$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa File: 3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa (raw, json) Hash identifier: hPWPE86ID8N/pDjOig5ZnAROXRyFprGMRItIMoptWSY= Subject key identifier: 5F:3C:BC:A4:48:F3:66:A3:44:91:FB:12:10:C6:57:0A:A8:DB:97:F7 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 380AB6ACDFEEA733B56718B20B3548D1D7A0C269 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa Signing time: Wed 02 Apr 2025 03:00:00 +0000 ROA not before: Wed 02 Apr 2025 02:55:00 +0000 ROA not after: Wed 01 Apr 2026 03:00:00 +0000 asID: 55685 IP address blocks: 103.108.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:0a:b6:ac:df:ee:a7:33:b5:67:18:b2:0b:35:48:d1:d7:a0:c2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Apr 2 02:55:00 2025 GMT Not After : Apr 1 03:00:00 2026 GMT Subject: CN=5F3CBCA448F366A34491FB1210C6570AA8DB97F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:d4:29:1d:30:a3:42:46:2e:f1:f2:5b:a5: 96:49:61:e3:68:c9:60:fe:b7:7d:4d:3c:36:a4:d1: 37:05:e2:a0:8d:9d:e0:9a:3d:24:ab:a5:49:be:6a: 45:bd:00:3a:a8:45:7a:5a:a4:43:cd:b9:24:d7:94: 24:e3:36:82:7b:54:8b:d9:8b:0f:26:71:d6:39:8e: 2d:75:13:d5:73:97:02:01:99:2f:64:3c:33:9d:3b: 14:d8:7f:81:0b:2c:8a:a0:d7:40:5f:5d:af:15:62: 15:cc:66:e8:65:ac:10:cc:8c:9c:1d:03:97:7e:08: 2c:85:82:e4:fd:05:c2:d8:42:2f:5f:9d:6d:50:65: ed:2a:ba:db:1e:b7:83:d9:28:c0:6f:52:02:f7:b6: 13:9f:32:49:64:51:63:db:18:00:55:a8:1c:b3:c2: 3d:a7:84:50:b0:34:c9:ef:e9:9b:77:31:0a:46:5f: c5:d0:2d:25:e7:90:ca:b7:a3:63:8d:f3:5b:e0:e5: 85:4e:58:ca:1e:b2:98:d6:a4:ec:72:68:b9:c5:9e: f5:8f:19:71:67:05:36:2c:52:86:c1:74:ec:eb:61: 0d:67:c6:c2:3d:c4:9e:5c:eb:a9:a4:d2:9a:16:b9: 9e:24:82:1e:9f:33:aa:1d:96:f7:2a:af:76:4a:80: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3C:BC:A4:48:F3:66:A3:44:91:FB:12:10:C6:57:0A:A8:DB:97:F7 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.128.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:bb:5a:1e:67:45:7b:33:1a:c2:0b:64:bb:89:c9:24:68:b2: 15:fb:3b:f0:27:0b:4a:8f:52:ed:40:31:ff:48:39:c4:8b:ee: 0e:b6:97:ae:02:8d:2b:28:22:ff:54:74:6c:d9:93:77:65:f9: 4a:e9:f9:57:8d:04:68:af:5d:a1:1a:95:ee:e0:e7:bb:01:24: 0c:6c:d5:53:33:1e:16:71:26:b2:0c:13:7b:4d:3a:e9:19:ea: 01:0b:be:41:ca:4d:aa:d1:12:d6:0d:68:fe:be:ba:60:90:3d: c9:24:c6:1e:95:b0:4e:79:4c:75:68:1c:da:66:ee:9b:a8:fa: 94:33:3e:8c:d1:78:6c:e7:6e:9c:8a:73:ec:a3:6b:fe:aa:02: 39:b1:ec:21:47:34:32:80:f1:54:93:70:b4:70:5b:a6:80:ae: 1c:01:1f:9f:d1:2b:98:23:4b:20:12:24:97:2f:7c:6d:1b:e4: fa:9c:ee:b7:ce:12:7e:94:77:cb:99:88:36:f6:ce:d2:33:ac: a3:59:19:33:aa:9d:c8:1e:22:85:90:cf:7d:2c:10:ac:7f:00: f6:26:e0:00:b1:27:82:1c:fd:e0:5d:2b:f2:d7:50:f0:4f:81: d3:d7:7e:0a:2b:d2:5c:8c:5f:09:8a:26:6b:54:35:8e:a8:39: b6:19:fc:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOAq2rN/upzO1ZxiyCzVI0degwmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNTA0MDIwMjU1MDBaFw0yNjA0MDEwMzAwMDBaMDMxMTAvBgNV BAMTKDVGM0NCQ0E0NDhGMzY2QTM0NDkxRkIxMjEwQzY1NzBBQThEQjk3RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi0NQpHTCjQkYu8fJbpZZJYeNo yWD+t31NPDak0TcF4qCNneCaPSSrpUm+akW9ADqoRXpapEPNuSTXlCTjNoJ7VIvZ iw8mcdY5ji11E9VzlwIBmS9kPDOdOxTYf4ELLIqg10BfXa8VYhXMZuhlrBDMjJwd A5d+CCyFguT9BcLYQi9fnW1QZe0qutset4PZKMBvUgL3thOfMklkUWPbGABVqByz wj2nhFCwNMnv6Zt3MQpGX8XQLSXnkMq3o2ON81vg5YVOWMoespjWpOxyaLnFnvWP GXFnBTYsUobBdOzrYQ1nxsI9xJ5c66mk0poWuZ4kgh6fM6odlvcqr3ZKgDtNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXzy8pEjzZqNEkfsSEMZXCqjbl/cwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2yAMA0GCSqG SIb3DQEBCwUAA4IBAQCbu1oeZ0V7MxrCC2S7ickkaLIV+zvwJwtKj1LtQDH/SDnE i+4OtpeuAo0rKCL/VHRs2ZN3ZflK6flXjQRor12hGpXu4Oe7ASQMbNVTMx4WcSay DBN7TTrpGeoBC75Byk2q0RLWDWj+vrpgkD3JJMYelbBOeUx1aBzaZu6bqPqUMz6M 0Xhs526cinPso2v+qgI5sewhRzQygPFUk3C0cFumgK4cAR+f0SuYI0sgEiSXL3xt G+T6nO63zhJ+lHfLmYg29s7SM6yjWRkzqp3IHiKFkM99LBCsfwD2JuAAsSeCHP3g XSvy11DwT4HT134KK9JcjF8JiiZrVDWOqDm2Gfzz -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:15 2025 by rpki-client on console.sobornost.net