$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa File: 3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa (raw, json) Hash identifier: hBTSTofwcqpzXYSHncKh7eEUiPp6MpPe+4meIf61kTU= Subject key identifier: 40:DB:5A:22:8C:07:D2:7B:92:6D:89:F7:E5:B9:53:F8:AF:72:6B:3C Certificate issuer: /CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Certificate serial: 184337D9C62410E2BA02EE51AD6BC2124BDD547F Authority key identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa Signing time: Sun 01 Jun 2025 23:00:00 +0000 ROA not before: Sun 01 Jun 2025 22:55:00 +0000 ROA not after: Sun 31 May 2026 23:00:00 +0000 asID: 136821 IP address blocks: 103.98.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:43:37:d9:c6:24:10:e2:ba:02:ee:51:ad:6b:c2:12:4b:dd:54:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Validity Not Before: Jun 1 22:55:00 2025 GMT Not After : May 31 23:00:00 2026 GMT Subject: CN=40DB5A228C07D27B926D89F7E5B953F8AF726B3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d4:16:27:e8:97:7e:02:95:44:bc:11:37:22: fc:42:f8:3d:00:70:91:49:c5:1b:39:48:a3:74:07: 28:78:50:50:64:95:51:21:5c:19:e9:32:c6:f8:9b: 58:e4:d0:f5:6d:8f:7d:3c:b8:a1:0d:cf:74:4c:e9: a6:f2:ea:54:ff:dc:0a:b1:f7:01:71:36:2b:c1:30: a4:c5:97:1c:67:34:cb:ce:29:7b:31:7b:b3:16:09: 67:ac:f0:6f:d6:80:79:35:86:fa:50:07:55:6b:1a: 87:f9:5b:ad:86:ff:5e:29:aa:8d:a8:ed:51:40:8b: 9b:d0:42:96:3d:bd:f4:36:27:84:7f:d5:f4:37:da: a9:ff:9a:df:49:9f:65:c7:83:2d:19:6f:fa:7a:77: 8b:81:a0:d2:e4:da:ef:4e:48:d8:93:ae:42:45:1a: 82:69:7a:61:93:1f:ab:ff:d4:f7:16:49:f8:91:c9: 15:ec:16:9f:c5:ad:cc:30:e4:bc:bc:80:8f:34:4e: d1:f7:53:61:76:65:ad:68:1f:37:60:4f:6c:42:b4: 72:a8:90:fe:58:20:1d:09:bb:04:c9:33:0c:0f:aa: e5:8c:c3:55:a5:98:fe:fa:0c:49:f1:f0:f3:34:69: ac:42:16:52:ba:d1:07:33:84:3f:19:23:93:6b:84: 6e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DB:5A:22:8C:07:D2:7B:92:6D:89:F7:E5:B9:53:F8:AF:72:6B:3C X509v3 Authority Key Identifier: keyid:9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.104.0/23 Signature Algorithm: sha256WithRSAEncryption 29:8a:a9:07:b5:51:44:0b:37:07:66:5f:b6:88:59:37:76:a3: 99:9f:6e:22:21:01:d3:67:d9:19:1d:79:15:e2:7d:30:fb:45: ed:fe:b3:13:b7:12:11:8d:44:0e:ca:1d:71:44:5d:91:d7:69: 1c:f4:95:31:88:43:e7:10:7f:55:c3:72:7f:63:0c:fc:3f:5b: 18:05:55:a3:45:ec:2e:2a:66:bc:11:73:57:b7:11:3d:97:86: 74:29:81:ea:1c:fb:3b:09:6d:78:a4:16:48:08:80:16:2e:a1: b5:48:d7:82:04:dd:fb:2d:74:5e:d1:d9:7e:c9:fa:6d:dc:7e: 58:4f:34:93:1b:03:94:d2:b0:82:d0:62:3e:6b:b6:b0:ef:83: a4:0c:cb:d3:fe:3a:3b:35:9a:65:f2:a7:55:f0:9d:ff:6d:c2: d0:52:7b:c7:20:c8:8a:44:69:d6:74:92:26:1a:a5:0e:45:91: b5:8f:0b:6c:a7:8e:8d:2d:37:7c:59:14:cd:5b:1e:db:53:d6: 8c:cf:6b:fe:89:25:bc:21:43:ac:5a:97:df:7b:89:1a:e8:96: 59:59:01:dd:5e:3a:c9:ca:d1:f8:ee:71:72:fd:33:2d:c5:ee: 1e:10:e4:58:9f:62:7a:27:5e:af:4d:ef:dd:ea:12:e3:77:29: 0e:57:15:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGEM32cYkEOK6Au5RrWvCEkvdVH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTky RDQ4MkU0QTAeFw0yNTA2MDEyMjU1MDBaFw0yNjA1MzEyMzAwMDBaMDMxMTAvBgNV BAMTKDQwREI1QTIyOEMwN0QyN0I5MjZEODlGN0U1Qjk1M0Y4QUY3MjZCM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI1BYn6Jd+ApVEvBE3IvxC+D0A cJFJxRs5SKN0Byh4UFBklVEhXBnpMsb4m1jk0PVtj308uKENz3RM6aby6lT/3Aqx 9wFxNivBMKTFlxxnNMvOKXsxe7MWCWes8G/WgHk1hvpQB1VrGof5W62G/14pqo2o 7VFAi5vQQpY9vfQ2J4R/1fQ32qn/mt9Jn2XHgy0Zb/p6d4uBoNLk2u9OSNiTrkJF GoJpemGTH6v/1PcWSfiRyRXsFp/Frcww5Ly8gI80TtH3U2F2Za1oHzdgT2xCtHKo kP5YIB0JuwTJMwwPquWMw1WlmP76DEnx8PM0aaxCFlK60QczhD8ZI5NrhG7FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQNtaIowH0nuSbYn35blT+K9yazwwHwYDVR0j BBgwFoAUn21dVknQAdK3ozePmTFKmS1ILkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQzZmMyNC03NWEyLTQ3ZjYtOTI4ZS00ZTk4MDJiOTcwODUvMC85RjZENUQ1NjQ5 RDAwMUQyQjdBMzM3OEY5OTMxNEE5OTJENDgyRTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTkyRDQ4 MkU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDNmYzI0LTc1YTItNDdmNi05 MjhlLTRlOTgwMmI5NzA4NS8wLzMxMzAzMzJlMzkzODJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2JoMA0GCSqG SIb3DQEBCwUAA4IBAQApiqkHtVFECzcHZl+2iFk3dqOZn24iIQHTZ9kZHXkV4n0w +0Xt/rMTtxIRjUQOyh1xRF2R12kc9JUxiEPnEH9Vw3J/Ywz8P1sYBVWjRewuKma8 EXNXtxE9l4Z0KYHqHPs7CW14pBZICIAWLqG1SNeCBN37LXRe0dl+yfpt3H5YTzST GwOU0rCC0GI+a7aw74OkDMvT/jo7NZpl8qdV8J3/bcLQUnvHIMiKRGnWdJImGqUO RZG1jwtsp46NLTd8WRTNWx7bU9aMz2v+iSW8IUOsWpffe4ka6JZZWQHdXjrJytH4 7nFy/TMtxe4eEORYn2J6J16vTe/d6hLjdykOVxWn -----END CERTIFICATE-----Generated at Sat Jun 7 05:59:09 2025 by rpki-client