$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa File: 3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa (raw, json) Hash identifier: 7vNFqyZ19GIU7uMKM54m1pt7f10H0K5mcAT54ul2qeA= Subject key identifier: 45:21:DA:F2:E7:0C:1B:B7:F5:56:53:32:E0:C3:13:E8:DB:83:19:88 Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Certificate serial: 327D36166DD6AB28AC7B31DAEE298C699DFEC381 Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa Signing time: Tue 28 Jan 2025 10:00:02 +0000 ROA not before: Tue 28 Jan 2025 09:55:02 +0000 ROA not after: Tue 27 Jan 2026 10:00:02 +0000 asID: 136854 IP address blocks: 103.102.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7d:36:16:6d:d6:ab:28:ac:7b:31:da:ee:29:8c:69:9d:fe:c3:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Validity Not Before: Jan 28 09:55:02 2025 GMT Not After : Jan 27 10:00:02 2026 GMT Subject: CN=4521DAF2E70C1BB7F5565332E0C313E8DB831988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7e:c3:e6:03:0f:78:2e:42:c6:89:4c:0b:b8: 03:f1:c2:cb:36:91:1d:a2:59:a8:3d:c5:ca:52:38: 5a:e4:7d:64:1a:36:68:06:f4:9a:93:42:9e:41:a7: 81:fb:0a:e5:45:fd:76:70:bd:74:8e:ed:8c:15:21: 7f:f6:bb:a5:cc:28:63:ad:2f:a6:e5:bb:fd:0b:46: 51:34:d1:5c:69:fb:4d:ae:04:55:2e:6b:0e:21:0d: 1f:11:f3:9f:ed:e1:8c:91:44:fc:7b:0c:a7:a8:aa: da:c6:77:e8:d1:35:d4:65:c7:99:8b:16:d1:c1:fc: c0:40:4f:d3:5d:f4:0c:2e:a2:a0:08:65:71:f5:e3: 88:88:ea:11:d5:61:1f:d1:65:44:42:a0:0a:a6:58: 1a:30:00:0d:a1:b1:d9:05:38:f8:b0:19:7b:ab:73: 83:80:47:d7:e2:d1:69:a4:79:ca:db:b8:49:3f:00: 9b:8e:3c:f2:ad:4d:00:90:14:6d:44:15:16:c9:6f: b6:66:42:a1:ac:04:ca:aa:a5:6f:4f:c6:1d:35:3a: b7:f2:a7:22:7f:24:5f:cf:94:00:19:d4:78:37:05: 98:ba:7c:d1:09:7a:b1:0b:48:f7:e0:0f:f5:21:84: f5:4b:be:61:33:07:ed:e9:b1:e5:5f:58:93:c8:50: bb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:21:DA:F2:E7:0C:1B:B7:F5:56:53:32:E0:C3:13:E8:DB:83:19:88 X509v3 Authority Key Identifier: keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.140.0/22 Signature Algorithm: sha256WithRSAEncryption cd:fe:1c:fe:4f:fa:eb:f8:ba:9e:2d:4c:03:9f:48:a1:a2:bf: 83:7d:82:ff:67:62:08:d8:ce:fd:b3:bd:59:2e:f6:14:c8:fd: 12:58:b5:d1:ae:c0:6c:35:58:0b:96:11:9b:86:6b:c2:2e:07: d1:cf:c9:3a:21:c2:7d:37:77:46:cf:9a:78:1e:a6:98:04:98: bd:ce:4d:ef:4a:5f:df:80:25:55:41:c5:de:1e:11:b5:d8:24: 5d:74:1b:3a:e6:94:f8:58:c2:49:0e:93:b3:e8:8a:5d:7e:b1: b0:17:39:7c:92:a4:c4:11:55:b2:33:fc:4a:f5:da:96:69:2c: 1a:4f:ea:4c:6a:61:b9:14:d8:65:6f:0a:9f:7a:15:94:b8:03: 73:fa:d3:52:6b:e5:ba:d4:85:51:8d:a0:62:ec:ed:9f:7c:90: 44:51:5a:b0:db:7a:17:74:d3:8f:e0:39:21:59:b6:d5:75:f7: 4a:eb:3c:3c:c7:4b:e0:eb:8c:3a:01:4c:0c:b4:ae:60:52:71: b4:8f:77:86:a9:45:97:fe:79:92:59:ac:35:36:b2:de:4c:22: 63:49:c2:ab:42:88:34:5e:f6:21:7f:dd:2a:3c:0a:5b:6c:db: 8e:07:20:f1:bb:46:de:74:d2:43:e6:c4:53:d4:6b:c5:b2:ca: 1d:c5:d4:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMn02Fm3WqyisezHa7imMaZ3+w4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdB RjUwRDc1NDAeFw0yNTAxMjgwOTU1MDJaFw0yNjAxMjcxMDAwMDJaMDMxMTAvBgNV BAMTKDQ1MjFEQUYyRTcwQzFCQjdGNTU2NTMzMkUwQzMxM0U4REI4MzE5ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpfsPmAw94LkLGiUwLuAPxwss2 kR2iWag9xcpSOFrkfWQaNmgG9JqTQp5Bp4H7CuVF/XZwvXSO7YwVIX/2u6XMKGOt L6blu/0LRlE00Vxp+02uBFUuaw4hDR8R85/t4YyRRPx7DKeoqtrGd+jRNdRlx5mL FtHB/MBAT9Nd9AwuoqAIZXH144iI6hHVYR/RZURCoAqmWBowAA2hsdkFOPiwGXur c4OAR9fi0WmkecrbuEk/AJuOPPKtTQCQFG1EFRbJb7ZmQqGsBMqqpW9Pxh01Orfy pyJ/JF/PlAAZ1Hg3BZi6fNEJerELSPfgD/UhhPVLvmEzB+3pseVfWJPIULuVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURSHa8ucMG7f1VlMy4MMT6NuDGYgwHwYDVR0j BBgwFoAUHWABpPRlSLN+2HHKXPCI969Q11QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTYzMmQ5OS0zMmIyLTQ2N2ItYjdmZS0wZDI1Zjg1M2JmYTYvMC8xRDYwMDFBNEY0 NjU0OEIzN0VEODcxQ0E1Q0YwODhGN0FGNTBENzU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdBRjUw RDc1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NjMyZDk5LTMyYjItNDY3Yi1i N2ZlLTBkMjVmODUzYmZhNi8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZowwDQYJ KoZIhvcNAQELBQADggEBAM3+HP5P+uv4up4tTAOfSKGiv4N9gv9nYgjYzv2zvVku 9hTI/RJYtdGuwGw1WAuWEZuGa8IuB9HPyTohwn03d0bPmngeppgEmL3OTe9KX9+A JVVBxd4eEbXYJF10GzrmlPhYwkkOk7Poil1+sbAXOXySpMQRVbIz/Er12pZpLBpP 6kxqYbkU2GVvCp96FZS4A3P601Jr5brUhVGNoGLs7Z98kERRWrDbehd004/gOSFZ ttV190rrPDzHS+DrjDoBTAy0rmBScbSPd4apRZf+eZJZrDU2st5MImNJwqtCiDRe 9iF/3So8Clts244HIPG7Rt500kPmxFPUa8Wyyh3F1Pc= -----END CERTIFICATE-----Generated at Sun Apr 6 10:37:01 2025 by rpki-client