$ rpki-client -vvf repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/3130332e3234322e37392e302f32342d3234203d3e20313531353330.roa File: 3130332e3234322e37392e302f32342d3234203d3e20313531353330.roa (raw, json) Hash identifier: 6h0PS6sD0cpo/dFFiqhzCPsiuizhkV5A6x6l4CJlcqA= Subject key identifier: C8:B0:2A:F7:68:90:E9:41:47:42:6B:21:4A:1E:41:4B:BB:D7:3B:92 Certificate issuer: /CN=46E596CAE0AEADA8B4135425216E8783D92E6C76 Certificate serial: 52A507701212DAAD4802B3A88C99812FE904A1CC Authority key identifier: 46:E5:96:CA:E0:AE:AD:A8:B4:13:54:25:21:6E:87:83:D9:2E:6C:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46E596CAE0AEADA8B4135425216E8783D92E6C76.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/3130332e3234322e37392e302f32342d3234203d3e20313531353330.roa Signing time: Thu 05 Jun 2025 03:03:23 +0000 ROA not before: Thu 05 Jun 2025 02:58:23 +0000 ROA not after: Thu 04 Jun 2026 03:03:23 +0000 asID: 151530 IP address blocks: 103.242.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/46E596CAE0AEADA8B4135425216E8783D92E6C76.crl rsync://repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/46E596CAE0AEADA8B4135425216E8783D92E6C76.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46E596CAE0AEADA8B4135425216E8783D92E6C76.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a5:07:70:12:12:da:ad:48:02:b3:a8:8c:99:81:2f:e9:04:a1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46E596CAE0AEADA8B4135425216E8783D92E6C76 Validity Not Before: Jun 5 02:58:23 2025 GMT Not After : Jun 4 03:03:23 2026 GMT Subject: CN=C8B02AF76890E94147426B214A1E414BBBD73B92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ac:c7:96:d8:22:73:5b:8b:4f:e6:6d:90:ed: 75:c6:76:64:b9:a8:7f:99:67:0b:f9:8f:55:5e:9e: 3b:1b:7f:90:13:ff:d6:b8:7a:38:c7:56:b4:fb:2b: f4:e8:c9:c8:2b:38:68:f2:80:f6:b7:12:0e:7d:6f: 72:f3:e0:70:1b:77:ce:ee:51:2b:86:f8:44:0b:66: 3b:be:94:01:b3:a5:26:38:a4:c3:46:5e:d7:da:1b: a9:e5:20:e1:ff:86:4a:ff:26:33:04:76:e2:70:40: cf:8a:19:5b:50:dd:dd:6a:73:7b:a3:cd:cf:3b:e6: 54:1e:31:30:16:f5:31:84:16:0b:84:d6:24:20:1a: 13:12:53:df:f1:ca:ba:5d:53:c9:65:3d:07:b5:fe: 57:9a:c2:9a:63:97:2f:30:41:26:b9:24:0d:02:ed: 5f:d4:e3:7f:20:e1:7e:fe:56:6f:7c:87:65:c7:c5: 77:1b:2a:65:fc:08:a1:bb:9c:11:1e:84:a7:8d:5d: ce:0f:bc:cd:fd:10:45:72:19:f2:b6:da:f7:ef:c4: 27:f6:a0:53:e3:4c:3e:3d:08:04:1c:bc:0c:f7:3d: bb:12:ad:ed:35:46:0a:76:76:8b:31:a7:6b:c0:ab: ef:ce:b9:3d:9b:e4:4b:4a:d5:e2:60:90:2c:fc:12: 66:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B0:2A:F7:68:90:E9:41:47:42:6B:21:4A:1E:41:4B:BB:D7:3B:92 X509v3 Authority Key Identifier: keyid:46:E5:96:CA:E0:AE:AD:A8:B4:13:54:25:21:6E:87:83:D9:2E:6C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/46E596CAE0AEADA8B4135425216E8783D92E6C76.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46E596CAE0AEADA8B4135425216E8783D92E6C76.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20481e49-f4c1-4c13-94b7-0701c92c3450/0/3130332e3234322e37392e302f32342d3234203d3e20313531353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.79.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:c7:77:ed:cb:8c:6e:f9:3a:5d:b3:cf:85:23:6e:65:02:d4: 93:44:9f:37:49:f1:48:1f:74:dc:fd:5d:f7:43:b3:9e:03:1c: 39:53:df:48:4b:94:bd:e9:6b:26:97:52:88:a5:71:6a:4f:49: 35:11:28:21:7a:2f:aa:1f:5f:7e:a6:68:d3:f6:f5:a1:de:2a: a3:3d:69:8f:d3:d2:83:b0:0e:b0:98:db:75:ce:8d:76:0a:ff: 00:4c:1a:d8:cf:53:f6:c4:03:56:63:d5:83:e5:93:a5:d9:5a: 09:7d:15:5d:f4:50:c0:59:1b:47:7a:dd:04:60:60:1e:3b:54: 0c:24:96:cc:50:d8:bf:5d:e5:61:03:96:13:ad:d6:8e:9f:9c: b8:da:de:62:5d:cb:b7:9c:5f:e7:19:a1:f1:6a:d1:d2:d9:65: 74:08:e6:50:8d:2a:c0:f9:52:dc:0d:28:2c:c0:75:56:2d:de: 12:fa:f7:a1:06:fb:f1:bf:c8:37:a3:64:17:40:b5:f7:90:91: a1:64:e4:16:b6:c1:00:c2:72:4b:70:81:98:2d:89:1e:2c:54: 2a:cd:4b:03:f2:6d:5e:a9:50:c8:67:e1:5a:7e:de:c1:1d:bf: 88:17:85:b3:2d:bc:ab:f6:1a:83:62:be:21:97:60:b1:0c:e2: dc:aa:4c:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUqUHcBIS2q1IArOojJmBL+kEocwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZFNTk2Q0FFMEFFQURBOEI0MTM1NDI1MjE2RTg3ODNE OTJFNkM3NjAeFw0yNTA2MDUwMjU4MjNaFw0yNjA2MDQwMzAzMjNaMDMxMTAvBgNV BAMTKEM4QjAyQUY3Njg5MEU5NDE0NzQyNkIyMTRBMUU0MTRCQkJENzNCOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTrMeW2CJzW4tP5m2Q7XXGdmS5 qH+ZZwv5j1Venjsbf5AT/9a4ejjHVrT7K/ToycgrOGjygPa3Eg59b3Lz4HAbd87u USuG+EQLZju+lAGzpSY4pMNGXtfaG6nlIOH/hkr/JjMEduJwQM+KGVtQ3d1qc3uj zc875lQeMTAW9TGEFguE1iQgGhMSU9/xyrpdU8llPQe1/leawppjly8wQSa5JA0C 7V/U438g4X7+Vm98h2XHxXcbKmX8CKG7nBEehKeNXc4PvM39EEVyGfK22vfvxCf2 oFPjTD49CAQcvAz3PbsSre01Rgp2dosxp2vAq+/OuT2b5EtK1eJgkCz8EmaFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyLAq92iQ6UFHQmshSh5BS7vXO5IwHwYDVR0j BBgwFoAURuWWyuCurai0E1QlIW6Hg9kubHYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDQ4MWU0OS1mNGMxLTRjMTMtOTRiNy0wNzAxYzkyYzM0NTAvMC80NkU1OTZDQUUw QUVBREE4QjQxMzU0MjUyMTZFODc4M0Q5MkU2Qzc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDZFNTk2Q0FFMEFFQURBOEI0MTM1NDI1MjE2RTg3ODNEOTJF NkM3Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwNDgxZTQ5LWY0YzEtNGMxMy05 NGI3LTA3MDFjOTJjMzQ1MC8wLzMxMzAzMzJlMzIzNDMyMmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/JPMA0GCSqG SIb3DQEBCwUAA4IBAQA/x3fty4xu+Tpds8+FI25lAtSTRJ83SfFIH3Tc/V33Q7Oe Axw5U99IS5S96Wsml1KIpXFqT0k1ESghei+qH19+pmjT9vWh3iqjPWmP09KDsA6w mNt1zo12Cv8ATBrYz1P2xANWY9WD5ZOl2VoJfRVd9FDAWRtHet0EYGAeO1QMJJbM UNi/XeVhA5YTrdaOn5y42t5iXcu3nF/nGaHxatHS2WV0COZQjSrA+VLcDSgswHVW Ld4S+vehBvvxv8g3o2QXQLX3kJGhZOQWtsEAwnJLcIGYLYkeLFQqzUsD8m1eqVDI Z+Faft7BHb+IF4WzLbyr9hqDYr4hl2CxDOLcqkx8 -----END CERTIFICATE-----Generated at Sun Jun 8 02:41:19 2025 by rpki-client