$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32302e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: Z1gDiN/X+uv2C5f6v1h8WInw2+lPzjHj0oFTtpIP6pA= Subject key identifier: 82:94:42:0C:AD:0F:04:81:C1:A0:13:D2:42:D6:2E:84:E0:C4:B2:AC Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 28CF0F85FDD6BD0EBFA52BC91D95A3AE4C539319 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa Signing time: Wed 07 May 2025 03:29:14 +0000 ROA not before: Wed 07 May 2025 03:24:14 +0000 ROA not after: Wed 06 May 2026 03:29:14 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:cf:0f:85:fd:d6:bd:0e:bf:a5:2b:c9:1d:95:a3:ae:4c:53:93:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: May 7 03:24:14 2025 GMT Not After : May 6 03:29:14 2026 GMT Subject: CN=8294420CAD0F0481C1A013D242D62E84E0C4B2AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:e9:74:7e:0f:a7:ea:ba:1c:bb:8f:6e:09: 8b:60:34:9f:99:7e:0b:1e:f7:d4:90:7b:bc:f0:b5: f7:66:ca:5e:70:de:91:23:2f:c8:b8:21:7c:d3:18: e5:c9:85:dc:53:02:c6:b5:c0:73:67:7d:84:3c:59: 70:c9:77:f6:66:5a:4b:31:bf:e2:e3:1a:c6:af:c1: df:53:7c:6b:f7:78:99:ab:44:26:8e:7b:c0:e3:45: 7f:d7:b3:5c:3e:90:aa:bd:b0:7c:55:bd:35:2f:e8: 4e:21:a2:b9:65:87:5c:29:11:92:c9:bf:77:d8:de: 3f:50:5d:72:f7:2c:c0:70:6d:d1:1f:aa:66:81:8f: 4b:f3:e4:2b:5d:02:97:7f:6b:2e:c4:af:72:c9:02: 88:c4:1e:76:7b:f4:5f:ac:6c:96:19:ce:39:9a:ca: d5:83:e3:43:d9:0e:7d:db:9f:42:ee:db:3b:02:a5: 7d:0e:6e:8f:e6:80:33:e7:1b:e4:0b:cb:f5:75:c4: 92:14:46:e9:34:98:db:85:78:14:29:27:8a:87:f6: f6:51:f0:34:02:ae:a0:d0:8c:3f:76:c5:0f:fe:c6: ce:a3:5f:f7:50:7b:20:6b:97:b1:ba:d9:97:7b:de: c7:26:51:e4:ae:65:02:59:8d:b8:71:98:16:1e:ff: dc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:94:42:0C:AD:0F:04:81:C1:A0:13:D2:42:D6:2E:84:E0:C4:B2:AC X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:71:0f:12:1c:a0:31:a5:b5:db:3d:67:e9:7e:ca:90:6c:bf: 3f:b5:60:13:c6:ea:1f:3e:f2:a2:87:0a:b7:5d:01:74:26:82: 77:8a:f9:ef:17:d1:83:89:18:71:5d:86:c4:01:de:51:01:00: a1:de:7c:39:dc:aa:b9:92:67:9c:14:2e:6f:8f:be:58:49:45: ca:2c:57:9e:11:94:71:ea:c5:83:b2:64:4f:a6:f7:87:99:8c: 88:18:55:66:e5:1c:17:c1:9c:3c:fb:17:bf:43:42:ee:7e:aa: 44:3f:aa:5d:08:96:86:6e:ea:f0:6f:63:d9:28:f2:8a:c2:b7: 6e:55:b1:b2:33:5c:05:4c:21:b5:71:8d:d3:c7:e1:c9:13:5b: ff:4e:78:3c:e1:96:42:ce:fa:d8:e5:3a:c9:a8:15:e8:f8:9c: 6e:f4:78:6b:1c:84:4c:8a:34:db:95:e7:3e:a0:3e:0b:ab:a3: 7f:39:b9:a9:94:87:80:8e:ec:fa:05:a0:5d:3f:6f:d8:10:63: ba:86:4d:a7:1d:bf:c6:d0:26:cb:d2:aa:66:2a:a3:5e:55:3b: 7a:98:5c:ab:da:1b:6d:0e:93:e4:2d:2e:3b:16:f9:6f:f2:9d: d0:4f:cd:84:18:81:c1:bd:b9:c1:11:f0:73:23:4e:a6:46:c1: 01:da:1f:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKM8Phf3WvQ6/pSvJHZWjrkxTkxkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTA1MDcwMzI0MTRaFw0yNjA1MDYwMzI5MTRaMDMxMTAvBgNV BAMTKDgyOTQ0MjBDQUQwRjA0ODFDMUEwMTNEMjQyRDYyRTg0RTBDNEIyQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+s+l0fg+n6rocu49uCYtgNJ+Z fgse99SQe7zwtfdmyl5w3pEjL8i4IXzTGOXJhdxTAsa1wHNnfYQ8WXDJd/ZmWksx v+LjGsavwd9TfGv3eJmrRCaOe8DjRX/Xs1w+kKq9sHxVvTUv6E4horllh1wpEZLJ v3fY3j9QXXL3LMBwbdEfqmaBj0vz5CtdApd/ay7Er3LJAojEHnZ79F+sbJYZzjma ytWD40PZDn3bn0Lu2zsCpX0Obo/mgDPnG+QLy/V1xJIURuk0mNuFeBQpJ4qH9vZR 8DQCrqDQjD92xQ/+xs6jX/dQeyBrl7G62Zd73scmUeSuZQJZjbhxmBYe/9x/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgpRCDK0PBIHBoBPSQtYuhODEsqwwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FDANBgkqhkiG 9w0BAQsFAAOCAQEAWnEPEhygMaW12z1n6X7KkGy/P7VgE8bqHz7yoocKt10BdCaC d4r57xfRg4kYcV2GxAHeUQEAod58OdyquZJnnBQub4++WElFyixXnhGUcerFg7Jk T6b3h5mMiBhVZuUcF8GcPPsXv0NC7n6qRD+qXQiWhm7q8G9j2SjyisK3blWxsjNc BUwhtXGN08fhyRNb/054POGWQs762OU6yagV6PicbvR4axyETIo025XnPqA+C6uj fzm5qZSHgI7s+gWgXT9v2BBjuoZNpx2/xtAmy9KqZiqjXlU7ephcq9obbQ6T5C0u Oxb5b/Kd0E/NhBiBwb25wRHwcyNOpkbBAdofRQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:42 2025 by rpki-client