$ rpki-client -vvf repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37342e302f32342d3234203d3e20313334363332.roa File: 3130332e31342e37342e302f32342d3234203d3e20313334363332.roa (raw, json) Hash identifier: kRl6IfQghVcIhK14CpOe+4+3tl4P/DD5zma96SwY1Qw= Subject key identifier: C4:1D:AC:67:B7:8B:87:C0:A0:87:9E:EB:D1:D0:26:AD:24:3A:0E:16 Certificate issuer: /CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Certificate serial: 47BFACB64D0535A008DD887D7A6F393C136754D4 Authority key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37342e302f32342d3234203d3e20313334363332.roa Signing time: Mon 05 May 2025 10:02:53 +0000 ROA not before: Mon 05 May 2025 09:57:53 +0000 ROA not after: Mon 04 May 2026 10:02:53 +0000 asID: 134632 IP address blocks: 103.14.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.crl rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 01:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:bf:ac:b6:4d:05:35:a0:08:dd:88:7d:7a:6f:39:3c:13:67:54:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Validity Not Before: May 5 09:57:53 2025 GMT Not After : May 4 10:02:53 2026 GMT Subject: CN=C41DAC67B78B87C0A0879EEBD1D026AD243A0E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d8:8d:2f:4d:bd:f2:79:a8:68:18:da:13:e4: 97:45:a5:df:35:c3:05:8c:be:2f:a9:f7:06:11:e0: 9a:93:0d:f2:86:7d:84:ef:c1:69:4e:9d:a7:92:fb: 4d:83:ce:da:eb:2d:b4:09:66:be:0c:d6:f8:16:0e: c3:f4:52:1b:e7:f4:a7:d8:ab:eb:f0:de:5b:0c:da: 7e:36:c0:22:59:eb:44:61:bc:99:93:53:1b:c7:8d: 09:6d:c7:6f:15:d0:a6:b0:ee:56:d4:fa:da:fd:6d: 4a:70:80:80:71:21:33:c8:93:6d:73:22:9a:0e:3c: 1e:fe:f0:7c:28:8e:ce:87:54:34:e0:43:f2:e0:72: bb:3b:be:14:53:68:d5:55:14:13:8d:63:e6:01:af: 21:28:e4:1b:2d:5c:02:cb:dd:4a:90:ec:f8:b4:ae: dd:fb:af:ff:8e:06:72:3c:02:4c:72:1f:9f:26:7b: 1b:3a:19:0f:c8:ed:e3:83:eb:1d:50:19:cf:72:cc: 8e:3f:76:cc:45:56:b9:77:2a:53:79:bb:93:50:4b: 8e:2d:6b:08:4a:4f:25:00:23:39:92:82:f3:f8:9f: d7:6f:e7:5c:b4:92:72:3f:16:b2:b2:60:f2:c7:c6: 34:d2:32:a5:a2:32:8c:39:68:40:c9:8c:49:07:24: a0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1D:AC:67:B7:8B:87:C0:A0:87:9E:EB:D1:D0:26:AD:24:3A:0E:16 X509v3 Authority Key Identifier: keyid:1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37342e302f32342d3234203d3e20313334363332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.74.0/24 Signature Algorithm: sha256WithRSAEncryption 98:68:b2:66:56:ca:11:60:35:d5:43:7e:c2:59:04:ea:47:a1: d3:71:da:b0:6c:8d:ca:56:3a:ec:7a:c9:1d:d4:e5:26:72:6c: 56:ab:d3:06:d0:6d:e5:20:08:52:fa:c1:0d:df:55:bd:cd:d9: 9e:29:84:6c:3a:dd:6c:e4:8f:1e:d6:18:95:49:ca:cf:68:56: 7f:ec:1d:3b:a2:53:ac:21:4d:83:4c:3a:3d:ad:eb:d1:96:5d: f9:68:0d:dd:83:f4:4a:6a:33:ae:3e:e8:4e:bf:2a:dd:8f:d4: 12:d6:3e:25:f4:a5:62:3c:81:c1:ca:d0:34:14:40:69:c6:ae: bb:21:ba:e2:5b:e5:27:82:cf:60:2f:02:a2:08:15:85:16:3b: 82:0d:12:58:fa:23:6d:47:1d:34:c6:25:b6:d8:81:f2:22:0b: 8d:8e:bd:3b:61:bb:95:82:87:48:98:77:56:d9:03:1b:ae:7a: 7d:8f:a8:28:cf:55:cd:0d:a1:5e:96:50:e8:45:42:6f:14:20: 4a:8b:9d:1c:ef:fd:64:cc:80:88:09:12:17:d2:10:30:fe:dd: 53:90:07:f4:3f:1c:61:47:02:02:6c:d3:fd:54:d0:a8:11:7f: 1e:d6:16:1b:68:9a:dd:a1:ed:8c:ea:6a:67:74:26:b3:dc:1b: dd:b6:aa:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR7+stk0FNaAI3Yh9em85PBNnVNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5 MjdFQzczMTAeFw0yNTA1MDUwOTU3NTNaFw0yNjA1MDQxMDAyNTNaMDMxMTAvBgNV BAMTKEM0MURBQzY3Qjc4Qjg3QzBBMDg3OUVFQkQxRDAyNkFEMjQzQTBFMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+2I0vTb3yeahoGNoT5JdFpd81 wwWMvi+p9wYR4JqTDfKGfYTvwWlOnaeS+02DztrrLbQJZr4M1vgWDsP0Uhvn9KfY q+vw3lsM2n42wCJZ60RhvJmTUxvHjQltx28V0Kaw7lbU+tr9bUpwgIBxITPIk21z IpoOPB7+8Hwojs6HVDTgQ/Lgcrs7vhRTaNVVFBONY+YBryEo5BstXALL3UqQ7Pi0 rt37r/+OBnI8AkxyH58mexs6GQ/I7eOD6x1QGc9yzI4/dsxFVrl3KlN5u5NQS44t awhKTyUAIzmSgvP4n9dv51y0knI/FrKyYPLHxjTSMqWiMow5aEDJjEkHJKDBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxB2sZ7eLh8Cgh57r0dAmrSQ6DhYwHwYDVR0j BBgwFoAUHupxtMcKR9U74yBP4sSM75J+xzEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMC8xRUVBNzFCNEM3 MEE0N0Q1M0JFMzIwNEZFMkM0OENFRjkyN0VDNzMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5MjdF QzczMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNlLWY0NGEtNGNmYy1i ZjU2LWQ5OWEwOTJkNzMxNC8wLzMxMzAzMzJlMzEzNDJlMzczNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNDM2MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcOSjANBgkqhkiG 9w0BAQsFAAOCAQEAmGiyZlbKEWA11UN+wlkE6keh03HasGyNylY67HrJHdTlJnJs VqvTBtBt5SAIUvrBDd9Vvc3ZnimEbDrdbOSPHtYYlUnKz2hWf+wdO6JTrCFNg0w6 Pa3r0ZZd+WgN3YP0Smozrj7oTr8q3Y/UEtY+JfSlYjyBwcrQNBRAacauuyG64lvl J4LPYC8CoggVhRY7gg0SWPojbUcdNMYlttiB8iILjY69O2G7lYKHSJh3VtkDG656 fY+oKM9VzQ2hXpZQ6EVCbxQgSoudHO/9ZMyAiAkSF9IQMP7dU5AH9D8cYUcCAmzT /VTQqBF/HtYWG2ia3aHtjOpqZ3Qms9wb3baqHQ== -----END CERTIFICATE-----Generated at Fri May 9 08:35:34 2025 by rpki-client