$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139332e302f32342d3234203d3e203338353236.roa File: 3130332e3131322e3139332e302f32342d3234203d3e203338353236.roa (raw, json) Hash identifier: 3nQXhYLSus5u+o3fg6/ve7RRb5fetlodKGtIYffF7bU= Subject key identifier: 60:54:B9:3B:B9:B4:B9:05:47:2D:43:53:C1:64:E9:9A:9A:F4:79:5B Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 0EDF2BF3169360CD80342629279428A25D3BFD6A Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139332e302f32342d3234203d3e203338353236.roa Signing time: Tue 21 Jan 2025 08:00:01 +0000 ROA not before: Tue 21 Jan 2025 07:55:01 +0000 ROA not after: Tue 20 Jan 2026 08:00:01 +0000 asID: 38526 IP address blocks: 103.112.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:df:2b:f3:16:93:60:cd:80:34:26:29:27:94:28:a2:5d:3b:fd:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 21 07:55:01 2025 GMT Not After : Jan 20 08:00:01 2026 GMT Subject: CN=6054B93BB9B4B905472D4353C164E99A9AF4795B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:30:c0:ba:5a:d9:b7:ca:bf:1b:b3:6c:c5: cd:3c:1a:02:d0:60:e5:18:66:c1:5f:37:88:6a:c0: 2c:99:4d:d1:f0:0f:b2:88:cb:38:d3:da:e9:f6:57: 5b:09:e9:ae:42:33:00:45:85:4f:7c:7f:d3:a6:32: 16:f0:ea:10:79:ef:63:e5:be:f3:13:0e:7c:0b:47: 4e:69:a9:bc:10:f2:84:90:c4:b6:d7:a6:64:e0:62: 47:91:ad:cd:ce:8d:51:62:e2:bd:24:f9:f1:f6:1c: 65:e8:7d:d8:60:6c:35:a5:d1:0a:00:7e:e9:0f:1f: 57:85:57:6a:99:bc:16:aa:32:bf:e1:2a:d9:ff:a0: 00:2f:a3:21:32:93:11:d1:9d:b3:57:66:cc:05:5d: f5:71:5f:cd:c1:33:b1:ef:f0:cc:2d:e6:cc:b9:1f: 96:9c:d5:6e:46:ff:6c:e9:8d:d8:80:02:b2:3d:8b: 7a:9b:e9:bd:65:dd:66:52:55:87:b0:dd:79:aa:94: 96:de:27:99:c6:34:52:b1:b6:86:4d:ad:1b:99:27: df:b0:31:35:cb:68:fa:f3:69:e3:dd:48:52:fd:03: 07:a9:e6:4c:26:83:cb:f3:37:dd:2b:87:d2:c5:0d: 39:49:31:6b:18:b7:93:53:83:dd:91:86:b4:49:e4: ac:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:54:B9:3B:B9:B4:B9:05:47:2D:43:53:C1:64:E9:9A:9A:F4:79:5B X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139332e302f32342d3234203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.193.0/24 Signature Algorithm: sha256WithRSAEncryption ad:83:fb:3b:2f:57:b7:a8:0a:88:00:30:79:2f:22:cc:0d:42: c3:09:09:99:23:da:34:b5:06:81:68:4a:5e:aa:78:77:66:cb: 1d:eb:9d:96:e3:f7:e4:06:69:eb:7b:1e:43:5c:39:5c:f0:4e: df:fa:44:57:1c:87:66:b6:e6:5f:e7:5c:ae:07:1f:6c:2f:07: 51:72:bc:a8:a9:eb:9b:54:82:2e:66:67:ac:7d:b0:98:32:1e: 16:9f:8f:aa:0b:21:69:00:fb:c6:73:03:2a:46:06:2e:ac:fe: 31:ee:96:a6:b7:ec:45:2d:f0:66:fe:7b:72:b5:1d:5a:2f:c0: 75:d0:0a:1a:ac:67:78:86:e9:8d:69:55:73:bf:ba:ee:0d:3e: 4b:9f:d9:93:ae:0d:33:b2:87:12:4f:19:7c:cd:f3:2d:88:81: a5:0d:aa:9c:08:54:c9:22:1b:e2:f3:a5:62:4c:60:57:a7:18: ba:02:cf:c1:bb:9c:26:26:1d:55:1a:98:b1:e1:97:36:98:bf: 46:ab:01:bc:b3:35:d7:15:09:75:05:95:52:f6:96:e7:96:64: 1a:36:dd:1a:97:94:45:7f:25:2f:3a:5a:1c:18:e5:f5:3e:7a: 16:b2:7f:77:cd:8b:27:34:c0:28:95:11:f4:bf:e6:dc:ce:42: 65:ea:67:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDt8r8xaTYM2ANCYpJ5Qool07/WowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAxMjEwNzU1MDFaFw0yNjAxMjAwODAwMDFaMDMxMTAvBgNV BAMTKDYwNTRCOTNCQjlCNEI5MDU0NzJENDM1M0MxNjRFOTlBOUFGNDc5NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOjDAulrZt8q/G7Nsxc08GgLQ YOUYZsFfN4hqwCyZTdHwD7KIyzjT2un2V1sJ6a5CMwBFhU98f9OmMhbw6hB572Pl vvMTDnwLR05pqbwQ8oSQxLbXpmTgYkeRrc3OjVFi4r0k+fH2HGXofdhgbDWl0QoA fukPH1eFV2qZvBaqMr/hKtn/oAAvoyEykxHRnbNXZswFXfVxX83BM7Hv8Mwt5sy5 H5ac1W5G/2zpjdiAArI9i3qb6b1l3WZSVYew3XmqlJbeJ5nGNFKxtoZNrRuZJ9+w MTXLaPrzaePdSFL9Awep5kwmg8vzN90rh9LFDTlJMWsYt5NTg92RhrRJ5Kx5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYFS5O7m0uQVHLUNTwWTpmpr0eVswHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMxMzAzMzJlMzEzMTMyMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3DBMA0GCSqG SIb3DQEBCwUAA4IBAQCtg/s7L1e3qAqIADB5LyLMDULDCQmZI9o0tQaBaEpeqnh3 Zssd652W4/fkBmnrex5DXDlc8E7f+kRXHIdmtuZf51yuBx9sLwdRcryoqeubVIIu ZmesfbCYMh4Wn4+qCyFpAPvGcwMqRgYurP4x7pamt+xFLfBm/ntytR1aL8B10Aoa rGd4humNaVVzv7ruDT5Ln9mTrg0zsocSTxl8zfMtiIGlDaqcCFTJIhvi86ViTGBX pxi6As/Bu5wmJh1VGpix4Zc2mL9GqwG8szXXFQl1BZVS9pbnlmQaNt0al5RFfyUv OlocGOX1PnoWsn93zYsnNMAolRH0v+bczkJl6mdy -----END CERTIFICATE-----Generated at Sun Apr 6 14:01:41 2025 by rpki-client