$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: TU9zvXhzWTJdHe9aJGaZ4ESWd+R9UnSTLhOnKf2ldQw= Subject key identifier: F8:D6:47:1F:82:9B:4D:37:2D:FD:B0:B7:D7:D0:DC:4A:6D:9D:79:6B Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 3F951CFB2292218A430A4DCE37BCCA78AFECBE55 Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:04:37 +0000 ROA not before: Mon 02 Jun 2025 01:59:37 +0000 ROA not after: Mon 01 Jun 2026 02:04:37 +0000 asID: 58369 IP address blocks: 103.140.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:95:1c:fb:22:92:21:8a:43:0a:4d:ce:37:bc:ca:78:af:ec:be:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Jun 2 01:59:37 2025 GMT Not After : Jun 1 02:04:37 2026 GMT Subject: CN=F8D6471F829B4D372DFDB0B7D7D0DC4A6D9D796B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fe:20:6a:43:f8:3a:6d:9a:f7:5c:83:5a:10: 45:9b:ee:a3:43:b1:b3:78:44:8d:5c:c1:74:3c:a0: ed:13:47:bb:c7:05:18:db:e2:d5:9f:95:df:8e:27: ff:ae:56:cd:b8:9e:e0:bb:64:87:01:fd:75:78:78: a2:d7:5b:c2:6c:c0:46:5d:2c:75:ab:fa:4d:0d:1c: 5b:40:40:43:fa:9f:bf:35:0a:c8:51:14:b0:87:06: 7c:cc:ea:58:17:5a:24:57:50:4e:45:1c:0d:7d:61: 4c:5c:7d:68:d4:e8:38:20:93:a3:95:c6:72:04:7f: e8:ea:36:eb:15:fc:3c:61:01:09:1b:2a:dc:13:b8: 66:0c:2c:1d:d5:cb:ce:60:83:c3:05:0b:7f:e9:a1: c3:e1:11:70:e7:db:f4:dd:01:53:b6:f9:64:20:d1: dd:b0:76:c1:ec:90:92:87:17:af:01:e6:b6:32:57: 6d:8b:6c:7f:8c:8c:57:9c:2a:00:67:ae:eb:b4:0b: 93:73:0e:7f:74:7a:7b:ef:f7:d5:7e:fd:94:77:b2: dd:11:6f:4e:03:2c:d4:87:32:9c:16:1d:cf:46:6b: 13:f0:8c:3f:8e:21:50:19:59:99:77:e1:cf:b7:b2: a5:6c:d8:64:e3:ea:7b:1f:80:0b:32:55:37:ab:9b: e5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D6:47:1F:82:9B:4D:37:2D:FD:B0:B7:D7:D0:DC:4A:6D:9D:79:6B X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.108.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:56:d0:55:69:8b:42:27:39:f1:a9:24:7e:0a:a9:19:11:d8: ef:c0:5e:fa:61:d9:4f:ff:d9:3a:5d:32:97:35:a7:c1:03:a9: c7:1f:a1:83:0d:5c:bb:fd:14:1c:ea:16:57:5a:74:f8:56:25: c8:7b:33:74:33:7a:af:b3:2f:6d:d0:77:65:af:b2:6e:bf:cc: c6:bc:57:48:5a:04:5f:9a:01:b1:47:d8:d0:ad:8c:e5:8f:17: 5d:7c:dc:62:92:de:6e:3f:a6:66:42:87:d7:d0:f3:f2:af:ac: 3d:22:28:38:c1:53:bb:a5:13:89:f6:d5:ac:8d:f7:4e:1a:4b: c9:a5:1c:4a:fe:7f:ee:5d:c8:c5:54:2d:4b:4f:42:68:89:bf: 61:87:40:f6:3c:aa:fc:1b:aa:a2:81:d4:b9:74:1d:72:ef:48: 3c:61:25:d9:73:01:61:e1:39:10:9f:11:7d:bd:10:5f:94:2b: 51:18:a0:6b:56:71:85:52:f0:ea:e6:41:08:65:04:1a:e3:c9: 16:81:90:bd:ac:1a:ec:94:14:57:e5:99:21:e5:df:33:8b:a0: 34:81:34:5c:b7:61:bf:37:f9:50:af:71:fc:40:06:4e:40:46: 2c:ec:1b:c7:8f:f7:fc:2f:2e:24:4d:96:cf:7e:6c:0a:12:81: b8:00:62:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP5Uc+yKSIYpDCk3ON7zKeK/svlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNTA2MDIwMTU5MzdaFw0yNjA2MDEwMjA0MzdaMDMxMTAvBgNV BAMTKEY4RDY0NzFGODI5QjREMzcyREZEQjBCN0Q3RDBEQzRBNkQ5RDc5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT/iBqQ/g6bZr3XINaEEWb7qND sbN4RI1cwXQ8oO0TR7vHBRjb4tWfld+OJ/+uVs24nuC7ZIcB/XV4eKLXW8JswEZd LHWr+k0NHFtAQEP6n781CshRFLCHBnzM6lgXWiRXUE5FHA19YUxcfWjU6Dggk6OV xnIEf+jqNusV/DxhAQkbKtwTuGYMLB3Vy85gg8MFC3/pocPhEXDn2/TdAVO2+WQg 0d2wdsHskJKHF68B5rYyV22LbH+MjFecKgBnruu0C5NzDn90envv99V+/ZR3st0R b04DLNSHMpwWHc9GaxPwjD+OIVAZWZl34c+3sqVs2GTj6nsfgAsyVTerm+WJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+NZHH4KbTTct/bC319DcSm2deWswHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xsMA0GCSqG SIb3DQEBCwUAA4IBAQBMVtBVaYtCJznxqSR+CqkZEdjvwF76YdlP/9k6XTKXNafB A6nHH6GDDVy7/RQc6hZXWnT4ViXIezN0M3qvsy9t0Hdlr7Juv8zGvFdIWgRfmgGx R9jQrYzljxddfNxikt5uP6ZmQofX0PPyr6w9Iig4wVO7pROJ9tWsjfdOGkvJpRxK /n/uXcjFVC1LT0Joib9hh0D2PKr8G6qigdS5dB1y70g8YSXZcwFh4TkQnxF9vRBf lCtRGKBrVnGFUvDq5kEIZQQa48kWgZC9rBrslBRX5Zkh5d8zi6A0gTRct2G/N/lQ r3H8QAZOQEYs7BvHj/f8Ly4kTZbPfmwKEoG4AGKW -----END CERTIFICATE-----Generated at Fri Jun 6 16:43:31 2025 by rpki-client