$ rpki-client -vvf repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33322e302f32342d3234203d3e20313439363930.roa File: 3130332e3138362e33322e302f32342d3234203d3e20313439363930.roa (raw, json) Hash identifier: WkOEvMx4pLjLVaF0ggIqh7pDPWEbi8P19IogxuTVO3k= Subject key identifier: 19:74:A5:5B:28:86:83:E0:BD:CF:F9:6F:7F:9D:84:00:DB:9B:94:06 Certificate issuer: /CN=47E5E36B848613534A65DDE4FBA27AB59A745B50 Certificate serial: 1E3C9C0BFF6D478E6D23391DDA5ED8BE11C0914D Authority key identifier: 47:E5:E3:6B:84:86:13:53:4A:65:DD:E4:FB:A2:7A:B5:9A:74:5B:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33322e302f32342d3234203d3e20313439363930.roa Signing time: Mon 20 Jan 2025 13:00:02 +0000 ROA not before: Mon 20 Jan 2025 12:55:02 +0000 ROA not after: Mon 19 Jan 2026 13:00:02 +0000 asID: 149690 IP address blocks: 103.186.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.crl rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:3c:9c:0b:ff:6d:47:8e:6d:23:39:1d:da:5e:d8:be:11:c0:91:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47E5E36B848613534A65DDE4FBA27AB59A745B50 Validity Not Before: Jan 20 12:55:02 2025 GMT Not After : Jan 19 13:00:02 2026 GMT Subject: CN=1974A55B288683E0BDCFF96F7F9D8400DB9B9406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:a6:79:da:4b:f1:7b:1e:cf:ea:16:b2:73: 28:49:4b:1d:83:cd:db:fc:fe:0f:91:2c:2c:c0:3f: 63:10:23:b4:32:a2:62:38:c5:ad:5a:01:bf:f6:a7: c5:6b:a3:56:75:a2:94:78:e0:20:e7:09:db:f5:8a: 0d:f2:1c:02:d8:52:07:68:eb:76:fd:d6:47:51:19: ce:f2:f9:8c:7c:04:e9:ed:e5:88:89:90:f7:74:7d: fb:67:35:af:96:28:2c:72:74:9a:19:21:ff:6f:a4: 65:e6:41:34:f9:82:12:d7:3e:69:01:ea:08:ca:38: 97:b6:72:16:9b:7a:b0:5e:c8:6f:52:33:0b:77:3c: 4b:a1:b0:52:23:43:6e:98:82:71:35:26:57:cd:f0: 7e:54:eb:f3:5f:88:f3:85:a5:18:1c:5e:c1:f1:5f: 86:04:08:22:25:37:07:4e:b6:c9:c1:3c:cf:12:6e: 34:75:7c:fb:59:5b:e8:d0:8a:11:48:87:2e:62:2d: 07:65:4e:24:73:dd:d3:f7:39:78:29:a1:07:da:fb: fa:f0:3f:12:dd:00:7f:35:0f:33:c0:38:0b:5a:a5: c8:8e:ad:b1:df:0f:77:d7:19:8b:08:4b:50:97:45: 07:29:46:02:a5:11:5e:34:1c:a6:a2:f9:37:8b:05: a6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:74:A5:5B:28:86:83:E0:BD:CF:F9:6F:7F:9D:84:00:DB:9B:94:06 X509v3 Authority Key Identifier: keyid:47:E5:E3:6B:84:86:13:53:4A:65:DD:E4:FB:A2:7A:B5:9A:74:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33322e302f32342d3234203d3e20313439363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.32.0/24 Signature Algorithm: sha256WithRSAEncryption 60:86:f5:26:bb:1d:d7:64:e2:37:2a:a5:81:08:c6:f9:b1:b3: ff:88:ff:ae:2c:85:2a:32:80:e6:76:4a:75:f4:fc:e4:98:14: 07:20:21:80:5e:4c:78:ba:38:81:9c:a9:4e:7c:49:1e:93:d4: ee:08:ae:ce:5b:e7:2e:a1:5b:91:92:03:0a:e3:e1:9e:8f:76: 0a:c7:3f:fe:2e:8b:92:1c:4f:84:40:5d:2f:62:d1:d0:30:c5: 45:84:ec:2a:6f:59:b6:55:6a:6e:4f:1d:77:5e:4d:34:86:00: b0:c7:9f:a5:b6:89:7a:c8:ab:b1:4f:7f:db:58:c6:70:da:0e: 88:13:3e:24:29:14:07:29:80:0d:f7:00:dc:43:df:71:51:0d: 0c:ae:5d:c7:c7:a9:bd:9b:7c:4e:fe:0e:e8:86:33:ec:c8:d6: 87:b8:cd:43:03:e1:2d:ea:f8:a3:9f:fc:ec:72:8e:7f:8c:88: fc:43:a9:ef:c8:fd:83:fd:78:1d:b9:e8:ca:e3:7e:44:76:80: cb:47:75:37:e8:fd:57:de:f7:e5:72:ed:75:32:39:37:f1:f5: 3d:5c:10:84:7f:73:70:55:9c:f3:aa:02:20:90:cc:96:3e:f3: 7d:a9:67:07:b8:50:08:e9:8b:c5:83:d4:8b:b0:3f:a4:c8:ce: 0f:2a:53:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHjycC/9tR45tIzkd2l7YvhHAkU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdFNUUzNkI4NDg2MTM1MzRBNjVEREU0RkJBMjdBQjU5 QTc0NUI1MDAeFw0yNTAxMjAxMjU1MDJaFw0yNjAxMTkxMzAwMDJaMDMxMTAvBgNV BAMTKDE5NzRBNTVCMjg4NjgzRTBCRENGRjk2RjdGOUQ4NDAwREI5Qjk0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLMaZ52kvxex7P6haycyhJSx2D zdv8/g+RLCzAP2MQI7QyomI4xa1aAb/2p8Vro1Z1opR44CDnCdv1ig3yHALYUgdo 63b91kdRGc7y+Yx8BOnt5YiJkPd0fftnNa+WKCxydJoZIf9vpGXmQTT5ghLXPmkB 6gjKOJe2chaberBeyG9SMwt3PEuhsFIjQ26YgnE1JlfN8H5U6/NfiPOFpRgcXsHx X4YECCIlNwdOtsnBPM8SbjR1fPtZW+jQihFIhy5iLQdlTiRz3dP3OXgpoQfa+/rw PxLdAH81DzPAOAtapciOrbHfD3fXGYsIS1CXRQcpRgKlEV40HKai+TeLBaY3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGXSlWyiGg+C9z/lvf52EANublAYwHwYDVR0j BBgwFoAUR+Xja4SGE1NKZd3k+6J6tZp0W1AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2U5ZjQzZC0wOGJhLTRkMDItOGYzOC03NDczMmYxNWNkOGMvMC80N0U1RTM2Qjg0 ODYxMzUzNEE2NURERTRGQkEyN0FCNTlBNzQ1QjUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdFNUUzNkI4NDg2MTM1MzRBNjVEREU0RkJBMjdBQjU5QTc0 NUI1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjZTlmNDNkLTA4YmEtNGQwMi04 ZjM4LTc0NzMyZjE1Y2Q4Yy8wLzMxMzAzMzJlMzEzODM2MmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ogMA0GCSqG SIb3DQEBCwUAA4IBAQBghvUmux3XZOI3KqWBCMb5sbP/iP+uLIUqMoDmdkp19Pzk mBQHICGAXkx4ujiBnKlOfEkek9TuCK7OW+cuoVuRkgMK4+Gej3YKxz/+LouSHE+E QF0vYtHQMMVFhOwqb1m2VWpuTx13Xk00hgCwx5+ltol6yKuxT3/bWMZw2g6IEz4k KRQHKYAN9wDcQ99xUQ0Mrl3Hx6m9m3xO/g7ohjPsyNaHuM1DA+Et6vijn/zsco5/ jIj8Q6nvyP2D/XgduejK435EdoDLR3U36P1X3vflcu11Mjk38fU9XBCEf3NwVZzz qgIgkMyWPvN9qWcHuFAI6YvFg9SLsD+kyM4PKlN3 -----END CERTIFICATE-----Generated at Sun Apr 6 05:50:12 2025 by rpki-client