$ rpki-client -vvf repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa File: 3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa (raw, json) Hash identifier: iFZpayjOhiD/nihPfQLVc2Bw/muiBocrb9Vl1jBbDNE= Subject key identifier: DB:E8:81:CD:A5:DA:2C:06:C9:09:5D:B1:3B:66:DE:9B:84:06:2B:0B Certificate issuer: /CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Certificate serial: 2294CAC110593850B9A5205B7B4B5250CDBC5292 Authority key identifier: 03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa Signing time: Mon 05 May 2025 05:02:20 +0000 ROA not before: Mon 05 May 2025 04:57:20 +0000 ROA not after: Mon 04 May 2026 05:02:20 +0000 asID: 150218 IP address blocks: 103.218.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:94:ca:c1:10:59:38:50:b9:a5:20:5b:7b:4b:52:50:cd:bc:52:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Validity Not Before: May 5 04:57:20 2025 GMT Not After : May 4 05:02:20 2026 GMT Subject: CN=DBE881CDA5DA2C06C9095DB13B66DE9B84062B0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:12:29:29:5e:62:29:76:82:43:5f:01:29: 59:2b:aa:74:38:bc:e1:7a:77:ec:93:6b:1e:c8:e9: 7a:f4:20:d8:77:2c:a4:fc:6d:25:be:1c:9d:f9:ca: e9:15:95:5e:50:1a:73:98:7a:cb:39:f6:c1:8e:b4: a0:1a:e9:06:66:97:70:75:fd:64:40:62:fd:be:9d: c2:94:dc:3c:22:23:03:00:ea:02:96:89:32:f9:60: 6b:10:cb:f9:bd:84:e9:66:52:b0:9b:4b:1d:5a:cf: 3c:19:a3:24:56:b7:02:e2:8f:b8:b2:96:74:fe:26: a6:6b:fd:26:9e:97:a2:cc:8c:55:2b:7c:de:e3:ac: bc:73:f2:fb:6a:cb:01:5f:f1:8f:2d:fa:b0:22:90: a9:8b:d3:3b:c2:72:7d:34:ab:08:da:99:28:fb:34: 46:78:b4:a2:fd:f5:1d:9b:c4:d8:bb:cd:52:53:05: bf:ec:7d:14:92:3b:b1:3b:59:c4:bc:f1:44:69:fb: 93:77:63:8c:41:44:23:fa:b0:9a:6c:82:48:2f:ce: f4:6d:c7:f3:90:ea:08:9a:d4:73:c3:10:74:d8:9e: c2:77:96:b1:67:7e:f9:f6:fc:6c:40:6b:99:58:28: d8:be:bc:c8:19:94:49:9f:36:da:40:6b:55:b4:17: 1e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E8:81:CD:A5:DA:2C:06:C9:09:5D:B1:3B:66:DE:9B:84:06:2B:0B X509v3 Authority Key Identifier: keyid:03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e3231382e3130342e302f32342d3234203d3e20313530323138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.104.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:a2:da:81:17:fe:e4:aa:2f:82:f0:b0:26:01:8d:b4:68:4c: 79:96:6c:67:51:59:e0:8c:59:5b:ca:8f:5b:07:ab:28:c3:dc: b0:9a:5c:78:de:0c:7a:31:1c:79:bc:56:50:2c:e1:82:b1:fa: f9:1b:1d:3f:eb:81:0f:b0:7a:6a:70:19:68:5d:b3:79:fc:03: fc:69:0d:68:67:25:4c:71:83:1c:90:15:af:72:65:5b:f8:10: 14:65:df:38:17:94:14:40:63:91:eb:40:1a:e7:3a:c6:cd:05: c3:62:b9:1a:83:58:d4:c2:c3:28:b7:2e:1b:3e:47:f7:66:ad: ad:d8:3a:3a:97:b5:39:9d:e9:c0:c8:ca:71:cc:83:fd:15:62: fd:f5:45:be:7e:10:b8:8d:54:32:9b:fe:11:b3:58:29:01:1c: 9a:36:9a:ac:fa:58:0d:20:b9:2a:47:2b:f1:ec:cc:71:08:76: d4:91:f5:d5:0c:36:bc:5c:8a:bd:65:05:27:04:99:e1:d2:39: 39:4a:f3:95:ce:cb:37:29:9c:41:4f:82:7d:d7:97:e7:bd:b8: b3:be:ff:6a:0b:95:cd:82:8d:01:93:31:a7:a2:52:03:62:23: e5:15:66:c9:da:be:2b:22:c4:47:5f:a6:cc:63:76:2c:09:6b: 0e:57:94:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIpTKwRBZOFC5pSBbe0tSUM28UpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0Uy Q0VCQjZGNDAeFw0yNTA1MDUwNDU3MjBaFw0yNjA1MDQwNTAyMjBaMDMxMTAvBgNV BAMTKERCRTg4MUNEQTVEQTJDMDZDOTA5NURCMTNCNjZERTlCODQwNjJCMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ORIpKV5iKXaCQ18BKVkrqnQ4 vOF6d+yTax7I6Xr0INh3LKT8bSW+HJ35yukVlV5QGnOYess59sGOtKAa6QZml3B1 /WRAYv2+ncKU3DwiIwMA6gKWiTL5YGsQy/m9hOlmUrCbSx1azzwZoyRWtwLij7iy lnT+JqZr/Sael6LMjFUrfN7jrLxz8vtqywFf8Y8t+rAikKmL0zvCcn00qwjamSj7 NEZ4tKL99R2bxNi7zVJTBb/sfRSSO7E7WcS88URp+5N3Y4xBRCP6sJpsgkgvzvRt x/OQ6gia1HPDEHTYnsJ3lrFnfvn2/GxAa5lYKNi+vMgZlEmfNtpAa1W0Fx55AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2+iBzaXaLAbJCV2xO2bem4QGKwswHwYDVR0j BBgwFoAUA4/I259POB1hTDzalE7bzizrtvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzQwZGYxMy1jNGU5LTQyMTgtYjExNC1kZWFkMTY0ODI4NWMvMC8wMzhGQzhEQjlG NEYzODFENjE0QzNDREE5NDRFREJDRTJDRUJCNkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0UyQ0VC QjZGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNDBkZjEzLWM0ZTktNDIxOC1i MTE0LWRlYWQxNjQ4Mjg1Yy8wLzMxMzAzMzJlMzIzMTM4MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2mgwDQYJ KoZIhvcNAQELBQADggEBAEui2oEX/uSqL4LwsCYBjbRoTHmWbGdRWeCMWVvKj1sH qyjD3LCaXHjeDHoxHHm8VlAs4YKx+vkbHT/rgQ+wempwGWhds3n8A/xpDWhnJUxx gxyQFa9yZVv4EBRl3zgXlBRAY5HrQBrnOsbNBcNiuRqDWNTCwyi3Lhs+R/dmra3Y OjqXtTmd6cDIynHMg/0VYv31Rb5+ELiNVDKb/hGzWCkBHJo2mqz6WA0guSpHK/Hs zHEIdtSR9dUMNrxcir1lBScEmeHSOTlK85XOyzcpnEFPgn3Xl+e9uLO+/2oLlc2C jQGTMaeiUgNiI+UVZsnavisixEdfpsxjdiwJaw5XlB4= -----END CERTIFICATE-----Generated at Sat May 10 20:48:38 2025 by rpki-client