$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3131322e3136322e302f32332d3234203d3e20313337333331.roa File: 3130332e3131322e3136322e302f32332d3234203d3e20313337333331.roa (raw, json) Hash identifier: lIpuwQni1CJCCy7a6RQeBOueUSsNd+BwETQKPZ3/nzw= Subject key identifier: D7:1E:EA:EF:DF:73:C5:D5:04:9E:93:9D:A5:2F:09:49:1C:04:F6:90 Certificate issuer: /CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Certificate serial: 3495CB4F699CA8E142E55E210E6392A1203D1039 Authority key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3131322e3136322e302f32332d3234203d3e20313337333331.roa Signing time: Mon 02 Jun 2025 02:04:25 +0000 ROA not before: Mon 02 Jun 2025 01:59:25 +0000 ROA not after: Mon 01 Jun 2026 02:04:25 +0000 asID: 137331 IP address blocks: 103.112.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:95:cb:4f:69:9c:a8:e1:42:e5:5e:21:0e:63:92:a1:20:3d:10:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Validity Not Before: Jun 2 01:59:25 2025 GMT Not After : Jun 1 02:04:25 2026 GMT Subject: CN=D71EEAEFDF73C5D5049E939DA52F09491C04F690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:25:11:a5:b7:4f:23:93:fe:1c:b5:7f:ff:54: 1f:a3:d9:d5:2f:d7:24:17:6a:a9:2c:39:e1:da:4c: 0c:ae:b0:d3:7e:b1:32:0d:6d:7f:be:81:ff:17:82: 1c:9c:89:ce:17:4d:55:f3:18:60:57:29:2f:be:05: 9c:45:40:1d:c1:b7:d6:eb:6c:f6:14:66:3c:74:37: 55:64:19:ae:43:74:da:20:e9:28:f9:11:1e:e2:c3: 0a:6d:2e:0c:2e:40:b5:d5:ac:a4:90:1a:fa:57:be: 6d:7f:2f:d1:0c:48:2e:c0:e1:3a:38:f2:80:53:f7: 99:71:eb:e0:71:2c:f1:21:5e:9a:f0:93:4e:0c:ad: d5:08:f1:e8:7c:62:da:19:a0:5c:59:e5:81:8f:c0: f4:ab:27:6c:f6:c1:f4:d9:94:78:6c:1e:af:42:be: 19:78:51:2d:69:75:a9:9e:59:d4:51:47:4d:d3:f2: 16:83:70:52:e3:4d:89:13:47:f2:ba:76:a8:01:04: fb:67:21:fc:32:1d:e4:bd:d1:a8:76:1e:e0:c4:71: 12:13:d0:7b:81:c2:02:05:59:55:7b:d0:dd:b6:55: 69:8f:f6:d2:0e:a9:a7:1d:db:61:08:2e:cc:bd:b4: 39:dc:2a:cb:47:77:25:31:fe:79:37:ee:f0:3d:14: 42:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1E:EA:EF:DF:73:C5:D5:04:9E:93:9D:A5:2F:09:49:1C:04:F6:90 X509v3 Authority Key Identifier: keyid:A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/3130332e3131322e3136322e302f32332d3234203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.162.0/23 Signature Algorithm: sha256WithRSAEncryption 57:af:06:66:cd:8e:14:56:4b:41:10:7b:53:46:e6:7b:2f:b1: 2a:c6:f3:2f:97:81:6e:46:c5:8e:58:be:e4:d1:e5:42:8d:d1: 81:4c:1a:5c:e8:f6:28:73:ae:3b:1c:8d:2b:0c:a0:ff:45:8a: d1:b2:47:1b:40:22:8e:f4:3e:3a:1f:e3:77:24:fd:40:40:ff: e8:c8:51:c4:36:0f:79:8d:76:c9:e7:96:2a:62:07:f1:67:18: 44:68:ed:d7:aa:65:9b:07:ec:ce:46:f7:5b:a8:83:84:3e:69: 6f:6f:56:80:7e:2c:d6:a5:e6:10:bd:90:96:80:e1:37:98:21: 2f:5e:28:49:38:59:97:2b:5e:56:ea:31:34:c4:14:84:0b:66: 1f:d5:f0:36:ac:1d:86:72:ce:fb:31:af:03:a4:1a:b6:be:15: 68:b6:53:47:7d:76:e5:6e:7f:d9:08:b5:97:77:7a:1a:a5:a4: 6c:5d:44:83:3f:16:cb:1a:56:da:6c:90:a1:71:4a:4d:b8:40: eb:8a:47:e5:9c:84:3e:f3:58:d6:02:83:b1:4a:3b:cc:45:01: 48:27:06:63:67:71:3d:64:00:76:25:5d:d3:3e:bd:ad:83:19: 1c:53:b0:92:e5:d2:8f:27:28:b9:4b:90:39:ab:6e:58:55:ab: 6a:26:2b:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNJXLT2mcqOFC5V4hDmOSoSA9EDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2 MUZFNzEyNjAeFw0yNTA2MDIwMTU5MjVaFw0yNjA2MDEwMjA0MjVaMDMxMTAvBgNV BAMTKEQ3MUVFQUVGREY3M0M1RDUwNDlFOTM5REE1MkYwOTQ5MUMwNEY2OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJRGlt08jk/4ctX//VB+j2dUv 1yQXaqksOeHaTAyusNN+sTINbX++gf8Xghycic4XTVXzGGBXKS++BZxFQB3Bt9br bPYUZjx0N1VkGa5DdNog6Sj5ER7iwwptLgwuQLXVrKSQGvpXvm1/L9EMSC7A4To4 8oBT95lx6+BxLPEhXprwk04MrdUI8eh8YtoZoFxZ5YGPwPSrJ2z2wfTZlHhsHq9C vhl4US1pdameWdRRR03T8haDcFLjTYkTR/K6dqgBBPtnIfwyHeS90ah2HuDEcRIT 0HuBwgIFWVV70N22VWmP9tIOqacd22EILsy9tDncKstHdyUx/nk37vA9FEIHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1x7q799zxdUEnpOdpS8JSRwE9pAwHwYDVR0j BBgwFoAUpQAQjwm/VOVgO1wfbmMlpWH+cSYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQ4MGQ5Ni1lZjFiLTQ0YjItOTAzYS03ZjZkYTk0MWE4MzYvMC9BNTAwMTA4RjA5 QkY1NEU1NjAzQjVDMUY2RTYzMjVBNTYxRkU3MTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2MUZF NzEyNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDgwZDk2LWVmMWItNDRiMi05 MDNhLTdmNmRhOTQxYTgzNi8wLzMxMzAzMzJlMzEzMTMyMmUzMTM2MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFncKIwDQYJ KoZIhvcNAQELBQADggEBAFevBmbNjhRWS0EQe1NG5nsvsSrG8y+XgW5GxY5YvuTR 5UKN0YFMGlzo9ihzrjscjSsMoP9FitGyRxtAIo70Pjof43ck/UBA/+jIUcQ2D3mN dsnnlipiB/FnGERo7deqZZsH7M5G91uog4Q+aW9vVoB+LNal5hC9kJaA4TeYIS9e KEk4WZcrXlbqMTTEFIQLZh/V8DasHYZyzvsxrwOkGra+FWi2U0d9duVuf9kItZd3 ehqlpGxdRIM/FssaVtpskKFxSk24QOuKR+WchD7zWNYCg7FKO8xFAUgnBmNncT1k AHYlXdM+va2DGRxTsJLl0o8nKLlLkDmrblhVq2omKxI= -----END CERTIFICATE-----Generated at Sun Jun 8 12:09:40 2025 by rpki-client