$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa File: 3130332e39352e392e302f32342d3234203d3e20313335343838.roa (raw, json) Hash identifier: VFHHlL/fG0xnRMHoMgqrHUpXEdzrJEYbY3L4Yb6Ynkg= Subject key identifier: 63:DD:78:8F:E7:D9:60:67:46:6E:C8:E1:4E:12:36:31:EF:B9:4C:1E Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2 Certificate serial: 03362537B64F46490984D6695E3598DE316289CB Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa Signing time: Mon 24 Feb 2025 04:01:04 +0000 ROA not before: Mon 24 Feb 2025 03:56:04 +0000 ROA not after: Mon 23 Feb 2026 04:01:04 +0000 asID: 135488 IP address blocks: 103.95.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:36:25:37:b6:4f:46:49:09:84:d6:69:5e:35:98:de:31:62:89:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Validity Not Before: Feb 24 03:56:04 2025 GMT Not After : Feb 23 04:01:04 2026 GMT Subject: CN=63DD788FE7D96067466EC8E14E123631EFB94C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ec:e9:64:9a:1c:f2:02:54:e5:78:9c:48:3e: 97:c1:85:b2:fe:57:56:5a:a5:54:a6:68:ed:44:65: a3:24:9a:67:d0:94:c2:f4:08:67:78:cd:3d:4f:96: fb:ca:43:0c:78:27:62:97:39:c4:b7:ed:69:85:fd: ee:71:57:72:a0:8e:b1:16:f1:68:fd:78:20:59:09: d8:3f:b8:26:9b:d2:ac:8b:8c:b9:6b:10:bd:99:05: 21:c8:ca:fa:08:14:73:b8:a9:56:8e:3e:ee:fc:ee: 60:ee:20:94:1f:76:66:52:08:f7:e6:9c:1b:ea:46: c6:2f:7f:3c:11:a4:3d:f4:24:5c:f9:43:9c:68:4e: ae:63:e0:29:9a:46:dc:fe:c6:65:b1:e3:ca:3c:11: c0:93:09:9c:86:ec:dd:c8:90:03:73:4c:be:c8:f1: d7:fe:f4:59:52:c0:38:9f:b3:90:32:5e:2c:3a:00: 22:2c:63:1b:c4:ab:34:10:47:a6:7e:56:78:81:0e: 15:be:e8:0e:17:73:dc:dc:3b:7e:23:7b:92:85:49: 4d:6a:cf:f6:22:99:97:b6:7a:d6:16:12:f3:58:e5: 68:66:51:91:4d:42:af:ab:b8:06:0e:d7:e3:6a:03: bd:11:4d:85:c4:e2:ea:77:f4:14:c8:94:2c:7e:3d: fc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DD:78:8F:E7:D9:60:67:46:6E:C8:E1:4E:12:36:31:EF:B9:4C:1E X509v3 Authority Key Identifier: keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.9.0/24 Signature Algorithm: sha256WithRSAEncryption aa:e0:0b:f9:82:67:2d:ad:72:c1:d4:56:45:a7:38:d0:fc:db: bb:cb:34:3d:7c:aa:15:db:ea:1b:8a:97:2e:39:b1:a1:52:1b: 00:2d:d2:18:e0:81:b3:5d:4d:f3:b5:ff:c0:cd:91:10:8e:05: 95:3e:38:ea:38:26:5b:10:e3:48:98:31:19:81:cc:ba:55:a3: 93:a9:06:27:84:3b:c5:95:3f:19:2f:9c:60:e6:2d:dc:7f:98: cd:c7:ff:0f:c4:11:c9:8c:49:a0:e7:5b:dd:08:bf:e8:1c:2f: d4:d0:97:f3:d4:71:99:11:1d:6f:46:7b:a6:e6:15:24:99:ca: b4:8f:69:cf:ee:58:d1:69:49:65:08:ea:ea:24:69:ce:6a:1d: d0:3d:b5:6c:05:1c:fb:27:2a:d1:4e:c5:74:1d:27:f4:bc:46: 33:d7:83:1e:e6:b9:aa:24:1d:b0:ea:c4:63:7f:15:6e:3e:04: 73:f4:81:17:cf:f0:4d:aa:37:c2:e8:8f:1e:75:ac:b6:03:d7: 14:c5:cb:8c:52:01:77:25:80:75:ba:d6:3b:24:c8:b4:d3:7d: 78:b7:2a:bf:22:f1:65:39:f3:32:b4:1d:dc:1e:b1:cb:57:91: 43:e7:1e:f0:62:9f:5d:ba:dc:75:83:e1:33:eb:2e:4a:6d:47: 7d:f3:0d:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAzYlN7ZPRkkJhNZpXjWY3jFiicswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkw RTU1NTJEMjAeFw0yNTAyMjQwMzU2MDRaFw0yNjAyMjMwNDAxMDRaMDMxMTAvBgNV BAMTKDYzREQ3ODhGRTdEOTYwNjc0NjZFQzhFMTRFMTIzNjMxRUZCOTRDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb7OlkmhzyAlTleJxIPpfBhbL+ V1ZapVSmaO1EZaMkmmfQlML0CGd4zT1PlvvKQwx4J2KXOcS37WmF/e5xV3KgjrEW 8Wj9eCBZCdg/uCab0qyLjLlrEL2ZBSHIyvoIFHO4qVaOPu787mDuIJQfdmZSCPfm nBvqRsYvfzwRpD30JFz5Q5xoTq5j4CmaRtz+xmWx48o8EcCTCZyG7N3IkANzTL7I 8df+9FlSwDifs5AyXiw6ACIsYxvEqzQQR6Z+VniBDhW+6A4Xc9zcO34je5KFSU1q z/YimZe2etYWEvNY5WhmUZFNQq+ruAYO1+NqA70RTYXE4up39BTIlCx+PfwJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUY914j+fZYGdGbsjhThI2Me+5TB4wHwYDVR0j BBgwFoAUQVVD1CPgvQNdYS3qm/BgKQ5VUtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMC80MTU1NDNENDIz RTBCRDAzNUQ2MTJERUE5QkYwNjAyOTBFNTU1MkQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkwRTU1 NTJEMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnXwkwDQYJKoZIhvcN AQELBQADggEBAKrgC/mCZy2tcsHUVkWnOND827vLND18qhXb6huKly45saFSGwAt 0hjggbNdTfO1/8DNkRCOBZU+OOo4JlsQ40iYMRmBzLpVo5OpBieEO8WVPxkvnGDm Ldx/mM3H/w/EEcmMSaDnW90Iv+gcL9TQl/PUcZkRHW9Ge6bmFSSZyrSPac/uWNFp SWUI6uokac5qHdA9tWwFHPsnKtFOxXQdJ/S8RjPXgx7muaokHbDqxGN/FW4+BHP0 gRfP8E2qN8Lojx51rLYD1xTFy4xSAXclgHW61jskyLTTfXi3Kr8i8WU58zK0Hdwe sctXkUPnHvBin1263HWD4TPrLkptR33zDbk= -----END CERTIFICATE-----Generated at Sun Apr 6 14:01:34 2025 by rpki-client