$ rpki-client -vvf repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/3130332e3137372e3138392e302f32342d3234203d3e20313439333533.roa File: 3130332e3137372e3138392e302f32342d3234203d3e20313439333533.roa (raw, json) Hash identifier: puq2H8zvnhoSbMetrd+BHkvHPZyYcgU1qmlh4ZB0qEo= Subject key identifier: D0:85:78:79:34:A5:94:F4:4A:04:DD:53:44:92:9E:28:12:84:2F:81 Certificate issuer: /CN=1C49A098778B751B36DDC816E9E5106C08F3E99E Certificate serial: 5DC2C1716F6670637B85282B3BC977BE76FBBD7A Authority key identifier: 1C:49:A0:98:77:8B:75:1B:36:DD:C8:16:E9:E5:10:6C:08:F3:E9:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C49A098778B751B36DDC816E9E5106C08F3E99E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/3130332e3137372e3138392e302f32342d3234203d3e20313439333533.roa Signing time: Tue 29 Apr 2025 14:00:01 +0000 ROA not before: Tue 29 Apr 2025 13:55:01 +0000 ROA not after: Tue 28 Apr 2026 14:00:01 +0000 asID: 149353 IP address blocks: 103.177.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/1C49A098778B751B36DDC816E9E5106C08F3E99E.crl rsync://repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/1C49A098778B751B36DDC816E9E5106C08F3E99E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C49A098778B751B36DDC816E9E5106C08F3E99E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 20:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c2:c1:71:6f:66:70:63:7b:85:28:2b:3b:c9:77:be:76:fb:bd:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C49A098778B751B36DDC816E9E5106C08F3E99E Validity Not Before: Apr 29 13:55:01 2025 GMT Not After : Apr 28 14:00:01 2026 GMT Subject: CN=D085787934A594F44A04DD5344929E2812842F81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:6f:46:b7:2f:8f:f2:21:28:49:ef:9f:59: 06:ff:5d:33:06:da:bf:11:bc:01:58:7a:ce:1f:7e: c3:ce:ee:ca:67:06:d0:1f:1e:7b:fe:6b:f5:8e:5e: f3:15:2c:ca:35:01:a9:22:cd:c5:74:95:6d:0c:1b: 31:6a:89:c0:14:80:39:e1:67:dc:9f:97:8a:79:04: 57:ad:d5:c4:95:76:a4:85:6b:a1:cb:bd:3d:3d:af: 82:c5:cb:ab:4d:24:d9:90:fa:26:7a:d7:85:54:6d: 03:f6:71:52:c2:fa:2f:3e:66:30:20:b3:cc:5d:af: 23:d4:dd:94:8a:39:67:7f:c9:3d:33:6d:f8:c4:9b: 2d:8d:d2:0d:a4:fe:6e:5f:12:40:a0:a6:53:8e:69: a8:88:ae:69:d3:6e:81:67:ff:71:6a:fa:8c:98:05: 81:fe:72:a1:bd:09:8a:21:28:9f:8a:be:6b:d3:55: ee:83:87:9a:ce:86:ff:cb:be:34:7c:70:1b:de:96: 2c:46:8e:c3:06:a3:16:79:fa:44:2f:fe:dd:10:d5: f4:70:96:de:12:0c:d4:07:4c:27:f2:43:b6:c3:a4: c3:c0:e6:c3:df:e8:9e:04:1f:7c:a4:12:bd:1c:ef: 4a:d0:e4:45:a8:a6:0b:0a:1e:22:ba:c0:0b:3f:a9: 49:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:85:78:79:34:A5:94:F4:4A:04:DD:53:44:92:9E:28:12:84:2F:81 X509v3 Authority Key Identifier: keyid:1C:49:A0:98:77:8B:75:1B:36:DD:C8:16:E9:E5:10:6C:08:F3:E9:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/1C49A098778B751B36DDC816E9E5106C08F3E99E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C49A098778B751B36DDC816E9E5106C08F3E99E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8392f899-e83c-4706-a9a1-82256bd48236/0/3130332e3137372e3138392e302f32342d3234203d3e20313439333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.189.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:ac:f6:bf:b6:b4:4e:82:0d:a1:8a:b2:ba:ff:c1:60:5c:74: 50:e6:6f:53:aa:03:9d:1a:70:a4:bf:6a:58:2c:8c:6b:e9:95: 85:34:4e:9a:3d:f5:54:56:1b:38:64:cd:12:c3:16:b7:8a:45: 34:29:4c:0c:82:c0:fe:14:b4:2d:3b:8a:d9:5d:90:1a:9b:02: 7e:0a:fb:20:17:ba:6d:83:9d:7e:bb:69:37:21:b6:fb:f2:4e: 14:a0:20:a6:1c:79:b3:b3:c2:6a:e2:e7:0b:34:12:98:85:ef: 70:b0:e0:e8:ad:48:35:0f:77:b2:ee:bc:60:ea:41:51:ea:36: c1:e3:ba:ff:43:91:95:4e:78:07:9f:fe:14:88:5e:43:6e:72: 89:6d:5b:c7:ab:45:b1:fc:9a:11:1e:d8:a2:1c:04:14:4c:2f: fb:dd:3e:91:eb:1b:5a:4b:fc:75:ef:e0:d4:61:75:6c:e1:b0: 0d:e9:39:1e:8d:b2:16:16:e8:13:83:cd:58:58:a4:c7:b5:31: fc:56:10:96:59:95:62:ab:38:ae:98:95:66:37:1d:19:75:39: f9:9f:9e:5c:ce:31:1e:da:b7:2e:7c:b1:b3:6a:3b:a2:f9:28: b3:59:a7:50:47:aa:a8:2a:25:47:97:37:b4:50:3a:6f:6a:33: df:59:56:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXcLBcW9mcGN7hSgrO8l3vnb7vXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM0OUEwOTg3NzhCNzUxQjM2RERDODE2RTlFNTEwNkMw OEYzRTk5RTAeFw0yNTA0MjkxMzU1MDFaFw0yNjA0MjgxNDAwMDFaMDMxMTAvBgNV BAMTKEQwODU3ODc5MzRBNTk0RjQ0QTA0REQ1MzQ0OTI5RTI4MTI4NDJGODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/m9Gty+P8iEoSe+fWQb/XTMG 2r8RvAFYes4ffsPO7spnBtAfHnv+a/WOXvMVLMo1AakizcV0lW0MGzFqicAUgDnh Z9yfl4p5BFet1cSVdqSFa6HLvT09r4LFy6tNJNmQ+iZ614VUbQP2cVLC+i8+ZjAg s8xdryPU3ZSKOWd/yT0zbfjEmy2N0g2k/m5fEkCgplOOaaiIrmnTboFn/3Fq+oyY BYH+cqG9CYohKJ+KvmvTVe6Dh5rOhv/LvjR8cBvelixGjsMGoxZ5+kQv/t0Q1fRw lt4SDNQHTCfyQ7bDpMPA5sPf6J4EH3ykEr0c70rQ5EWopgsKHiK6wAs/qUk7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0IV4eTSllPRKBN1TRJKeKBKEL4EwHwYDVR0j BBgwFoAUHEmgmHeLdRs23cgW6eUQbAjz6Z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzkyZjg5OS1lODNjLTQ3MDYtYTlhMS04MjI1NmJkNDgyMzYvMC8xQzQ5QTA5ODc3 OEI3NTFCMzZEREM4MTZFOUU1MTA2QzA4RjNFOTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUM0OUEwOTg3NzhCNzUxQjM2RERDODE2RTlFNTEwNkMwOEYz RTk5RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzOTJmODk5LWU4M2MtNDcwNi1h OWExLTgyMjU2YmQ0ODIzNi8wLzMxMzAzMzJlMzEzNzM3MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsb0wDQYJ KoZIhvcNAQELBQADggEBAB+s9r+2tE6CDaGKsrr/wWBcdFDmb1OqA50acKS/algs jGvplYU0Tpo99VRWGzhkzRLDFreKRTQpTAyCwP4UtC07itldkBqbAn4K+yAXum2D nX67aTchtvvyThSgIKYcebOzwmri5ws0EpiF73Cw4OitSDUPd7LuvGDqQVHqNsHj uv9DkZVOeAef/hSIXkNucoltW8erRbH8mhEe2KIcBBRML/vdPpHrG1pL/HXv4NRh dWzhsA3pOR6NshYW6BODzVhYpMe1MfxWEJZZlWKrOK6YlWY3HRl1OfmfnlzOMR7a ty58sbNqO6L5KLNZp1BHqqgqJUeXN7RQOm9qM99ZVqM= -----END CERTIFICATE-----Generated at Wed Apr 30 06:28:02 2025 by rpki-client