$ rpki-client -vvf repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/3130332e3234362e3130372e302f32342d3234203d3e20313331373738.roa File: 3130332e3234362e3130372e302f32342d3234203d3e20313331373738.roa (raw, json) Hash identifier: /0ivdWgJqnJaSVnUB+9OuvpQlcxcSIK1E90K9ZECaAA= Subject key identifier: AB:9E:20:C3:D3:27:F9:E5:0F:77:7F:20:37:76:F2:12:0F:32:68:5C Certificate issuer: /CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Certificate serial: 1099157D9C5AF5A25F9ECD3DD69A6612F7E9160A Authority key identifier: 0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/3130332e3234362e3130372e302f32342d3234203d3e20313331373738.roa Signing time: Mon 02 Jun 2025 02:04:19 +0000 ROA not before: Mon 02 Jun 2025 01:59:19 +0000 ROA not after: Mon 01 Jun 2026 02:04:19 +0000 asID: 131778 IP address blocks: 103.246.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:99:15:7d:9c:5a:f5:a2:5f:9e:cd:3d:d6:9a:66:12:f7:e9:16:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Validity Not Before: Jun 2 01:59:19 2025 GMT Not After : Jun 1 02:04:19 2026 GMT Subject: CN=AB9E20C3D327F9E50F777F203776F2120F32685C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:db:ee:0f:d1:92:95:20:73:9e:c5:ad:72:56: 5a:0b:8a:57:f8:0b:91:4c:98:4e:96:77:f6:a1:2e: 4d:43:24:60:60:0b:bd:48:c5:f0:f4:4d:31:00:e6: a3:13:6b:50:9f:7e:bd:c8:32:9f:bc:fe:ac:f5:24: 8c:9b:5f:27:43:88:9a:b7:bb:96:9a:f1:41:f0:5f: 10:e4:41:b2:88:41:44:30:3a:29:be:55:91:46:5e: 5f:2c:2a:d1:9f:dd:1f:83:a0:52:fb:36:6e:9b:8f: 91:8f:85:09:27:85:9e:5a:75:72:11:19:fc:8d:95: 62:6f:ef:35:8b:6b:e1:07:59:10:65:1e:5e:17:3f: 19:e5:5a:16:f4:4d:f6:a9:a4:28:1c:ef:c0:f9:f4: 78:0e:83:a7:45:79:30:e3:52:13:2c:b6:28:62:2a: 21:69:70:30:59:ad:7b:36:eb:3b:ac:5a:96:7e:c2: e6:37:53:e7:c7:bc:16:f2:7f:9e:13:6f:bf:97:b6: eb:24:53:49:f5:68:54:ad:5e:28:81:da:74:53:35: ec:e9:d6:4d:53:e5:84:d2:24:ca:bc:63:14:71:1d: 67:80:d3:c9:b8:08:fc:57:20:a5:33:97:6c:e6:95: f4:b0:1e:d1:0b:fc:bc:96:9d:7a:56:23:ab:57:98: 7e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9E:20:C3:D3:27:F9:E5:0F:77:7F:20:37:76:F2:12:0F:32:68:5C X509v3 Authority Key Identifier: keyid:0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/3130332e3234362e3130372e302f32342d3234203d3e20313331373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.107.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:54:ea:96:69:74:c7:67:cb:5e:bd:11:f0:7f:e0:f6:3f:fd: 0a:a0:d9:09:f9:78:d5:31:10:2d:50:27:2b:92:6d:5e:49:a4: f1:b4:5f:2f:fc:80:26:35:25:33:77:0c:39:d9:23:43:b2:f6: d5:97:3b:43:b6:0d:ca:c2:00:e0:f6:50:d9:ef:2c:0b:89:64: 03:bb:4d:6a:00:24:8c:f1:1c:a9:00:94:73:e9:72:a2:c1:a4: be:1f:c4:c7:ea:ba:54:29:b9:00:9f:8a:02:83:35:14:bb:a3: d3:a2:b3:37:22:b6:79:01:44:24:90:24:87:9b:74:5f:93:35: c6:20:9a:5c:71:a9:c7:bc:95:c9:0f:4e:6b:6d:18:fb:8c:99: 71:0f:f9:35:d5:c6:cd:1f:df:3a:41:ad:07:be:61:e5:49:82: 05:6b:f8:a4:99:6e:d5:1b:5c:df:b2:c7:2d:1d:1a:b6:3e:23: ac:86:4f:0a:f5:b9:a7:86:20:ec:8d:92:58:d3:a4:69:d4:9d: 14:2b:03:54:7d:af:d3:06:7e:d7:44:f8:25:7b:f1:a0:16:cf: 99:46:96:92:a6:37:15:21:bc:29:a6:02:b2:72:49:3b:86:2a: c3:c3:59:35:60:c8:62:c2:40:3c:4e:83:a0:37:e2:cc:d7:3d: 22:b7:b5:67 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEJkVfZxa9aJfns091ppmEvfpFgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2 QUI1Njk1RTAeFw0yNTA2MDIwMTU5MTlaFw0yNjA2MDEwMjA0MTlaMDMxMTAvBgNV BAMTKEFCOUUyMEMzRDMyN0Y5RTUwRjc3N0YyMDM3NzZGMjEyMEYzMjY4NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr2+4P0ZKVIHOexa1yVloLilf4 C5FMmE6Wd/ahLk1DJGBgC71IxfD0TTEA5qMTa1Cffr3IMp+8/qz1JIybXydDiJq3 u5aa8UHwXxDkQbKIQUQwOim+VZFGXl8sKtGf3R+DoFL7Nm6bj5GPhQknhZ5adXIR GfyNlWJv7zWLa+EHWRBlHl4XPxnlWhb0TfappCgc78D59HgOg6dFeTDjUhMstihi KiFpcDBZrXs26zusWpZ+wuY3U+fHvBbyf54Tb7+XtuskU0n1aFStXiiB2nRTNezp 1k1T5YTSJMq8YxRxHWeA08m4CPxXIKUzl2zmlfSwHtEL/LyWnXpWI6tXmH7dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUq54gw9Mn+eUPd38gN3byEg8yaFwwHwYDVR0j BBgwFoAUD/5fGfvrVIn/zN83/v4KDGq1aV4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmFlNThhYy01OTE3LTQwNjktOWE2Yy04M2RjMWJhMzIxMjYvMC8wRkZFNUYxOUZC RUI1NDg5RkZDQ0RGMzdGRUZFMEEwQzZBQjU2OTVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2QUI1 Njk1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiYWU1OGFjLTU5MTctNDA2OS05 YTZjLTgzZGMxYmEzMjEyNi8wLzMxMzAzMzJlMzIzNDM2MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9mswDQYJ KoZIhvcNAQELBQADggEBAG1U6pZpdMdny169EfB/4PY//Qqg2Qn5eNUxEC1QJyuS bV5JpPG0Xy/8gCY1JTN3DDnZI0Oy9tWXO0O2DcrCAOD2UNnvLAuJZAO7TWoAJIzx HKkAlHPpcqLBpL4fxMfqulQpuQCfigKDNRS7o9OiszcitnkBRCSQJIebdF+TNcYg mlxxqce8lckPTmttGPuMmXEP+TXVxs0f3zpBrQe+YeVJggVr+KSZbtUbXN+yxy0d GrY+I6yGTwr1uaeGIOyNkljTpGnUnRQrA1R9r9MGftdE+CV78aAWz5lGlpKmNxUh vCmmArJySTuGKsPDWTVgyGLCQDxOg6A34szXPSK3tWc= -----END CERTIFICATE-----Generated at Sat Jun 7 14:49:50 2025 by rpki-client