$ rpki-client -vvf repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa File: 3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa (raw, json) Hash identifier: mJRfdF8Fdla37pRzxHiZB6KLj2ueLFTilKfm0V/9nTs= Subject key identifier: 4A:EF:AD:0D:61:57:A0:12:62:73:2B:CD:60:0F:3F:F1:30:93:DB:13 Certificate issuer: /CN=D34F7D48A07BB8A2DEEDC8C87819771181935231 Certificate serial: 26BD642CA11B1EF8B9C4BCA59C5C5A2CFA49BAAC Authority key identifier: D3:4F:7D:48:A0:7B:B8:A2:DE:ED:C8:C8:78:19:77:11:81:93:52:31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa Signing time: Thu 24 Apr 2025 05:02:22 +0000 ROA not before: Thu 24 Apr 2025 04:57:22 +0000 ROA not after: Thu 23 Apr 2026 05:02:22 +0000 asID: 149753 IP address blocks: 103.189.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.crl rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:bd:64:2c:a1:1b:1e:f8:b9:c4:bc:a5:9c:5c:5a:2c:fa:49:ba:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34F7D48A07BB8A2DEEDC8C87819771181935231 Validity Not Before: Apr 24 04:57:22 2025 GMT Not After : Apr 23 05:02:22 2026 GMT Subject: CN=4AEFAD0D6157A01262732BCD600F3FF13093DB13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d3:4c:c6:1c:da:d6:60:86:6a:c9:63:0c:81: bb:37:fc:2a:10:01:ab:94:ab:0e:47:61:80:33:13: a1:71:de:51:f0:c2:34:e1:9d:05:f6:f4:10:ef:a2: d1:2c:14:01:74:7b:33:c7:ba:91:22:7a:51:00:f7: d8:e4:24:29:00:b5:8c:34:00:bd:95:c1:93:34:01: f5:3e:c7:31:cf:fa:98:33:c4:bd:bb:bc:3b:c0:e6: 56:00:ef:13:72:96:21:9d:16:79:87:f5:6f:d7:15: 9d:bc:82:aa:e1:30:04:9a:fb:67:9e:99:75:77:73: 70:ae:94:7c:4e:f1:97:1d:1f:c6:79:e5:43:57:db: 96:9e:54:bd:48:11:dc:d7:8b:9f:95:da:47:a4:1a: 9a:01:71:a4:c1:42:5f:6e:9b:88:e6:81:a8:a4:d2: 83:fe:70:b1:7c:4e:7b:f8:a4:32:5b:e2:0e:7a:b1: 49:a3:fe:13:90:72:85:44:90:e5:03:bd:b3:05:65: f4:1b:6a:18:5a:e6:1e:47:0a:5e:79:3d:47:cf:4b: 27:0c:85:09:2a:41:c5:a7:ce:95:c5:2e:8d:73:44: ec:73:5b:99:f0:8d:af:6b:f9:56:30:7e:77:4c:ff: 78:2f:60:7c:bd:75:f4:27:f0:b6:88:f6:71:ce:1d: 49:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:EF:AD:0D:61:57:A0:12:62:73:2B:CD:60:0F:3F:F1:30:93:DB:13 X509v3 Authority Key Identifier: keyid:D3:4F:7D:48:A0:7B:B8:A2:DE:ED:C8:C8:78:19:77:11:81:93:52:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.114.0/24 Signature Algorithm: sha256WithRSAEncryption ad:9e:36:17:a3:a1:b4:a8:90:b6:d7:4a:0b:db:23:25:c4:3a: 63:58:0d:7e:1d:04:bb:8e:72:e3:be:9b:e6:1e:8c:4b:4c:2d: 68:65:56:f2:6c:d8:1c:b7:92:5b:8b:31:74:ce:38:9c:59:fb: 15:01:10:f3:5f:94:c5:43:aa:34:2a:03:fe:d7:11:63:f5:6b: d2:e1:53:a1:9b:f1:8d:18:d0:5e:6b:fc:3a:c8:a1:74:34:e0: 30:fc:70:e1:fd:16:ae:9b:5e:1d:7c:28:37:87:00:2d:ca:70: 77:50:b3:fc:75:86:27:cd:37:3e:1a:10:a2:71:e4:78:49:0c: 78:2c:e9:c4:33:f0:c0:45:b6:4b:25:11:45:43:9f:1c:3f:a9: a7:59:94:f6:0d:cb:f7:e9:ab:96:98:9a:e2:47:41:4b:4f:80: 03:c3:c7:07:e8:97:9d:70:1d:83:84:9c:65:89:0d:ec:b3:a7: c2:7d:58:cd:55:74:3c:46:f4:20:27:20:a7:75:d9:a7:36:a2: 29:20:f5:d6:66:47:d0:99:ab:b8:d6:28:f1:e7:3f:73:88:f7: 9b:e6:7c:21:0d:35:7b:86:35:74:c6:b4:73:cc:5b:95:84:ff: 87:81:88:11:36:bb:ee:05:98:f5:c4:3f:d3:c7:c1:7f:3b:77: a0:41:a4:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJr1kLKEbHvi5xLylnFxaLPpJuqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0RjdENDhBMDdCQjhBMkRFRURDOEM4NzgxOTc3MTE4 MTkzNTIzMTAeFw0yNTA0MjQwNDU3MjJaFw0yNjA0MjMwNTAyMjJaMDMxMTAvBgNV BAMTKDRBRUZBRDBENjE1N0EwMTI2MjczMkJDRDYwMEYzRkYxMzA5M0RCMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe00zGHNrWYIZqyWMMgbs3/CoQ AauUqw5HYYAzE6Fx3lHwwjThnQX29BDvotEsFAF0ezPHupEielEA99jkJCkAtYw0 AL2VwZM0AfU+xzHP+pgzxL27vDvA5lYA7xNyliGdFnmH9W/XFZ28gqrhMASa+2ee mXV3c3CulHxO8ZcdH8Z55UNX25aeVL1IEdzXi5+V2kekGpoBcaTBQl9um4jmgaik 0oP+cLF8Tnv4pDJb4g56sUmj/hOQcoVEkOUDvbMFZfQbahha5h5HCl55PUfPSycM hQkqQcWnzpXFLo1zROxzW5nwja9r+VYwfndM/3gvYHy9dfQn8LaI9nHOHUkpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSu+tDWFXoBJicyvNYA8/8TCT2xMwHwYDVR0j BBgwFoAU0099SKB7uKLe7cjIeBl3EYGTUjEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzU5YjZhMy1iNzRiLTRiYWEtOTkzYS04MThmYjcyMTA3MjIvMC9EMzRGN0Q0OEEw N0JCOEEyREVFREM4Qzg3ODE5NzcxMTgxOTM1MjMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDM0RjdENDhBMDdCQjhBMkRFRURDOEM4NzgxOTc3MTE4MTkz NTIzMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzNTliNmEzLWI3NGItNGJhYS05 OTNhLTgxOGZiNzIxMDcyMi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXIwDQYJ KoZIhvcNAQELBQADggEBAK2eNhejobSokLbXSgvbIyXEOmNYDX4dBLuOcuO+m+Ye jEtMLWhlVvJs2By3kluLMXTOOJxZ+xUBEPNflMVDqjQqA/7XEWP1a9LhU6Gb8Y0Y 0F5r/DrIoXQ04DD8cOH9Fq6bXh18KDeHAC3KcHdQs/x1hifNNz4aEKJx5HhJDHgs 6cQz8MBFtkslEUVDnxw/qadZlPYNy/fpq5aYmuJHQUtPgAPDxwfol51wHYOEnGWJ Deyzp8J9WM1VdDxG9CAnIKd12ac2oikg9dZmR9CZq7jWKPHnP3OI95vmfCENNXuG NXTGtHPMW5WE/4eBiBE2u+4FmPXEP9PHwX87d6BBpIQ= -----END CERTIFICATE-----Generated at Thu Apr 24 06:50:02 2025 by rpki-client on console.sobornost.net