$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa File: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (raw, json) Hash identifier: +hHtMHqrRgOxnxPgQ1JDtVaqmRcnzLdlLvloLKvOcZA= Subject key identifier: 28:CE:D3:9A:06:28:EF:B7:36:54:81:A4:1F:B4:D6:12:EC:25:24:9F Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 1C82E3670B37F7F7EFAB8E26C98C6E11E4BB5C74 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa Signing time: Mon 02 Jun 2025 01:02:53 +0000 ROA not before: Mon 02 Jun 2025 00:57:53 +0000 ROA not after: Mon 01 Jun 2026 01:02:53 +0000 asID: 133815 IP address blocks: 103.52.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:82:e3:67:0b:37:f7:f7:ef:ab:8e:26:c9:8c:6e:11:e4:bb:5c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jun 2 00:57:53 2025 GMT Not After : Jun 1 01:02:53 2026 GMT Subject: CN=28CED39A0628EFB7365481A41FB4D612EC25249F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cd:cb:6c:c8:7c:59:91:b5:03:dd:84:b6:1d: 1e:0e:d2:d3:dc:a4:3b:7e:24:6c:4b:e1:b4:11:f2: 2b:ac:65:82:3f:a6:6f:60:67:4b:02:9f:6e:22:27: b7:79:4b:0a:cb:83:8c:83:d8:7d:67:fe:9a:39:47: 89:d5:6d:2a:d1:86:77:a5:1b:2b:51:e4:48:7a:63: fa:4c:b1:ec:e5:81:43:12:4c:8b:f2:c7:b4:5f:8e: a3:b8:51:bb:9b:3f:86:ac:9b:36:36:07:3d:d2:d0: 03:b3:a7:b2:cf:b4:dc:d8:ab:fd:21:eb:1c:64:d1: 4e:77:0d:f2:7b:66:0e:16:ef:a4:83:8a:c4:b3:b6: 12:81:81:4d:bf:8f:b7:b1:76:c5:a6:ea:1e:79:89: 45:a0:43:a7:bc:78:b2:d3:e9:88:ac:a2:49:3b:44: 31:7c:2d:c9:5c:7c:17:fa:3c:19:29:35:62:3f:1b: 36:e5:74:5d:fd:7b:78:44:84:c5:a6:ac:c2:65:08: 62:4e:63:89:7a:2a:fe:02:7e:56:18:b1:7e:9c:e1: cc:45:37:1f:c5:1b:f3:72:44:87:c2:4a:7b:52:22: df:bf:00:42:cd:73:e0:e2:ce:42:9a:1a:b6:3d:b6: ab:78:68:77:55:f0:06:f1:fb:0a:e9:64:45:82:04: 5c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CE:D3:9A:06:28:EF:B7:36:54:81:A4:1F:B4:D6:12:EC:25:24:9F X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.44.0/22 Signature Algorithm: sha256WithRSAEncryption 31:cb:ad:be:e5:7c:17:81:0a:df:f2:dc:e2:10:bb:d7:e3:d3: 42:58:d6:0f:bc:dc:f6:b8:f8:b3:1c:d5:d0:d9:ef:7f:7a:5a: 10:eb:bd:9b:cc:80:0b:de:a5:f3:51:0b:dc:74:5c:73:0f:7d: 68:5b:16:4a:43:03:f3:53:3f:d1:99:e9:4e:31:63:01:38:b9: 6f:7c:e8:cb:af:f2:21:f9:2c:7c:72:8e:30:15:e1:d4:4c:8c: 6e:8a:94:dd:03:50:5a:ab:87:0b:4f:13:d4:f3:93:f3:b6:5e: 91:0f:82:3c:41:85:91:0d:7c:ee:d7:7f:a8:43:96:7f:c9:eb: ce:d8:1f:46:10:ad:3a:8b:41:df:00:2a:63:99:0d:3e:cd:56: 2d:4f:b9:10:6a:ce:7c:94:79:2b:7f:79:e1:5a:e8:b7:2d:76: b3:ce:c0:03:fa:e3:56:19:98:fb:c4:61:8f:25:3c:f5:b3:a4: 9f:f7:3f:fd:5e:41:d2:5d:5c:6c:bc:54:1b:5a:2a:6c:94:06: b5:0d:07:71:bf:cd:a8:0c:cf:06:dc:cd:b9:67:74:d1:33:78: c6:f4:4f:21:08:db:81:33:c5:99:61:eb:e0:cf:bb:7e:0b:4f: f2:5d:47:a2:e7:17:a2:70:ef:3f:19:98:02:5c:fe:a9:97:b3: cb:f7:9e:91 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHILjZws39/fvq44myYxuEeS7XHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTA2MDIwMDU3NTNaFw0yNjA2MDEwMTAyNTNaMDMxMTAvBgNV BAMTKDI4Q0VEMzlBMDYyOEVGQjczNjU0ODFBNDFGQjRENjEyRUMyNTI0OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZzctsyHxZkbUD3YS2HR4O0tPc pDt+JGxL4bQR8iusZYI/pm9gZ0sCn24iJ7d5SwrLg4yD2H1n/po5R4nVbSrRhnel GytR5Eh6Y/pMsezlgUMSTIvyx7RfjqO4UbubP4asmzY2Bz3S0AOzp7LPtNzYq/0h 6xxk0U53DfJ7Zg4W76SDisSzthKBgU2/j7exdsWm6h55iUWgQ6e8eLLT6Yisokk7 RDF8LclcfBf6PBkpNWI/GzbldF39e3hEhMWmrMJlCGJOY4l6Kv4CflYYsX6c4cxF Nx/FG/NyRIfCSntSIt+/AELNc+DizkKaGrY9tqt4aHdV8Abx+wrpZEWCBFxfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKM7TmgYo77c2VIGkH7TWEuwlJJ8wHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMxMzAzMzJlMzUzMjJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc0LDANBgkqhkiG 9w0BAQsFAAOCAQEAMcutvuV8F4EK3/Lc4hC71+PTQljWD7zc9rj4sxzV0Nnvf3pa EOu9m8yAC96l81EL3HRccw99aFsWSkMD81M/0ZnpTjFjATi5b3zoy6/yIfksfHKO MBXh1EyMboqU3QNQWquHC08T1POT87ZekQ+CPEGFkQ187td/qEOWf8nrztgfRhCt OotB3wAqY5kNPs1WLU+5EGrOfJR5K3954Vroty12s87AA/rjVhmY+8RhjyU89bOk n/c//V5B0l1cbLxUG1oqbJQGtQ0Hcb/NqAzPBtzNuWd00TN4xvRPIQjbgTPFmWHr 4M+7fgtP8l1HoucXonDvPxmYAlz+qZezy/eekQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:11:15 2025 by rpki-client