$ rpki-client -vvf repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3130332e38312e3235322e302f32342d3234203d3e20313530353337.roa File: 3130332e38312e3235322e302f32342d3234203d3e20313530353337.roa (raw, json) Hash identifier: woe8wTOCkgzw1AhZmS0qc2WfDSk5Txn9xI0A9rGDrdg= Subject key identifier: 7A:28:D1:E9:D7:00:2F:0B:03:60:83:75:A0:F5:58:09:15:BC:EA:F1 Certificate issuer: /CN=3B1029D44B93CA0397DA506FE1E2147503641EC6 Certificate serial: 4E4ABEE36C54FBA29469AFEC49C7FA10B9A113FF Authority key identifier: 3B:10:29:D4:4B:93:CA:03:97:DA:50:6F:E1:E2:14:75:03:64:1E:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B1029D44B93CA0397DA506FE1E2147503641EC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3130332e38312e3235322e302f32342d3234203d3e20313530353337.roa Signing time: Wed 19 Mar 2025 06:07:15 +0000 ROA not before: Wed 19 Mar 2025 06:02:15 +0000 ROA not after: Wed 18 Mar 2026 06:07:15 +0000 asID: 150537 IP address blocks: 103.81.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3B1029D44B93CA0397DA506FE1E2147503641EC6.crl rsync://repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3B1029D44B93CA0397DA506FE1E2147503641EC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B1029D44B93CA0397DA506FE1E2147503641EC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:4a:be:e3:6c:54:fb:a2:94:69:af:ec:49:c7:fa:10:b9:a1:13:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B1029D44B93CA0397DA506FE1E2147503641EC6 Validity Not Before: Mar 19 06:02:15 2025 GMT Not After : Mar 18 06:07:15 2026 GMT Subject: CN=7A28D1E9D7002F0B03608375A0F5580915BCEAF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:3d:54:a2:90:bc:85:bc:66:51:b2:c1:22: 1b:cc:a0:61:80:96:1f:23:0d:ef:37:23:47:0e:50: 53:1e:d4:3b:e0:ca:b1:e2:41:4e:44:02:d9:56:42: ef:5c:3c:f5:52:67:b2:64:7f:8c:0c:67:dc:6d:dd: b4:31:dd:ce:29:1f:17:eb:8b:d6:07:0d:37:db:5e: 18:35:45:58:20:1b:c0:90:52:ef:d3:87:67:50:7b: b5:12:3c:98:75:f0:74:bc:f5:55:fc:09:cd:86:51: d1:ea:eb:fb:eb:c2:6e:a9:c7:93:c2:2b:77:71:95: 4a:f7:0c:35:5c:28:8f:45:0d:2b:20:b3:a4:51:a0: 38:34:9a:11:7f:af:1a:92:bb:89:62:d2:f4:b4:43: d3:2c:4a:f5:97:3c:13:30:0a:3d:7d:27:3b:1d:69: a5:83:12:a9:c4:7f:49:4b:64:45:13:41:82:f2:57: 36:f8:28:01:21:85:23:e2:b4:b0:7c:bb:46:f7:5e: 79:8b:3b:31:76:d2:c6:68:9e:a5:d9:b6:85:1a:b6: a4:71:28:c8:7d:30:9a:da:46:97:3e:c0:22:22:25: 04:2c:60:4f:48:94:35:e4:ec:d5:b9:6a:f2:b8:86: e7:43:10:aa:d5:58:6e:91:6b:e2:5f:7b:ca:a0:37: ae:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:28:D1:E9:D7:00:2F:0B:03:60:83:75:A0:F5:58:09:15:BC:EA:F1 X509v3 Authority Key Identifier: keyid:3B:10:29:D4:4B:93:CA:03:97:DA:50:6F:E1:E2:14:75:03:64:1E:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3B1029D44B93CA0397DA506FE1E2147503641EC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B1029D44B93CA0397DA506FE1E2147503641EC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc0d40bc-93c8-415b-b6a8-aef088d7f4d4/0/3130332e38312e3235322e302f32342d3234203d3e20313530353337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.252.0/24 Signature Algorithm: sha256WithRSAEncryption 14:0a:34:2e:ff:38:95:86:b8:7c:7a:6b:5f:9d:52:54:da:dc: 2a:04:27:32:25:fa:7d:4b:c9:8e:68:9d:ea:df:a8:ab:dd:ad: c3:12:7a:ff:55:2c:27:a7:43:9a:ce:bf:68:bd:6f:af:47:c7: ba:f4:78:f9:5e:a5:23:0d:15:5e:a3:e6:4c:d6:19:39:84:be: 1a:41:6d:33:2b:2f:34:df:4b:d4:7a:d3:75:e0:19:ea:d2:d7: f0:6a:10:25:92:7e:66:0f:71:c4:46:1d:65:f2:9c:20:cc:94: fd:eb:1c:42:88:35:13:0c:f5:d6:80:4f:dc:1e:ef:7b:18:7a: b3:cd:a6:ff:39:fb:d3:36:2b:b8:ff:c3:4d:3c:50:a3:84:94: 0e:39:f5:f3:74:81:11:68:47:64:ab:52:f5:79:35:0c:63:43: fe:c5:c9:d2:ea:7f:6f:54:27:c7:7b:77:84:56:b1:36:55:a5: 8d:b1:5e:ac:6b:9d:41:8d:56:a9:69:01:6f:6d:65:ab:69:e0: c0:63:28:30:c2:b0:fb:71:63:2d:c0:c0:3f:ca:a7:90:f4:d7: 64:ac:68:c0:a3:24:4f:f8:39:d8:9a:03:03:fe:2e:d9:54:f5: 96:56:b4:4e:dd:c1:2d:3c:cd:cc:a3:7d:08:26:0b:15:7c:23: e9:24:4c:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTkq+42xU+6KUaa/sScf6ELmhE/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IxMDI5RDQ0QjkzQ0EwMzk3REE1MDZGRTFFMjE0NzUw MzY0MUVDNjAeFw0yNTAzMTkwNjAyMTVaFw0yNjAzMTgwNjA3MTVaMDMxMTAvBgNV BAMTKDdBMjhEMUU5RDcwMDJGMEIwMzYwODM3NUEwRjU1ODA5MTVCQ0VBRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9tD1UopC8hbxmUbLBIhvMoGGA lh8jDe83I0cOUFMe1DvgyrHiQU5EAtlWQu9cPPVSZ7Jkf4wMZ9xt3bQx3c4pHxfr i9YHDTfbXhg1RVggG8CQUu/Th2dQe7USPJh18HS89VX8Cc2GUdHq6/vrwm6px5PC K3dxlUr3DDVcKI9FDSsgs6RRoDg0mhF/rxqSu4li0vS0Q9MsSvWXPBMwCj19Jzsd aaWDEqnEf0lLZEUTQYLyVzb4KAEhhSPitLB8u0b3XnmLOzF20sZonqXZtoUatqRx KMh9MJraRpc+wCIiJQQsYE9IlDXk7NW5avK4hudDEKrVWG6Ra+Jfe8qgN641AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeijR6dcALwsDYIN1oPVYCRW86vEwHwYDVR0j BBgwFoAUOxAp1EuTygOX2lBv4eIUdQNkHsYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzBkNDBiYy05M2M4LTQxNWItYjZhOC1hZWYwODhkN2Y0ZDQvMC8zQjEwMjlENDRC OTNDQTAzOTdEQTUwNkZFMUUyMTQ3NTAzNjQxRUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IxMDI5RDQ0QjkzQ0EwMzk3REE1MDZGRTFFMjE0NzUwMzY0 MUVDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjMGQ0MGJjLTkzYzgtNDE1Yi1i NmE4LWFlZjA4OGQ3ZjRkNC8wLzMxMzAzMzJlMzgzMTJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1H8MA0GCSqG SIb3DQEBCwUAA4IBAQAUCjQu/ziVhrh8emtfnVJU2twqBCcyJfp9S8mOaJ3q36ir 3a3DEnr/VSwnp0Oazr9ovW+vR8e69Hj5XqUjDRVeo+ZM1hk5hL4aQW0zKy8030vU etN14Bnq0tfwahAlkn5mD3HERh1l8pwgzJT96xxCiDUTDPXWgE/cHu97GHqzzab/ OfvTNiu4/8NNPFCjhJQOOfXzdIERaEdkq1L1eTUMY0P+xcnS6n9vVCfHe3eEVrE2 VaWNsV6sa51BjVapaQFvbWWraeDAYygwwrD7cWMtwMA/yqeQ9NdkrGjAoyRP+DnY mgMD/i7ZVPWWVrRO3cEtPM3Mo30IJgsVfCPpJEwh -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:15 2025 by rpki-client