$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33382e302f32342d3234203d3e20313333373938.roa File: 3130332e34342e33382e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: R8PtUDw+tDqN5oAPPpOMbhyyg4AP2HL9jEqolWQWT68= Subject key identifier: A6:01:E8:1C:51:E9:69:D3:96:F7:E6:38:A7:AC:3A:96:30:AD:8B:4D Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 1B65A722D71E3D96FC78D941654CCD0217811F82 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33382e302f32342d3234203d3e20313333373938.roa Signing time: Tue 14 Jan 2025 09:00:00 +0000 ROA not before: Tue 14 Jan 2025 08:55:00 +0000 ROA not after: Tue 13 Jan 2026 09:00:00 +0000 asID: 133798 IP address blocks: 103.44.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 12:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:65:a7:22:d7:1e:3d:96:fc:78:d9:41:65:4c:cd:02:17:81:1f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Jan 14 08:55:00 2025 GMT Not After : Jan 13 09:00:00 2026 GMT Subject: CN=A601E81C51E969D396F7E638A7AC3A9630AD8B4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b7:d8:8b:ad:28:29:18:16:bc:38:7e:48:cb: d8:a8:3d:4b:43:19:ce:4b:22:b3:21:e1:ba:94:7f: 83:6b:b6:41:50:b4:dc:b3:b4:16:6f:ce:27:64:99: 8c:af:46:f2:b7:b7:7c:a4:71:32:68:0f:f8:e5:13: ad:2b:51:4c:2b:e1:68:d4:24:18:51:53:b6:de:a8: 03:7a:b9:67:8d:e3:d2:d6:be:dd:82:f4:9f:ad:a0: b0:f1:6b:c9:f0:bd:4e:53:4d:82:e8:32:3c:e1:f1: f4:e8:05:63:53:98:ee:8d:bd:ba:af:a5:b0:61:56: 59:e0:29:45:50:be:08:27:43:f5:66:35:39:86:37: 43:7f:51:be:be:43:d5:1c:47:c3:94:2b:41:05:2f: 12:bc:a8:4f:b4:f6:d6:e1:b4:f9:4a:37:fe:50:1f: 74:fd:71:be:8f:81:3d:c2:a1:93:89:23:96:6c:bc: df:bf:61:c2:94:7f:21:b7:ac:26:3b:b3:dc:20:9a: bf:47:d8:68:df:9a:2c:99:45:62:38:b2:90:29:ba: 9d:69:a5:7a:2a:84:1f:52:c3:d4:4b:7a:83:8c:c6: 6d:36:48:70:9e:0c:59:4d:67:d5:d3:15:ef:04:e9: 20:86:fc:16:c4:c6:42:35:cd:38:d4:7f:3d:08:a8: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:01:E8:1C:51:E9:69:D3:96:F7:E6:38:A7:AC:3A:96:30:AD:8B:4D X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33382e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.38.0/24 Signature Algorithm: sha256WithRSAEncryption ad:5b:fc:9e:c8:07:7f:88:14:4d:cd:79:c7:7c:ae:f5:d5:d4: 60:b5:ec:12:c5:69:e3:fa:db:0a:5e:93:7d:e1:7d:ae:d0:89: d6:43:b6:83:71:a0:af:01:a4:29:4e:01:d3:f6:60:ce:59:97: 48:cc:ae:6a:28:87:cb:10:37:3a:c2:69:17:9f:1e:ae:25:cb: 16:a8:93:84:c7:1d:bb:d4:5a:74:95:4a:cf:00:4a:96:89:35: 84:d9:01:03:19:8a:8c:70:20:8d:c5:2c:63:86:9c:87:cb:2b: 96:a9:be:70:76:af:44:e6:d1:6a:5f:91:1f:ce:d4:39:36:02: 4c:fa:4b:f0:07:d1:f9:00:48:46:21:7f:90:47:d4:bb:8b:67: e3:88:96:ae:b2:ec:ed:b5:ca:42:21:58:1d:fd:bf:84:87:82: c0:82:c9:06:17:27:3b:cd:66:fe:cb:8a:e0:e6:23:29:e8:98: be:a9:ad:34:c0:58:2f:87:8d:16:f2:e3:df:4d:f0:89:c1:e6: 87:9a:be:0f:16:c0:40:6f:0d:d1:82:d6:2c:dd:e9:51:73:59: ca:f3:22:26:08:3f:f2:ba:15:07:53:a1:5e:ff:7f:a2:25:76: db:12:6e:ed:94:0c:14:ba:85:b8:00:b4:4e:a2:e1:0e:14:ce: b8:81:04:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG2WnItcePZb8eNlBZUzNAheBH4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAxMTQwODU1MDBaFw0yNjAxMTMwOTAwMDBaMDMxMTAvBgNV BAMTKEE2MDFFODFDNTFFOTY5RDM5NkY3RTYzOEE3QUMzQTk2MzBBRDhCNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSt9iLrSgpGBa8OH5Iy9ioPUtD Gc5LIrMh4bqUf4NrtkFQtNyztBZvzidkmYyvRvK3t3ykcTJoD/jlE60rUUwr4WjU JBhRU7beqAN6uWeN49LWvt2C9J+toLDxa8nwvU5TTYLoMjzh8fToBWNTmO6Nvbqv pbBhVlngKUVQvggnQ/VmNTmGN0N/Ub6+Q9UcR8OUK0EFLxK8qE+09tbhtPlKN/5Q H3T9cb6PgT3CoZOJI5ZsvN+/YcKUfyG3rCY7s9wgmr9H2GjfmiyZRWI4spApup1p pXoqhB9Sw9RLeoOMxm02SHCeDFlNZ9XTFe8E6SCG/BbExkI1zTjUfz0IqCKHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpgHoHFHpadOW9+Y4p6w6ljCti00wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMxMzAzMzJlMzQzNDJlMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM3MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsJjANBgkqhkiG 9w0BAQsFAAOCAQEArVv8nsgHf4gUTc15x3yu9dXUYLXsEsVp4/rbCl6TfeF9rtCJ 1kO2g3GgrwGkKU4B0/ZgzlmXSMyuaiiHyxA3OsJpF58eriXLFqiThMcdu9RadJVK zwBKlok1hNkBAxmKjHAgjcUsY4ach8srlqm+cHavRObRal+RH87UOTYCTPpL8AfR +QBIRiF/kEfUu4tn44iWrrLs7bXKQiFYHf2/hIeCwILJBhcnO81m/suK4OYjKeiY vqmtNMBYL4eNFvLj303wicHmh5q+DxbAQG8N0YLWLN3pUXNZyvMiJgg/8roVB1Oh Xv9/oiV22xJu7ZQMFLqFuAC0TqLhDhTOuIEEjg== -----END CERTIFICATE-----Generated at Sun Apr 6 17:54:26 2025 by rpki-client