$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32342d3234203d3e203338373838.roa File: 3130332e3234322e3138302e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: J6znwF/VIOIQq7nf+/cVdXFnP4yNGPdAl3m1qZHQzpE= Subject key identifier: 31:C9:EA:CE:2F:85:68:1A:7E:2C:AF:58:38:B0:FA:04:65:67:39:70 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 430CF1BBFA68039B38C297F8E7A0CE544E2DF03D Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32342d3234203d3e203338373838.roa Signing time: Sat 14 Jun 2025 07:00:03 +0000 ROA not before: Sat 14 Jun 2025 06:55:03 +0000 ROA not after: Sat 13 Jun 2026 07:00:03 +0000 asID: 38788 IP address blocks: 103.242.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:0c:f1:bb:fa:68:03:9b:38:c2:97:f8:e7:a0:ce:54:4e:2d:f0:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 14 06:55:03 2025 GMT Not After : Jun 13 07:00:03 2026 GMT Subject: CN=31C9EACE2F85681A7E2CAF5838B0FA0465673970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:38:db:b9:b7:7b:d2:99:45:e3:cf:ca:b2:ef: c8:ea:36:87:15:d5:3c:96:3b:6a:ae:b3:6f:70:2f: c5:e5:b2:25:a6:cf:1f:2b:d1:fd:5e:c6:5c:e0:77: c1:a4:9f:40:f0:26:b6:e2:35:e1:ac:c1:ea:84:a6: ca:4f:db:b5:35:2f:c5:9e:9b:80:92:85:45:50:89: d3:74:a1:d0:3f:2c:55:71:c4:a8:97:50:18:41:6b: 48:c9:17:15:ea:26:54:95:fc:2f:23:81:01:3d:d8: 4b:88:e3:05:2e:1c:56:e8:0c:91:5a:af:99:10:05: 3c:93:cf:bf:2e:68:b1:e3:b0:0d:43:72:42:02:7b: 71:53:40:14:fe:ae:c4:05:15:ba:cc:4c:49:20:9e: 24:e0:b2:1d:89:81:e6:22:5f:b8:80:f7:f0:e9:3e: e3:a7:85:95:b4:d5:2b:6c:7c:3e:7f:d0:b8:6d:f9: 0c:f2:cb:84:f0:8f:12:04:dc:45:7c:33:77:8b:55: b8:c3:3a:cf:05:70:fc:71:4e:6f:b0:05:10:6d:63: 51:54:eb:09:7e:b3:3c:21:bd:f4:99:54:ef:e9:2e: 75:44:3b:47:a3:a1:ab:d4:3e:ed:9d:e5:a9:a8:02: 65:bc:3c:54:4f:a1:60:9d:c9:09:26:cd:44:88:72: 54:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C9:EA:CE:2F:85:68:1A:7E:2C:AF:58:38:B0:FA:04:65:67:39:70 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.180.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:ea:46:c1:df:9d:b9:21:04:e0:73:78:79:3d:60:86:61:72: 84:82:c2:56:6b:2b:23:36:28:8e:10:9b:98:9f:54:ce:e4:d5: 96:83:9d:15:5b:52:50:34:1b:47:68:35:dc:54:65:ba:a8:3a: a0:26:9a:4c:e8:6d:16:70:66:0b:f0:29:87:88:c5:b3:3e:80: d9:d1:bf:63:df:42:af:27:47:56:a3:24:48:f5:88:97:fb:e8: a8:c2:94:be:98:0e:68:00:7f:f1:41:97:03:12:4b:bf:0c:30: 9a:16:ee:9a:f0:00:34:0f:85:d5:1b:52:f7:af:5f:e1:bf:a4: 08:88:6a:ff:82:3a:48:cb:00:5c:36:4b:6d:2d:72:be:03:7f: 15:d0:45:f2:69:12:16:21:ff:fd:69:54:a1:88:d5:9d:b4:1b: a3:fa:c7:86:e2:4a:01:e3:b5:82:01:db:5f:fa:ab:00:71:52: 7c:6d:5b:a6:88:5a:ed:57:0b:ca:bb:e4:8c:6d:e6:88:10:cc: 08:bd:cf:0c:bc:30:60:bb:c4:8a:fd:af:9c:a7:df:aa:d1:31: d5:90:25:58:ed:6e:4b:4b:49:c6:56:17:53:f0:b1:9c:47:33: 62:1a:4c:c9:04:16:d3:0e:0c:a1:49:2c:b3:f4:f6:37:89:5e: b3:ca:2f:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQwzxu/poA5s4wpf456DOVE4t8D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MTQwNjU1MDNaFw0yNjA2MTMwNzAwMDNaMDMxMTAvBgNV BAMTKDMxQzlFQUNFMkY4NTY4MUE3RTJDQUY1ODM4QjBGQTA0NjU2NzM5NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYONu5t3vSmUXjz8qy78jqNocV 1TyWO2qus29wL8XlsiWmzx8r0f1exlzgd8Gkn0DwJrbiNeGsweqEpspP27U1L8We m4CShUVQidN0odA/LFVxxKiXUBhBa0jJFxXqJlSV/C8jgQE92EuI4wUuHFboDJFa r5kQBTyTz78uaLHjsA1DckICe3FTQBT+rsQFFbrMTEkgniTgsh2JgeYiX7iA9/Dp PuOnhZW01StsfD5/0Lht+Qzyy4TwjxIE3EV8M3eLVbjDOs8FcPxxTm+wBRBtY1FU 6wl+szwhvfSZVO/pLnVEO0ejoavUPu2d5amoAmW8PFRPoWCdyQkmzUSIclT/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMcnqzi+FaBp+LK9YOLD6BGVnOXAwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/K0MA0GCSqG SIb3DQEBCwUAA4IBAQCP6kbB3525IQTgc3h5PWCGYXKEgsJWaysjNiiOEJuYn1TO 5NWWg50VW1JQNBtHaDXcVGW6qDqgJppM6G0WcGYL8CmHiMWzPoDZ0b9j30KvJ0dW oyRI9YiX++iowpS+mA5oAH/xQZcDEku/DDCaFu6a8AA0D4XVG1L3r1/hv6QIiGr/ gjpIywBcNkttLXK+A38V0EXyaRIWIf/9aVShiNWdtBuj+seG4koB47WCAdtf+qsA cVJ8bVumiFrtVwvKu+SMbeaIEMwIvc8MvDBgu8SK/a+cp9+q0THVkCVY7W5LS0nG VhdT8LGcRzNiGkzJBBbTDgyhSSyz9PY3iV6zyi/0 -----END CERTIFICATE-----Generated at Mon Jun 30 20:30:05 2025 by rpki-client