$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa File: 3130332e34342e33372e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: bUUTnD/M9Gubvj260e8+ThtYviSiRr3O8WoGFqlPfuk= Subject key identifier: AB:3F:5D:5B:76:05:D7:94:4A:67:3A:87:A3:44:7F:99:F8:D9:C6:EA Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 663214ED6B2D3A0F6E2A92FDACBBFA2E43356439 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa Signing time: Tue 14 Jan 2025 09:00:00 +0000 ROA not before: Tue 14 Jan 2025 08:55:00 +0000 ROA not after: Tue 13 Jan 2026 09:00:00 +0000 asID: 133798 IP address blocks: 103.44.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 12:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:32:14:ed:6b:2d:3a:0f:6e:2a:92:fd:ac:bb:fa:2e:43:35:64:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 14 08:55:00 2025 GMT Not After : Jan 13 09:00:00 2026 GMT Subject: CN=AB3F5D5B7605D7944A673A87A3447F99F8D9C6EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:23:15:bb:27:1d:8e:0d:c8:75:ad:a3:98:fa: f8:40:9c:4b:73:e6:3d:18:b1:94:80:ac:04:df:1a: b8:b2:54:2d:82:67:75:d6:79:a5:97:19:5e:18:16: 77:d1:28:35:af:5b:52:0a:f1:2c:12:63:9e:87:0a: 6d:84:55:03:d4:69:21:8a:46:25:32:95:3b:de:e4: e5:45:8b:c5:f1:59:68:4e:06:a9:c1:91:95:6b:6d: 27:86:ca:1c:d8:fa:61:c2:b5:d9:9b:d8:bc:01:7f: 62:f6:dc:69:70:df:3c:d8:49:ca:e6:1d:85:7e:8f: 93:3c:cd:d7:fc:6b:aa:e5:99:4c:3b:fb:b4:08:6c: 84:3d:a6:4c:69:3e:b5:cd:95:ee:a6:c1:26:a6:ac: e9:85:d6:2a:90:6e:f9:6a:93:5e:81:78:86:15:8d: b4:0b:6a:44:a1:2b:d4:80:4e:30:41:8c:b5:4f:69: 8f:10:1c:c4:b5:0c:22:90:ac:b5:89:08:d2:bc:a2: 2d:cf:0d:92:55:b3:f3:3f:85:99:ac:f6:e0:79:2b: c7:53:f9:82:08:45:80:df:7e:50:28:6d:4e:92:e3: b7:8a:d2:dc:89:1a:8d:6d:fe:3c:14:c7:00:d4:49: 88:59:38:00:16:2b:6a:a0:5b:a3:d0:84:ec:03:cd: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:3F:5D:5B:76:05:D7:94:4A:67:3A:87:A3:44:7F:99:F8:D9:C6:EA X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.37.0/24 Signature Algorithm: sha256WithRSAEncryption 97:2d:5a:53:23:32:d0:a8:34:83:d6:8d:4a:81:91:03:ea:11: 87:ce:61:12:f2:f5:b3:39:44:20:91:52:0a:fb:c5:41:86:f0: 22:6e:34:2f:96:32:32:45:fa:c7:aa:fd:9e:19:44:24:2b:27: b1:1c:35:68:6f:47:a1:07:82:1f:67:4d:6d:d2:63:f7:eb:35: 91:20:1c:a2:a5:a0:f7:65:1d:e8:1f:60:11:88:ac:2e:91:de: 0a:e3:a5:85:51:68:2d:85:86:15:cf:2b:66:dc:3d:1c:78:1d: 02:07:33:e8:57:5f:0b:24:61:a9:c9:ba:7c:84:9f:a3:5e:e8: 77:77:98:4f:b3:47:40:86:80:bb:11:d1:ee:15:d6:24:79:05: bf:75:71:83:bf:69:94:59:9c:fc:14:6a:2a:a0:f6:46:d3:44: 82:fe:fb:c2:f7:b4:bf:35:ae:32:ce:73:d1:5d:58:49:f1:c0: 77:fa:13:64:a1:1a:24:58:16:0b:ce:c0:c7:e7:64:93:4a:98: f6:c6:d4:45:63:ab:8b:8d:8f:51:71:ff:77:b3:c2:a7:7a:e0: 51:9e:bb:24:fb:c1:71:69:6e:8d:cf:ee:94:95:84:23:6e:63: 20:58:e9:bc:28:8f:1c:e1:33:88:78:32:02:fd:ce:5e:c6:f9: c0:f6:08:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZjIU7WstOg9uKpL9rLv6LkM1ZDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMTQwODU1MDBaFw0yNjAxMTMwOTAwMDBaMDMxMTAvBgNV BAMTKEFCM0Y1RDVCNzYwNUQ3OTQ0QTY3M0E4N0EzNDQ3Rjk5RjhEOUM2RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLIxW7Jx2ODch1raOY+vhAnEtz 5j0YsZSArATfGriyVC2CZ3XWeaWXGV4YFnfRKDWvW1IK8SwSY56HCm2EVQPUaSGK RiUylTve5OVFi8XxWWhOBqnBkZVrbSeGyhzY+mHCtdmb2LwBf2L23Glw3zzYScrm HYV+j5M8zdf8a6rlmUw7+7QIbIQ9pkxpPrXNle6mwSamrOmF1iqQbvlqk16BeIYV jbQLakShK9SATjBBjLVPaY8QHMS1DCKQrLWJCNK8oi3PDZJVs/M/hZms9uB5K8dT +YIIRYDfflAobU6S47eK0tyJGo1t/jwUxwDUSYhZOAAWK2qgW6PQhOwDzc3vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqz9dW3YF15RKZzqHo0R/mfjZxuowHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMxMzAzMzJlMzQzNDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM3MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsJTANBgkqhkiG 9w0BAQsFAAOCAQEAly1aUyMy0Kg0g9aNSoGRA+oRh85hEvL1szlEIJFSCvvFQYbw Im40L5YyMkX6x6r9nhlEJCsnsRw1aG9HoQeCH2dNbdJj9+s1kSAcoqWg92Ud6B9g EYisLpHeCuOlhVFoLYWGFc8rZtw9HHgdAgcz6FdfCyRhqcm6fISfo17od3eYT7NH QIaAuxHR7hXWJHkFv3Vxg79plFmc/BRqKqD2RtNEgv77wve0vzWuMs5z0V1YSfHA d/oTZKEaJFgWC87Ax+dkk0qY9sbURWOri42PUXH/d7PCp3rgUZ67JPvBcWlujc/u lJWEI25jIFjpvCiPHOEziHgyAv3OXsb5wPYI7Q== -----END CERTIFICATE-----Generated at Sun Apr 6 17:50:23 2025 by rpki-client