$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3130332e3231352e32342e302f32322d3234203d3e2039333431.roa File: 3130332e3231352e32342e302f32322d3234203d3e2039333431.roa (raw, json) Hash identifier: XTblwJ4OpupQKVM3L+0VPdo1vzAlW+UZ6yrctqElG0s= Subject key identifier: D2:1B:BF:73:85:E3:28:81:F7:4B:88:C8:94:0E:D7:A6:5A:F8:77:94 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 6619B57DD77EE5BB0FF97BB5E1847869A961661B Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3130332e3231352e32342e302f32322d3234203d3e2039333431.roa Signing time: Tue 13 May 2025 11:00:01 +0000 ROA not before: Tue 13 May 2025 10:55:01 +0000 ROA not after: Tue 12 May 2026 11:00:01 +0000 asID: 9341 IP address blocks: 103.215.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:19:b5:7d:d7:7e:e5:bb:0f:f9:7b:b5:e1:84:78:69:a9:61:66:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: May 13 10:55:01 2025 GMT Not After : May 12 11:00:01 2026 GMT Subject: CN=D21BBF7385E32881F74B88C8940ED7A65AF87794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:91:7c:a6:e4:b8:ca:e2:06:3a:f0:ee:94:39: 12:63:51:1f:c3:87:6b:72:51:c4:da:23:82:d4:98: de:22:75:3b:04:44:4c:29:16:86:b5:42:25:ad:f4: 3b:a5:3c:5c:76:24:93:a6:3a:3e:de:f3:6a:07:36: 27:de:f1:9f:01:40:f1:9e:c1:43:e1:fb:c2:2a:f8: 3a:8a:3f:9d:f7:45:80:37:a9:42:fe:2a:b5:e2:53: ea:5b:87:2a:70:3f:42:92:83:8c:c3:00:56:54:22: 20:fa:31:eb:43:4c:e2:fb:ba:77:fd:49:0c:d3:8e: 3b:0e:e8:fe:31:35:ac:93:92:4d:21:97:72:cf:03: 0c:f0:4a:03:64:ac:d9:55:d0:d3:62:54:78:76:08: fd:81:33:40:1c:dd:ea:85:00:d4:fc:f4:63:f6:02: 04:63:9c:31:82:4f:c0:2f:71:69:72:f0:b3:7a:07: 0c:c1:ba:b9:39:9e:8f:fa:a1:00:5a:72:e5:47:6d: c6:03:05:6b:c9:6c:9a:94:1f:7b:3a:7c:9f:df:e5: ae:c7:75:a4:45:73:c7:32:d4:5f:65:1d:7b:2b:56: e1:4c:89:2f:67:10:3c:a3:9e:6a:b8:74:27:28:69: d2:77:f8:4a:08:db:90:e8:25:6f:d8:34:f5:db:04: 23:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1B:BF:73:85:E3:28:81:F7:4B:88:C8:94:0E:D7:A6:5A:F8:77:94 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3130332e3231352e32342e302f32322d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.24.0/22 Signature Algorithm: sha256WithRSAEncryption 18:27:32:8b:f3:1c:9c:0f:43:e7:5d:86:30:30:3c:31:b0:fb: 8d:2b:3b:81:87:5e:19:3e:a7:2e:21:8e:5d:5f:79:5a:6d:1b: 9f:42:f2:33:fe:4c:d8:2f:09:68:c0:64:23:66:8c:9f:33:2d: 5e:ba:90:1d:7f:e4:df:57:26:f4:c7:9f:d4:2e:af:a4:6c:5a: 72:30:26:b3:69:e1:10:b5:84:f2:61:38:0a:d2:d0:90:50:d9: 2c:0a:0e:94:84:5d:22:f0:3c:63:ba:89:ee:cb:c9:8b:1c:75: 5d:3d:02:b5:f5:01:2c:4c:d9:17:b7:cf:81:16:25:0e:9d:4d: 50:e8:6d:cc:8c:7d:97:74:44:c2:5f:cb:18:06:13:6a:23:86: 8e:3b:aa:57:31:8f:80:64:4a:73:a5:96:fb:1b:2a:d5:54:e5: fd:19:fe:41:84:79:01:23:9d:6d:c0:da:47:0a:43:82:0e:39: 7f:8d:da:25:ed:b9:f5:3f:6a:62:7a:dd:18:89:88:bb:a3:5c: f8:e1:ac:50:be:60:5a:48:7e:b0:53:e8:cb:f6:3c:24:4e:9e: 0c:9e:8c:72:34:e0:30:7f:de:63:73:b2:ef:c5:3e:cd:7c:26: d3:f9:5c:6c:39:0b:4e:8e:9b:20:00:0d:62:d1:28:4c:30:5f: 5b:68:f9:b3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZhm1fdd+5bsP+Xu14YR4aalhZhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA1MTMxMDU1MDFaFw0yNjA1MTIxMTAwMDFaMDMxMTAvBgNV BAMTKEQyMUJCRjczODVFMzI4ODFGNzRCODhDODk0MEVEN0E2NUFGODc3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTkXym5LjK4gY68O6UORJjUR/D h2tyUcTaI4LUmN4idTsEREwpFoa1QiWt9DulPFx2JJOmOj7e82oHNife8Z8BQPGe wUPh+8Iq+DqKP533RYA3qUL+KrXiU+pbhypwP0KSg4zDAFZUIiD6MetDTOL7unf9 SQzTjjsO6P4xNayTkk0hl3LPAwzwSgNkrNlV0NNiVHh2CP2BM0Ac3eqFANT89GP2 AgRjnDGCT8AvcWly8LN6BwzBurk5no/6oQBacuVHbcYDBWvJbJqUH3s6fJ/f5a7H daRFc8cy1F9lHXsrVuFMiS9nEDyjnmq4dCcoadJ3+EoI25DoJW/YNPXbBCNFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0hu/c4XjKIH3S4jIlA7Xplr4d5QwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzAzMzJlMzIzMTM1MmUzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn1xgwDQYJKoZIhvcN AQELBQADggEBABgnMovzHJwPQ+ddhjAwPDGw+40rO4GHXhk+py4hjl1feVptG59C 8jP+TNgvCWjAZCNmjJ8zLV66kB1/5N9XJvTHn9Qur6RsWnIwJrNp4RC1hPJhOArS 0JBQ2SwKDpSEXSLwPGO6ie7LyYscdV09ArX1ASxM2Re3z4EWJQ6dTVDobcyMfZd0 RMJfyxgGE2ojho47qlcxj4BkSnOllvsbKtVU5f0Z/kGEeQEjnW3A2kcKQ4IOOX+N 2iXtufU/amJ63RiJiLujXPjhrFC+YFpIfrBT6Mv2PCROngyejHI04DB/3mNzsu/F Ps18JtP5XGw5C06OmyAADWLRKEwwX1to+bM= -----END CERTIFICATE-----Generated at Thu Jun 5 19:05:03 2025 by rpki-client