$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa File: 3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa (raw, json) Hash identifier: fKyStuZP+cGYGL12Gl7DPoMVPGekA2LHOpNgfBK7K54= Subject key identifier: 28:1B:79:8D:95:6F:6A:7C:03:8C:E8:96:2F:59:99:48:C9:F5:1C:0D Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 2D009CC4C8E5162BFBF7E9AE1494D730CED61A87 Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa Signing time: Sat 17 May 2025 12:00:01 +0000 ROA not before: Sat 17 May 2025 11:55:01 +0000 ROA not after: Sat 16 May 2026 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:00:9c:c4:c8:e5:16:2b:fb:f7:e9:ae:14:94:d7:30:ce:d6:1a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: May 17 11:55:01 2025 GMT Not After : May 16 12:00:01 2026 GMT Subject: CN=281B798D956F6A7C038CE8962F599948C9F51C0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:30:3d:2c:2a:01:06:d7:ea:de:28:9f:32:80: 05:68:24:9a:32:ac:6b:79:4a:34:fb:93:63:67:2a: c4:0a:79:3a:37:76:a7:f1:e5:21:fc:30:20:14:81: 9f:27:e5:57:05:f0:43:c2:ec:f8:57:9f:5c:aa:c0: 7c:a5:de:b9:61:ca:14:02:52:a7:bd:d5:d4:b4:04: 04:31:93:64:d3:c6:4e:3f:4a:b6:92:41:ca:00:b5: 65:17:c2:57:b0:6f:49:94:83:1b:62:5b:38:b6:ff: 67:34:de:51:a1:64:d9:b8:69:af:52:71:ce:2b:89: 00:49:ba:fe:21:bf:91:b3:fa:8c:2c:01:88:a0:0f: 96:f7:29:b3:1e:17:25:35:a9:c7:27:5e:de:f5:c1: 12:ab:78:df:40:1d:07:ff:b0:d6:9a:5c:89:6a:fe: 30:49:80:30:2f:c4:e2:7c:f9:0d:5b:15:88:fa:cf: 19:43:d6:d8:bb:c3:21:ec:e2:5e:c9:9a:f2:c6:c0: 71:6a:8f:11:53:43:e1:92:dd:f1:52:75:6c:88:b3: 7e:4c:4b:5b:88:41:1f:6d:27:af:f2:7a:3c:2c:be: bd:e0:cf:88:0c:e4:a2:1c:6c:86:94:9a:14:1a:f4: dd:68:48:ac:86:eb:1a:e9:a9:e8:2b:4a:61:33:76: a1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1B:79:8D:95:6F:6A:7C:03:8C:E8:96:2F:59:99:48:C9:F5:1C:0D X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.119.0/24 Signature Algorithm: sha256WithRSAEncryption 09:77:66:ee:eb:2f:cd:73:9b:86:23:85:7d:cf:3e:03:ef:48: 00:37:82:1b:89:97:9c:bc:c2:21:98:b8:8e:98:b3:55:f0:a6: 1f:5b:27:09:5e:20:a0:28:40:ae:0e:f7:33:c2:fc:b4:b9:87: 5c:5f:31:75:1e:c7:ed:4e:be:e3:4a:27:99:21:09:26:c2:71: 4f:b8:5c:7d:b3:6a:63:33:cd:6b:7e:4e:94:a6:b7:c5:0c:29: 0e:9e:dd:ff:5f:95:4e:22:e0:37:9d:59:b2:6e:9e:fb:2e:31: e8:ed:6b:c6:d5:fa:0a:4d:8c:dd:22:66:28:8d:e6:b3:bf:1c: 43:f0:3b:da:84:99:8e:16:45:9e:2a:a1:7d:c1:c8:0e:97:41: e2:92:c4:a4:35:d3:4b:22:e0:1e:59:c6:99:79:2a:d7:53:ce: 2f:31:3d:ce:f9:62:ff:a5:20:74:11:0d:e7:2b:48:dd:a4:13: cc:c1:4a:2b:24:34:6e:6c:4f:36:d7:87:be:8b:41:48:76:8d: 87:5b:73:9d:4f:28:ed:77:3d:ac:99:fc:6b:ba:ad:1b:ab:c2: 40:49:16:ba:fe:69:4c:fd:38:85:77:ea:2f:45:57:f6:3f:57: ea:28:7b:59:69:20:6f:c2:3c:58:ca:c9:01:ec:cc:64:a6:bd: eb:e1:5a:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULQCcxMjlFiv79+muFJTXMM7WGocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNTA1MTcxMTU1MDFaFw0yNjA1MTYxMjAwMDFaMDMxMTAvBgNV BAMTKDI4MUI3OThEOTU2RjZBN0MwMzhDRTg5NjJGNTk5OTQ4QzlGNTFDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjMD0sKgEG1+reKJ8ygAVoJJoy rGt5SjT7k2NnKsQKeTo3dqfx5SH8MCAUgZ8n5VcF8EPC7PhXn1yqwHyl3rlhyhQC Uqe91dS0BAQxk2TTxk4/SraSQcoAtWUXwlewb0mUgxtiWzi2/2c03lGhZNm4aa9S cc4riQBJuv4hv5Gz+owsAYigD5b3KbMeFyU1qccnXt71wRKreN9AHQf/sNaaXIlq /jBJgDAvxOJ8+Q1bFYj6zxlD1ti7wyHs4l7JmvLGwHFqjxFTQ+GS3fFSdWyIs35M S1uIQR9tJ6/yejwsvr3gz4gM5KIcbIaUmhQa9N1oSKyG6xrpqegrSmEzdqEjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKBt5jZVvanwDjOiWL1mZSMn1HA0wHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J3MA0GCSqG SIb3DQEBCwUAA4IBAQAJd2bu6y/Nc5uGI4V9zz4D70gAN4IbiZecvMIhmLiOmLNV 8KYfWycJXiCgKECuDvczwvy0uYdcXzF1HsftTr7jSieZIQkmwnFPuFx9s2pjM81r fk6UprfFDCkOnt3/X5VOIuA3nVmybp77LjHo7WvG1foKTYzdImYojeazvxxD8Dva hJmOFkWeKqF9wcgOl0HiksSkNdNLIuAeWcaZeSrXU84vMT3O+WL/pSB0EQ3nK0jd pBPMwUorJDRubE8214e+i0FIdo2HW3OdTyjtdz2smfxruq0bq8JASRa6/mlM/TiF d+ovRVf2P1fqKHtZaSBvwjxYyskB7Mxkpr3r4Vrm -----END CERTIFICATE-----Generated at Sat Jun 7 23:10:50 2025 by rpki-client