$ rpki-client -vvf repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa File: 3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa (raw, json) Hash identifier: AnirtwiQcqhih7uqF14RHtBvHcWSRInmlpBmELQD3Bc= Subject key identifier: D2:C9:2E:CD:9B:36:E3:2E:AF:8E:83:93:DF:FC:31:FC:75:3F:80:03 Certificate issuer: /CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Certificate serial: 43DD3F7BBF7D06C6B6D86FD76556A8251F3BFA54 Authority key identifier: 90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa Signing time: Wed 02 Apr 2025 18:00:02 +0000 ROA not before: Wed 02 Apr 2025 17:55:02 +0000 ROA not after: Wed 01 Apr 2026 18:00:02 +0000 asID: 139455 IP address blocks: 103.145.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 13:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:dd:3f:7b:bf:7d:06:c6:b6:d8:6f:d7:65:56:a8:25:1f:3b:fa:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Validity Not Before: Apr 2 17:55:02 2025 GMT Not After : Apr 1 18:00:02 2026 GMT Subject: CN=D2C92ECD9B36E32EAF8E8393DFFC31FC753F8003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1b:60:4b:ac:b3:83:0a:43:0f:87:46:95:0d: 73:2a:33:ea:a9:82:7d:a8:28:ed:8c:89:d4:6b:47: 40:76:70:c2:f5:77:b4:1e:8a:61:63:58:38:94:bb: 23:4f:94:77:61:0a:0e:33:82:16:22:cc:95:0a:6b: 3f:c1:8f:86:5b:2a:7e:ea:b3:e8:50:4c:22:75:50: bf:2c:1b:b5:3a:c3:ea:8c:db:ff:fc:ae:20:92:98: 4b:7c:3d:69:d5:1a:8f:89:6f:7b:db:a1:dd:11:04: 62:6c:d3:ef:23:34:8b:9b:22:18:59:11:08:42:c3: 7d:75:10:f0:0a:2c:a3:ec:4c:76:19:4c:47:cd:99: 2f:44:ff:03:dc:ad:f5:1b:3b:ba:13:cf:6b:9d:52: da:d7:0e:ce:63:ab:61:55:7c:86:bf:dc:b7:1d:29: 48:f9:d2:a6:fb:9f:65:b3:1f:33:05:29:a2:94:6e: ab:65:1a:bf:e3:48:3d:8b:18:6e:72:6e:51:45:0b: b1:4d:b0:24:ea:80:b4:e4:84:52:9a:3c:37:db:8d: 1e:66:49:a0:38:bd:61:45:6f:30:70:76:84:29:bf: 1d:4b:54:62:04:f7:99:7e:e3:68:27:81:b4:f7:19: 83:83:9f:ad:55:fa:85:85:72:0f:b4:c0:dd:3b:e5: 0e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C9:2E:CD:9B:36:E3:2E:AF:8E:83:93:DF:FC:31:FC:75:3F:80:03 X509v3 Authority Key Identifier: keyid:90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.52.0/24 Signature Algorithm: sha256WithRSAEncryption bd:4f:cd:05:c8:cd:d5:c6:b7:ca:dc:1a:8e:cc:83:9e:a3:16: ce:c1:25:18:b6:9d:b3:20:ed:e0:e0:c0:7f:d6:36:f1:59:1d: 3f:4a:4b:70:56:80:8e:6e:66:6b:98:13:e3:3a:f8:2b:52:e4: 29:89:e8:bf:ea:c0:bf:88:0f:7f:a2:92:9c:f9:d3:34:e2:44: d0:0e:ab:a0:56:79:d3:f0:dc:ae:8e:1a:c8:27:02:e4:9d:9f: 12:d4:eb:73:9c:00:6c:53:2a:21:a7:46:d4:1d:c1:71:9e:eb: bd:75:d6:45:70:aa:0e:e5:f5:52:2d:86:ec:7f:da:39:46:7a: 46:c8:c9:55:64:0a:87:be:2c:87:ee:49:c4:5a:d5:94:29:de: 16:5b:8c:96:87:bb:cb:59:bd:77:e2:50:c0:d5:04:33:2d:d0: 2c:3d:54:d9:7e:57:e3:d4:5e:1c:95:b3:ec:48:24:80:ed:dc: 85:25:17:7b:2f:23:99:2c:9b:1b:e6:a8:f3:ff:e2:7d:fc:25: d1:c3:f2:57:df:18:fb:cc:cb:cc:1e:aa:18:f4:bd:4a:70:a0: 17:cc:81:63:42:5f:f8:66:9c:5c:79:07:80:2e:6b:a3:00:25: 85:0d:74:18:2a:bf:c4:91:61:4a:ce:d9:54:5c:87:ba:68:98: 42:14:83:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ90/e799Bsa22G/XZVaoJR87+lQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFF Q0VGODNBMzAeFw0yNTA0MDIxNzU1MDJaFw0yNjA0MDExODAwMDJaMDMxMTAvBgNV BAMTKEQyQzkyRUNEOUIzNkUzMkVBRjhFODM5M0RGRkMzMUZDNzUzRjgwMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/G2BLrLODCkMPh0aVDXMqM+qp gn2oKO2MidRrR0B2cML1d7QeimFjWDiUuyNPlHdhCg4zghYizJUKaz/Bj4ZbKn7q s+hQTCJ1UL8sG7U6w+qM2//8riCSmEt8PWnVGo+Jb3vbod0RBGJs0+8jNIubIhhZ EQhCw311EPAKLKPsTHYZTEfNmS9E/wPcrfUbO7oTz2udUtrXDs5jq2FVfIa/3Lcd KUj50qb7n2WzHzMFKaKUbqtlGr/jSD2LGG5yblFFC7FNsCTqgLTkhFKaPDfbjR5m SaA4vWFFbzBwdoQpvx1LVGIE95l+42gngbT3GYODn61V+oWFcg+0wN075Q4DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0skuzZs24y6vjoOT3/wx/HU/gAMwHwYDVR0j BBgwFoAUkOLMrKMj6rIUX1S3z2XF+uzvg6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzdmZmUyYS0zMWU0LTQ4MDAtOTdkNC03ODc0YzEyMzE5MTEvMC85MEUyQ0NBQ0Ez MjNFQUIyMTQ1RjU0QjdDRjY1QzVGQUVDRUY4M0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFFQ0VG ODNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3N2ZmZTJhLTMxZTQtNDgwMC05 N2Q0LTc4NzRjMTIzMTkxMS8wLzMxMzAzMzJlMzEzNDM1MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5E0MA0GCSqG SIb3DQEBCwUAA4IBAQC9T80FyM3VxrfK3BqOzIOeoxbOwSUYtp2zIO3g4MB/1jbx WR0/SktwVoCObmZrmBPjOvgrUuQpiei/6sC/iA9/opKc+dM04kTQDqugVnnT8Nyu jhrIJwLknZ8S1OtznABsUyohp0bUHcFxnuu9ddZFcKoO5fVSLYbsf9o5RnpGyMlV ZAqHviyH7knEWtWUKd4WW4yWh7vLWb134lDA1QQzLdAsPVTZflfj1F4clbPsSCSA 7dyFJRd7LyOZLJsb5qjz/+J9/CXRw/JX3xj7zMvMHqoY9L1KcKAXzIFjQl/4Zpxc eQeALmujACWFDXQYKr/EkWFKztlUXIe6aJhCFINT -----END CERTIFICATE-----Generated at Sun Apr 6 08:40:42 2025 by rpki-client