$ rpki-client -vvf repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa File: 3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa (raw, json) Hash identifier: PRtjDQLWn7DOhqpJ6ZyrW9FMpW7szF9MrVItEP9hNn4= Subject key identifier: 97:A1:24:78:B1:7C:F9:9E:4D:B2:7C:17:47:0C:5C:85:C2:A0:06:CA Certificate issuer: /CN=64B2DB7703C5C56A6F69C4789AB9F69214F22695 Certificate serial: 6761000FE9D9CD057EAC5E59B98AF28FDF751110 Authority key identifier: 64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa Signing time: Thu 13 Mar 2025 10:00:00 +0000 ROA not before: Thu 13 Mar 2025 09:55:00 +0000 ROA not after: Thu 12 Mar 2026 10:00:00 +0000 asID: 150954 IP address blocks: 103.117.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.crl rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:61:00:0f:e9:d9:cd:05:7e:ac:5e:59:b9:8a:f2:8f:df:75:11:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B2DB7703C5C56A6F69C4789AB9F69214F22695 Validity Not Before: Mar 13 09:55:00 2025 GMT Not After : Mar 12 10:00:00 2026 GMT Subject: CN=97A12478B17CF99E4DB27C17470C5C85C2A006CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bf:b9:bd:75:20:c1:94:17:84:fb:01:04:8c: d2:de:73:c7:24:55:f9:07:19:c2:ca:02:bd:f7:a8: 29:97:25:3f:ff:24:24:fb:21:99:27:76:c3:18:06: f4:23:3b:d4:0a:37:19:27:5e:24:a8:0b:f5:e2:e3: 04:84:62:84:e4:fa:1c:e3:c8:87:2b:74:66:00:0b: 96:51:81:26:43:95:9d:a9:fe:4c:4b:db:20:6d:e6: ba:78:44:0c:03:d4:24:de:45:ec:d6:3d:1b:9d:97: 97:a6:06:72:5c:ba:81:85:f7:d9:75:f4:1b:a7:b0: 50:1b:71:7d:2a:76:1d:b4:6a:a5:3a:30:3a:84:0d: 04:5a:06:87:48:68:11:bf:f9:33:e5:f0:32:39:c0: 81:62:a1:08:23:c7:64:4e:ca:a9:2a:6f:0f:f3:09: 4e:65:a3:29:1c:25:69:07:06:b4:d8:07:c1:69:bf: 10:b4:a3:79:f2:7c:1b:3e:79:61:e9:da:ee:c0:7b: 78:87:0b:4c:5c:5e:35:94:02:37:db:d6:d1:e6:4d: eb:14:a4:18:a8:ae:e3:e9:24:dd:0b:3e:44:7f:19: 88:34:9e:a5:77:53:02:69:d2:a0:65:2e:25:8a:0d: 2c:55:cc:d4:3e:b9:5d:34:20:89:b2:26:e2:6a:c9: a1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A1:24:78:B1:7C:F9:9E:4D:B2:7C:17:47:0C:5C:85:C2:A0:06:CA X509v3 Authority Key Identifier: keyid:64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.58.0/23 Signature Algorithm: sha256WithRSAEncryption a0:33:36:c9:6b:42:99:0a:90:48:38:6f:be:a5:f2:ca:80:de: 0d:a0:3c:2d:8e:a8:c1:10:78:9a:b4:ad:dd:e5:f1:11:bc:97: f4:d9:63:64:97:6c:bd:16:92:58:60:88:f3:e5:9e:26:59:69: 1f:31:66:e0:34:0a:13:8a:7c:9a:ff:45:6b:43:68:5c:3f:38: 9b:06:38:29:f2:e4:50:fa:ef:59:6c:89:88:63:2d:e0:29:ef: 1f:84:43:01:5e:26:b6:ec:b5:99:af:1c:6e:37:39:4b:34:f5: b9:7b:51:d9:9a:53:d6:76:cf:53:b9:38:ca:b3:f7:7d:eb:c6: 87:c4:b4:6f:96:2d:a2:8c:53:c3:d4:b9:c6:91:3b:5e:b4:b3: fe:75:91:30:0f:0f:32:cc:a1:2b:15:a0:9e:d4:12:c8:cc:35: 7e:cd:2f:6d:fd:5d:be:74:79:4a:f1:51:9e:ac:9b:71:37:d6: 9f:8c:cc:2c:14:c6:e6:ea:6a:eb:99:55:d6:47:b6:31:a5:3c: c6:21:f7:b0:e8:f0:66:aa:b6:ea:42:0c:1c:69:60:32:ea:45: e9:ba:28:59:7f:61:2c:e4:61:7c:1e:43:bd:3e:e3:2f:a2:7c: 6c:00:c6:b1:41:13:e3:7b:25:3c:cb:fe:98:95:b0:44:0f:11: 99:0a:59:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ2EAD+nZzQV+rF5ZuYryj991ERAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCMkRCNzcwM0M1QzU2QTZGNjlDNDc4OUFCOUY2OTIx NEYyMjY5NTAeFw0yNTAzMTMwOTU1MDBaFw0yNjAzMTIxMDAwMDBaMDMxMTAvBgNV BAMTKDk3QTEyNDc4QjE3Q0Y5OUU0REIyN0MxNzQ3MEM1Qzg1QzJBMDA2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfv7m9dSDBlBeE+wEEjNLec8ck VfkHGcLKAr33qCmXJT//JCT7IZkndsMYBvQjO9QKNxknXiSoC/Xi4wSEYoTk+hzj yIcrdGYAC5ZRgSZDlZ2p/kxL2yBt5rp4RAwD1CTeRezWPRudl5emBnJcuoGF99l1 9BunsFAbcX0qdh20aqU6MDqEDQRaBodIaBG/+TPl8DI5wIFioQgjx2ROyqkqbw/z CU5loykcJWkHBrTYB8FpvxC0o3nyfBs+eWHp2u7Ae3iHC0xcXjWUAjfb1tHmTesU pBioruPpJN0LPkR/GYg0nqV3UwJp0qBlLiWKDSxVzNQ+uV00IImyJuJqyaFdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl6EkeLF8+Z5NsnwXRwxchcKgBsowHwYDVR0j BBgwFoAUZLLbdwPFxWpvacR4mrn2khTyJpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MjYyZDM0MS05NGI1LTQ3NGUtOGJjZC1kMTc5ODhmMDk5YjMvMC82NEIyREI3NzAz QzVDNTZBNkY2OUM0Nzg5QUI5RjY5MjE0RjIyNjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCMkRCNzcwM0M1QzU2QTZGNjlDNDc4OUFCOUY2OTIxNEYy MjY5NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyNjJkMzQxLTk0YjUtNDc0ZS04 YmNkLWQxNzk4OGYwOTliMy8wLzMxMzAzMzJlMzEzMTM3MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3U6MA0GCSqG SIb3DQEBCwUAA4IBAQCgMzbJa0KZCpBIOG++pfLKgN4NoDwtjqjBEHiatK3d5fER vJf02WNkl2y9FpJYYIjz5Z4mWWkfMWbgNAoTinya/0VrQ2hcPzibBjgp8uRQ+u9Z bImIYy3gKe8fhEMBXia27LWZrxxuNzlLNPW5e1HZmlPWds9TuTjKs/d968aHxLRv li2ijFPD1LnGkTtetLP+dZEwDw8yzKErFaCe1BLIzDV+zS9t/V2+dHlK8VGerJtx N9afjMwsFMbm6mrrmVXWR7YxpTzGIfew6PBmqrbqQgwcaWAy6kXpuihZf2Es5GF8 HkO9PuMvonxsAMaxQRPjeyU8y/6YlbBEDxGZClmi -----END CERTIFICATE-----Generated at Sun Apr 6 10:48:22 2025 by rpki-client