$ rpki-client -vvf repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa File: 3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa (raw, json) Hash identifier: gCxomhlXPqJzdF7SJ3iSXnHHdDE1CzdM3fX39z9NSbw= Subject key identifier: BF:53:9D:D4:AB:B7:8A:2C:7D:A7:FE:9D:80:A0:BB:C3:79:7B:98:1B Certificate issuer: /CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Certificate serial: 315108D2B67DF95F7A0B4FD06C9A53993FC3AF45 Authority key identifier: B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa Signing time: Thu 29 May 2025 16:00:00 +0000 ROA not before: Thu 29 May 2025 15:55:00 +0000 ROA not after: Thu 28 May 2026 16:00:00 +0000 asID: 136888 IP address blocks: 103.106.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:51:08:d2:b6:7d:f9:5f:7a:0b:4f:d0:6c:9a:53:99:3f:c3:af:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Validity Not Before: May 29 15:55:00 2025 GMT Not After : May 28 16:00:00 2026 GMT Subject: CN=BF539DD4ABB78A2C7DA7FE9D80A0BBC3797B981B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:4c:58:81:a7:3b:0c:ba:67:97:b8:ad:93: 97:17:6e:d8:bd:e4:f1:1e:fc:f3:a6:ca:72:c8:d1: 9a:b6:b8:12:b2:b1:94:9e:2c:d3:96:14:4f:7c:c5: 61:04:7c:43:61:5f:82:49:5b:b1:b7:57:84:c6:be: 48:ff:08:ad:2a:b1:56:c2:21:9e:b1:f9:01:d4:b4: 94:70:cb:0c:4e:58:6b:96:9d:fb:d6:c4:44:bc:ea: cf:3e:ec:fe:4d:33:6a:30:b1:47:2f:4f:44:8b:d9: 60:dd:84:1f:e3:9e:0a:a9:07:6e:ac:38:eb:46:1f: 2c:79:91:c4:df:e5:86:ae:d4:ff:9b:2e:2e:3a:8d: 7b:03:62:2c:e7:ae:f5:fb:9e:63:34:4e:56:ef:df: 93:fd:9a:42:7c:b4:78:92:45:8b:e9:1a:00:89:a4: 90:6e:86:0c:11:4a:29:c8:e8:03:4c:2c:e6:43:76: 32:cd:65:64:bd:4c:a7:41:e5:66:87:83:6a:d1:d3: a3:91:32:8c:b6:40:20:ff:8e:62:b2:9c:1e:89:60: f0:4a:8e:7f:0e:d1:2b:5e:dc:3a:1e:ba:35:7f:c3: d9:22:8c:69:dc:0e:c1:1b:4b:07:4f:40:b9:a7:ad: 3e:bf:96:0e:78:3b:55:50:a6:44:ba:d3:cc:09:f3: 7e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:53:9D:D4:AB:B7:8A:2C:7D:A7:FE:9D:80:A0:BB:C3:79:7B:98:1B X509v3 Authority Key Identifier: keyid:B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.174.0/24 Signature Algorithm: sha256WithRSAEncryption 10:8c:2a:67:d6:1a:ef:8d:93:3e:fc:39:d7:d6:71:9d:52:6b: a0:ce:8e:4d:9c:d9:5a:9d:ff:2d:e1:7c:88:c4:b8:8d:d4:76: 08:f3:49:29:bc:28:59:29:04:47:15:59:27:6e:ed:7f:20:9b: c4:9d:92:4e:aa:b2:13:a8:9a:4e:4a:27:ee:a1:c6:ae:ef:ab: 36:65:2d:38:79:5b:ff:a5:f8:9a:0e:a5:ee:c9:2e:df:93:1b: 68:c0:27:17:97:52:04:29:8c:cf:39:4e:74:87:57:77:ba:ea: 9b:2b:86:6f:3e:aa:94:fe:87:50:16:16:0d:60:92:16:f7:d1: f5:21:9e:42:42:8b:5d:c6:8d:9a:29:ad:54:c9:e9:42:ad:3c: c0:f6:65:4a:e7:ec:3c:3a:b1:e3:c3:21:48:16:6d:6e:9f:a0: 53:9f:13:6c:26:3d:00:86:72:8b:cc:3b:77:ff:8c:1a:f5:c2: fc:20:b7:73:e1:f8:4d:e8:dc:2c:9e:2d:c7:25:af:43:0d:c9: 7d:01:83:bb:64:8e:4c:e0:36:68:1b:12:89:eb:bb:83:09:e9: 94:69:3e:3f:fb:ad:ef:5d:94:59:2c:3a:0a:ae:97:0e:c3:ea: 30:e6:6b:0e:3d:da:ec:7d:3b:86:13:db:70:f1:7d:f4:79:40: c0:4c:40:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMVEI0rZ9+V96C0/QbJpTmT/Dr0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0 NDMyQjdCODAeFw0yNTA1MjkxNTU1MDBaFw0yNjA1MjgxNjAwMDBaMDMxMTAvBgNV BAMTKEJGNTM5REQ0QUJCNzhBMkM3REE3RkU5RDgwQTBCQkMzNzk3Qjk4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCg0xYgac7DLpnl7itk5cXbti9 5PEe/POmynLI0Zq2uBKysZSeLNOWFE98xWEEfENhX4JJW7G3V4TGvkj/CK0qsVbC IZ6x+QHUtJRwywxOWGuWnfvWxES86s8+7P5NM2owsUcvT0SL2WDdhB/jngqpB26s OOtGHyx5kcTf5Yau1P+bLi46jXsDYiznrvX7nmM0Tlbv35P9mkJ8tHiSRYvpGgCJ pJBuhgwRSinI6ANMLOZDdjLNZWS9TKdB5WaHg2rR06ORMoy2QCD/jmKynB6JYPBK jn8O0Ste3DoeujV/w9kijGncDsEbSwdPQLmnrT6/lg54O1VQpkS608wJ834tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv1Od1Ku3iix9p/6dgKC7w3l7mBswHwYDVR0j BBgwFoAUsvpt1iwNYOqtZPa0cdItKUQyt7gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmJkN2NmNi1mNTVhLTRiNzgtYTU4OC1kOTI2MWYxNWY3NjMvMC9CMkZBNkRENjJD MEQ2MEVBQUQ2NEY2QjQ3MUQyMkQyOTQ0MzJCN0I4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0NDMy QjdCOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYmQ3Y2Y2LWY1NWEtNGI3OC1h NTg4LWQ5MjYxZjE1Zjc2My8wLzMxMzAzMzJlMzEzMDM2MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaq4wDQYJ KoZIhvcNAQELBQADggEBABCMKmfWGu+Nkz78OdfWcZ1Sa6DOjk2c2Vqd/y3hfIjE uI3UdgjzSSm8KFkpBEcVWSdu7X8gm8Sdkk6qshOomk5KJ+6hxq7vqzZlLTh5W/+l +JoOpe7JLt+TG2jAJxeXUgQpjM85TnSHV3e66psrhm8+qpT+h1AWFg1gkhb30fUh nkJCi13GjZoprVTJ6UKtPMD2ZUrn7Dw6sePDIUgWbW6foFOfE2wmPQCGcovMO3f/ jBr1wvwgt3Ph+E3o3CyeLcclr0MNyX0Bg7tkjkzgNmgbEonru4MJ6ZRpPj/7re9d lFksOgqulw7D6jDmaw492ux9O4YT23DxffR5QMBMQM4= -----END CERTIFICATE-----Generated at Sun Jun 8 05:24:36 2025 by rpki-client