$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e20313530393134.roa File: 3130332e39362e3134342e302f32332d3234203d3e20313530393134.roa (raw, json) Hash identifier: 25iIrmROclUu1xNaKTR+JYgvj8VIsqzhXaBvgLC24Qs= Subject key identifier: 85:28:60:6A:CB:79:B7:E3:FB:3F:05:0A:7E:0F:BA:5B:CA:11:14:E8 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 0D8EBBF0B5BF8195D2AEF48F6876A7EF70BC24A7 Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e20313530393134.roa Signing time: Tue 11 Feb 2025 18:00:00 +0000 ROA not before: Tue 11 Feb 2025 17:55:00 +0000 ROA not after: Tue 10 Feb 2026 18:00:00 +0000 asID: 150914 IP address blocks: 103.96.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 09:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:8e:bb:f0:b5:bf:81:95:d2:ae:f4:8f:68:76:a7:ef:70:bc:24:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Feb 11 17:55:00 2025 GMT Not After : Feb 10 18:00:00 2026 GMT Subject: CN=8528606ACB79B7E3FB3F050A7E0FBA5BCA1114E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:f5:e2:53:98:d1:0b:fb:94:a5:d2:ee:ec: cd:2c:71:3a:d2:62:ee:07:c5:2d:4f:85:05:87:12: 83:6a:14:52:a2:65:cc:9d:f1:65:f7:91:1b:8b:7b: d9:cb:11:82:a3:db:6d:09:74:6c:7b:83:c6:d1:e1: ed:22:71:52:30:05:f3:0c:31:71:4d:10:ae:1f:ed: e1:55:a2:67:41:ed:17:70:4c:ef:f7:3d:73:38:a6: 1a:55:9d:09:49:e4:11:7b:0f:3c:e3:f8:13:85:81: bc:84:04:d3:dd:d8:9d:1e:3c:4c:a1:d4:4e:c8:d8: dd:af:ed:b4:8c:4a:1c:95:d7:a3:c3:67:68:87:bd: 8f:af:42:71:65:14:ed:ac:06:22:49:19:7e:01:48: f4:bf:93:57:dd:d5:af:e4:55:98:82:3e:3f:e4:bb: 18:36:d3:79:ad:34:b4:e8:5d:be:dc:5b:f2:bc:af: 96:58:af:4e:2c:0a:14:2a:19:eb:fa:d5:43:ea:25: 15:02:03:f9:f8:b9:72:7d:ce:54:5a:9d:04:3e:7c: 2a:f9:09:69:29:56:0b:22:25:65:26:d9:3e:e3:de: 2d:d2:8f:ad:a2:fc:3a:d9:36:90:70:7f:a6:6d:6b: db:28:5a:b9:46:48:bb:5f:f7:a3:46:7c:c1:d4:18: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:28:60:6A:CB:79:B7:E3:FB:3F:05:0A:7E:0F:BA:5B:CA:11:14:E8 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e20313530393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:1e:65:a0:7a:a4:04:21:ce:0c:b2:f6:60:f3:ab:67:90:54: e7:0c:dd:f0:6b:8b:07:f2:60:16:48:d1:07:70:5d:48:30:cd: c6:4f:57:39:e4:a0:f8:aa:9f:d7:f1:10:3f:9a:fb:ac:ee:bd: 00:c3:4c:be:a3:0f:0e:43:a8:a1:7d:6c:40:c8:8b:8f:2a:95: 33:60:3b:29:d3:74:2b:60:48:b4:56:92:63:c2:32:83:62:32: a3:96:9a:57:44:7d:e9:1d:62:37:73:ee:d5:b8:4a:78:4b:6d: 70:29:a1:81:21:d0:65:4d:01:3a:91:04:11:12:35:17:5d:d7: 1d:3f:ec:76:80:dd:e1:95:72:4b:c2:34:7c:d1:e4:20:99:ed: 5b:6f:2d:c8:a6:82:14:95:fb:00:a5:50:ad:a3:25:16:92:e1: 40:84:23:02:01:b8:90:0b:3b:f3:15:be:c9:e9:98:16:42:66: b4:2d:f0:eb:fa:28:f0:d4:af:ba:27:dd:c9:62:fa:4c:fd:f3: d8:59:7d:1c:09:e6:c2:29:3f:54:5e:b9:9a:c1:6a:9e:7b:84: e8:e8:aa:5a:c9:00:69:9e:c2:eb:d5:54:73:4d:ba:12:2a:a0: 62:16:28:a9:48:8a:af:84:a6:46:b1:fa:1b:ea:f2:48:cb:b8: db:36:ca:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDY678LW/gZXSrvSPaHan73C8JKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNTAyMTExNzU1MDBaFw0yNjAyMTAxODAwMDBaMDMxMTAvBgNV BAMTKDg1Mjg2MDZBQ0I3OUI3RTNGQjNGMDUwQTdFMEZCQTVCQ0ExMTE0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfY/XiU5jRC/uUpdLu7M0scTrS Yu4HxS1PhQWHEoNqFFKiZcyd8WX3kRuLe9nLEYKj220JdGx7g8bR4e0icVIwBfMM MXFNEK4f7eFVomdB7RdwTO/3PXM4phpVnQlJ5BF7Dzzj+BOFgbyEBNPd2J0ePEyh 1E7I2N2v7bSMShyV16PDZ2iHvY+vQnFlFO2sBiJJGX4BSPS/k1fd1a/kVZiCPj/k uxg203mtNLToXb7cW/K8r5ZYr04sChQqGev61UPqJRUCA/n4uXJ9zlRanQQ+fCr5 CWkpVgsiJWUm2T7j3i3Sj62i/DrZNpBwf6Zta9soWrlGSLtf96NGfMHUGIbPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhShgast5t+P7PwUKfg+6W8oRFOgwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2CQMA0GCSqG SIb3DQEBCwUAA4IBAQBaHmWgeqQEIc4MsvZg86tnkFTnDN3wa4sH8mAWSNEHcF1I MM3GT1c55KD4qp/X8RA/mvus7r0Aw0y+ow8OQ6ihfWxAyIuPKpUzYDsp03QrYEi0 VpJjwjKDYjKjlppXRH3pHWI3c+7VuEp4S21wKaGBIdBlTQE6kQQREjUXXdcdP+x2 gN3hlXJLwjR80eQgme1bby3IpoIUlfsApVCtoyUWkuFAhCMCAbiQCzvzFb7J6ZgW Qma0LfDr+ijw1K+6J93JYvpM/fPYWX0cCebCKT9UXrmawWqee4To6KpayQBpnsLr 1VRzTboSKqBiFiipSIqvhKZGsfob6vJIy7jbNsqD -----END CERTIFICATE-----Generated at Sat May 10 06:55:49 2025 by rpki-client