$ rpki-client -vvf repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa File: 3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa (raw, json) Hash identifier: tjJDFxCynqLsg0EmTlTCtOOxQT65UN9NGhZvaT8tSbk= Subject key identifier: EA:53:A3:7A:82:27:2A:41:AB:44:F8:5C:11:A8:4B:23:A7:7D:DC:E3 Certificate issuer: /CN=FE4F0E88F020271FABB0940107AF13E80DCCA4CE Certificate serial: 2EBD32CC73C9920E35794179133E29E8B6E08786 Authority key identifier: FE:4F:0E:88:F0:20:27:1F:AB:B0:94:01:07:AF:13:E8:0D:CC:A4:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa Signing time: Tue 21 Jan 2025 07:02:25 +0000 ROA not before: Tue 21 Jan 2025 06:57:25 +0000 ROA not after: Tue 20 Jan 2026 07:02:25 +0000 asID: 139446 IP address blocks: 103.145.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.crl rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bd:32:cc:73:c9:92:0e:35:79:41:79:13:3e:29:e8:b6:e0:87:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE4F0E88F020271FABB0940107AF13E80DCCA4CE Validity Not Before: Jan 21 06:57:25 2025 GMT Not After : Jan 20 07:02:25 2026 GMT Subject: CN=EA53A37A82272A41AB44F85C11A84B23A77DDCE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:6b:2a:6b:6c:c4:9f:87:fd:61:a0:f9:72: 4b:b2:08:61:6a:70:57:53:f5:9e:74:49:99:f3:b2: 07:24:80:f0:cc:3e:e5:60:a9:9e:0c:1b:ab:d9:4a: b8:61:45:cd:c2:8f:28:4e:a2:67:2b:88:67:66:9e: 52:db:6e:c5:aa:42:7d:91:8a:e3:bc:bc:64:44:90: 7c:a0:90:f0:66:d4:00:64:51:ba:27:9f:c3:f3:0b: 48:8b:92:34:c6:c5:6d:14:03:04:2e:32:a6:a9:0d: 89:d5:47:2c:19:aa:fb:ba:44:2c:a4:b3:9c:c4:9c: 4b:49:77:54:82:8b:bc:27:cd:1f:1d:76:88:bc:09: 7f:e3:9b:66:de:1f:28:ac:53:44:d1:65:37:8c:dd: 11:fa:1c:9c:83:63:58:0c:c2:e9:90:aa:24:68:83: 4d:bd:43:b6:31:59:68:92:19:22:6f:b8:53:a0:e7: 35:b7:f1:c0:2e:83:ff:1c:29:15:da:56:37:2f:86: 11:e5:6e:48:f2:3d:58:8d:30:67:31:7d:dd:c0:7c: 78:1a:f7:0c:4d:89:71:dd:f4:3f:fa:2e:fa:58:17: 79:97:f7:7a:1f:dc:91:c0:36:79:37:74:69:cc:c1: 7d:dd:d5:43:5c:6b:dc:ff:4b:ea:7c:e1:21:84:ef: 6f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:53:A3:7A:82:27:2A:41:AB:44:F8:5C:11:A8:4B:23:A7:7D:DC:E3 X509v3 Authority Key Identifier: keyid:FE:4F:0E:88:F0:20:27:1F:AB:B0:94:01:07:AF:13:E8:0D:CC:A4:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130382e302f32342d3234203d3e20313339343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.108.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:6d:a5:43:c8:eb:10:62:1a:fd:54:63:c1:80:e5:41:58:e3: 25:ae:eb:46:6f:14:f7:6c:06:13:b7:6b:e4:d3:f6:d5:b8:e5: 58:ce:6f:f9:59:c4:ab:6c:a5:d9:db:ab:13:ee:c1:33:7c:8f: 82:94:77:74:e2:af:da:dd:a1:34:f5:5b:86:77:48:c8:9f:74: 40:f0:4f:dc:a7:c8:dd:49:d6:e5:c4:38:81:c8:18:2b:59:46: 43:41:7d:55:ec:c8:8a:fe:de:f1:8e:45:96:1c:0f:a0:f4:a0: ec:6e:65:d1:79:5b:e8:c6:a5:b8:10:7f:00:5c:ca:eb:bc:f1: c8:b0:fd:f8:ae:3f:d9:7f:c2:f7:b7:5e:11:20:15:ce:52:ab: b7:9c:82:cd:03:04:4e:16:45:35:da:b0:f6:6a:73:8c:1e:0f: 3d:06:b3:ac:3e:42:83:08:e2:a2:b2:4e:18:a2:fe:a2:1b:c6: d4:84:77:22:71:b0:57:ab:49:7c:ec:88:78:06:bb:0a:54:18: f1:b7:51:e4:d2:eb:e3:99:3b:a9:d4:5f:d4:16:34:25:0c:be: 5e:a8:39:56:a9:d2:77:66:ce:e1:e6:0a:d1:da:5a:b6:79:78: e8:03:2c:61:29:d3:f2:0a:f2:b4:e3:f2:c5:9a:0b:43:8e:69: 8e:eb:a0:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULr0yzHPJkg41eUF5Ez4p6Lbgh4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU0RjBFODhGMDIwMjcxRkFCQjA5NDAxMDdBRjEzRTgw RENDQTRDRTAeFw0yNTAxMjEwNjU3MjVaFw0yNjAxMjAwNzAyMjVaMDMxMTAvBgNV BAMTKEVBNTNBMzdBODIyNzJBNDFBQjQ0Rjg1QzExQTg0QjIzQTc3RERDRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdzmsqa2zEn4f9YaD5ckuyCGFq cFdT9Z50SZnzsgckgPDMPuVgqZ4MG6vZSrhhRc3CjyhOomcriGdmnlLbbsWqQn2R iuO8vGREkHygkPBm1ABkUbonn8PzC0iLkjTGxW0UAwQuMqapDYnVRywZqvu6RCyk s5zEnEtJd1SCi7wnzR8ddoi8CX/jm2beHyisU0TRZTeM3RH6HJyDY1gMwumQqiRo g029Q7YxWWiSGSJvuFOg5zW38cAug/8cKRXaVjcvhhHlbkjyPViNMGcxfd3AfHga 9wxNiXHd9D/6LvpYF3mX93of3JHANnk3dGnMwX3d1UNca9z/S+p84SGE729zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6lOjeoInKkGrRPhcEahLI6d93OMwHwYDVR0j BBgwFoAU/k8OiPAgJx+rsJQBB68T6A3MpM4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OGMwNjhkYS1mOWM1LTQwMzYtODU0Yi05MjJjYWE5M2YzMjQvMC9GRTRGMEU4OEYw MjAyNzFGQUJCMDk0MDEwN0FGMTNFODBEQ0NBNENFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU0RjBFODhGMDIwMjcxRkFCQjA5NDAxMDdBRjEzRTgwREND QTRDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4YzA2OGRhLWY5YzUtNDAzNi04 NTRiLTkyMmNhYTkzZjMyNC8wLzMxMzAzMzJlMzEzNDM1MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkWwwDQYJ KoZIhvcNAQELBQADggEBAF1tpUPI6xBiGv1UY8GA5UFY4yWu60ZvFPdsBhO3a+TT 9tW45VjOb/lZxKtspdnbqxPuwTN8j4KUd3Tir9rdoTT1W4Z3SMifdEDwT9ynyN1J 1uXEOIHIGCtZRkNBfVXsyIr+3vGORZYcD6D0oOxuZdF5W+jGpbgQfwBcyuu88ciw /fiuP9l/wve3XhEgFc5Sq7ecgs0DBE4WRTXasPZqc4weDz0Gs6w+QoMI4qKyThii /qIbxtSEdyJxsFerSXzsiHgGuwpUGPG3UeTS6+OZO6nUX9QWNCUMvl6oOVap0ndm zuHmCtHaWrZ5eOgDLGEp0/IK8rTj8sWaC0OOaY7roCI= -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:14 2025 by rpki-client