$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa File: 3130332e31342e34342e302f32332d3233203d3e203435333132.roa (raw, json) Hash identifier: U3zclKF2+kgtSakf6EpsbawfPltqkGu4P9lGDBuSzME= Subject key identifier: 9B:30:C9:C2:04:90:DD:48:49:88:E2:BA:D2:3D:00:FE:8C:C2:2F:69 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 208B55874F04205E78EDDD4F523ECBFBB10B08D0 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa Signing time: Mon 01 Jul 2024 01:04:12 +0000 ROA not before: Mon 01 Jul 2024 00:59:12 +0000 ROA not after: Mon 30 Jun 2025 01:04:12 +0000 asID: 45312 IP address blocks: 103.14.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8b:55:87:4f:04:20:5e:78:ed:dd:4f:52:3e:cb:fb:b1:0b:08:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jul 1 00:59:12 2024 GMT Not After : Jun 30 01:04:12 2025 GMT Subject: CN=9B30C9C20490DD484988E2BAD23D00FE8CC22F69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:51:ad:10:ab:fe:32:a7:06:18:62:bd:e7: 28:a5:df:28:91:c3:71:78:45:ea:14:6f:c9:09:cc: bd:66:79:74:0d:6d:29:96:c8:4d:69:8b:bc:c5:38: 44:4b:e5:ad:e6:b9:3e:5f:94:cc:ec:f1:61:2a:44: 99:af:1e:f7:ab:77:70:83:4b:da:55:4b:24:b8:43: fe:67:81:d3:48:83:25:24:60:f4:8f:5e:e5:12:1a: a5:89:12:fa:ae:97:98:7b:16:e7:5c:21:62:46:51: 64:8a:5a:0f:bc:39:50:d5:64:74:f6:93:ac:f2:5f: bc:9a:6f:b3:a7:4d:f9:cf:53:2b:bb:f3:02:8e:17: 86:5d:cc:6b:2a:e4:83:d3:5a:d5:a7:ba:64:39:1d: e8:36:94:c6:e8:d9:fa:9e:91:b3:4f:cf:74:ae:29: fa:d0:42:10:56:56:3d:f9:82:e6:78:11:cb:56:b2: b4:f0:2b:41:33:df:a0:39:4c:2a:c7:a1:7f:92:cb: d8:ec:3e:e0:7d:4e:13:f2:83:07:a3:5f:3c:20:85: 3f:a9:ff:f4:77:11:f7:f9:bb:a4:c4:32:63:54:f8: 98:3e:cd:8e:b1:64:7d:a5:52:d0:b4:4e:7b:ee:67: f8:79:e5:f2:28:0e:c8:74:6d:4c:2e:e1:10:ae:49: 5d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:30:C9:C2:04:90:DD:48:49:88:E2:BA:D2:3D:00:FE:8C:C2:2F:69 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.44.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:9a:c5:1f:cc:b9:e1:95:bf:b2:7d:29:60:0c:a8:41:75:58: 28:ad:c5:b9:69:83:66:89:43:81:92:d1:bb:be:63:84:ab:3f: 04:d0:a4:3c:3f:0a:f1:42:38:40:2f:f5:5e:19:c4:34:b9:1d: 26:1f:89:1e:6a:61:2a:b9:0c:37:94:73:81:0c:48:88:f1:32: 99:a0:24:57:a8:46:50:3f:bd:40:f8:6e:03:db:8d:d7:4e:35: 93:af:61:0f:11:31:d5:f3:7f:48:b3:bf:eb:30:a9:32:eb:5d: 51:10:da:83:fd:c6:a9:d2:7a:de:c2:a3:46:a6:9e:c1:f7:e7: 9e:6d:00:92:3c:3d:d2:66:26:e3:fd:71:66:96:26:67:3e:67: 25:08:e6:c1:44:4d:13:8a:4d:c7:e6:54:c7:25:26:ee:55:3d: 46:e8:af:93:36:69:fc:c2:5f:5c:8f:cc:58:97:c6:a9:1e:bf: 96:c9:3a:32:61:25:2f:a5:2e:f4:88:5a:6d:ca:66:43:5c:53: f0:6e:6c:30:2c:ba:0c:98:fa:7d:c5:72:a1:79:8d:9e:bb:c9: f4:ea:b9:73:39:b7:00:bd:ee:1d:02:c9:3f:9b:bd:b6:f7:39: d5:01:a9:7a:0f:fc:b0:1c:92:d1:c4:c3:de:c2:fa:cd:86:c6: 5b:c6:fc:49 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIItVh08EIF547d1PUj7L+7ELCNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNDA3MDEwMDU5MTJaFw0yNTA2MzAwMTA0MTJaMDMxMTAvBgNV BAMTKDlCMzBDOUMyMDQ5MERENDg0OTg4RTJCQUQyM0QwMEZFOENDMjJGNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3aFGtEKv+MqcGGGK95yil3yiR w3F4ReoUb8kJzL1meXQNbSmWyE1pi7zFOERL5a3muT5flMzs8WEqRJmvHverd3CD S9pVSyS4Q/5ngdNIgyUkYPSPXuUSGqWJEvqul5h7FudcIWJGUWSKWg+8OVDVZHT2 k6zyX7yab7OnTfnPUyu78wKOF4ZdzGsq5IPTWtWnumQ5Heg2lMbo2fqekbNPz3Su KfrQQhBWVj35guZ4EctWsrTwK0Ez36A5TCrHoX+Sy9jsPuB9ThPygwejXzwghT+p //R3Eff5u6TEMmNU+Jg+zY6xZH2lUtC0TnvuZ/h55fIoDsh0bUwu4RCuSV0tAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUmzDJwgSQ3UhJiOK60j0A/ozCL2kwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMxMzAzMzJlMzEzNDJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnDiwwDQYJKoZIhvcN AQELBQADggEBAF+axR/MueGVv7J9KWAMqEF1WCitxblpg2aJQ4GS0bu+Y4SrPwTQ pDw/CvFCOEAv9V4ZxDS5HSYfiR5qYSq5DDeUc4EMSIjxMpmgJFeoRlA/vUD4bgPb jddONZOvYQ8RMdXzf0izv+swqTLrXVEQ2oP9xqnSet7Co0amnsH3555tAJI8PdJm JuP9cWaWJmc+ZyUI5sFETROKTcfmVMclJu5VPUbor5M2afzCX1yPzFiXxqkev5bJ OjJhJS+lLvSIWm3KZkNcU/BubDAsugyY+n3FcqF5jZ67yfTquXM5twC97h0CyT+b vbb3OdUBqXoP/LAcktHEw97C+s2GxlvG/Ek= -----END CERTIFICATE-----Generated at Mon Apr 7 01:03:32 2025 by rpki-client