$ rpki-client -vvf repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa File: 3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa (raw, json) Hash identifier: sUHotiaGBstsKmEhH9/fJpL1WcIuFBtfxzHmhhUaDnk= Subject key identifier: 20:44:BE:1B:1F:91:5F:58:64:AA:6B:07:00:4E:4F:C8:68:B8:6C:98 Certificate issuer: /CN=FE4F0E88F020271FABB0940107AF13E80DCCA4CE Certificate serial: 460BE22456CC66C4DA6FEC9B82F2DEAF304183B5 Authority key identifier: FE:4F:0E:88:F0:20:27:1F:AB:B0:94:01:07:AF:13:E8:0D:CC:A4:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa Signing time: Tue 21 Jan 2025 07:02:25 +0000 ROA not before: Tue 21 Jan 2025 06:57:25 +0000 ROA not after: Tue 20 Jan 2026 07:02:25 +0000 asID: 139446 IP address blocks: 103.145.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.crl rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0b:e2:24:56:cc:66:c4:da:6f:ec:9b:82:f2:de:af:30:41:83:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE4F0E88F020271FABB0940107AF13E80DCCA4CE Validity Not Before: Jan 21 06:57:25 2025 GMT Not After : Jan 20 07:02:25 2026 GMT Subject: CN=2044BE1B1F915F5864AA6B07004E4FC868B86C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ee:b7:58:49:29:38:c1:7c:4c:3f:ed:c1:8a: 3b:85:89:08:b4:33:87:29:48:d8:c6:3c:c1:53:31: 29:d5:90:8d:51:49:56:76:96:6f:4a:1f:90:20:74: 02:da:06:50:7d:5e:d8:43:07:8c:60:46:b7:ab:1e: c6:9a:5e:ba:8f:fa:d2:d8:24:b7:28:39:78:fe:d8: ad:3b:5c:58:36:2b:35:a3:d2:0e:6b:93:6f:7f:20: 26:88:64:13:f2:7f:73:31:a8:df:ec:63:01:ac:21: 8c:23:1a:2e:7d:65:82:e3:f9:db:75:29:45:c1:32: d4:db:c7:af:7b:37:2c:01:ab:40:8d:c9:fd:2a:34: 74:5a:05:97:9c:db:b7:da:2f:11:5f:94:5f:2e:c7: fb:bd:4e:a5:50:ab:89:19:b9:40:26:70:8b:d2:8c: 88:87:3f:72:9a:1d:2e:aa:7b:b5:09:ae:b3:16:0c: d5:9b:cf:ac:39:bb:6a:b3:6a:f2:18:71:38:65:54: 57:31:c7:3b:cd:fe:0e:d6:ae:f2:3a:70:59:74:c9: ef:e4:c0:4a:75:d3:29:8b:cf:f1:f2:f9:2c:e2:ee: ca:0a:72:1a:56:01:79:4f:78:1f:52:37:54:62:91: 06:63:55:36:23:4a:19:2c:60:62:94:84:4a:e6:d0: c6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:44:BE:1B:1F:91:5F:58:64:AA:6B:07:00:4E:4F:C8:68:B8:6C:98 X509v3 Authority Key Identifier: keyid:FE:4F:0E:88:F0:20:27:1F:AB:B0:94:01:07:AF:13:E8:0D:CC:A4:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE4F0E88F020271FABB0940107AF13E80DCCA4CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8c068da-f9c5-4036-854b-922caa93f324/0/3130332e3134352e3130392e302f32342d3234203d3e20313339343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.109.0/24 Signature Algorithm: sha256WithRSAEncryption 65:9c:34:08:4a:6b:0c:54:8b:5e:17:9b:09:76:88:c8:8a:ce: d4:dc:22:82:1c:61:f3:e4:18:15:b5:f0:34:04:9c:73:fc:b5: 80:8a:64:8a:06:dd:19:f4:92:32:37:24:3f:70:6c:bb:03:61: 5e:ab:25:93:02:e7:09:a2:e7:7d:19:be:da:d5:94:00:3f:19: ef:d7:9d:cb:38:f1:0e:3c:5e:6b:c8:a5:95:75:60:d4:51:5a: b2:37:d4:be:84:cd:98:84:03:df:af:07:ba:d5:d7:b7:9a:37: ca:6e:00:08:e4:c9:4d:ea:c6:99:32:7c:3a:e6:dd:23:66:fb: 08:3e:ed:61:49:8a:6d:ee:c6:40:09:b5:a1:be:a8:33:ea:99: 7f:ef:50:f6:3a:f8:5e:1f:f2:fd:de:a0:87:15:c6:6c:d7:e5: 82:b6:bd:e1:88:ee:0e:c2:45:5c:ff:d3:60:41:ef:73:12:e0: d0:97:2d:cd:80:ea:99:bf:9c:1d:90:81:5c:2a:13:43:c2:ee: 2d:07:51:f8:47:4d:6a:2f:2f:6b:93:95:a4:a1:22:46:32:9c: 04:e8:15:c8:61:4e:7a:c6:04:97:80:29:e2:8d:b8:99:68:85: 24:b2:5b:ff:e4:ab:53:b0:fd:7a:3c:3e:34:c0:73:d5:e8:1b: ab:f9:77:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURgviJFbMZsTab+ybgvLerzBBg7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU0RjBFODhGMDIwMjcxRkFCQjA5NDAxMDdBRjEzRTgw RENDQTRDRTAeFw0yNTAxMjEwNjU3MjVaFw0yNjAxMjAwNzAyMjVaMDMxMTAvBgNV BAMTKDIwNDRCRTFCMUY5MTVGNTg2NEFBNkIwNzAwNEU0RkM4NjhCODZDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ7rdYSSk4wXxMP+3BijuFiQi0 M4cpSNjGPMFTMSnVkI1RSVZ2lm9KH5AgdALaBlB9XthDB4xgRrerHsaaXrqP+tLY JLcoOXj+2K07XFg2KzWj0g5rk29/ICaIZBPyf3MxqN/sYwGsIYwjGi59ZYLj+dt1 KUXBMtTbx697NywBq0CNyf0qNHRaBZec27faLxFflF8ux/u9TqVQq4kZuUAmcIvS jIiHP3KaHS6qe7UJrrMWDNWbz6w5u2qzavIYcThlVFcxxzvN/g7WrvI6cFl0ye/k wEp10ymLz/Hy+Szi7soKchpWAXlPeB9SN1RikQZjVTYjShksYGKUhErm0MZNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIES+Gx+RX1hkqmsHAE5PyGi4bJgwHwYDVR0j BBgwFoAU/k8OiPAgJx+rsJQBB68T6A3MpM4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OGMwNjhkYS1mOWM1LTQwMzYtODU0Yi05MjJjYWE5M2YzMjQvMC9GRTRGMEU4OEYw MjAyNzFGQUJCMDk0MDEwN0FGMTNFODBEQ0NBNENFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU0RjBFODhGMDIwMjcxRkFCQjA5NDAxMDdBRjEzRTgwREND QTRDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4YzA2OGRhLWY5YzUtNDAzNi04 NTRiLTkyMmNhYTkzZjMyNC8wLzMxMzAzMzJlMzEzNDM1MmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkW0wDQYJ KoZIhvcNAQELBQADggEBAGWcNAhKawxUi14Xmwl2iMiKztTcIoIcYfPkGBW18DQE nHP8tYCKZIoG3Rn0kjI3JD9wbLsDYV6rJZMC5wmi530ZvtrVlAA/Ge/Xncs48Q48 XmvIpZV1YNRRWrI31L6EzZiEA9+vB7rV17eaN8puAAjkyU3qxpkyfDrm3SNm+wg+ 7WFJim3uxkAJtaG+qDPqmX/vUPY6+F4f8v3eoIcVxmzX5YK2veGI7g7CRVz/02BB 73MS4NCXLc2A6pm/nB2QgVwqE0PC7i0HUfhHTWovL2uTlaShIkYynAToFchhTnrG BJeAKeKNuJlohSSyW//kq1Ow/Xo8PjTAc9XoG6v5dws= -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:23 2025 by rpki-client