$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa File: 3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa (raw, json) Hash identifier: DxhHqoUAAMdaWjOHEj/Le98DcBLSN3wsgkEpHqCel+c= Subject key identifier: 4C:E9:F5:90:0F:5A:D0:EA:08:3F:25:A1:B6:58:35:1C:87:B3:81:C2 Certificate issuer: /CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Certificate serial: 7AA5BB585AE4F899E7CBF1BEE99BE427555B24A4 Authority key identifier: 78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa Signing time: Thu 20 Feb 2025 06:00:01 +0000 ROA not before: Thu 20 Feb 2025 05:55:01 +0000 ROA not after: Thu 19 Feb 2026 06:00:01 +0000 asID: 139450 IP address blocks: 103.145.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:a5:bb:58:5a:e4:f8:99:e7:cb:f1:be:e9:9b:e4:27:55:5b:24:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Validity Not Before: Feb 20 05:55:01 2025 GMT Not After : Feb 19 06:00:01 2026 GMT Subject: CN=4CE9F5900F5AD0EA083F25A1B658351C87B381C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:4a:3c:15:12:18:24:66:8f:23:19:76:d3: df:90:01:8c:4d:23:d6:05:db:0d:f1:5b:4c:30:a7: 99:90:70:84:78:79:13:f5:04:db:c7:20:07:13:9c: 81:54:26:f5:3f:34:2c:d6:9e:85:6f:e8:f1:e6:24: 56:da:e6:ff:4f:2e:29:9a:39:dc:8b:f6:02:c4:7c: f5:d9:0e:b8:4e:79:17:b8:8c:8d:04:18:35:c7:71: 85:4b:9a:26:4d:52:37:6d:28:1f:9e:39:bd:9f:21: db:d7:0c:ee:15:70:60:05:80:d9:60:4c:9b:79:f8: 9f:9d:16:4e:01:71:c8:cb:58:a9:f2:cb:0b:9f:cd: 01:64:6f:48:c5:93:7b:32:cb:1e:ab:1b:a0:c1:bf: 37:f5:a4:7a:68:09:99:99:89:11:3b:0e:b1:ee:50: c6:9d:5f:4d:f6:59:03:4f:9b:9c:79:eb:f3:4c:de: 98:28:0e:1e:0e:ae:c9:d8:b2:48:d1:a5:38:33:c5: d5:49:e2:2f:84:e8:43:70:e3:45:ef:28:81:3b:4c: 4e:72:60:47:e3:58:86:4e:25:66:5b:74:6e:45:5f: e4:c9:a9:71:27:61:4c:73:dc:8d:4d:7d:d4:02:db: 2a:4f:a7:9b:d0:08:36:aa:7f:95:04:63:75:c3:cb: c4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E9:F5:90:0F:5A:D0:EA:08:3F:25:A1:B6:58:35:1C:87:B3:81:C2 X509v3 Authority Key Identifier: keyid:78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.200.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:76:2b:2b:09:ae:2e:82:9d:6f:1d:3c:39:70:b9:15:c1:c5: 53:47:a4:ad:66:98:12:7e:f0:82:22:2b:09:76:56:74:62:61: 80:50:09:c9:bd:e8:45:4a:60:0d:8e:a5:28:12:af:5b:cc:81: b0:3d:fc:a9:d9:fe:99:bb:79:aa:49:1c:8e:e9:a9:b8:d1:f6: 2f:74:a2:35:b9:5d:58:d7:ef:d1:f7:e6:1e:18:f0:84:55:ff: 08:7f:e9:fa:fb:04:b7:4d:1f:3f:09:ea:ee:41:a1:62:b0:7c: c8:4a:78:40:35:b1:90:08:91:3c:a1:31:75:95:44:95:e4:14: c0:5f:12:20:14:37:0b:bc:d4:cf:13:59:26:a5:da:4b:53:0e: 50:87:9b:01:f6:09:20:80:35:31:4b:ed:c5:27:86:83:c9:1b: 56:bf:71:08:b4:eb:b3:f5:52:9c:80:f1:60:6b:52:52:de:8a: 02:db:8a:9e:b2:1c:a9:61:db:2c:71:0f:ac:a2:1e:27:3e:b9: da:35:af:f8:f1:dc:a5:c8:f9:2d:a4:9f:f0:1e:dc:51:77:4e: da:6e:8c:d8:ec:19:5d:78:ef:38:c6:2d:ca:69:2f:bc:1b:9b: f0:db:39:f0:27:d9:c4:16:09:99:a4:70:91:f1:c1:38:d5:8b: e7:7d:e4:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeqW7WFrk+Jnny/G+6ZvkJ1VbJKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0Iz MjY0RkY1QzAeFw0yNTAyMjAwNTU1MDFaFw0yNjAyMTkwNjAwMDFaMDMxMTAvBgNV BAMTKDRDRTlGNTkwMEY1QUQwRUEwODNGMjVBMUI2NTgzNTFDODdCMzgxQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9S0o8FRIYJGaPIxl209+QAYxN I9YF2w3xW0wwp5mQcIR4eRP1BNvHIAcTnIFUJvU/NCzWnoVv6PHmJFba5v9PLima OdyL9gLEfPXZDrhOeRe4jI0EGDXHcYVLmiZNUjdtKB+eOb2fIdvXDO4VcGAFgNlg TJt5+J+dFk4BccjLWKnyywufzQFkb0jFk3syyx6rG6DBvzf1pHpoCZmZiRE7DrHu UMadX032WQNPm5x56/NM3pgoDh4OrsnYskjRpTgzxdVJ4i+E6ENw40XvKIE7TE5y YEfjWIZOJWZbdG5FX+TJqXEnYUxz3I1NfdQC2ypPp5vQCDaqf5UEY3XDy8R3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTOn1kA9a0OoIPyWhtlg1HIezgcIwHwYDVR0j BBgwFoAUeJxB+P9y1OAPNhlK8kpUOzJk/1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2YxNzA2Yi02YzE3LTQ3ODYtYWJkOS00N2EzODQ0ZGE4ZjgvMC83ODlDNDFGOEZG NzJENEUwMEYzNjE5NEFGMjRBNTQzQjMyNjRGRjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0IzMjY0 RkY1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjE3MDZiLTZjMTctNDc4Ni1h YmQ5LTQ3YTM4NDRkYThmOC8wLzMxMzAzMzJlMzEzNDM1MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkcgwDQYJ KoZIhvcNAQELBQADggEBACx2KysJri6CnW8dPDlwuRXBxVNHpK1mmBJ+8IIiKwl2 VnRiYYBQCcm96EVKYA2OpSgSr1vMgbA9/KnZ/pm7eapJHI7pqbjR9i90ojW5XVjX 79H35h4Y8IRV/wh/6fr7BLdNHz8J6u5BoWKwfMhKeEA1sZAIkTyhMXWVRJXkFMBf EiAUNwu81M8TWSal2ktTDlCHmwH2CSCANTFL7cUnhoPJG1a/cQi067P1UpyA8WBr UlLeigLbip6yHKlh2yxxD6yiHic+udo1r/jx3KXI+S2kn/Ae3FF3TtpujNjsGV14 7zjGLcppL7wbm/DbOfAn2cQWCZmkcJHxwTjVi+d95Ok= -----END CERTIFICATE-----Generated at Sun Apr 6 07:46:05 2025 by rpki-client