d2:dd:53:f5:d3:99:5d:e3:15:a2:e1:e5: 4f:75:8f:a0:7b:59:5e:c3:32:e5:8b:2c:c8:4e:4f: c4:30:4f:9d:07:fa:ea:2b:2c:9d:50:e5:0b:fb:3f: a6:69:65:13:c7:64:40:c7:5c:16:09:d2:b5:39:8d: 38:b4:fc:f8:d4:be:e9:83:76:1b:68:fa:53:23:03: 6e:46:a2:59:22:e3:f9:fe:db:55:09:56:99:f9:14: fb:f0:35:58:1d:1d:c6:2c:0d:8a:da:56:6c:fb:fc: cc:34:8b:6b:ab:b4:9d:2c:7f:6c:1a:e4:b4:58:ee: fd:39:bc:36:d7:ee:f7:e8:0b:5a:ab:e9:61:b4:f8: a7:73:aa:06:69:ae:6b:16:fb:47:c7:50:bb:15:5a: e5:a5:08:09:5a:6b:73:cf:ed:a0:42:ca:18:9e:e6: 9c:a9:a3:b1:28:d7:e7:cf:0c:8a:25:40:19:6f:a2: 85:2b:c6:9b:2d:d4:04:67:5d:4b:41:ee:dc:5b:86: ef:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:16:B4:47:C0:2A:D6:BB:7C:74:FA:5A:34:71:33:D8:1A:88:89:A3 X509v3 Authority Key Identifier: keyid:62:DD:41:51:42:DD:D7:6F:B1:65:A3:91:8E:09:BA:58:91:D6:AD:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31362e302f32332d3234203d3e20313338303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.16.0/23 Signature Algorithm: sha256WithRSAEncryption 81:44:1e:68:5d:b6:dc:07:d3:ba:01:42:bd:ef:72:a5:54:91: 57:40:d8:bf:fe:dd:5d:e8:1e:7f:35:f4:fd:82:ec:3e:13:70: 4a:3b:f6:44:5c:a4:18:96:b3:6d:f6:bd:dd:f5:af:18:85:02: 06:e2:8a:6d:1e:6c:06:71:dc:f7:0b:8a:df:fc:2e:fb:9d:18: fb:ca:c9:7b:b2:a4:e0:e8:4a:8a:b2:36:34:49:bf:e7:ef:24: a3:29:1b:e6:03:72:19:d1:eb:6e:b1:d9:b3:3d:e1:af:8f:9c: e2:c9:02:8f:30:ab:00:a2:c5:71:f6:7f:6d:a2:b7:79:4c:58: c1:3f:68:61:4b:ed:c9:04:26:9a:f0:f4:ae:8b:95:89:d2:b2: f9:3c:2a:92:d5:18:50:d7:d0:8a:78:25:6d:e8:1c:96:14:0e: 43:b0:fb:4b:da:a2:50:d5:12:45:41:d3:21:7e:55:9d:d0:17: c7:89:49:66:0f:af:41:63:56:a2:bd:08:29:7f:db:da:e6:da: b5:fd:55:f5:08:de:ed:df:ed:e5:7b:30:a0:80:6f:ec:96:97: 7f:25:6c:5d:ec:74:52:71:c7:8f:ab:73:78:58:cd:b7:16:10: ea:f7:3a:3d:ac:34:4b:0d:c8:b5:cb:2f:b1:cc:2f:de:50:ec: 0a:e9:d9:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGqdV7Hqbm8bI/JXKIPvbl7DuEGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJERDQxNTE0MkRERDc2RkIxNjVBMzkxOEUwOUJBNTg5 MUQ2QUREMDAeFw0yNTAzMjAwNzA5MzFaFw0yNjAzMTkwNzE0MzFaMDMxMTAvBgNV BAMTKDRFMTZCNDQ3QzAyQUQ2QkI3Qzc0RkE1QTM0NzEzM0Q4MUE4ODg5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDheg35JFkrtTyAXzlQ3MuLqdsA qG47lctUD46LU0aRxeHsGqEHTRizfcd3SCPmCdJJOGoXigHQggRdsSUuttLdU/XT mV3jFaLh5U91j6B7WV7DMuWLLMhOT8QwT50H+uorLJ1Q5Qv7P6ZpZRPHZEDHXBYJ 0rU5jTi0/PjUvumDdhto+lMjA25Golki4/n+21UJVpn5FPvwNVgdHcYsDYraVmz7 /Mw0i2urtJ0sf2wa5LRY7v05vDbX7vfoC1qr6WG0+KdzqgZprmsW+0fHULsVWuWl CAlaa3PP7aBCyhie5pypo7Eo1+fPDIolQBlvooUrxpst1ARnXUtB7txbhu8RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTha0R8Aq1rt8dPpaNHEz2BqIiaMwHwYDVR0j BBgwFoAUYt1BUULd12+xZaORjgm6WJHWrdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTA0ZjY3MC03ZGFjLTRjZjQtOTkxZC01MDUzOWUzZDNmNWUvMC82MkRENDE1MTQy RERENzZGQjE2NUEzOTE4RTA5QkE1ODkxRDZBREQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjJERDQxNTE0MkRERDc2RkIxNjVBMzkxOEUwOUJBNTg5MUQ2 QUREMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5MDRmNjcwLTdkYWMtNGNmNC05 OTFkLTUwNTM5ZTNkM2Y1ZS8wLzMxMzAzMzJlMzEzMzMxMmUzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4MQMA0GCSqG SIb3DQEBCwUAA4IBAQCBRB5oXbbcB9O6AUK973KlVJFXQNi//t1d6B5/NfT9guw+ E3BKO/ZEXKQYlrNt9r3d9a8YhQIG4optHmwGcdz3C4rf/C77nRj7ysl7sqTg6EqK sjY0Sb/n7ySjKRvmA3IZ0etusdmzPeGvj5ziyQKPMKsAosVx9n9tord5TFjBP2hh S+3JBCaa8PSui5WJ0rL5PCqS1RhQ19CKeCVt6ByWFA5DsPtL2qJQ1RJFQdMhflWd 0BfHiUlmD69BY1aivQgpf9va5tq1/VX1CN7t3+3lezCggG/slpd/JWxd7HRScceP q3N4WM23FhDq9zo9rDRLDci1yy+xzC/eUOwK6dnG -----END CERTIFICATE-----Generated at Wed Apr 16 05:38:35 2025 by rpki-client