$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32332d3233203d3e20313331373439.roa File: 3130332e33312e3133342e302f32332d3233203d3e20313331373439.roa (raw, json) Hash identifier: R5DcBcZsZ/tVTFJsSzzQGY3wUUyH7B2253S6p3vidZI= Subject key identifier: 41:7D:71:B7:0F:3A:0E:60:4D:8F:CF:EB:3A:C7:91:C3:FA:9F:72:CD Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 06DAE9C6D8073DCF2F7B6326E229B5C78EBF4F45 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32332d3233203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 103.31.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:da:e9:c6:d8:07:3d:cf:2f:7b:63:26:e2:29:b5:c7:8e:bf:4f:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=417D71B70F3A0E604D8FCFEB3AC791C3FA9F72CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1b:7c:0a:58:6a:ad:d4:75:98:8d:89:3f:92: 13:f7:26:f5:fd:da:86:40:3f:88:28:e6:38:4d:00: 26:cc:49:36:05:e7:93:d7:e3:a3:2c:10:05:3d:25: 02:a6:e7:f3:9f:ff:4a:b5:21:be:71:2b:49:84:4d: 40:a2:fa:f3:f4:ba:60:9d:6b:0f:46:13:9a:dc:cb: 8f:4c:92:35:aa:34:56:74:95:12:41:00:79:15:09: 6e:e5:3c:1a:21:63:09:a6:c4:00:2e:cc:4b:6c:d6: 54:ce:be:ae:c7:7c:cb:bf:3a:d0:63:0f:bd:2e:43: bd:e7:f4:ce:0a:bd:5d:a6:ac:34:b3:cf:d5:b0:93: d5:fd:43:80:cd:3e:8a:ca:13:41:ab:b9:39:94:b6: 5d:bb:f0:15:2f:7b:99:f5:3a:89:a7:03:98:68:1e: f6:b6:07:11:eb:49:68:bf:b4:6c:81:b5:22:06:13: 0a:0a:c1:6d:5f:30:41:bc:ce:fb:f4:de:38:48:21: ee:2d:b1:aa:3c:6a:aa:f1:6e:75:7e:b1:f9:9c:e1: 32:c2:80:77:0f:a7:ef:2a:1e:e3:3f:6e:92:80:e4: 1b:19:2e:80:55:04:c9:d1:13:66:4d:ff:3e:83:e8: 2b:ae:50:6e:b0:0e:2c:0c:28:11:7c:77:5e:94:4c: a6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7D:71:B7:0F:3A:0E:60:4D:8F:CF:EB:3A:C7:91:C3:FA:9F:72:CD X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32332d3233203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.134.0/23 Signature Algorithm: sha256WithRSAEncryption 10:f9:0f:33:7f:66:76:d7:18:d6:cb:c9:fc:b0:58:94:6b:b4: 27:37:5d:22:18:29:54:04:ea:30:54:53:81:1f:d1:43:67:03: b8:ff:0b:8e:f3:a1:26:43:1a:29:ec:8f:26:62:bd:a6:16:57: 2b:95:92:fe:97:d9:cd:90:d0:4b:42:3d:1d:83:7f:ab:21:27: 9a:3a:49:27:7d:b2:e1:c7:94:ab:05:c9:97:aa:1d:12:8a:64: 15:83:11:fb:e9:54:0c:8a:56:b2:cf:5d:d9:c6:82:14:60:76: 93:39:08:37:06:8b:18:cc:c3:1f:94:a7:f2:17:c9:02:93:5d: f2:28:86:db:52:a2:c4:a2:da:0a:e6:e0:a6:5f:2f:4b:07:43: 45:d3:b2:57:48:ef:28:86:0f:ed:c7:9b:16:26:a7:81:fe:33: 48:25:1b:60:13:15:62:d5:4c:1e:3c:f3:4f:78:2a:17:cc:af: cf:34:be:ca:79:2e:ed:13:c4:ec:1e:4d:b0:d3:99:d5:f0:c1: 92:90:66:dd:a5:d6:ed:c9:26:8f:0d:88:65:b6:cc:8f:cc:03: e3:36:35:65:d0:a2:40:07:85:7f:23:6c:fa:00:3c:f7:bb:3d: b7:ed:7f:e0:b1:af:17:76:27:5f:7b:a9:e5:17:40:ad:98:5a: 33:7f:a3:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBtrpxtgHPc8ve2Mm4im1x46/T0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKDQxN0Q3MUI3MEYzQTBFNjA0RDhGQ0ZFQjNBQzc5MUMzRkE5RjcyQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpG3wKWGqt1HWYjYk/khP3JvX9 2oZAP4go5jhNACbMSTYF55PX46MsEAU9JQKm5/Of/0q1Ib5xK0mETUCi+vP0umCd aw9GE5rcy49MkjWqNFZ0lRJBAHkVCW7lPBohYwmmxAAuzEts1lTOvq7HfMu/OtBj D70uQ73n9M4KvV2mrDSzz9Wwk9X9Q4DNPorKE0GruTmUtl278BUve5n1OomnA5ho Hva2BxHrSWi/tGyBtSIGEwoKwW1fMEG8zvv03jhIIe4tsao8aqrxbnV+sfmc4TLC gHcPp+8qHuM/bpKA5BsZLoBVBMnRE2ZN/z6D6CuuUG6wDiwMKBF8d16UTKY1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQX1xtw86DmBNj8/rOseRw/qfcs0wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZx+GMA0GCSqG SIb3DQEBCwUAA4IBAQAQ+Q8zf2Z21xjWy8n8sFiUa7QnN10iGClUBOowVFOBH9FD ZwO4/wuO86EmQxop7I8mYr2mFlcrlZL+l9nNkNBLQj0dg3+rISeaOkknfbLhx5Sr BcmXqh0SimQVgxH76VQMilayz13ZxoIUYHaTOQg3BosYzMMflKfyF8kCk13yKIbb UqLEotoK5uCmXy9LB0NF07JXSO8ohg/tx5sWJqeB/jNIJRtgExVi1UwePPNPeCoX zK/PNL7KeS7tE8TsHk2w05nV8MGSkGbdpdbtySaPDYhltsyPzAPjNjVl0KJAB4V/ I2z6ADz3uz237X/gsa8Xdidfe6nlF0CtmFozf6Nk -----END CERTIFICATE-----Generated at Thu Jun 5 18:17:52 2025 by rpki-client