$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35392e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: 9iu7ypE0DOgzIq5HMAnIVo4kGKAs2AlVlOiv5hSXbmQ= Subject key identifier: A4:EF:78:3F:CA:95:74:8F:59:3B:71:01:21:3B:F8:71:C9:B5:B5:71 Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Certificate serial: 41FF99207EB1F02FA744A005D33E96C7D0B8280A Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa Signing time: Mon 02 Jun 2025 02:05:02 +0000 ROA not before: Mon 02 Jun 2025 02:00:02 +0000 ROA not after: Mon 01 Jun 2026 02:05:02 +0000 asID: 132637 IP address blocks: 103.19.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ff:99:20:7e:b1:f0:2f:a7:44:a0:05:d3:3e:96:c7:d0:b8:28:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Validity Not Before: Jun 2 02:00:02 2025 GMT Not After : Jun 1 02:05:02 2026 GMT Subject: CN=A4EF783FCA95748F593B7101213BF871C9B5B571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:11:c2:84:bf:14:ac:e4:c7:04:79:ad:dc: 79:f8:97:dd:1e:7a:7c:c4:bc:e3:71:29:60:24:75: 6c:5f:ad:bd:b5:c8:09:39:3e:0b:b6:d8:fd:bb:fb: 85:ce:a2:1e:e2:72:3e:92:9d:52:ea:23:54:a0:0d: ae:ae:60:2e:fe:8e:c4:43:80:58:9d:30:7a:14:00: 7b:5b:2c:33:ad:1f:16:ff:05:c8:dd:71:05:75:73: 81:ff:4a:43:d8:ca:a9:5b:24:96:6c:1d:aa:93:58: b4:3c:0e:75:1a:26:03:e2:0c:0b:19:9c:7a:eb:a2: 8c:89:f5:05:c0:43:b6:a1:45:aa:63:da:82:0f:04: 63:3e:1a:60:bb:58:2d:24:69:73:ed:5e:a6:dd:04: 8d:c3:16:3c:55:03:8d:c3:60:17:7e:10:e3:12:67: 98:ac:e0:6a:aa:a5:fc:08:a9:5b:5f:49:f4:48:86: 31:b3:95:23:9b:73:43:88:0a:ea:34:55:74:f3:18: 41:03:93:6d:41:1f:8e:19:e1:5b:97:ee:49:74:60: d7:34:c1:08:ae:cd:7b:75:c7:8e:73:34:e1:42:bc: dc:6f:a3:c2:c5:46:1c:5f:83:66:d6:96:4b:83:0d: 8d:25:b6:a6:72:28:06:65:00:98:55:a1:74:6f:e0: d0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EF:78:3F:CA:95:74:8F:59:3B:71:01:21:3B:F8:71:C9:B5:B5:71 X509v3 Authority Key Identifier: keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.59.0/24 Signature Algorithm: sha256WithRSAEncryption 25:fb:45:e5:1d:84:63:60:09:fa:32:26:06:c9:a8:1b:af:04: e8:d8:5a:64:a8:e4:b5:6d:4d:59:8c:d1:e7:4c:b9:b9:2a:14: 53:a8:ad:ae:81:1c:ed:cf:4b:dc:79:43:da:2b:d0:0e:f6:d6: 0f:0e:45:6c:35:c5:75:c6:91:13:c1:e4:6c:19:7f:72:b3:e8: 4f:21:0d:1b:d8:b8:05:d8:73:79:c9:34:d4:18:36:5c:34:30: 10:b9:3a:6a:ea:c6:74:2e:6f:5f:4d:f4:2e:d3:ed:75:e7:5d: 20:13:9b:7c:41:9c:04:18:ce:fb:0f:9f:a7:07:4b:28:79:72: 7c:67:2a:4e:dc:cb:6c:97:88:3d:04:1f:53:2a:40:f4:ac:56: fe:eb:89:b0:26:41:df:5b:92:bd:30:ce:75:e4:55:fa:56:fd: d7:8e:59:8d:6b:ec:b4:0f:56:52:b6:14:e5:65:1a:b6:d5:c9: d7:0a:d1:e2:6b:ca:51:5b:97:9f:c3:4e:40:ab:aa:0b:e6:98: 5a:aa:43:54:c2:29:a5:00:10:18:08:4b:ea:29:d6:33:68:86: 62:c9:97:ef:b1:08:dd:3d:aa:2d:ec:ef:de:73:a1:c0:99:2f: 90:33:a3:f5:0f:71:ad:ab:42:ac:2c:a1:02:26:20:18:d3:16: bc:aa:2f:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQf+ZIH6x8C+nRKAF0z6Wx9C4KAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC OEMyMURCRDAeFw0yNTA2MDIwMjAwMDJaFw0yNjA2MDEwMjA1MDJaMDMxMTAvBgNV BAMTKEE0RUY3ODNGQ0E5NTc0OEY1OTNCNzEwMTIxM0JGODcxQzlCNUI1NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLXRHChL8UrOTHBHmt3Hn4l90e enzEvONxKWAkdWxfrb21yAk5Pgu22P27+4XOoh7icj6SnVLqI1SgDa6uYC7+jsRD gFidMHoUAHtbLDOtHxb/BcjdcQV1c4H/SkPYyqlbJJZsHaqTWLQ8DnUaJgPiDAsZ nHrrooyJ9QXAQ7ahRapj2oIPBGM+GmC7WC0kaXPtXqbdBI3DFjxVA43DYBd+EOMS Z5is4GqqpfwIqVtfSfRIhjGzlSObc0OICuo0VXTzGEEDk21BH44Z4VuX7kl0YNc0 wQiuzXt1x45zNOFCvNxvo8LFRhxfg2bWlkuDDY0ltqZyKAZlAJhVoXRv4NDJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpO94P8qVdI9ZO3EBITv4ccm1tXEwHwYDVR0j BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1 NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTOzANBgkqhkiG 9w0BAQsFAAOCAQEAJftF5R2EY2AJ+jImBsmoG68E6NhaZKjktW1NWYzR50y5uSoU U6itroEc7c9L3HlD2ivQDvbWDw5FbDXFdcaRE8HkbBl/crPoTyENG9i4Bdhzeck0 1Bg2XDQwELk6aurGdC5vX030LtPtdeddIBObfEGcBBjO+w+fpwdLKHlyfGcqTtzL bJeIPQQfUypA9KxW/uuJsCZB31uSvTDOdeRV+lb9145ZjWvstA9WUrYU5WUattXJ 1wrR4mvKUVuXn8NOQKuqC+aYWqpDVMIppQAQGAhL6inWM2iGYsmX77EI3T2qLezv 3nOhwJkvkDOj9Q9xratCrCyhAiYgGNMWvKov/g== -----END CERTIFICATE-----Generated at Sat Jun 7 23:02:01 2025 by rpki-client