$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa File: 3130332e35392e34342e302f32332d3234203d3e20313338383831.roa (raw, json) Hash identifier: BxFni4q37vbE3vebazdh4uiofig0FsvOhDD9e85jKcQ= Subject key identifier: 7B:C1:3D:0D:A8:BB:C3:AE:60:2E:F3:65:68:86:F7:6A:0E:9D:7E:5E Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 71BE3059EE2FAD3F26643F12A08B9462FF36F0A5 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa Signing time: Fri 03 Jan 2025 04:00:01 +0000 ROA not before: Fri 03 Jan 2025 03:55:01 +0000 ROA not after: Fri 02 Jan 2026 04:00:01 +0000 asID: 138881 IP address blocks: 103.59.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:be:30:59:ee:2f:ad:3f:26:64:3f:12:a0:8b:94:62:ff:36:f0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Jan 3 03:55:01 2025 GMT Not After : Jan 2 04:00:01 2026 GMT Subject: CN=7BC13D0DA8BBC3AE602EF3656886F76A0E9D7E5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:67:4a:49:af:db:33:b8:f6:6f:28:11:de: d3:81:10:aa:fc:79:d3:7c:d0:a3:17:48:bf:cb:78: 30:fa:85:2f:63:65:40:31:77:bc:bd:c9:3a:1b:8c: 1c:8e:70:b7:ed:a4:85:87:8a:18:91:51:29:0b:5b: 76:01:a9:a9:4a:52:c9:0d:34:d3:03:4c:07:6d:f4: 8a:3b:17:8a:a1:2f:df:44:24:46:b5:d6:68:ff:58: d8:6d:5b:62:ab:59:34:29:99:19:51:74:75:25:d8: 9f:8c:d4:a6:52:18:56:39:eb:6f:01:28:f3:1f:5e: 9b:b2:f6:58:68:32:4d:b6:be:30:81:12:2f:16:b5: 76:b1:e7:ab:a1:ed:35:c5:69:58:a7:7e:7c:3f:f5: ff:fa:5f:bb:3d:dc:d6:be:ea:28:57:af:1f:f1:1d: 6b:f8:15:04:9a:bd:dd:04:88:de:b9:a2:05:f8:fb: 80:4c:14:e1:a8:b7:da:92:36:52:51:80:98:e6:f2: 3f:02:b3:a4:78:84:54:9b:a4:9b:8f:62:98:c5:7f: 65:f0:49:9a:9c:72:4c:5a:aa:32:64:db:79:bb:37: 99:7d:e6:53:3c:7d:12:28:0b:1f:10:18:bd:47:b1: ce:b3:f3:c7:c7:59:62:02:29:00:25:a4:fa:13:7e: 9d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C1:3D:0D:A8:BB:C3:AE:60:2E:F3:65:68:86:F7:6A:0E:9D:7E:5E X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32332d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.44.0/23 Signature Algorithm: sha256WithRSAEncryption 66:c0:02:fb:c6:09:f9:93:c2:3f:1c:e2:38:70:49:cf:10:1a: 8c:ae:0a:75:fc:6d:4a:8b:d3:a3:c0:75:9c:ee:ad:35:83:d1: 47:36:2d:a9:b9:d0:fb:4f:ed:3f:1e:b5:b3:25:f3:41:30:31: 8f:4e:e3:15:f1:7c:2e:52:3a:05:90:09:9b:a1:86:d3:f9:bd: e8:45:a4:7b:6a:50:76:8a:99:6d:e7:86:72:2f:6c:09:c9:4c: 41:dd:06:57:bc:64:d3:35:e5:06:40:66:cb:34:0d:8a:a3:b5: 84:cb:6d:08:ec:79:ce:08:bb:ca:f5:f9:75:41:fc:f2:2d:99: 6f:07:eb:10:9b:7b:e2:6a:3f:8e:7d:aa:67:30:79:6c:12:c0: 4f:9b:0e:f9:3a:ca:b6:98:ec:0b:27:14:f9:55:3a:39:a0:8b: a5:33:75:53:8b:a5:1a:2f:b2:8b:e8:25:89:0b:8a:1d:23:de: 98:08:97:b9:ba:9c:9e:09:3a:2e:3b:15:3f:23:78:48:2f:66: af:80:e3:0e:45:5d:05:b1:a4:bd:a5:61:25:c7:04:bd:fe:e6: 32:68:46:f2:3e:f0:be:4e:6e:2f:64:6d:49:dd:71:e2:5a:39: 7c:28:13:d7:60:39:0b:e5:5d:60:6d:ce:c6:73:db:0e:42:d3: 52:cf:94:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcb4wWe4vrT8mZD8SoIuUYv828KUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yNTAxMDMwMzU1MDFaFw0yNjAxMDIwNDAwMDFaMDMxMTAvBgNV BAMTKDdCQzEzRDBEQThCQkMzQUU2MDJFRjM2NTY4ODZGNzZBMEU5RDdFNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJmdKSa/bM7j2bygR3tOBEKr8 edN80KMXSL/LeDD6hS9jZUAxd7y9yTobjByOcLftpIWHihiRUSkLW3YBqalKUskN NNMDTAdt9Io7F4qhL99EJEa11mj/WNhtW2KrWTQpmRlRdHUl2J+M1KZSGFY5628B KPMfXpuy9lhoMk22vjCBEi8WtXax56uh7TXFaVinfnw/9f/6X7s93Na+6ihXrx/x HWv4FQSavd0EiN65ogX4+4BMFOGot9qSNlJRgJjm8j8Cs6R4hFSbpJuPYpjFf2Xw SZqcckxaqjJk23m7N5l95lM8fRIoCx8QGL1Hsc6z88fHWWICKQAlpPoTfp2zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUe8E9Dai7w65gLvNlaIb3ag6dfl4wHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7LDANBgkqhkiG 9w0BAQsFAAOCAQEAZsAC+8YJ+ZPCPxziOHBJzxAajK4KdfxtSovTo8B1nO6tNYPR RzYtqbnQ+0/tPx61syXzQTAxj07jFfF8LlI6BZAJm6GG0/m96EWke2pQdoqZbeeG ci9sCclMQd0GV7xk0zXlBkBmyzQNiqO1hMttCOx5zgi7yvX5dUH88i2ZbwfrEJt7 4mo/jn2qZzB5bBLAT5sO+TrKtpjsCycU+VU6OaCLpTN1U4ulGi+yi+gliQuKHSPe mAiXubqcngk6LjsVPyN4SC9mr4DjDkVdBbGkvaVhJccEvf7mMmhG8j7wvk5uL2Rt Sd1x4lo5fCgT12A5C+VdYG3OxnPbDkLTUs+UsA== -----END CERTIFICATE-----Generated at Sun Apr 6 08:50:59 2025 by rpki-client