$ rpki-client -vvf repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/3130332e3138312e3234382e302f32332d3234203d3e20313439343030.roa File: 3130332e3138312e3234382e302f32332d3234203d3e20313439343030.roa (raw, json) Hash identifier: sKkJQmxuHQRpbOu7tarZjRh6SYZHx7wMO0xOOxar2Ro= Subject key identifier: A3:27:38:D7:1F:BF:39:DE:CF:AD:9D:5E:36:50:FD:7C:EB:21:6F:89 Certificate issuer: /CN=EB6A398D686553919657E094022E843191F4573E Certificate serial: 342B12E8F7D3BCF8F826B2AEFFF84AC12E991F27 Authority key identifier: EB:6A:39:8D:68:65:53:91:96:57:E0:94:02:2E:84:31:91:F4:57:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB6A398D686553919657E094022E843191F4573E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/3130332e3138312e3234382e302f32332d3234203d3e20313439343030.roa Signing time: Sun 19 Jan 2025 04:00:00 +0000 ROA not before: Sun 19 Jan 2025 03:55:00 +0000 ROA not after: Sun 18 Jan 2026 04:00:00 +0000 asID: 149400 IP address blocks: 103.181.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/EB6A398D686553919657E094022E843191F4573E.crl rsync://repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/EB6A398D686553919657E094022E843191F4573E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB6A398D686553919657E094022E843191F4573E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 07:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2b:12:e8:f7:d3:bc:f8:f8:26:b2:ae:ff:f8:4a:c1:2e:99:1f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB6A398D686553919657E094022E843191F4573E Validity Not Before: Jan 19 03:55:00 2025 GMT Not After : Jan 18 04:00:00 2026 GMT Subject: CN=A32738D71FBF39DECFAD9D5E3650FD7CEB216F89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:b1:b3:12:7b:4d:d6:05:16:d0:ae:a3:36: 85:81:7d:1d:34:d3:93:69:d3:c4:27:54:84:e8:c7: 8d:9b:75:d6:d6:a9:65:d2:b5:13:89:cb:d6:e6:78: 05:70:f3:af:fd:c9:ef:1a:87:cf:88:59:26:dc:b2: a4:2d:6e:ae:ae:f3:99:8d:49:9e:15:4e:b7:0f:5e: f8:36:cc:44:3c:22:ee:4b:c2:07:b0:49:92:78:10: 95:4e:05:cb:42:2f:ee:3b:62:ab:d9:33:c5:9b:66: f0:1f:15:40:29:d8:81:d2:a4:49:a7:e7:c2:f6:6c: b8:e5:c0:4c:29:87:b4:5c:5e:64:49:45:25:f5:11: 90:d2:ca:9d:94:cf:3f:a8:8c:da:7f:0e:2d:5a:2b: 1f:0e:32:18:64:a9:66:ae:36:b4:14:61:59:83:88: 86:00:b4:91:24:56:cd:ee:78:74:37:77:9d:9e:ac: 58:b3:a2:f0:c1:c1:8b:1d:17:cc:fc:79:1d:57:a4: 35:87:15:11:1d:5e:56:04:a1:49:10:3d:65:8e:82: f7:25:2a:5f:85:18:82:5c:dd:b0:48:1d:cd:8c:af: 06:d4:eb:11:66:fe:2b:a4:fe:f2:56:c3:78:23:0c: 59:85:af:4b:ee:b6:ac:fe:0e:d5:ea:d5:38:35:ab: 2b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:27:38:D7:1F:BF:39:DE:CF:AD:9D:5E:36:50:FD:7C:EB:21:6F:89 X509v3 Authority Key Identifier: keyid:EB:6A:39:8D:68:65:53:91:96:57:E0:94:02:2E:84:31:91:F4:57:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/EB6A398D686553919657E094022E843191F4573E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB6A398D686553919657E094022E843191F4573E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce4e103e-3d78-4ae0-9ba4-d1792ffa04ac/0/3130332e3138312e3234382e302f32332d3234203d3e20313439343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.248.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:08:dc:18:2a:d4:cc:87:06:4a:34:f8:82:5d:2a:ab:4a:d3: 61:a2:79:47:7d:fd:83:d5:cd:69:50:c6:cf:30:ed:7a:27:af: 7e:fa:46:41:8b:f8:ad:03:b9:6d:87:58:fe:fa:87:87:0c:3f: f5:87:ab:4b:5b:e7:b4:4e:ca:e9:31:f2:da:07:ba:ba:8d:e1: 04:9d:f0:11:7f:b4:e4:a5:a3:a8:e3:4b:44:c8:46:cb:de:47: 6f:55:61:a6:01:d8:d9:a5:c1:cb:7b:11:43:cd:10:d5:43:6f: e7:91:ce:d9:85:26:3e:77:57:0a:a5:89:83:f8:bc:d0:f6:2f: 47:59:19:de:69:a7:41:58:51:cd:ae:c4:16:5b:3c:b4:4b:70: 06:3e:84:f1:dc:56:77:ea:ce:65:c5:db:ec:6a:55:79:a5:4a: 67:64:1a:04:7d:dc:a6:d6:e6:f6:b7:af:98:10:e8:85:de:4c: af:b7:5b:16:2e:3b:b9:75:61:f7:97:86:7b:11:01:cf:13:56: e0:84:9c:8b:85:63:c0:b5:23:da:5c:90:a9:18:62:ed:b5:74: 16:65:f2:77:42:da:26:6c:ba:c1:bd:52:26:73:e7:b9:07:6f: 25:34:ed:e3:c0:f8:40:2f:2d:e6:8d:d2:82:6f:ef:8d:78:12: 22:ce:91:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNCsS6PfTvPj4JrKu//hKwS6ZHycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUI2QTM5OEQ2ODY1NTM5MTk2NTdFMDk0MDIyRTg0MzE5 MUY0NTczRTAeFw0yNTAxMTkwMzU1MDBaFw0yNjAxMTgwNDAwMDBaMDMxMTAvBgNV BAMTKEEzMjczOEQ3MUZCRjM5REVDRkFEOUQ1RTM2NTBGRDdDRUIyMTZGODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiFrGzEntN1gUW0K6jNoWBfR00 05Np08QnVITox42bddbWqWXStROJy9bmeAVw86/9ye8ah8+IWSbcsqQtbq6u85mN SZ4VTrcPXvg2zEQ8Iu5LwgewSZJ4EJVOBctCL+47YqvZM8WbZvAfFUAp2IHSpEmn 58L2bLjlwEwph7RcXmRJRSX1EZDSyp2Uzz+ojNp/Di1aKx8OMhhkqWauNrQUYVmD iIYAtJEkVs3ueHQ3d52erFizovDBwYsdF8z8eR1XpDWHFREdXlYEoUkQPWWOgvcl Kl+FGIJc3bBIHc2MrwbU6xFm/iuk/vJWw3gjDFmFr0vutqz+DtXq1Tg1qyvbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoyc41x+/Od7PrZ1eNlD9fOshb4kwHwYDVR0j BBgwFoAU62o5jWhlU5GWV+CUAi6EMZH0Vz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTRlMTAzZS0zZDc4LTRhZTAtOWJhNC1kMTc5MmZmYTA0YWMvMC9FQjZBMzk4RDY4 NjU1MzkxOTY1N0UwOTQwMjJFODQzMTkxRjQ1NzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUI2QTM5OEQ2ODY1NTM5MTk2NTdFMDk0MDIyRTg0MzE5MUY0 NTczRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlNGUxMDNlLTNkNzgtNGFlMC05 YmE0LWQxNzkyZmZhMDRhYy8wLzMxMzAzMzJlMzEzODMxMmUzMjM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntfgwDQYJ KoZIhvcNAQELBQADggEBAFsI3Bgq1MyHBko0+IJdKqtK02GieUd9/YPVzWlQxs8w 7Xonr376RkGL+K0DuW2HWP76h4cMP/WHq0tb57ROyukx8toHurqN4QSd8BF/tOSl o6jjS0TIRsveR29VYaYB2Nmlwct7EUPNENVDb+eRztmFJj53VwqliYP4vND2L0dZ Gd5pp0FYUc2uxBZbPLRLcAY+hPHcVnfqzmXF2+xqVXmlSmdkGgR93KbW5va3r5gQ 6IXeTK+3WxYuO7l1YfeXhnsRAc8TVuCEnIuFY8C1I9pckKkYYu21dBZl8ndC2iZs usG9UiZz57kHbyU07ePA+EAvLeaN0oJv7414EiLOkTg= -----END CERTIFICATE-----Generated at Sun Apr 6 07:07:53 2025 by rpki-client