$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa File: 3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa (raw, json) Hash identifier: SjzDmLz46qIS/nJ0zn3gr3kiE+RR+H/5PGnqBHKVams= Subject key identifier: 67:95:31:C4:FF:B5:4C:29:B9:F7:F6:49:48:9A:24:0A:92:26:32:6F Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 34121D1B182DD238B127D880E36EEBA9B24AE6E6 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 103.31.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 12:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:12:1d:1b:18:2d:d2:38:b1:27:d8:80:e3:6e:eb:a9:b2:4a:e6:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=679531C4FFB54C29B9F7F649489A240A9226326F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d0:b1:d7:83:31:5e:f7:5c:b0:16:d1:0b:56: 68:03:cd:cb:1e:10:19:9e:2b:07:b1:96:a7:4f:b2: a2:73:71:63:eb:9b:fb:06:75:23:b4:da:88:72:06: b5:4e:3e:83:90:10:9c:e4:77:1f:9a:cf:98:d3:c2: cb:a8:7b:15:e7:13:48:07:d2:3f:f6:53:03:df:f7: b7:5e:d2:3f:bb:a2:97:5b:89:75:ed:d5:ea:e6:06: c5:12:03:ee:5e:d7:aa:ff:90:91:72:7d:b4:81:4e: 0e:7a:01:2c:ad:a1:4a:c0:23:b2:d0:ab:44:71:b5: 58:2c:73:0f:f7:c2:70:67:58:59:d8:64:51:96:55: ef:ce:a2:64:9b:57:88:7b:bc:5c:7d:0e:29:d1:bd: 60:ba:de:c6:be:fa:d9:c6:1a:35:58:2c:02:34:14: 4c:5c:7a:3b:57:b1:27:10:c2:e2:05:4e:70:87:73: 6e:d8:1b:b9:c3:15:a4:86:48:aa:bf:e9:80:8e:a3: e0:d2:3d:8d:3e:4b:ae:1d:a5:51:71:28:44:b5:be: a8:0f:8a:43:29:89:b9:48:94:b0:59:1d:63:32:0a: e7:3b:b8:a1:52:0b:f5:60:5c:a5:08:2e:02:e0:d3: 9b:7e:1f:b0:3f:ff:47:5c:5d:67:7c:4b:34:8b:e7: 18:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:31:C4:FF:B5:4C:29:B9:F7:F6:49:48:9A:24:0A:92:26:32:6F X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.132.0/22 Signature Algorithm: sha256WithRSAEncryption 48:5f:32:7f:75:66:ec:33:ff:cb:50:28:3c:a7:e3:dc:3a:78: 09:f5:e0:7a:55:52:40:ec:f7:ce:b6:f2:72:63:75:82:5e:87: 17:97:8b:ce:49:e4:c7:96:5b:0e:27:5e:bc:8e:18:78:0b:b8: 2a:47:6e:78:34:9b:be:44:8f:c2:9a:fa:a9:4b:c1:d9:a0:39: 4b:d7:99:2c:0d:b3:64:3c:07:e8:c2:69:d8:91:d9:43:10:45: 4a:52:b5:32:4c:78:43:31:0e:34:00:0a:ed:46:28:5d:8d:14: c9:22:b1:6e:fb:96:c0:0f:85:32:ec:2c:8b:f5:66:f2:9c:46: 45:0c:25:1b:b0:d7:bd:bd:a4:4e:f0:4e:a6:34:57:cd:1e:06: ad:5b:ca:0b:96:ad:19:59:e6:eb:53:3d:1a:55:c6:9e:12:e6: 73:6d:f0:9d:fd:e3:50:73:fe:d6:aa:0d:0c:9d:98:3f:31:b8: 14:ce:60:43:7b:45:51:af:fb:29:0a:c5:b4:21:84:36:cc:36: 3b:1c:af:4d:2c:31:27:3d:e1:60:9c:e7:98:bc:2a:5c:b0:c9: 9a:63:85:fa:b3:14:6f:2a:ea:74:7e:c0:66:0a:6b:b6:72:b4: 46:a6:b3:35:78:f1:2f:1a:be:d0:64:e5:85:52:5c:70:89:58: d2:f4:10:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNBIdGxgt0jixJ9iA427rqbJK5uYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKDY3OTUzMUM0RkZCNTRDMjlCOUY3RjY0OTQ4OUEyNDBBOTIyNjMyNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60LHXgzFe91ywFtELVmgDzcse EBmeKwexlqdPsqJzcWPrm/sGdSO02ohyBrVOPoOQEJzkdx+az5jTwsuoexXnE0gH 0j/2UwPf97de0j+7opdbiXXt1ermBsUSA+5e16r/kJFyfbSBTg56ASytoUrAI7LQ q0RxtVgscw/3wnBnWFnYZFGWVe/OomSbV4h7vFx9DinRvWC63sa++tnGGjVYLAI0 FExcejtXsScQwuIFTnCHc27YG7nDFaSGSKq/6YCOo+DSPY0+S64dpVFxKES1vqgP ikMpiblIlLBZHWMyCuc7uKFSC/VgXKUILgLg05t+H7A//0dcXWd8SzSL5xjjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ5UxxP+1TCm59/ZJSJokCpImMm8wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx+EMA0GCSqG SIb3DQEBCwUAA4IBAQBIXzJ/dWbsM//LUCg8p+PcOngJ9eB6VVJA7PfOtvJyY3WC XocXl4vOSeTHllsOJ168jhh4C7gqR254NJu+RI/CmvqpS8HZoDlL15ksDbNkPAfo wmnYkdlDEEVKUrUyTHhDMQ40AArtRihdjRTJIrFu+5bAD4Uy7CyL9WbynEZFDCUb sNe9vaRO8E6mNFfNHgatW8oLlq0ZWebrUz0aVcaeEuZzbfCd/eNQc/7Wqg0MnZg/ MbgUzmBDe0VRr/spCsW0IYQ2zDY7HK9NLDEnPeFgnOeYvCpcsMmaY4X6sxRvKup0 fsBmCmu2crRGprM1ePEvGr7QZOWFUlxwiVjS9BDI -----END CERTIFICATE-----Generated at Wed Oct 29 21:16:04 2025 by rpki-client