$ rpki-client -vvf repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa File: 3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: gVdR11t5fw1Z3vuhsrv3YNa5sWCtSlARbhSmJWiHvO4= Subject key identifier: 7A:7D:05:A6:B4:3B:4E:94:07:A9:C0:D0:50:AA:20:6B:CA:BB:D3:C5 Certificate issuer: /CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Certificate serial: 5E5794B0D5861796D0BF184CCAA37334AC6A5B97 Authority key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 02:04:24 +0000 ROA not before: Mon 02 Jun 2025 01:59:24 +0000 ROA not after: Mon 01 Jun 2026 02:04:24 +0000 asID: 131717 IP address blocks: 103.110.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:57:94:b0:d5:86:17:96:d0:bf:18:4c:ca:a3:73:34:ac:6a:5b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Validity Not Before: Jun 2 01:59:24 2025 GMT Not After : Jun 1 02:04:24 2026 GMT Subject: CN=7A7D05A6B43B4E9407A9C0D050AA206BCABBD3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f0:bb:b5:88:e6:2b:27:ac:cf:b5:97:f4:90: 14:09:e7:af:9a:4d:6c:d9:b3:af:6b:3b:3c:87:9f: 3e:47:ff:f6:aa:75:c0:e3:bf:d1:3c:d7:e4:44:c7: 08:63:e1:8a:bf:3d:63:a0:fe:06:0e:a6:66:24:a4: e6:a2:fd:ea:47:bd:48:80:8d:0a:eb:23:a0:1c:1e: 57:9a:6a:f4:70:29:30:32:00:cf:9f:12:d0:a4:ef: 04:b3:5b:61:e4:26:53:ac:ef:88:02:f0:aa:13:25: 43:0b:3d:30:77:ef:48:35:d5:e1:fc:87:5a:72:14: 06:6d:19:57:ee:a4:cd:4e:4d:2c:7b:16:6c:79:46: a0:1c:4f:97:5e:63:05:41:7e:3f:bf:e9:e2:3c:18: 5d:e2:f2:3c:68:4d:41:18:b9:5c:40:52:83:4f:5a: ef:de:70:c6:f7:0a:03:0a:01:dc:5e:98:b6:71:6d: fc:05:64:ac:8a:88:ce:55:2a:c8:50:79:1a:a1:84: e4:77:35:19:a0:41:83:90:58:5f:72:f2:a2:a3:1c: 8b:a4:29:66:e3:71:44:27:97:b6:17:de:90:6a:4f: 9d:22:d0:6e:7a:20:b4:88:c0:9b:ce:44:96:31:8e: f2:05:6b:b4:41:87:1f:19:14:b2:6f:ee:c1:5d:af: 4a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:7D:05:A6:B4:3B:4E:94:07:A9:C0:D0:50:AA:20:6B:CA:BB:D3:C5 X509v3 Authority Key Identifier: keyid:2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.11.0/24 Signature Algorithm: sha256WithRSAEncryption 08:9c:de:d7:4d:16:2b:b8:f4:6a:a5:65:d5:56:1f:4e:3d:c0: f9:66:e5:36:fa:96:1f:d5:13:26:f0:60:14:d8:ea:ff:c9:f3: 99:3a:7c:b1:96:31:27:7a:c2:13:9e:46:13:eb:7e:a1:72:2e: 07:31:46:53:06:48:a5:c3:47:e2:22:76:b1:9b:7f:3a:60:2b: 13:dd:c3:4a:f6:24:2b:e9:5c:15:a6:bd:9c:05:93:19:64:19: db:0a:a3:18:99:fb:30:a4:ee:3c:68:76:5c:bc:4a:7d:e6:3e: da:64:2f:be:2c:72:e2:e7:4f:55:53:01:35:f6:33:af:99:a7: f8:f0:18:12:bf:73:00:f9:05:0f:08:a6:3e:85:e5:c5:37:e4: d0:0a:40:46:09:df:9f:2f:64:35:23:69:dc:87:70:36:46:6f: 20:77:dd:3a:f0:f6:6b:77:49:b4:09:47:73:b5:56:7c:e7:de: 3b:57:2c:41:9d:7c:d3:d7:7e:9a:7a:e4:d6:28:a8:e2:49:ec: 8c:82:f5:cf:df:6a:58:fa:01:f2:e1:83:0c:5a:c5:3a:25:ee: c5:72:26:98:86:0f:61:1c:59:48:b8:19:16:ba:cb:d1:67:5a: d6:ae:97:44:ba:c6:35:5a:3f:26:2c:ea:0a:f1:50:e8:45:12: 7c:71:4d:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXleUsNWGF5bQvxhMyqNzNKxqW5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3 MkY0OTk4NTAeFw0yNTA2MDIwMTU5MjRaFw0yNjA2MDEwMjA0MjRaMDMxMTAvBgNV BAMTKDdBN0QwNUE2QjQzQjRFOTQwN0E5QzBEMDUwQUEyMDZCQ0FCQkQzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl8Lu1iOYrJ6zPtZf0kBQJ56+a TWzZs69rOzyHnz5H//aqdcDjv9E81+RExwhj4Yq/PWOg/gYOpmYkpOai/epHvUiA jQrrI6AcHleaavRwKTAyAM+fEtCk7wSzW2HkJlOs74gC8KoTJUMLPTB370g11eH8 h1pyFAZtGVfupM1OTSx7Fmx5RqAcT5deYwVBfj+/6eI8GF3i8jxoTUEYuVxAUoNP Wu/ecMb3CgMKAdxemLZxbfwFZKyKiM5VKshQeRqhhOR3NRmgQYOQWF9y8qKjHIuk KWbjcUQnl7YX3pBqT50i0G56ILSIwJvORJYxjvIFa7RBhx8ZFLJv7sFdr0r3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUen0FprQ7TpQHqcDQUKoga8q708UwHwYDVR0j BBgwFoAUL7mUzRKCKS5tKQf87Nf55HL0mYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZGE3NzNkZC05NWFhLTQ0N2UtOTkzZC00Y2Y0YTEyNzNiMzEvMC8yRkI5OTRDRDEy ODIyOTJFNkQyOTA3RkNFQ0Q3RjlFNDcyRjQ5OTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3MkY0 OTk4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkYTc3M2RkLTk1YWEtNDQ3ZS05 OTNkLTRjZjRhMTI3M2IzMS8wLzMxMzAzMzJlMzEzMTMwMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ24LMA0GCSqG SIb3DQEBCwUAA4IBAQAInN7XTRYruPRqpWXVVh9OPcD5ZuU2+pYf1RMm8GAU2Or/ yfOZOnyxljEnesITnkYT636hci4HMUZTBkilw0fiInaxm386YCsT3cNK9iQr6VwV pr2cBZMZZBnbCqMYmfswpO48aHZcvEp95j7aZC++LHLi509VUwE19jOvmaf48BgS v3MA+QUPCKY+heXFN+TQCkBGCd+fL2Q1I2nch3A2Rm8gd9068PZrd0m0CUdztVZ8 5947VyxBnXzT136aeuTWKKjiSeyMgvXP32pY+gHy4YMMWsU6Je7FciaYhg9hHFlI uBkWusvRZ1rWrpdEusY1Wj8mLOoK8VDoRRJ8cU0j -----END CERTIFICATE-----Generated at Sat Jun 7 15:28:16 2025 by rpki-client