$ rpki-client -vvf repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/3130332e3133392e3138382e302f32332d3233203d3e20313338393031.roa File: 3130332e3133392e3138382e302f32332d3233203d3e20313338393031.roa (raw, json) Hash identifier: vFkMCL/cjWQLJmOKn5KhnpFSkn7CbbeUlP5i2b/rVK0= Subject key identifier: 8C:4F:F4:B2:43:E1:6C:14:B7:18:38:76:F9:CD:AC:F8:F6:99:6E:76 Certificate issuer: /CN=34D127CE360B682CEC5998F9625C80D9C841DF3A Certificate serial: 441DEC13D39800329F4AAF0AEA9F7F19D423749D Authority key identifier: 34:D1:27:CE:36:0B:68:2C:EC:59:98:F9:62:5C:80:D9:C8:41:DF:3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D127CE360B682CEC5998F9625C80D9C841DF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/3130332e3133392e3138382e302f32332d3233203d3e20313338393031.roa Signing time: Fri 23 May 2025 08:00:00 +0000 ROA not before: Fri 23 May 2025 07:55:00 +0000 ROA not after: Fri 22 May 2026 08:00:00 +0000 asID: 138901 IP address blocks: 103.139.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/34D127CE360B682CEC5998F9625C80D9C841DF3A.crl rsync://repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/34D127CE360B682CEC5998F9625C80D9C841DF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D127CE360B682CEC5998F9625C80D9C841DF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1d:ec:13:d3:98:00:32:9f:4a:af:0a:ea:9f:7f:19:d4:23:74:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D127CE360B682CEC5998F9625C80D9C841DF3A Validity Not Before: May 23 07:55:00 2025 GMT Not After : May 22 08:00:00 2026 GMT Subject: CN=8C4FF4B243E16C14B7183876F9CDACF8F6996E76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2a:c4:10:29:40:16:78:d8:30:9e:1b:30:40: 0c:85:cd:03:54:7b:f1:66:1c:a1:07:1e:11:0d:9a: f8:15:90:27:cb:23:9c:d9:16:3a:cf:9d:5a:d0:90: e1:fe:e1:37:ee:a7:ea:91:0c:d0:ff:32:46:ee:2f: 2d:a8:5d:4c:ac:c7:77:33:4a:0c:de:b9:9c:79:49: fc:17:ff:0e:c4:c3:e3:5d:0d:1b:fb:ed:c1:99:72: 76:0e:51:2b:fd:b7:8a:21:36:cb:87:49:f7:72:16: cf:f6:34:ed:48:e4:f4:8e:ba:57:f4:23:78:6c:b9: 19:37:93:63:18:7d:29:20:18:a9:20:c7:a3:ab:19: 64:6d:f6:20:82:13:9a:ef:b4:f9:86:38:b9:54:12: 15:43:cd:23:93:0e:97:01:e6:e5:36:59:76:8b:73: be:83:b7:e1:a1:56:be:e0:1b:04:ec:4b:a8:17:55: a2:bd:b5:85:ed:95:1f:c5:ab:c6:0a:16:2e:7b:bf: 5e:ca:ed:2c:17:29:4e:5a:e4:bf:81:78:d5:e5:7c: 0f:9d:73:06:5c:e3:f5:41:11:c3:24:0e:2d:65:e6: ca:1c:8e:16:da:9a:c9:e1:ad:70:54:0e:e1:33:dd: ef:5f:dc:f7:20:f1:d1:7a:a0:74:a6:13:f9:9b:01: b2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4F:F4:B2:43:E1:6C:14:B7:18:38:76:F9:CD:AC:F8:F6:99:6E:76 X509v3 Authority Key Identifier: keyid:34:D1:27:CE:36:0B:68:2C:EC:59:98:F9:62:5C:80:D9:C8:41:DF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/34D127CE360B682CEC5998F9625C80D9C841DF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D127CE360B682CEC5998F9625C80D9C841DF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb799068-4ec8-4c36-8fa7-3e72aebceeb8/0/3130332e3133392e3138382e302f32332d3233203d3e20313338393031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.188.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:5a:43:d1:3d:21:2b:87:2c:c0:b5:45:ba:95:ea:74:77:02: 78:91:75:a5:66:6e:63:fb:e0:dd:66:9a:5b:31:e4:2f:ca:16: f4:63:89:58:06:ff:46:6e:91:74:63:8f:1b:a7:0b:a1:29:04: f1:46:74:ca:82:8b:53:ac:c0:e3:19:26:02:c6:83:b5:a3:2b: b4:8c:62:c3:c5:71:8e:03:f1:dc:4a:fb:9e:0b:be:a8:a1:92: 1c:0f:ac:68:a7:ea:7b:39:e9:12:86:b5:cc:94:3f:af:12:d2: da:5d:2f:80:f4:35:f7:ae:f1:41:d2:c1:b0:2a:e0:b9:a0:c4: 69:78:90:e5:74:e0:de:eb:8f:75:ff:f8:76:23:52:9b:3b:29: 13:da:68:40:b5:f1:e5:f0:22:46:4a:71:ac:27:ef:78:af:45: a6:23:97:ab:0d:1c:d6:5f:56:2e:e3:7f:c7:6b:5c:e7:04:02: 20:fd:67:c2:24:5a:d9:fd:f9:46:fe:0d:cd:2a:af:7a:38:67: 93:c8:95:01:cc:2a:db:bb:f8:fc:46:b4:cc:5d:07:cb:32:fc: 16:c7:f2:99:da:52:8b:69:ab:c6:3c:8e:ac:8d:ed:2a:b7:2d: 22:85:c4:05:91:6a:85:ca:a4:86:fa:ff:7a:c0:31:d5:5f:a7: 6d:b7:1f:69 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURB3sE9OYADKfSq8K6p9/GdQjdJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzREMTI3Q0UzNjBCNjgyQ0VDNTk5OEY5NjI1QzgwRDlD ODQxREYzQTAeFw0yNTA1MjMwNzU1MDBaFw0yNjA1MjIwODAwMDBaMDMxMTAvBgNV BAMTKDhDNEZGNEIyNDNFMTZDMTRCNzE4Mzg3NkY5Q0RBQ0Y4RjY5OTZFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJKsQQKUAWeNgwnhswQAyFzQNU e/FmHKEHHhENmvgVkCfLI5zZFjrPnVrQkOH+4Tfup+qRDND/MkbuLy2oXUysx3cz SgzeuZx5SfwX/w7Ew+NdDRv77cGZcnYOUSv9t4ohNsuHSfdyFs/2NO1I5PSOulf0 I3hsuRk3k2MYfSkgGKkgx6OrGWRt9iCCE5rvtPmGOLlUEhVDzSOTDpcB5uU2WXaL c76Dt+GhVr7gGwTsS6gXVaK9tYXtlR/Fq8YKFi57v17K7SwXKU5a5L+BeNXlfA+d cwZc4/VBEcMkDi1l5socjhbamsnhrXBUDuEz3e9f3Pcg8dF6oHSmE/mbAbL1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjE/0skPhbBS3GDh2+c2s+PaZbnYwHwYDVR0j BBgwFoAUNNEnzjYLaCzsWZj5YlyA2chB3zowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yjc5OTA2OC00ZWM4LTRjMzYtOGZhNy0zZTcyYWViY2VlYjgvMC8zNEQxMjdDRTM2 MEI2ODJDRUM1OTk4Rjk2MjVDODBEOUM4NDFERjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzREMTI3Q0UzNjBCNjgyQ0VDNTk5OEY5NjI1QzgwRDlDODQx REYzQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViNzk5MDY4LTRlYzgtNGMzNi04 ZmE3LTNlNzJhZWJjZWViOC8wLzMxMzAzMzJlMzEzMzM5MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzgzOTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFni7wwDQYJ KoZIhvcNAQELBQADggEBAE5aQ9E9ISuHLMC1RbqV6nR3AniRdaVmbmP74N1mmlsx 5C/KFvRjiVgG/0ZukXRjjxunC6EpBPFGdMqCi1OswOMZJgLGg7WjK7SMYsPFcY4D 8dxK+54LvqihkhwPrGin6ns56RKGtcyUP68S0tpdL4D0Nfeu8UHSwbAq4LmgxGl4 kOV04N7rj3X/+HYjUps7KRPaaEC18eXwIkZKcawn73ivRaYjl6sNHNZfVi7jf8dr XOcEAiD9Z8IkWtn9+Ub+Dc0qr3o4Z5PIlQHMKtu7+PxGtMxdB8sy/BbH8pnaUotp q8Y8jqyN7Sq3LSKFxAWRaoXKpIb6/3rAMdVfp223H2k= -----END CERTIFICATE-----Generated at Mon Jun 9 02:13:37 2025 by rpki-client