$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa File: 3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: Q4FCJx2xdQyXWuG/Mkdlbm+EYQuJWHSMRXEQhaDwxBc= Subject key identifier: B2:0E:C0:E2:49:C9:49:5E:65:D2:48:49:36:FE:ED:28:0A:E4:76:41 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 40CBC43E3093FEA09058F5254135E941F0C589FC Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa Signing time: Mon 02 Jun 2025 02:05:03 +0000 ROA not before: Mon 02 Jun 2025 02:00:03 +0000 ROA not after: Mon 01 Jun 2026 02:05:03 +0000 asID: 38788 IP address blocks: 103.242.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cb:c4:3e:30:93:fe:a0:90:58:f5:25:41:35:e9:41:f0:c5:89:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 2 02:00:03 2025 GMT Not After : Jun 1 02:05:03 2026 GMT Subject: CN=B20EC0E249C9495E65D2484936FEED280AE47641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4e:48:0b:37:56:e5:84:10:48:a1:86:f8:b2: 4b:83:61:71:fa:a1:93:24:f8:68:f1:90:c1:6d:04: a3:32:19:44:e7:7f:c6:41:1a:0d:b1:b6:48:d0:af: 89:01:18:a3:4e:7d:5f:e4:7f:0a:01:6e:9d:80:86: ce:70:d3:74:1f:79:c4:ab:14:5f:54:14:25:79:34: 35:a4:99:77:cc:85:3d:99:67:b7:15:b0:4f:58:59: 04:63:69:7f:ae:02:98:d0:06:9d:35:35:df:07:47: 4d:75:bf:f5:d1:c2:65:91:d2:06:5a:d8:5f:2c:bf: a6:cd:4c:b6:b5:bc:0c:91:31:ba:e4:3b:b9:dc:ab: b2:04:f6:3a:be:50:9b:bd:dd:9a:5b:16:29:1f:5e: e2:00:9b:5c:09:17:18:51:9c:40:12:d6:e6:6d:ab: 95:5b:7b:5c:a6:cb:7b:d9:3e:0f:4c:43:07:0d:37: 85:4f:e6:c2:40:b6:e2:8a:ba:14:c0:dd:57:b9:25: c5:95:b9:98:c0:1d:a4:5a:80:73:d9:0e:dd:89:b7: b3:aa:33:6e:31:1c:b9:7d:ba:d7:fb:4a:a9:d0:77: 65:44:21:94:89:b7:c9:a0:6b:b3:46:a0:04:ff:59: 88:62:45:17:5b:ef:62:83:c8:23:a3:05:bd:ff:0a: fb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0E:C0:E2:49:C9:49:5E:65:D2:48:49:36:FE:ED:28:0A:E4:76:41 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.180.0/23 Signature Algorithm: sha256WithRSAEncryption 87:1d:78:ee:a7:aa:d4:f5:45:e9:13:75:30:0e:f3:55:06:59: d7:e4:c1:2a:71:af:d8:24:d8:36:cd:56:7f:0f:06:ec:f5:73: 5e:65:8e:3c:58:ca:90:75:aa:9e:18:0c:8b:df:11:7c:e8:b9: b2:18:68:3e:4d:ad:14:53:b7:08:5a:28:f8:1a:f9:ee:3a:ab: 92:09:41:df:a1:43:2f:19:65:33:4f:69:ea:06:82:b0:cd:7e: c2:86:93:b7:a7:61:c0:c5:e4:9d:e8:4a:eb:da:98:97:ac:1a: b5:39:b8:87:05:41:79:fa:e8:5a:1f:27:01:a7:b8:3d:50:23: 09:ba:0c:cb:ac:2e:fa:6a:38:75:5c:69:81:e6:d3:34:d8:5b: 98:2f:a9:f2:2f:0f:de:89:e1:39:35:c4:36:3b:a2:c0:96:fb: 63:ec:66:dc:94:1b:9c:f3:94:56:b0:d8:ea:0a:2e:30:6b:bb: 70:4f:c5:68:40:1c:55:60:97:06:af:f5:dd:10:d7:54:5f:8d: 25:9c:ad:ce:36:ba:fb:da:3b:0e:c6:ab:da:fe:7f:13:a8:e9: ab:e0:71:59:e0:bb:1d:8c:ef:18:d2:1d:fc:f8:f7:d3:84:45: b3:e0:b1:dd:cf:9b:a9:60:4b:b9:69:53:9c:37:35:23:73:bf: 5f:6b:4d:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQMvEPjCT/qCQWPUlQTXpQfDFifwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MDIwMjAwMDNaFw0yNjA2MDEwMjA1MDNaMDMxMTAvBgNV BAMTKEIyMEVDMEUyNDlDOTQ5NUU2NUQyNDg0OTM2RkVFRDI4MEFFNDc2NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtTkgLN1blhBBIoYb4skuDYXH6 oZMk+GjxkMFtBKMyGUTnf8ZBGg2xtkjQr4kBGKNOfV/kfwoBbp2Ahs5w03QfecSr FF9UFCV5NDWkmXfMhT2ZZ7cVsE9YWQRjaX+uApjQBp01Nd8HR011v/XRwmWR0gZa 2F8sv6bNTLa1vAyRMbrkO7ncq7IE9jq+UJu93ZpbFikfXuIAm1wJFxhRnEAS1uZt q5Vbe1ymy3vZPg9MQwcNN4VP5sJAtuKKuhTA3Ve5JcWVuZjAHaRagHPZDt2Jt7Oq M24xHLl9utf7SqnQd2VEIZSJt8mga7NGoAT/WYhiRRdb72KDyCOjBb3/CvvlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsg7A4knJSV5l0khJNv7tKArkdkEwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/K0MA0GCSqG SIb3DQEBCwUAA4IBAQCHHXjup6rU9UXpE3UwDvNVBlnX5MEqca/YJNg2zVZ/Dwbs 9XNeZY48WMqQdaqeGAyL3xF86LmyGGg+Ta0UU7cIWij4GvnuOquSCUHfoUMvGWUz T2nqBoKwzX7ChpO3p2HAxeSd6Err2piXrBq1ObiHBUF5+uhaHycBp7g9UCMJugzL rC76ajh1XGmB5tM02FuYL6nyLw/eieE5NcQ2O6LAlvtj7GbclBuc85RWsNjqCi4w a7twT8VoQBxVYJcGr/XdENdUX40lnK3ONrr72jsOxqva/n8TqOmr4HFZ4LsdjO8Y 0h38+PfThEWz4LHdz5upYEu5aVOcNzUjc79fa01S -----END CERTIFICATE-----Generated at Sat Jun 7 23:01:17 2025 by rpki-client