$ rpki-client -vvf repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32332d3233203d3e20313431393130.roa File: 3130332e3136342e35382e302f32332d3233203d3e20313431393130.roa (raw, json) Hash identifier: O7uhBUEz+z1Q2GX4lPzEa5VOca0EqQ+u9YYJDNTn8wg= Subject key identifier: 64:C1:2F:25:98:79:A6:3F:0C:D5:3D:9A:3C:8A:1E:E0:21:A1:6C:2D Certificate issuer: /CN=F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F Certificate serial: 6AFC4E9D90979AA75280E7FA7E36A391ED14B590 Authority key identifier: F1:BD:A5:72:CF:8D:79:20:C2:10:DB:CA:14:54:B1:90:4F:1C:1D:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32332d3233203d3e20313431393130.roa Signing time: Tue 08 Apr 2025 05:00:01 +0000 ROA not before: Tue 08 Apr 2025 04:55:01 +0000 ROA not after: Tue 07 Apr 2026 05:00:01 +0000 asID: 141910 IP address blocks: 103.164.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.crl rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 04:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:fc:4e:9d:90:97:9a:a7:52:80:e7:fa:7e:36:a3:91:ed:14:b5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F Validity Not Before: Apr 8 04:55:01 2025 GMT Not After : Apr 7 05:00:01 2026 GMT Subject: CN=64C12F259879A63F0CD53D9A3C8A1EE021A16C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ef:5b:c9:32:36:d9:55:0e:9d:84:c5:c5:23: 43:ab:ce:ec:ef:5b:d9:99:c3:ba:4a:c5:5f:62:bb: b3:b7:60:9c:92:35:9c:2c:b3:e5:bf:46:b2:00:4d: cf:cb:40:2d:00:66:ee:1b:66:c9:be:fa:d1:96:0e: db:37:ad:f6:5a:bc:a9:98:3d:df:36:d2:b4:80:16: 54:4f:44:d0:48:fe:b4:a5:9a:20:60:6c:0f:f3:bb: 0e:ac:0c:6d:84:84:c0:b4:3e:d3:9c:fc:d9:6d:7e: da:67:f6:6b:4e:a7:4d:90:ea:65:30:da:0c:c0:f1: 99:90:a5:24:65:ec:de:7e:c8:c1:2c:c3:76:8e:33: f9:a2:93:b0:a4:64:b3:3a:d3:e9:f7:0c:1b:ff:a6: 40:ed:31:aa:c8:f9:67:17:39:d5:86:61:e3:c2:9b: cb:02:c1:92:b4:83:a1:b6:53:fe:92:9f:6c:bc:6b: 38:d3:ca:e2:d1:bb:40:fb:8d:9b:f5:70:a5:c4:32: 11:5f:4c:1c:96:c8:e8:80:68:aa:8c:c8:48:c0:d7: c2:bc:c4:9c:0b:dd:ef:3b:e2:ca:af:85:05:5b:a1: f1:27:11:1f:7d:6a:b0:22:02:b4:cb:db:3c:16:dd: d6:67:be:9e:18:8a:e3:52:be:58:18:3e:66:a7:c4: 8d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:2F:25:98:79:A6:3F:0C:D5:3D:9A:3C:8A:1E:E0:21:A1:6C:2D X509v3 Authority Key Identifier: keyid:F1:BD:A5:72:CF:8D:79:20:C2:10:DB:CA:14:54:B1:90:4F:1C:1D:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1BDA572CF8D7920C210DBCA1454B1904F1C1D5F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d501cdf9-52e1-4c98-9ab3-afb70fac377c/0/3130332e3136342e35382e302f32332d3233203d3e20313431393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.58.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:87:60:8b:59:78:5c:ce:f0:2c:c5:8b:05:17:64:ef:79:52: 49:6f:41:a0:9e:97:01:d2:60:f6:da:24:f9:67:6f:ee:d9:31: 02:33:09:68:72:8c:c3:ad:0e:80:d5:bf:07:fa:67:33:86:57: a2:d6:a5:a7:b2:4a:8a:68:d6:a2:10:8b:5a:67:58:60:6c:34: b2:08:d0:ae:78:71:2b:47:9c:10:e9:33:d5:c7:7c:dd:73:ba: 08:d2:89:53:b9:87:0c:22:5d:15:62:d6:2b:3a:4e:cd:d8:ea: 10:21:db:b0:8d:aa:d5:9b:29:fb:65:96:65:20:e2:4c:2a:65: 93:55:e0:5f:25:ac:c7:b4:e7:5f:53:65:7d:9d:ae:32:03:7d: e0:ab:60:8a:52:f8:e1:4f:80:ca:88:4b:97:10:9f:58:ab:db: 00:f2:a2:88:28:e4:35:78:34:b6:2c:81:c7:5c:8f:99:69:a6: 07:f6:59:a4:2f:7f:cb:cc:cc:ab:02:84:b6:1c:c8:af:ba:2a: bd:65:69:3f:76:5d:d5:6e:29:3c:5e:20:af:1c:5d:fc:26:d4: 25:99:ec:1d:61:4e:c7:38:23:ab:f6:21:24:41:e9:70:49:4a: 93:9b:a0:47:c3:e5:ec:8f:77:d9:37:a5:2a:21:07:c0:38:57: c3:38:11:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUavxOnZCXmqdSgOf6fjajke0UtZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCREE1NzJDRjhENzkyMEMyMTBEQkNBMTQ1NEIxOTA0 RjFDMUQ1RjAeFw0yNTA0MDgwNDU1MDFaFw0yNjA0MDcwNTAwMDFaMDMxMTAvBgNV BAMTKDY0QzEyRjI1OTg3OUE2M0YwQ0Q1M0Q5QTNDOEExRUUwMjFBMTZDMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe71vJMjbZVQ6dhMXFI0Orzuzv W9mZw7pKxV9iu7O3YJySNZwss+W/RrIATc/LQC0AZu4bZsm++tGWDts3rfZavKmY Pd820rSAFlRPRNBI/rSlmiBgbA/zuw6sDG2EhMC0PtOc/Nltftpn9mtOp02Q6mUw 2gzA8ZmQpSRl7N5+yMEsw3aOM/mik7CkZLM60+n3DBv/pkDtMarI+WcXOdWGYePC m8sCwZK0g6G2U/6Sn2y8azjTyuLRu0D7jZv1cKXEMhFfTByWyOiAaKqMyEjA18K8 xJwL3e874sqvhQVbofEnER99arAiArTL2zwW3dZnvp4YiuNSvlgYPmanxI1dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZMEvJZh5pj8M1T2aPIoe4CGhbC0wHwYDVR0j BBgwFoAU8b2lcs+NeSDCENvKFFSxkE8cHV8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTAxY2RmOS01MmUxLTRjOTgtOWFiMy1hZmI3MGZhYzM3N2MvMC9GMUJEQTU3MkNG OEQ3OTIwQzIxMERCQ0ExNDU0QjE5MDRGMUMxRDVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCREE1NzJDRjhENzkyMEMyMTBEQkNBMTQ1NEIxOTA0RjFD MUQ1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1MDFjZGY5LTUyZTEtNGM5OC05 YWIzLWFmYjcwZmFjMzc3Yy8wLzMxMzAzMzJlMzEzNjM0MmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzkzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6Q6MA0GCSqG SIb3DQEBCwUAA4IBAQBOh2CLWXhczvAsxYsFF2TveVJJb0GgnpcB0mD22iT5Z2/u 2TECMwlocozDrQ6A1b8H+mczhlei1qWnskqKaNaiEItaZ1hgbDSyCNCueHErR5wQ 6TPVx3zdc7oI0olTuYcMIl0VYtYrOk7N2OoQIduwjarVmyn7ZZZlIOJMKmWTVeBf JazHtOdfU2V9na4yA33gq2CKUvjhT4DKiEuXEJ9Yq9sA8qKIKOQ1eDS2LIHHXI+Z aaYH9lmkL3/LzMyrAoS2HMivuiq9ZWk/dl3Vbik8XiCvHF38JtQlmewdYU7HOCOr 9iEkQelwSUqTm6BHw+Xsj3fZN6UqIQfAOFfDOBHC -----END CERTIFICATE-----Generated at Wed May 14 12:10:37 2025 by rpki-client