$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: cC0bspkR4GLKr9LN2JfncBaT2JjHlS3Wp16ygdKgQmU= Subject key identifier: B4:C7:4A:9C:92:34:0A:DD:A2:74:B2:BB:C0:C1:11:FB:09:F4:68:35 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 3793A3570F44C409AAF092923270F566D3D4626F Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa Signing time: Wed 02 Apr 2025 03:00:01 +0000 ROA not before: Wed 02 Apr 2025 02:55:01 +0000 ROA not after: Wed 01 Apr 2026 03:00:01 +0000 asID: 55685 IP address blocks: 103.108.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:93:a3:57:0f:44:c4:09:aa:f0:92:92:32:70:f5:66:d3:d4:62:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Apr 2 02:55:01 2025 GMT Not After : Apr 1 03:00:01 2026 GMT Subject: CN=B4C74A9C92340ADDA274B2BBC0C111FB09F46835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0b:1d:1d:7c:c3:82:ee:c6:d1:4d:ca:a5:99: dc:4b:f3:52:b4:9a:10:00:4a:1b:95:a1:17:a3:9d: 51:16:4e:80:ee:96:3b:c5:d9:50:c8:d9:d5:b4:75: 3d:a6:ee:14:77:6c:3a:bc:e3:ad:53:ee:c6:74:24: e0:1e:77:0f:82:5f:6a:50:b3:b3:a0:09:85:e3:0e: c8:6d:d6:2e:40:4d:5e:5b:2f:84:83:a3:67:03:4a: 01:f5:30:4a:b4:79:9f:7b:4b:b7:4c:63:63:0d:c8: 61:0e:70:8e:95:7f:d0:bc:9d:a4:61:97:09:db:e0: e9:33:9e:f5:9d:01:d6:8f:42:45:98:98:12:75:80: c0:d9:3d:fc:15:7c:e7:e7:1a:43:12:d5:56:68:94: ed:87:ba:b0:bf:d7:dd:c0:2c:ff:66:9d:32:0a:c7: e4:63:dc:97:d9:d8:28:21:db:ad:19:da:c6:ee:45: b7:39:98:6f:e5:77:f3:5c:ee:75:db:95:87:b3:b3: fc:f6:c3:cb:97:b0:91:5f:dd:6d:cf:c3:b3:29:e1: 60:32:73:22:40:95:1c:2d:d1:25:a6:13:b3:8c:33: b9:c3:23:ce:5f:d1:44:49:61:c9:1c:43:c3:7e:84: 86:55:d6:f7:18:c9:1a:0f:4f:e6:76:99:a1:62:92: 02:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C7:4A:9C:92:34:0A:DD:A2:74:B2:BB:C0:C1:11:FB:09:F4:68:35 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.129.0/24 Signature Algorithm: sha256WithRSAEncryption 13:22:82:3c:47:2e:9d:51:a3:78:59:79:7a:96:fa:e1:32:0b: 29:35:ec:43:98:1d:0f:ba:fd:08:6e:fd:de:a0:2c:a8:60:b9: 88:c6:ba:fe:af:8a:0e:4a:cc:fe:09:3c:f6:a1:33:15:36:a4: 99:b8:de:76:70:1c:90:11:ab:bb:c5:b2:ae:47:89:5f:bb:1c: 6a:7a:a7:45:42:87:ff:39:ee:f5:f2:ea:cf:c9:b3:0d:7b:e1: 12:32:ea:5d:dd:0c:44:6d:4d:ad:f2:53:97:98:58:e8:00:19: b1:e3:d0:98:5a:51:ad:41:91:a1:a1:07:36:9a:aa:e7:88:a5: 0c:46:56:aa:3b:a5:49:65:a9:4a:50:eb:39:6b:11:7b:d2:5d: e3:0d:d6:71:42:c0:67:03:84:0c:cf:7e:6b:fb:62:e5:84:e3: 30:f0:6a:d2:44:36:8a:25:d7:4a:45:93:39:5f:64:e3:e5:d1: e6:8f:1f:2e:16:4a:e2:63:fe:ed:38:06:c3:de:ec:af:86:d3: b3:ae:7d:54:9e:b0:28:d9:c6:1b:25:03:55:7c:50:fb:04:84: a1:82:9d:6c:52:46:5a:8e:73:ff:ea:60:3d:8f:74:ad:8f:45: 4e:00:60:12:4c:f9:6d:a5:f2:72:d0:e4:35:85:0a:5c:08:22: 37:8b:22:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN5OjVw9ExAmq8JKSMnD1ZtPUYm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNTA0MDIwMjU1MDFaFw0yNjA0MDEwMzAwMDFaMDMxMTAvBgNV BAMTKEI0Qzc0QTlDOTIzNDBBRERBMjc0QjJCQkMwQzExMUZCMDlGNDY4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbCx0dfMOC7sbRTcqlmdxL81K0 mhAAShuVoRejnVEWToDuljvF2VDI2dW0dT2m7hR3bDq8461T7sZ0JOAedw+CX2pQ s7OgCYXjDsht1i5ATV5bL4SDo2cDSgH1MEq0eZ97S7dMY2MNyGEOcI6Vf9C8naRh lwnb4OkznvWdAdaPQkWYmBJ1gMDZPfwVfOfnGkMS1VZolO2HurC/193ALP9mnTIK x+Rj3JfZ2Cgh260Z2sbuRbc5mG/ld/Nc7nXblYezs/z2w8uXsJFf3W3Pw7Mp4WAy cyJAlRwt0SWmE7OMM7nDI85f0URJYckcQ8N+hIZV1vcYyRoPT+Z2maFikgKjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtMdKnJI0Ct2idLK7wMER+wn0aDUwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yBMA0GCSqG SIb3DQEBCwUAA4IBAQATIoI8Ry6dUaN4WXl6lvrhMgspNexDmB0Puv0Ibv3eoCyo YLmIxrr+r4oOSsz+CTz2oTMVNqSZuN52cByQEau7xbKuR4lfuxxqeqdFQof/Oe71 8urPybMNe+ESMupd3QxEbU2t8lOXmFjoABmx49CYWlGtQZGhoQc2mqrniKUMRlaq O6VJZalKUOs5axF70l3jDdZxQsBnA4QMz35r+2LlhOMw8GrSRDaKJddKRZM5X2Tj 5dHmjx8uFkriY/7tOAbD3uyvhtOzrn1UnrAo2cYbJQNVfFD7BIShgp1sUkZajnP/ 6mA9j3Stj0VOAGASTPltpfJy0OQ1hQpcCCI3iyJA -----END CERTIFICATE-----Generated at Fri May 2 15:01:54 2025 by rpki-client