$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa File: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: PMWu4w2Q+6FhMFUf3/IiRjbR53qP/H9SS7SsSz4BOlo= Subject key identifier: B6:52:39:E7:CD:95:39:F0:3F:FB:09:C6:87:40:AC:7D:8F:C3:EC:35 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 054CD85283E6C73EDE540B3A9CCBF105DEAB5816 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 103.206.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4c:d8:52:83:e6:c7:3e:de:54:0b:3a:9c:cb:f1:05:de:ab:58:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=B65239E7CD9539F03FFB09C68740AC7D8FC3EC35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b2:14:f7:35:e0:c3:5a:58:41:f5:74:a8:89: d7:0b:a0:c6:29:c1:13:74:4b:f4:c9:31:0f:b5:53: 52:a5:c3:5e:06:bc:32:ad:82:6e:bf:f7:e8:86:54: 1b:88:79:46:91:57:95:f0:71:97:f6:78:33:0b:f1: b0:0d:70:29:2f:1d:2b:e4:86:00:17:73:66:07:1d: 43:04:1d:22:1f:0a:01:88:0c:84:4e:25:8e:d7:de: 69:6a:ad:5c:1f:4a:9c:05:f6:a8:b1:48:7d:06:57: b7:8f:e2:98:3c:b2:21:3e:b0:12:f8:5c:4d:16:5e: 88:26:21:c3:aa:34:af:c5:6b:d7:3e:b4:ff:79:9a: b2:8a:4c:25:17:1f:8f:43:40:8a:39:fa:fd:a4:8e: 81:0b:b9:8a:32:5d:11:88:00:dd:06:2d:cc:62:f8: d7:26:37:de:48:1e:8e:8d:ce:2d:3a:8f:92:1c:04: d9:2d:bc:6d:34:cf:1e:b4:d9:68:93:71:39:ab:86: 3e:23:92:8a:54:ae:00:89:82:1d:bf:36:be:aa:a5: 19:b3:87:bc:76:22:68:a4:0f:08:24:49:06:45:2e: de:79:36:4d:bf:95:94:3b:09:64:01:c1:a3:54:72: ba:2d:63:6e:41:79:24:bc:77:e4:eb:97:56:ed:56: 53:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:52:39:E7:CD:95:39:F0:3F:FB:09:C6:87:40:AC:7D:8F:C3:EC:35 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.206.252.0/22 Signature Algorithm: sha256WithRSAEncryption 41:49:70:1f:ff:a8:3b:60:b6:67:8e:a4:17:8b:b6:1e:aa:62: 35:87:e4:b4:50:53:17:6c:f9:05:42:33:41:cd:1b:c9:bc:39: 82:13:33:bf:e1:ca:d0:a4:92:a5:e2:89:bd:20:ba:c1:2f:77: bd:53:80:3d:dd:71:04:17:88:e0:d2:f7:2f:65:c6:07:66:a4: 32:8e:4d:4e:8c:b9:26:99:46:b8:03:a8:4f:e9:6c:b5:0a:a8: 89:ec:0e:c9:25:2c:92:b6:7e:a3:5d:d9:09:26:d0:64:5c:66: 8b:ac:b2:73:23:49:40:35:80:ae:80:24:c7:c4:f9:a4:35:12: 38:ad:fe:af:0b:e3:cf:97:5f:ce:be:a8:03:1c:e0:53:8c:3e: bd:1d:04:4e:75:88:e8:b4:7e:64:43:cb:a1:3d:fd:a9:6c:3e: 66:5f:78:d8:cb:62:ec:72:b1:a4:25:f3:47:71:54:6b:cd:70: 40:f3:ce:65:64:3a:1f:a7:be:ab:40:5b:04:4a:07:81:24:bb: e9:d3:a9:c0:04:5c:31:d5:4e:c8:22:53:be:1d:e5:81:32:2f: 01:91:f4:d4:43:ef:5e:e3:6b:b2:50:b4:06:86:81:18:6e:1d: 22:4f:64:6c:b2:f4:a6:eb:8a:14:33:4f:5a:5c:6d:7f:9a:23: f8:38:bd:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBUzYUoPmxz7eVAs6nMvxBd6rWBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKEI2NTIzOUU3Q0Q5NTM5RjAzRkZCMDlDNjg3NDBBQzdEOEZDM0VDMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7shT3NeDDWlhB9XSoidcLoMYp wRN0S/TJMQ+1U1Klw14GvDKtgm6/9+iGVBuIeUaRV5XwcZf2eDML8bANcCkvHSvk hgAXc2YHHUMEHSIfCgGIDIROJY7X3mlqrVwfSpwF9qixSH0GV7eP4pg8siE+sBL4 XE0WXogmIcOqNK/Fa9c+tP95mrKKTCUXH49DQIo5+v2kjoELuYoyXRGIAN0GLcxi +NcmN95IHo6Nzi06j5IcBNktvG00zx602WiTcTmrhj4jkopUrgCJgh2/Nr6qpRmz h7x2ImikDwgkSQZFLt55Nk2/lZQ7CWQBwaNUcrotY25BeSS8d+Trl1btVlO7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtlI5582VOfA/+wnGh0CsfY/D7DUwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMxMzAzMzJlMzIzMDM2MmUzMjM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfO/DANBgkqhkiG 9w0BAQsFAAOCAQEAQUlwH/+oO2C2Z46kF4u2HqpiNYfktFBTF2z5BUIzQc0bybw5 ghMzv+HK0KSSpeKJvSC6wS93vVOAPd1xBBeI4NL3L2XGB2akMo5NToy5JplGuAOo T+lstQqoiewOySUskrZ+o13ZCSbQZFxmi6yycyNJQDWAroAkx8T5pDUSOK3+rwvj z5dfzr6oAxzgU4w+vR0ETnWI6LR+ZEPLoT39qWw+Zl942Mti7HKxpCXzR3FUa81w QPPOZWQ6H6e+q0BbBEoHgSS76dOpwARcMdVOyCJTvh3lgTIvAZH01EPvXuNrslC0 BoaBGG4dIk9kbLL0puuKFDNPWlxtf5oj+Di96Q== -----END CERTIFICATE-----Generated at Fri Jun 6 17:05:48 2025 by rpki-client