$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: Jz7bd4l9iJshW7NcA6KcDnrf6hTtrcC3IwQK9KShw7w= Subject key identifier: 53:14:22:F3:BA:49:16:65:A5:3C:13:8E:5B:07:9E:10:C0:C5:A6:71 Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Certificate serial: 5C63ABEBFF386933BE0726D5D7EC2257FEFA8A60 Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa Signing time: Mon 02 Jun 2025 02:01:44 +0000 ROA not before: Mon 02 Jun 2025 01:56:44 +0000 ROA not after: Mon 01 Jun 2026 02:01:44 +0000 asID: 134648 IP address blocks: 103.208.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:63:ab:eb:ff:38:69:33:be:07:26:d5:d7:ec:22:57:fe:fa:8a:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Validity Not Before: Jun 2 01:56:44 2025 GMT Not After : Jun 1 02:01:44 2026 GMT Subject: CN=531422F3BA491665A53C138E5B079E10C0C5A671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:80:97:7e:48:ba:bb:d6:4b:51:d7:95:c8: ca:a6:77:22:3b:d8:2b:37:0e:6e:ca:44:30:1a:d2: d1:a8:0e:8b:11:c7:cd:a0:20:81:98:7c:8d:b9:15: 38:9f:64:87:13:b1:7a:4b:9e:00:14:2e:3a:a2:ea: 8f:b9:cd:df:02:d5:c3:b9:b0:2a:e6:69:d4:a9:b4: d9:f4:7a:fc:6a:a2:bb:b5:5c:f4:25:f3:6d:78:9b: d9:7d:52:c0:ba:08:22:09:29:78:ae:e5:93:d5:8e: 1f:9e:68:f7:c8:32:0b:e8:42:c0:f3:7b:02:d7:55: fe:c2:13:fe:ba:f0:fc:59:51:be:fd:7b:42:d7:05: 87:d3:1f:77:65:6d:a8:ed:91:fd:3c:08:62:83:f7: ca:7e:3b:3b:78:4a:75:8c:02:27:9b:07:0e:88:be: f3:f6:74:38:57:81:98:2a:63:50:00:80:f0:45:a5: 5e:70:6a:27:c5:42:ca:d8:b6:2d:83:84:fe:d6:01: 07:04:a9:88:ef:23:cf:bf:28:53:35:1d:d7:c5:7d: be:2b:a7:17:1a:6c:91:18:df:84:16:1e:4f:19:e2: d1:c9:bf:ef:64:a0:96:a8:62:7a:84:94:82:ea:73: 3e:dd:b1:9c:92:f4:55:14:49:57:92:14:c1:cb:79: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:14:22:F3:BA:49:16:65:A5:3C:13:8E:5B:07:9E:10:C0:C5:A6:71 X509v3 Authority Key Identifier: keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.103.0/24 Signature Algorithm: sha256WithRSAEncryption 46:40:eb:5a:0a:3e:5f:7e:e3:3c:fe:2e:e6:3b:ea:06:de:a4: 9e:41:d4:38:c8:1c:48:29:88:06:f8:7b:4b:20:33:bd:76:9b: 79:6d:80:b3:c6:1d:21:b3:99:b4:00:6c:da:24:d4:0b:25:39: 50:6f:79:3c:e0:ec:16:c9:04:e1:0c:74:17:70:5b:a0:ce:11: 84:34:c3:4a:5f:d1:96:e2:d9:a9:a7:62:bc:e1:c5:bc:40:b5: e4:01:d8:78:b8:a6:6a:cf:0e:b4:f8:e7:8b:38:4e:79:bd:39: 21:c7:c8:88:56:21:e1:89:b0:aa:41:b4:49:a4:83:a6:1d:e0: 72:ba:a0:ca:f4:56:e2:88:7a:41:f6:cf:20:50:16:b2:69:57: d3:f7:87:89:77:87:8e:0c:b1:be:be:70:59:7f:99:db:a1:a7: da:c8:04:9d:72:32:e1:84:c7:3c:53:62:44:9e:6d:76:9d:8c: 3b:01:c4:56:bb:63:6b:ab:3a:a5:e8:0d:7e:5a:aa:bc:b4:85: 61:3d:d6:b4:e4:24:0f:4b:65:38:fc:30:15:09:d1:45:16:3a: fd:3b:85:ee:03:6e:2d:5d:67:06:ab:c3:b4:33:33:b9:a3:e2: b8:52:80:ab:f5:9e:27:48:9f:fc:e9:21:bd:aa:a3:d3:ce:39: ca:c5:24:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXGOr6/84aTO+BybV1+wiV/76imAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURD QUM2MkM5RjAeFw0yNTA2MDIwMTU2NDRaFw0yNjA2MDEwMjAxNDRaMDMxMTAvBgNV BAMTKDUzMTQyMkYzQkE0OTE2NjVBNTNDMTM4RTVCMDc5RTEwQzBDNUE2NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkRoCXfki6u9ZLUdeVyMqmdyI7 2Cs3Dm7KRDAa0tGoDosRx82gIIGYfI25FTifZIcTsXpLngAULjqi6o+5zd8C1cO5 sCrmadSptNn0evxqoru1XPQl8214m9l9UsC6CCIJKXiu5ZPVjh+eaPfIMgvoQsDz ewLXVf7CE/668PxZUb79e0LXBYfTH3dlbajtkf08CGKD98p+Ozt4SnWMAiebBw6I vvP2dDhXgZgqY1AAgPBFpV5waifFQsrYti2DhP7WAQcEqYjvI8+/KFM1HdfFfb4r pxcabJEY34QWHk8Z4tHJv+9koJaoYnqElILqcz7dsZyS9FUUSVeSFMHLeVL7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUxQi87pJFmWlPBOOWweeEMDFpnEwHwYDVR0j BBgwFoAUl9d/CGafuU5OmfeVUZ+2HcrGLJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmM2OTQ0MC04YjE3LTRhNjgtYTBmYS02NjE1OWUyMTYyZTAvMC85N0Q3N0YwODY2 OUZCOTRFNEU5OUY3OTU1MTlGQjYxRENBQzYyQzlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURDQUM2 MkM5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GcwDQYJ KoZIhvcNAQELBQADggEBAEZA61oKPl9+4zz+LuY76gbepJ5B1DjIHEgpiAb4e0sg M712m3ltgLPGHSGzmbQAbNok1AslOVBveTzg7BbJBOEMdBdwW6DOEYQ0w0pf0Zbi 2amnYrzhxbxAteQB2Hi4pmrPDrT454s4Tnm9OSHHyIhWIeGJsKpBtEmkg6Yd4HK6 oMr0VuKIekH2zyBQFrJpV9P3h4l3h44Msb6+cFl/mduhp9rIBJ1yMuGExzxTYkSe bXadjDsBxFa7Y2urOqXoDX5aqry0hWE91rTkJA9LZTj8MBUJ0UUWOv07he4Dbi1d Zwarw7QzM7mj4rhSgKv1nidIn/zpIb2qo9POOcrFJAE= -----END CERTIFICATE-----Generated at Mon Jun 9 02:42:53 2025 by rpki-client