$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa File: 3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa (raw, json) Hash identifier: PoUfFWTvv28uKyrYeaMh3T/jvxQb6hulFIaz7fVYPTw= Subject key identifier: 21:16:C1:05:58:14:D8:38:F1:7E:5B:C8:31:45:A2:0F:ED:37:CE:6B Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Certificate serial: 2A709BA06EF9746D6D54480DFA3F972ABC398CD4 Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa Signing time: Wed 19 Feb 2025 16:00:01 +0000 ROA not before: Wed 19 Feb 2025 15:55:01 +0000 ROA not after: Wed 18 Feb 2026 16:00:01 +0000 asID: 140472 IP address blocks: 103.144.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:70:9b:a0:6e:f9:74:6d:6d:54:48:0d:fa:3f:97:2a:bc:39:8c:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Validity Not Before: Feb 19 15:55:01 2025 GMT Not After : Feb 18 16:00:01 2026 GMT Subject: CN=2116C1055814D838F17E5BC83145A20FED37CE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fb:fd:a8:fc:79:30:bf:f0:c6:b4:8e:64:bc: 73:01:43:2d:37:d0:ab:f5:01:2e:30:69:70:73:2c: 1a:4b:1a:6f:0c:62:e7:a4:8e:b7:02:79:08:3d:c5: 51:ab:df:32:cb:6e:4e:8b:a0:8b:c4:49:6d:e6:03: 5f:4d:a9:aa:34:a2:80:cc:38:eb:77:2d:6d:58:18: 94:bf:9c:e3:4b:b2:4a:e5:b5:3b:6b:3d:a4:98:c8: 78:1e:7d:4c:f6:cc:99:6b:95:d7:44:de:6e:c5:f7: c0:c4:88:12:ee:be:9f:82:37:a0:ee:09:62:c4:9e: 23:70:30:3c:c4:a2:10:bf:ae:09:ef:03:de:ed:2d: 36:e5:a5:0a:7b:f1:fa:ad:68:d6:40:73:5d:90:65: a7:ce:28:0b:0b:e8:7b:b2:26:4a:91:1f:e2:b0:21: 3a:c0:b9:db:d5:d3:2c:95:85:94:52:fd:f1:13:0e: 72:aa:3e:4e:0f:b3:05:68:be:a6:c8:c1:76:ab:4a: 82:d9:00:9e:ef:70:d2:30:8b:b8:4d:4d:4d:60:6f: 3a:87:d9:7f:8a:18:7e:01:1b:d7:f3:79:ec:87:d3: b4:9f:5f:69:6b:fb:81:47:fa:cf:fa:cc:87:40:37: 63:6d:21:d5:84:35:a1:7d:ec:03:ab:aa:a5:cf:0d: 6c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:16:C1:05:58:14:D8:38:F1:7E:5B:C8:31:45:A2:0F:ED:37:CE:6B X509v3 Authority Key Identifier: keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.47.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:de:79:02:4d:fe:66:95:19:cc:2d:aa:5e:6b:e6:96:fd:72: 8d:cd:98:24:0f:f1:48:d5:eb:55:a9:22:f8:8e:7a:6d:ae:8f: f1:a1:66:65:e4:d3:65:1e:81:a9:17:3c:98:2c:20:70:7c:5e: 81:af:98:c2:0d:5e:f3:b6:a9:a0:14:2a:c6:1f:18:b6:dc:72: 1b:c6:68:82:38:d2:79:bf:0c:d2:dc:e4:df:6b:69:87:80:da: 4d:9d:1f:c4:10:b5:45:04:2a:a9:79:2e:52:4f:fc:3e:09:7a: 0e:9f:fb:34:cf:96:41:60:69:b7:40:f6:fc:35:df:65:f2:58: b8:7c:51:75:bc:5b:63:95:22:95:2d:64:b2:27:eb:98:e6:c9: 53:b6:5f:70:97:a0:ee:5b:7b:23:53:07:6d:c5:5a:b2:0d:9b: 32:99:f4:2d:94:d4:ff:06:46:67:50:8e:3c:27:e9:89:89:6f: c7:88:96:13:6a:19:e2:d7:0d:1c:db:8f:48:d9:7c:0f:df:33: 36:a2:11:cd:6e:2a:9e:90:14:1d:1f:bb:f8:ac:24:df:0c:87: 34:e1:53:1a:01:c6:bb:0e:e3:08:7f:59:61:07:d1:65:67:c4: 25:fd:82:3b:0e:62:cc:93:5c:65:b4:5e:da:ca:da:b1:ff:b4: ba:7e:f6:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKnCboG75dG1tVEgN+j+XKrw5jNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2 NkE1MUZENjAeFw0yNTAyMTkxNTU1MDFaFw0yNjAyMTgxNjAwMDFaMDMxMTAvBgNV BAMTKDIxMTZDMTA1NTgxNEQ4MzhGMTdFNUJDODMxNDVBMjBGRUQzN0NFNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD+/2o/Hkwv/DGtI5kvHMBQy03 0Kv1AS4waXBzLBpLGm8MYuekjrcCeQg9xVGr3zLLbk6LoIvESW3mA19Nqao0ooDM OOt3LW1YGJS/nONLskrltTtrPaSYyHgefUz2zJlrlddE3m7F98DEiBLuvp+CN6Du CWLEniNwMDzEohC/rgnvA97tLTblpQp78fqtaNZAc12QZafOKAsL6HuyJkqRH+Kw ITrAudvV0yyVhZRS/fETDnKqPk4PswVovqbIwXarSoLZAJ7vcNIwi7hNTU1gbzqH 2X+KGH4BG9fzeeyH07SfX2lr+4FH+s/6zIdAN2NtIdWENaF97AOrqqXPDWxdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIRbBBVgU2DjxflvIMUWiD+03zmswHwYDVR0j BBgwFoAUFMjLl/04EZA5LvWLKpzY1WalH9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGFlYzY2Yy05ZTFkLTQzMjEtYjA2OS1lZWFiNDc5M2EwMGIvMC8xNEM4Q0I5N0ZE MzgxMTkwMzkyRUY1OEIyQTlDRDhENTY2QTUxRkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2NkE1 MUZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkYWVjNjZjLTllMWQtNDMyMS1i MDY5LWVlYWI0NzkzYTAwYi8wLzMxMzAzMzJlMzEzNDM0MmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AvMA0GCSqG SIb3DQEBCwUAA4IBAQAq3nkCTf5mlRnMLapea+aW/XKNzZgkD/FI1etVqSL4jnpt ro/xoWZl5NNlHoGpFzyYLCBwfF6Br5jCDV7ztqmgFCrGHxi23HIbxmiCONJ5vwzS 3OTfa2mHgNpNnR/EELVFBCqpeS5ST/w+CXoOn/s0z5ZBYGm3QPb8Nd9l8li4fFF1 vFtjlSKVLWSyJ+uY5slTtl9wl6DuW3sjUwdtxVqyDZsymfQtlNT/BkZnUI48J+mJ iW/HiJYTahni1w0c249I2XwP3zM2ohHNbiqekBQdH7v4rCTfDIc04VMaAca7DuMI f1lhB9FlZ8Ql/YI7DmLMk1xltF7aytqx/7S6fvaN -----END CERTIFICATE-----Generated at Sun Apr 6 17:38:04 2025 by rpki-client