$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa File: 3130332e39352e31302e302f32342d3234203d3e20313335343838.roa (raw, json) Hash identifier: nboIz3jrBgP6JOmA3BVAd2UeOfnp74QAUC5BcPTJ2ug= Subject key identifier: 6D:4F:ED:E5:83:B6:90:04:3B:29:0A:C2:C2:09:DB:39:E3:7E:39:27 Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2 Certificate serial: 38C2D6A084BAFB21F4DDA76D23B6DF2A567694CF Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa Signing time: Mon 24 Feb 2025 04:01:04 +0000 ROA not before: Mon 24 Feb 2025 03:56:04 +0000 ROA not after: Mon 23 Feb 2026 04:01:04 +0000 asID: 135488 IP address blocks: 103.95.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c2:d6:a0:84:ba:fb:21:f4:dd:a7:6d:23:b6:df:2a:56:76:94:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Validity Not Before: Feb 24 03:56:04 2025 GMT Not After : Feb 23 04:01:04 2026 GMT Subject: CN=6D4FEDE583B690043B290AC2C209DB39E37E3927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:25:9f:31:c9:79:7e:60:43:bb:e3:77:2d:3e: df:36:be:9c:7d:cb:e2:0f:b7:88:25:c9:53:ec:b7: ce:0d:48:5c:00:2f:bb:b8:9e:f5:e3:a5:2a:10:dd: 3d:15:d3:a4:c2:1c:48:32:3b:c3:fe:fc:c5:b6:01: 46:b2:cf:c7:7b:6f:e2:15:4f:39:ed:83:80:06:55: 41:84:be:cc:05:65:c0:ad:c1:5c:1f:f1:36:62:31: 34:df:1b:c0:a6:c5:f6:b5:dc:ad:08:83:07:0e:aa: 18:20:18:90:f2:42:70:65:12:bd:e0:cf:a1:d8:fd: 48:0b:6c:22:7c:62:2b:b5:93:95:88:05:90:c6:9e: f1:3c:d8:d2:50:0c:38:b0:dd:c0:c4:a1:94:3b:f0: 9c:b0:ed:ac:e1:39:91:62:1e:5e:2d:a2:9b:03:e0: f1:d9:26:67:5f:99:80:f2:70:ae:0a:d9:90:72:5e: d8:c0:95:ce:27:bf:28:e4:63:be:f1:7f:b4:90:55: f3:e1:dd:ba:94:34:c6:5f:4f:0d:51:11:21:db:cd: 85:c4:5e:3d:94:ad:a8:42:e1:96:ac:8f:c9:bd:20: 01:44:48:c9:ce:36:77:da:32:8f:03:44:03:92:4e: 49:dc:af:cd:4e:97:89:2a:ad:a7:ea:7a:03:84:e4: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4F:ED:E5:83:B6:90:04:3B:29:0A:C2:C2:09:DB:39:E3:7E:39:27 X509v3 Authority Key Identifier: keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.10.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:45:57:3c:51:3b:75:7c:be:80:7d:cf:ba:fd:fd:92:33:88: e4:3b:3d:ab:8d:ba:4f:c9:83:a3:e3:d6:fe:62:cb:94:9f:ce: c5:3f:41:fe:5a:09:ca:37:95:48:56:c1:8c:e8:4b:7a:c2:ac: bd:3d:4d:13:0e:0b:9e:59:ed:5e:6a:db:d7:a2:bc:a8:bf:78: 41:38:8b:cf:59:44:93:07:27:53:58:5f:88:75:64:59:c1:d1: 7d:bd:ef:3a:bc:f3:bf:61:83:5e:b9:ea:d3:67:03:fe:18:e5: 05:48:1f:56:94:59:c4:40:39:03:61:ab:9d:d1:86:52:51:d7: 4f:73:2e:d6:0b:af:2a:e1:d0:d8:34:c9:52:63:44:80:5d:ba: 8c:52:0c:1d:56:c5:bc:c1:9a:ae:eb:c4:cf:0f:41:45:7c:fe: f2:ec:3b:6e:58:fe:d7:5e:cf:30:78:be:9d:1c:d1:ca:37:0c: ec:c9:7e:76:32:2c:16:12:f9:56:27:6a:c5:a5:15:13:61:3b: 2b:fa:1f:a4:14:af:8f:2a:41:a2:0f:08:b1:96:3c:19:61:b7: 83:b0:2e:af:dd:bd:e9:b0:45:dc:fa:d8:f8:da:a6:ba:3e:d7: 2d:23:ce:52:14:f3:66:71:39:a3:7f:85:ca:de:b4:7a:93:5c: 66:b9:07:3e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOMLWoIS6+yH03adtI7bfKlZ2lM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkw RTU1NTJEMjAeFw0yNTAyMjQwMzU2MDRaFw0yNjAyMjMwNDAxMDRaMDMxMTAvBgNV BAMTKDZENEZFREU1ODNCNjkwMDQzQjI5MEFDMkMyMDlEQjM5RTM3RTM5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsJZ8xyXl+YEO743ctPt82vpx9 y+IPt4glyVPst84NSFwAL7u4nvXjpSoQ3T0V06TCHEgyO8P+/MW2AUayz8d7b+IV Tzntg4AGVUGEvswFZcCtwVwf8TZiMTTfG8Cmxfa13K0IgwcOqhggGJDyQnBlEr3g z6HY/UgLbCJ8Yiu1k5WIBZDGnvE82NJQDDiw3cDEoZQ78Jyw7azhOZFiHl4topsD 4PHZJmdfmYDycK4K2ZByXtjAlc4nvyjkY77xf7SQVfPh3bqUNMZfTw1RESHbzYXE Xj2UrahC4Zasj8m9IAFESMnONnfaMo8DRAOSTkncr81Ol4kqrafqegOE5ETzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbU/t5YO2kAQ7KQrCwgnbOeN+OScwHwYDVR0j BBgwFoAUQVVD1CPgvQNdYS3qm/BgKQ5VUtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMC80MTU1NDNENDIz RTBCRDAzNUQ2MTJERUE5QkYwNjAyOTBFNTU1MkQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkwRTU1 NTJEMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdfCjANBgkqhkiG 9w0BAQsFAAOCAQEAf0VXPFE7dXy+gH3Puv39kjOI5Ds9q426T8mDo+PW/mLLlJ/O xT9B/loJyjeVSFbBjOhLesKsvT1NEw4LnlntXmrb16K8qL94QTiLz1lEkwcnU1hf iHVkWcHRfb3vOrzzv2GDXrnq02cD/hjlBUgfVpRZxEA5A2GrndGGUlHXT3Mu1guv KuHQ2DTJUmNEgF26jFIMHVbFvMGaruvEzw9BRXz+8uw7blj+117PMHi+nRzRyjcM 7Ml+djIsFhL5VidqxaUVE2E7K/ofpBSvjypBog8IsZY8GWG3g7Aur9296bBF3PrY +Nqmuj7XLSPOUhTzZnE5o3+Fyt60epNcZrkHPg== -----END CERTIFICATE-----Generated at Sun Apr 6 14:57:01 2025 by rpki-client