$ rpki-client -vvf repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa File: 3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa (raw, json) Hash identifier: fQYP6KBmK43mZ1BOpBi0K6IbkEvJhG31/o2xXC40uG8= Subject key identifier: AE:D4:45:A5:BA:78:88:ED:62:6F:4A:50:12:DC:A4:F5:9A:1D:F8:92 Certificate issuer: /CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Certificate serial: 42FE426254555B40AF1402F7EF2EE09D0B946DB2 Authority key identifier: 64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa Signing time: Mon 28 Apr 2025 10:01:08 +0000 ROA not before: Mon 28 Apr 2025 09:56:08 +0000 ROA not after: Mon 27 Apr 2026 10:01:08 +0000 asID: 141146 IP address blocks: 103.158.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 06:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fe:42:62:54:55:5b:40:af:14:02:f7:ef:2e:e0:9d:0b:94:6d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Validity Not Before: Apr 28 09:56:08 2025 GMT Not After : Apr 27 10:01:08 2026 GMT Subject: CN=AED445A5BA7888ED626F4A5012DCA4F59A1DF892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:6f:9b:f6:74:ec:a9:55:96:88:e9:24:91: a6:5d:35:64:a9:9f:cd:be:cd:ec:ea:b0:59:89:b6: 9b:b8:e5:bb:67:fe:c9:7d:f9:a6:32:0a:ec:8a:fb: c5:66:0c:2d:a7:51:1b:81:6a:4a:9c:db:e6:26:4a: 9f:22:d0:46:a3:86:6b:99:67:53:d2:42:8e:e4:32: 77:14:f6:e1:61:5c:12:c3:1c:da:d3:65:0d:ce:b8: 3d:4b:27:62:c1:2f:14:f1:f4:de:7f:5d:66:1f:a9: 12:54:1d:9c:90:d2:ff:86:de:e8:30:8f:41:71:ac: 55:6f:a4:30:53:b6:80:ae:ec:47:3d:2d:54:b6:5a: d7:cb:76:97:05:2b:23:ae:6b:48:07:20:50:ee:52: a5:d7:aa:e9:33:ca:15:58:55:dd:35:47:2c:5d:aa: c8:e0:58:da:0e:bd:48:ab:d9:36:99:47:84:c3:3c: 5c:2b:c1:2d:5c:1f:24:2d:d3:84:37:00:65:82:c5: 8e:af:de:ac:53:ed:be:15:8f:bb:ba:68:58:d8:bb: e9:96:de:69:ba:a5:ae:39:f9:4f:59:5e:3d:df:2d: 78:64:3a:d7:a5:f3:eb:08:c2:b7:9f:18:3b:0f:c5: 1d:9d:be:a3:61:a1:6f:f6:ed:b3:ea:f4:7c:7a:af: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D4:45:A5:BA:78:88:ED:62:6F:4A:50:12:DC:A4:F5:9A:1D:F8:92 X509v3 Authority Key Identifier: keyid:64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.208.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:f2:83:5e:22:ae:ba:85:1a:e9:07:a2:ed:20:6e:2b:4b:c4: c9:c0:42:d6:30:8e:55:d7:d3:82:20:2a:53:44:8c:d6:e8:a4: f1:43:00:3d:a8:ff:4e:30:92:2e:c5:24:23:e5:4d:5a:1b:9c: 98:5c:b4:41:15:7d:5f:69:f1:06:0e:7b:21:60:ea:88:82:04: be:9b:3d:a7:c7:a4:b7:37:96:af:3a:ec:ba:dd:2f:45:3f:9e: dd:13:c1:be:0c:99:0e:ad:2b:5f:4b:f9:00:d0:81:52:eb:2a: ad:c2:e1:1b:f1:e8:a0:6f:ac:ba:3f:88:93:f3:c6:9f:ea:17: a8:b3:90:1b:4e:14:c6:5b:b7:a4:e9:d9:5c:79:d8:1e:1a:96: 6f:7d:77:14:0c:44:40:36:c5:3b:80:2b:8e:30:c0:63:04:b6: 9b:12:0a:2d:f1:c6:bf:20:ce:03:63:2f:1a:1a:8d:b7:b1:8f: 5e:5b:e4:04:ec:8a:d5:b9:2b:ff:e1:8a:a3:c2:9a:99:06:44: dc:6d:ea:b8:a8:ce:d3:5a:41:f8:9a:3b:52:04:2d:33:db:63: b4:ce:22:9a:91:05:d9:6e:e4:d4:88:06:a2:78:d1:59:55:cf: e3:68:94:b7:37:13:87:c0:76:3d:9c:6f:81:66:40:9e:cf:3c: 40:02:b6:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQv5CYlRVW0CvFAL37y7gnQuUbbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZF RUYxNURCNjAeFw0yNTA0MjgwOTU2MDhaFw0yNjA0MjcxMDAxMDhaMDMxMTAvBgNV BAMTKEFFRDQ0NUE1QkE3ODg4RUQ2MjZGNEE1MDEyRENBNEY1OUExREY4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe42+b9nTsqVWWiOkkkaZdNWSp n82+zezqsFmJtpu45btn/sl9+aYyCuyK+8VmDC2nURuBakqc2+YmSp8i0EajhmuZ Z1PSQo7kMncU9uFhXBLDHNrTZQ3OuD1LJ2LBLxTx9N5/XWYfqRJUHZyQ0v+G3ugw j0FxrFVvpDBTtoCu7Ec9LVS2WtfLdpcFKyOua0gHIFDuUqXXqukzyhVYVd01Ryxd qsjgWNoOvUir2TaZR4TDPFwrwS1cHyQt04Q3AGWCxY6v3qxT7b4Vj7u6aFjYu+mW 3mm6pa45+U9ZXj3fLXhkOtel8+sIwrefGDsPxR2dvqNhoW/27bPq9Hx6r/chAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrtRFpbp4iO1ib0pQEtyk9Zod+JIwHwYDVR0j BBgwFoAUZLRmUdewx1fkrt4BaR8GL+7xXbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTcwNTkyNy1lYzY0LTQ0ZjUtOWM5ZS1jOWE1NWE1MjNiNjQvMC82NEI0NjY1MUQ3 QjBDNzU3RTRBRURFMDE2OTFGMDYyRkVFRjE1REI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZFRUYx NURCNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnntAwDQYJ KoZIhvcNAQELBQADggEBAJryg14irrqFGukHou0gbitLxMnAQtYwjlXX04IgKlNE jNbopPFDAD2o/04wki7FJCPlTVobnJhctEEVfV9p8QYOeyFg6oiCBL6bPafHpLc3 lq867LrdL0U/nt0Twb4MmQ6tK19L+QDQgVLrKq3C4Rvx6KBvrLo/iJPzxp/qF6iz kBtOFMZbt6Tp2Vx52B4alm99dxQMREA2xTuAK44wwGMEtpsSCi3xxr8gzgNjLxoa jbexj15b5ATsitW5K//hiqPCmpkGRNxt6rioztNaQfiaO1IELTPbY7TOIpqRBdlu 5NSIBqJ40VlVz+NolLc3E4fAdj2cb4FmQJ7PPEACtq0= -----END CERTIFICATE-----Generated at Sat May 10 03:53:44 2025 by rpki-client