$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e39372e3235312e302f32342d3234203d3e20313335343438.roa File: 3130332e39372e3235312e302f32342d3234203d3e20313335343438.roa (raw, json) Hash identifier: hoLbivleHtt89cCReqbvfZYyTkoCRfwcqA081C1+9Gw= Subject key identifier: 24:05:68:10:6D:E4:4B:93:CE:8D:02:B4:AB:25:54:08:AB:08:20:41 Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 2BFD3DA275CE1244E7B3B7F86A76F69F8388DD4B Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e39372e3235312e302f32342d3234203d3e20313335343438.roa Signing time: Mon 02 Jun 2025 02:03:43 +0000 ROA not before: Mon 02 Jun 2025 01:58:43 +0000 ROA not after: Mon 01 Jun 2026 02:03:43 +0000 asID: 135448 IP address blocks: 103.97.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:fd:3d:a2:75:ce:12:44:e7:b3:b7:f8:6a:76:f6:9f:83:88:dd:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jun 2 01:58:43 2025 GMT Not After : Jun 1 02:03:43 2026 GMT Subject: CN=240568106DE44B93CE8D02B4AB255408AB082041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:53:cd:e7:45:1f:e4:5e:de:98:eb:b5:39:df: 12:9e:11:16:88:d6:ea:52:e2:06:26:0e:8a:42:67: 1c:1d:8c:f8:2b:e1:a6:7b:7c:5a:6c:9c:69:ff:ba: d2:23:31:86:99:40:9c:40:fc:53:cd:b2:9d:0c:f4: ba:13:0b:3f:66:57:53:af:e5:0a:e4:53:ab:fb:b3: 67:4d:ab:55:4c:59:ae:8c:24:05:42:a1:d5:32:57: 29:4e:3e:6d:d1:de:b1:1c:0d:d2:21:10:83:0f:69: bc:78:7e:7e:06:93:78:11:ab:f0:de:23:41:44:48: 36:d8:ff:2d:1c:54:27:52:3b:7b:f5:49:ac:0d:b2: 6a:d1:70:7c:bc:be:4c:67:ec:b2:f6:d1:bb:39:3c: 1e:7d:0c:c3:5c:b2:79:46:3a:f7:ec:ed:eb:b5:d0: 42:e0:26:07:b3:af:97:9e:e5:c0:c2:41:a5:34:5d: 0c:2e:c8:b2:a2:23:cf:13:d8:d3:38:7f:f2:b2:c9: 2e:cd:37:fe:27:32:3d:77:ed:23:a0:7c:1a:98:bb: 33:9f:ba:ff:d8:08:bc:fd:45:fc:47:d9:df:9f:c5: 79:bb:42:9c:a9:0f:fc:b6:6e:50:eb:75:71:ea:7a: 18:c2:b4:2d:fc:01:ab:5a:08:6c:9e:7f:ee:0e:c5: 9c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:05:68:10:6D:E4:4B:93:CE:8D:02:B4:AB:25:54:08:AB:08:20:41 X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e39372e3235312e302f32342d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:98:d9:cc:86:30:78:a7:4d:8c:a7:c5:a6:bd:9d:b7:e1:13: 01:c1:fd:7a:8e:4b:bf:01:4b:87:4c:61:af:ec:de:e0:2d:4f: 2a:fe:da:f8:e9:42:36:30:98:40:f2:28:79:a2:fc:25:24:07: b9:1a:9f:9e:7d:d3:b5:9c:ad:3c:f0:a4:d1:6b:58:65:e9:e7: 79:81:c5:16:e8:b7:d1:f5:1e:19:3b:08:e4:6d:16:d5:45:ba: e0:12:db:98:d3:e9:40:32:25:83:68:dc:6c:24:91:2a:4b:4b: 8e:22:de:1a:3c:05:cb:2b:e9:6f:70:68:8a:c5:6a:a3:17:b6: e2:f1:29:9e:b4:e1:e6:d7:68:fe:0a:d7:5b:27:95:6f:cc:e9: 13:f6:2a:07:bb:aa:b1:e6:1a:d0:79:a4:61:e5:3b:9d:56:05: 6b:55:ef:7f:77:ce:6e:f5:a5:8f:d2:81:1e:81:46:d5:6a:e0: 44:06:4c:d0:90:ee:11:0c:23:00:35:4d:09:65:8f:17:91:da: 7f:80:e5:7d:3d:57:6f:ac:03:ef:9e:c0:2e:c0:7e:90:1a:3d: 62:e6:aa:37:1e:4d:af:c8:b9:db:c8:41:d4:24:f7:a5:5c:00: 3b:b7:98:aa:c5:62:9a:f0:42:23:be:13:07:6e:7c:92:e1:16: 25:d4:2f:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK/09onXOEkTns7f4anb2n4OI3UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNTA2MDIwMTU4NDNaFw0yNjA2MDEwMjAzNDNaMDMxMTAvBgNV BAMTKDI0MDU2ODEwNkRFNDRCOTNDRThEMDJCNEFCMjU1NDA4QUIwODIwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlU83nRR/kXt6Y67U53xKeERaI 1upS4gYmDopCZxwdjPgr4aZ7fFpsnGn/utIjMYaZQJxA/FPNsp0M9LoTCz9mV1Ov 5QrkU6v7s2dNq1VMWa6MJAVCodUyVylOPm3R3rEcDdIhEIMPabx4fn4Gk3gRq/De I0FESDbY/y0cVCdSO3v1SawNsmrRcHy8vkxn7LL20bs5PB59DMNcsnlGOvfs7eu1 0ELgJgezr5ee5cDCQaU0XQwuyLKiI88T2NM4f/KyyS7NN/4nMj137SOgfBqYuzOf uv/YCLz9RfxH2d+fxXm7QpypD/y2blDrdXHqehjCtC38AataCGyef+4OxZyzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJAVoEG3kS5POjQK0qyVUCKsIIEEwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzMxMzAzMzJlMzkzNzJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2H7MA0GCSqG SIb3DQEBCwUAA4IBAQCfmNnMhjB4p02Mp8WmvZ234RMBwf16jku/AUuHTGGv7N7g LU8q/tr46UI2MJhA8ih5ovwlJAe5Gp+efdO1nK088KTRa1hl6ed5gcUW6LfR9R4Z OwjkbRbVRbrgEtuY0+lAMiWDaNxsJJEqS0uOIt4aPAXLK+lvcGiKxWqjF7bi8Sme tOHm12j+CtdbJ5VvzOkT9ioHu6qx5hrQeaRh5TudVgVrVe9/d85u9aWP0oEegUbV auBEBkzQkO4RDCMANU0JZY8Xkdp/gOV9PVdvrAPvnsAuwH6QGj1i5qo3Hk2vyLnb yEHUJPelXAA7t5iqxWKa8EIjvhMHbnyS4RYl1C+Z -----END CERTIFICATE-----Generated at Sat Jun 7 05:56:01 2025 by rpki-client