$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33362e302f32342d3234203d3e20313333373938.roa File: 3130332e34342e33362e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: 46iH3VNjb17fmiTcwzafYGgNYiFviSGCUmCZoG3Sbn8= Subject key identifier: C3:2E:F2:ED:29:CD:46:E5:F1:20:1B:D8:D1:34:CC:8C:4C:DD:B2:21 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3314D9E94F5572389002C18D12529852018113F0 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33362e302f32342d3234203d3e20313333373938.roa Signing time: Tue 07 Jan 2025 04:00:00 +0000 ROA not before: Tue 07 Jan 2025 03:55:00 +0000 ROA not after: Tue 06 Jan 2026 04:00:00 +0000 asID: 133798 IP address blocks: 103.44.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 12:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:14:d9:e9:4f:55:72:38:90:02:c1:8d:12:52:98:52:01:81:13:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 7 03:55:00 2025 GMT Not After : Jan 6 04:00:00 2026 GMT Subject: CN=C32EF2ED29CD46E5F1201BD8D134CC8C4CDDB221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:20:bc:53:07:89:e8:bc:51:f8:62:63:a9: d7:db:a9:a9:75:6f:44:17:21:29:1a:1a:cb:ca:02: ce:fe:20:b9:c8:d5:11:4c:f8:c9:77:14:0e:6f:9e: 80:f1:c1:70:08:57:2b:05:be:11:37:97:6b:02:9d: 98:04:5e:73:38:fc:36:27:f3:11:79:19:7d:8d:76: 88:ba:e6:28:fd:c8:1f:d9:c8:43:3a:1a:e3:50:a7: 89:4c:5f:03:ff:35:54:98:71:42:e7:dd:be:15:05: 5a:82:31:af:25:ec:68:5f:01:cd:21:5d:44:75:94: f8:87:6d:66:c4:3a:cd:af:d8:9d:ea:ca:8f:6b:59: a4:af:28:bc:30:ef:5b:e7:45:10:1d:b8:a2:0a:11: 44:48:16:de:06:63:d9:f2:1a:5e:49:7b:04:33:b7: 5a:6d:a2:a4:aa:47:34:bc:50:ab:51:c3:6e:0d:52: 7a:eb:a5:e1:0e:62:c4:45:e2:b0:59:22:94:af:1e: ae:0b:33:af:ce:97:d7:e6:8d:f3:e6:49:2d:10:6c: 1c:17:9e:9c:80:40:d8:d1:a1:cd:07:a9:b1:27:21: 96:74:e4:30:35:b5:a1:3f:fd:60:5e:5d:96:70:45: b8:55:9b:f0:68:5b:a0:5f:19:61:a9:04:0c:a7:94: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2E:F2:ED:29:CD:46:E5:F1:20:1B:D8:D1:34:CC:8C:4C:DD:B2:21 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33362e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.36.0/24 Signature Algorithm: sha256WithRSAEncryption 57:a1:7d:c5:0f:e5:bf:b9:04:10:94:3d:bf:42:bc:66:9d:c8: 89:56:c3:e8:fe:30:aa:2a:55:1c:63:d5:14:40:ac:df:ce:69: b9:8c:8d:54:57:68:88:62:40:82:a4:60:e5:09:d4:8e:40:77: ca:32:50:10:19:88:43:72:dc:f6:38:fa:e7:0c:2d:ed:bf:b1: 44:a5:70:ec:b4:48:30:5d:09:0c:dc:2e:0b:a2:b8:da:85:ea: 33:a5:77:fe:83:5a:6b:01:14:8c:8d:57:2d:29:37:98:b9:5c: 95:fc:78:87:b3:b6:42:34:ad:8c:db:2d:0a:e1:8d:45:93:81: b0:f3:26:5c:fa:5f:dd:96:64:2a:57:35:31:1f:09:42:8f:70: 7e:13:17:a1:13:fc:32:2c:ea:48:a6:a4:b2:ad:88:39:f4:d8: 7a:fa:28:87:ce:b2:16:2b:85:50:7f:a8:54:a1:d1:e5:c5:c4: 28:1e:3c:22:c4:09:d3:44:15:cb:a7:4b:9d:ae:a1:40:74:8c: f4:90:3b:e9:3d:68:99:52:89:59:64:ea:a0:bd:29:ec:f5:b3: 09:e8:d5:d4:05:1b:35:73:1c:f8:ba:8c:a8:83:4b:3d:f6:e5: f9:a9:0b:62:c1:bc:dc:8b:96:43:d6:05:ed:18:05:97:14:6c: be:9c:d7:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMxTZ6U9VcjiQAsGNElKYUgGBE/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMDcwMzU1MDBaFw0yNjAxMDYwNDAwMDBaMDMxMTAvBgNV BAMTKEMzMkVGMkVEMjlDRDQ2RTVGMTIwMUJEOEQxMzRDQzhDNENEREIyMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBDCC8UweJ6LxR+GJjqdfbqal1 b0QXISkaGsvKAs7+ILnI1RFM+Ml3FA5vnoDxwXAIVysFvhE3l2sCnZgEXnM4/DYn 8xF5GX2Ndoi65ij9yB/ZyEM6GuNQp4lMXwP/NVSYcULn3b4VBVqCMa8l7GhfAc0h XUR1lPiHbWbEOs2v2J3qyo9rWaSvKLww71vnRRAduKIKEURIFt4GY9nyGl5JewQz t1ptoqSqRzS8UKtRw24NUnrrpeEOYsRF4rBZIpSvHq4LM6/Ol9fmjfPmSS0QbBwX npyAQNjRoc0HqbEnIZZ05DA1taE//WBeXZZwRbhVm/BoW6BfGWGpBAynlD0nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwy7y7SnNRuXxIBvY0TTMjEzdsiEwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMxMzAzMzJlMzQzNDJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM3MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsJDANBgkqhkiG 9w0BAQsFAAOCAQEAV6F9xQ/lv7kEEJQ9v0K8Zp3IiVbD6P4wqipVHGPVFECs385p uYyNVFdoiGJAgqRg5QnUjkB3yjJQEBmIQ3Lc9jj65wwt7b+xRKVw7LRIMF0JDNwu C6K42oXqM6V3/oNaawEUjI1XLSk3mLlclfx4h7O2QjStjNstCuGNRZOBsPMmXPpf 3ZZkKlc1MR8JQo9wfhMXoRP8MizqSKaksq2IOfTYevooh86yFiuFUH+oVKHR5cXE KB48IsQJ00QVy6dLna6hQHSM9JA76T1omVKJWWTqoL0p7PWzCejV1AUbNXMc+LqM qINLPfbl+akLYsG83IuWQ9YF7RgFlxRsvpzX5g== -----END CERTIFICATE-----Generated at Sun Apr 6 17:53:02 2025 by rpki-client