$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: EeloRAa8rxGIeEpGTxQGak2WLi+75Ry5Z63pTnvFrf8= Subject key identifier: 8B:59:37:C6:BD:F8:BC:19:DA:46:E2:77:60:3A:B5:E7:5E:9B:7F:BE Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Certificate serial: 144224F7AAB916D7F527E0D180B21CA0C161A492 Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa Signing time: Mon 02 Jun 2025 02:01:45 +0000 ROA not before: Mon 02 Jun 2025 01:56:45 +0000 ROA not after: Mon 01 Jun 2026 02:01:45 +0000 asID: 134648 IP address blocks: 103.208.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:42:24:f7:aa:b9:16:d7:f5:27:e0:d1:80:b2:1c:a0:c1:61:a4:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Validity Not Before: Jun 2 01:56:45 2025 GMT Not After : Jun 1 02:01:45 2026 GMT Subject: CN=8B5937C6BDF8BC19DA46E277603AB5E75E9B7FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e7:71:94:e7:43:15:77:b9:5f:f0:48:e0:fb: ba:e9:60:e8:0d:b9:0a:85:7a:8a:be:5b:c4:5a:26: 12:67:6d:3f:77:32:63:95:1d:0d:49:ea:82:a2:24: 89:31:7b:5f:f8:fc:31:b6:d3:c7:ce:84:18:33:a7: 4c:b2:03:fb:e4:cc:39:ad:25:34:28:88:ff:61:a3: 45:04:24:fb:c4:5c:c9:f0:28:f2:8c:a1:37:5a:ff: b0:5f:9e:cb:82:4e:a7:24:53:1f:26:b2:0f:58:00: e2:b1:70:1f:36:86:22:f5:d7:ca:e6:f3:c5:b7:3e: e5:c8:3c:8a:58:5e:54:b2:95:7e:f3:0d:21:04:af: 12:93:32:ce:2b:1a:de:cf:10:31:87:34:39:e6:ad: d6:87:7a:40:9b:24:e1:49:7b:e5:2d:6b:76:ec:db: 69:67:aa:21:a4:9b:fd:6a:32:96:06:f5:31:39:a1: e3:7a:fa:d6:09:e6:d6:fa:53:90:92:7d:3a:f2:16: 6c:60:38:2d:c6:ea:10:f4:76:7f:d9:8a:2f:8a:87: 08:13:e8:3c:f8:07:a8:4f:39:79:4c:27:57:b9:ac: 13:4b:aa:d7:57:16:93:18:90:25:15:80:f9:5b:cc: b7:72:48:3b:dd:a2:02:1a:e2:eb:d9:85:19:52:79: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:59:37:C6:BD:F8:BC:19:DA:46:E2:77:60:3A:B5:E7:5E:9B:7F:BE X509v3 Authority Key Identifier: keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.100.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:be:d0:e4:d1:3c:61:1d:4f:cc:2b:8a:ae:63:0b:e4:cb:a0: b6:65:38:24:d3:7c:25:11:22:83:77:8d:25:b8:bc:11:e1:20: 0d:fa:32:2c:e9:4e:43:2e:22:42:10:48:63:0f:27:b3:1f:41: bd:84:19:57:07:b3:35:10:49:1b:99:e7:67:11:da:c8:96:32: 76:00:9b:d6:cc:0a:25:e1:52:e5:7a:0c:ea:3c:8f:80:45:81: df:0e:39:01:53:e8:0b:03:9e:03:cf:aa:3c:a6:04:1f:1d:75: 7c:9e:34:3e:78:fa:64:76:c2:fb:95:d3:c2:9d:f1:ed:6b:02: 51:0c:f0:db:43:02:e8:62:91:1d:1f:92:6f:09:28:4a:47:ad: ff:68:9a:e0:f9:2f:ac:73:be:f9:19:ac:2a:d5:0c:d5:d4:42: a0:41:15:9b:2c:fa:31:55:cc:c7:6e:1b:ac:2d:68:23:43:5b: b2:20:e0:cb:09:d2:4a:d4:8d:24:c9:78:95:83:03:12:43:96: be:75:1d:a8:e0:bd:e3:8b:2a:87:f4:c9:c7:b9:ae:39:01:56: 76:71:1b:2f:95:e6:40:97:32:47:bd:74:33:c3:4e:17:4e:f3: 4b:d6:37:31:0a:35:08:2a:33:f5:44:33:69:34:b4:49:1f:e6: e8:93:d0:9c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFEIk96q5Ftf1J+DRgLIcoMFhpJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURD QUM2MkM5RjAeFw0yNTA2MDIwMTU2NDVaFw0yNjA2MDEwMjAxNDVaMDMxMTAvBgNV BAMTKDhCNTkzN0M2QkRGOEJDMTlEQTQ2RTI3NzYwM0FCNUU3NUU5QjdGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ53GU50MVd7lf8Ejg+7rpYOgN uQqFeoq+W8RaJhJnbT93MmOVHQ1J6oKiJIkxe1/4/DG208fOhBgzp0yyA/vkzDmt JTQoiP9ho0UEJPvEXMnwKPKMoTda/7BfnsuCTqckUx8msg9YAOKxcB82hiL118rm 88W3PuXIPIpYXlSylX7zDSEErxKTMs4rGt7PEDGHNDnmrdaHekCbJOFJe+Uta3bs 22lnqiGkm/1qMpYG9TE5oeN6+tYJ5tb6U5CSfTryFmxgOC3G6hD0dn/Zii+KhwgT 6Dz4B6hPOXlMJ1e5rBNLqtdXFpMYkCUVgPlbzLdySDvdogIa4uvZhRlSeUwRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi1k3xr34vBnaRuJ3YDq1516bf74wHwYDVR0j BBgwFoAUl9d/CGafuU5OmfeVUZ+2HcrGLJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmM2OTQ0MC04YjE3LTRhNjgtYTBmYS02NjE1OWUyMTYyZTAvMC85N0Q3N0YwODY2 OUZCOTRFNEU5OUY3OTU1MTlGQjYxRENBQzYyQzlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURDQUM2 MkM5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GQwDQYJ KoZIhvcNAQELBQADggEBAHq+0OTRPGEdT8wriq5jC+TLoLZlOCTTfCURIoN3jSW4 vBHhIA36MizpTkMuIkIQSGMPJ7MfQb2EGVcHszUQSRuZ52cR2siWMnYAm9bMCiXh UuV6DOo8j4BFgd8OOQFT6AsDngPPqjymBB8ddXyeND54+mR2wvuV08Kd8e1rAlEM 8NtDAuhikR0fkm8JKEpHrf9omuD5L6xzvvkZrCrVDNXUQqBBFZss+jFVzMduG6wt aCNDW7Ig4MsJ0krUjSTJeJWDAxJDlr51HajgveOLKof0yce5rjkBVnZxGy+V5kCX Mke9dDPDThdO80vWNzEKNQgqM/VEM2k0tEkf5uiT0Jw= -----END CERTIFICATE-----Generated at Sun Jun 8 21:12:36 2025 by rpki-client