$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e3131372e38322e302f32332d3234203d3e20313335343438.roa File: 3130332e3131372e38322e302f32332d3234203d3e20313335343438.roa (raw, json) Hash identifier: FQaLrXQaTAavmrBmVo9QPPvdOGdpfu5PAx/qFXOh+QY= Subject key identifier: 7A:11:E8:0A:4C:94:F1:F3:25:23:FB:97:E8:A6:66:A2:4A:5C:6E:4C Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 1BC38A92F08A8BDD3E41532F22A035654C80C57C Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e3131372e38322e302f32332d3234203d3e20313335343438.roa Signing time: Mon 02 Jun 2025 02:03:43 +0000 ROA not before: Mon 02 Jun 2025 01:58:43 +0000 ROA not after: Mon 01 Jun 2026 02:03:43 +0000 asID: 135448 IP address blocks: 103.117.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c3:8a:92:f0:8a:8b:dd:3e:41:53:2f:22:a0:35:65:4c:80:c5:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jun 2 01:58:43 2025 GMT Not After : Jun 1 02:03:43 2026 GMT Subject: CN=7A11E80A4C94F1F32523FB97E8A666A24A5C6E4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:50:6d:1a:58:73:dd:cf:b1:5c:bd:0c:a9: b4:44:d6:d9:f9:f7:da:ae:51:80:e4:4b:44:25:ce: 28:75:47:1d:e7:2b:9b:3f:2d:d0:e1:04:d2:21:e5: 2f:2e:c4:cf:da:4c:0d:44:12:ce:dc:c5:78:5f:a1: 00:c6:6f:32:2b:23:78:53:c0:93:06:d9:36:2a:4d: 63:b6:29:0f:48:b6:43:f4:4e:d9:55:af:e3:04:2a: bb:20:32:0d:c1:8a:1b:b6:c9:e8:19:f2:f9:fc:c7: 3b:05:f6:69:72:b9:07:68:61:b3:57:b3:7a:64:f5: 95:80:f1:a0:94:9f:c6:35:8c:a7:dd:0d:17:8d:c9: 67:74:bf:69:66:a6:f0:aa:34:d7:f0:cb:46:c3:f5: b4:cc:c1:91:f0:9b:49:3e:91:ba:53:98:83:a5:a6: 12:4d:5d:fa:88:b3:56:a1:06:81:b1:73:59:5a:f1: 47:9c:4b:e2:e5:b8:2b:16:1a:99:c8:d3:8f:0e:65: 30:e0:7e:6c:92:cb:ba:61:76:18:cd:4f:29:5d:db: db:6f:94:92:86:b4:a5:7f:03:8c:65:02:8f:f3:65: e2:05:92:8a:b8:70:ee:f2:77:5a:4e:39:32:43:2b: 81:ac:7d:89:8f:72:76:4f:76:60:e4:52:49:3d:d7: 5a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:11:E8:0A:4C:94:F1:F3:25:23:FB:97:E8:A6:66:A2:4A:5C:6E:4C X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e3131372e38322e302f32332d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.82.0/23 Signature Algorithm: sha256WithRSAEncryption 43:4a:bc:fe:c6:8e:8a:cf:a5:58:92:6f:5a:d1:0d:44:e4:c4: 29:4a:6f:b6:f8:c5:f3:73:8c:1a:b2:55:71:d0:5b:36:47:85: e1:ed:62:8d:73:2a:f9:3b:46:64:d9:b5:5a:80:4a:96:39:35: 19:e4:ca:83:63:c1:f1:f2:dc:1b:09:52:f2:bf:c3:8d:1a:4d: 62:84:06:c4:d0:3d:5a:19:d0:2c:42:c1:cf:74:ea:3a:84:02: e1:12:e7:9c:b9:16:ed:c8:7e:73:36:fb:9d:54:92:89:a5:71: c2:cf:25:8d:5a:d0:99:e9:52:53:1a:b9:aa:8e:63:17:88:e4: 26:71:fc:79:2d:7e:dc:bb:79:73:de:8a:d4:57:56:81:44:c3: 8d:de:14:f0:9d:5b:d6:84:29:09:b8:4f:66:0f:7f:c4:b4:a1: e2:80:77:91:2d:87:9a:68:66:ce:32:e4:fc:53:7c:47:57:d2: 83:b2:27:ce:4c:ca:4e:ee:70:4c:c8:63:0d:e3:02:d0:18:cd: 8b:db:6f:d4:91:52:92:34:5f:75:a0:a3:2e:6c:12:8a:b9:e5: a7:12:b8:af:87:91:6c:23:0d:11:7d:92:5d:09:bc:6d:0e:57: 2e:54:ac:3a:f2:1c:3d:41:49:a4:77:b4:54:26:41:a7:61:3d: ed:5a:52:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG8OKkvCKi90+QVMvIqA1ZUyAxXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNTA2MDIwMTU4NDNaFw0yNjA2MDEwMjAzNDNaMDMxMTAvBgNV BAMTKDdBMTFFODBBNEM5NEYxRjMyNTIzRkI5N0U4QTY2NkEyNEE1QzZFNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DVBtGlhz3c+xXL0MqbRE1tn5 99quUYDkS0Qlzih1Rx3nK5s/LdDhBNIh5S8uxM/aTA1EEs7cxXhfoQDGbzIrI3hT wJMG2TYqTWO2KQ9ItkP0TtlVr+MEKrsgMg3Bihu2yegZ8vn8xzsF9mlyuQdoYbNX s3pk9ZWA8aCUn8Y1jKfdDReNyWd0v2lmpvCqNNfwy0bD9bTMwZHwm0k+kbpTmIOl phJNXfqIs1ahBoGxc1la8UecS+LluCsWGpnI048OZTDgfmySy7phdhjNTyld29tv lJKGtKV/A4xlAo/zZeIFkoq4cO7yd1pOOTJDK4GsfYmPcnZPdmDkUkk911rrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUehHoCkyU8fMlI/uX6KZmokpcbkwwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzMxMzAzMzJlMzEzMTM3MmUzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3VSMA0GCSqG SIb3DQEBCwUAA4IBAQBDSrz+xo6Kz6VYkm9a0Q1E5MQpSm+2+MXzc4waslVx0Fs2 R4Xh7WKNcyr5O0Zk2bVagEqWOTUZ5MqDY8Hx8twbCVLyv8ONGk1ihAbE0D1aGdAs QsHPdOo6hALhEuecuRbtyH5zNvudVJKJpXHCzyWNWtCZ6VJTGrmqjmMXiOQmcfx5 LX7cu3lz3orUV1aBRMON3hTwnVvWhCkJuE9mD3/EtKHigHeRLYeaaGbOMuT8U3xH V9KDsifOTMpO7nBMyGMN4wLQGM2L22/UkVKSNF91oKMubBKKueWnErivh5FsIw0R fZJdCbxtDlcuVKw68hw9QUmkd7RUJkGnYT3tWlJG -----END CERTIFICATE-----Generated at Sat Jun 7 15:32:40 2025 by rpki-client