$ rpki-client -vvf repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa File: 3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa (raw, json) Hash identifier: S91vKZLLe/dNTIpbo6cZEhpzP1zxZDRgjEKwwjEVMQo= Subject key identifier: E8:DD:FE:4A:4F:80:3B:D1:F5:B9:77:7F:F2:FD:38:E4:B7:6F:F6:38 Certificate issuer: /CN=18501FBD8586A1409C33F07377587F8C015DAFF4 Certificate serial: 7CA7E692A0FB0C2CAEA68A935BACF18556FCD4C2 Authority key identifier: 18:50:1F:BD:85:86:A1:40:9C:33:F0:73:77:58:7F:8C:01:5D:AF:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa Signing time: Fri 02 May 2025 16:00:01 +0000 ROA not before: Fri 02 May 2025 15:55:01 +0000 ROA not after: Fri 01 May 2026 16:00:01 +0000 asID: 150960 IP address blocks: 103.122.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.crl rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 19:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a7:e6:92:a0:fb:0c:2c:ae:a6:8a:93:5b:ac:f1:85:56:fc:d4:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18501FBD8586A1409C33F07377587F8C015DAFF4 Validity Not Before: May 2 15:55:01 2025 GMT Not After : May 1 16:00:01 2026 GMT Subject: CN=E8DDFE4A4F803BD1F5B9777FF2FD38E4B76FF638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:36:31:e2:06:13:ab:47:b0:bb:b1:3d:9b:4d: f2:f0:08:87:4d:7a:cf:5c:7f:61:d3:42:38:12:af: 31:1d:a8:0c:40:1f:92:48:be:a6:fd:87:31:5a:8a: 42:ce:43:02:b1:e0:4c:87:5e:ce:bd:12:e8:cb:f7: 73:98:ce:7f:1b:ad:f1:d2:5b:15:cc:27:61:f7:75: a9:7f:30:c8:e9:0b:cf:89:a3:c8:0b:4d:e1:38:e9: 2f:aa:e6:42:65:f2:63:46:b2:4c:dc:f6:f3:e9:e7: e7:fb:4b:47:b4:ae:4d:9d:02:5a:fc:04:e6:d9:16: 01:9c:77:60:ad:8f:0f:e7:8e:bc:e9:41:1a:16:5d: 7d:31:ea:1e:db:4d:b5:9a:91:d6:2a:32:10:fb:0e: 8f:04:10:c7:69:d8:1e:3d:b2:2d:b0:eb:72:1c:f8: a6:02:6a:0b:ec:10:5e:30:7d:34:4e:38:01:56:31: 8d:90:e5:98:69:f0:1d:3e:f5:be:f5:da:f4:8b:68: b3:13:c3:44:74:41:5b:41:d3:5d:f8:cc:77:2f:40: 5d:35:2d:68:98:59:eb:62:44:ea:2b:d5:fa:99:09: 3c:84:bb:32:29:07:33:a9:c8:90:90:63:6e:8e:35: 87:46:c7:14:1e:2d:2e:c6:0c:f5:20:a6:a8:4a:37: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DD:FE:4A:4F:80:3B:D1:F5:B9:77:7F:F2:FD:38:E4:B7:6F:F6:38 X509v3 Authority Key Identifier: keyid:18:50:1F:BD:85:86:A1:40:9C:33:F0:73:77:58:7F:8C:01:5D:AF:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.212.0/23 Signature Algorithm: sha256WithRSAEncryption 41:ba:e4:77:d5:cf:cf:a0:bb:2e:bc:b8:47:ac:eb:23:bc:5a: 1f:9d:c4:09:25:ce:c8:91:be:51:b9:0a:10:f9:6f:d7:75:1b: 2b:55:3c:57:84:a8:8a:05:3a:59:a6:a3:58:75:a6:eb:93:f9: ad:bd:0e:34:fd:91:7d:73:66:65:34:c1:92:51:81:bc:19:aa: 54:b6:30:eb:6d:70:b6:9e:be:11:8d:94:24:d5:3c:42:e6:6b: 13:bf:67:5f:70:d1:22:76:eb:83:34:9f:20:6a:4c:1e:e1:c0: d4:6d:3f:78:9e:d2:d3:42:99:bd:ee:9e:f5:43:7c:f8:1c:34: 7f:55:8e:8a:75:e2:3e:b6:2d:2a:ba:70:d8:b1:f4:d9:cd:e2: cc:c7:f0:47:3c:94:73:9f:82:62:7c:24:af:0b:b0:42:a9:e8: 96:be:a3:16:82:26:fb:72:41:10:45:44:82:76:bd:4c:7a:30: ea:0f:c1:8d:b1:63:1a:d6:69:d5:e7:6b:c6:41:9e:de:54:aa: 5c:a2:f4:8b:d8:73:60:26:00:af:26:49:c6:3f:61:3a:be:95: 7a:00:34:a7:2e:51:bd:e1:0f:07:6b:04:4e:7d:fc:dc:ee:4a: a0:93:1f:4d:4c:f3:83:33:83:d3:c5:c9:a5:da:5e:22:b6:3f: 91:73:00:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfKfmkqD7DCyupoqTW6zxhVb81MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg1MDFGQkQ4NTg2QTE0MDlDMzNGMDczNzc1ODdGOEMw MTVEQUZGNDAeFw0yNTA1MDIxNTU1MDFaFw0yNjA1MDExNjAwMDFaMDMxMTAvBgNV BAMTKEU4RERGRTRBNEY4MDNCRDFGNUI5Nzc3RkYyRkQzOEU0Qjc2RkY2MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNjHiBhOrR7C7sT2bTfLwCIdN es9cf2HTQjgSrzEdqAxAH5JIvqb9hzFaikLOQwKx4EyHXs69EujL93OYzn8brfHS WxXMJ2H3dal/MMjpC8+Jo8gLTeE46S+q5kJl8mNGskzc9vPp5+f7S0e0rk2dAlr8 BObZFgGcd2Ctjw/njrzpQRoWXX0x6h7bTbWakdYqMhD7Do8EEMdp2B49si2w63Ic +KYCagvsEF4wfTROOAFWMY2Q5Zhp8B0+9b712vSLaLMTw0R0QVtB0134zHcvQF01 LWiYWetiROor1fqZCTyEuzIpBzOpyJCQY26ONYdGxxQeLS7GDPUgpqhKN7pTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6N3+Sk+AO9H1uXd/8v045Ldv9jgwHwYDVR0j BBgwFoAUGFAfvYWGoUCcM/Bzd1h/jAFdr/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YWFiZGRiZi1kMTE5LTRjODAtODgyNy03YTg4OGE5M2NlMDMvMC8xODUwMUZCRDg1 ODZBMTQwOUMzM0YwNzM3NzU4N0Y4QzAxNURBRkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTg1MDFGQkQ4NTg2QTE0MDlDMzNGMDczNzc1ODdGOEMwMTVE QUZGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhYWJkZGJmLWQxMTktNGM4MC04 ODI3LTdhODg4YTkzY2UwMy8wLzMxMzAzMzJlMzEzMjMyMmUzMjMxMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM2MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnetQwDQYJ KoZIhvcNAQELBQADggEBAEG65HfVz8+guy68uEes6yO8Wh+dxAklzsiRvlG5ChD5 b9d1GytVPFeEqIoFOlmmo1h1puuT+a29DjT9kX1zZmU0wZJRgbwZqlS2MOttcLae vhGNlCTVPELmaxO/Z19w0SJ264M0nyBqTB7hwNRtP3ie0tNCmb3unvVDfPgcNH9V jop14j62LSq6cNix9NnN4szH8Ec8lHOfgmJ8JK8LsEKp6Ja+oxaCJvtyQRBFRIJ2 vUx6MOoPwY2xYxrWadXna8ZBnt5Uqlyi9IvYc2AmAK8mScY/YTq+lXoANKcuUb3h DwdrBE59/NzuSqCTH01M84Mzg9PFyaXaXiK2P5FzAI4= -----END CERTIFICATE-----Generated at Sun May 11 12:28:10 2025 by rpki-client