$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa File: 3130332e372e302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: eYJSZ6BNvJdcwOjXxyxNY4HDMCsMbaLoRNn+0CbiAds= Subject key identifier: 18:03:60:75:4C:D3:B0:E3:56:A1:E3:74:B5:14:68:B5:28:E2:AC:D9 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 073BECC64C675B26D11E8ECB37510A815969E89B Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa Signing time: Mon 02 Jun 2025 02:05:03 +0000 ROA not before: Mon 02 Jun 2025 02:00:03 +0000 ROA not after: Mon 01 Jun 2026 02:05:03 +0000 asID: 38788 IP address blocks: 103.7.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3b:ec:c6:4c:67:5b:26:d1:1e:8e:cb:37:51:0a:81:59:69:e8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 2 02:00:03 2025 GMT Not After : Jun 1 02:05:03 2026 GMT Subject: CN=180360754CD3B0E356A1E374B51468B528E2ACD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2c:18:40:83:f6:a8:b4:6d:d0:37:8c:62:ee: da:cf:a4:71:f0:22:dd:d9:71:f9:28:92:9b:74:76: 4a:d7:52:8e:33:f3:03:32:27:02:9f:60:db:40:e1: 90:d8:f5:3c:d1:72:b4:b3:17:ac:06:a6:5c:99:bf: 01:d8:3f:e0:38:9e:f7:51:3e:ab:9f:8e:4b:6c:d7: 84:ae:cf:8a:04:98:e8:e3:1f:ef:71:37:1a:f1:8d: 0d:47:3f:d6:b5:0a:cf:43:71:44:09:7d:81:67:dd: d0:a9:98:b2:7d:11:61:75:c6:c3:41:39:6c:1d:83: d6:e3:51:e5:be:c0:27:0b:ea:eb:3e:4e:86:ff:0d: b2:d6:24:a1:0a:62:4e:9e:0e:54:d2:04:3f:e9:7e: 77:45:ba:f9:b1:f6:ee:00:9b:bc:fd:84:d5:2f:eb: ef:f8:4c:12:ad:87:9c:8d:9c:2e:52:b6:d8:30:af: f0:62:ea:46:b5:3b:86:ef:dd:11:67:ec:3f:23:c1: bf:7a:60:01:ae:b5:20:ee:c7:10:b1:3a:bf:02:85: 32:fa:44:6a:31:fc:bc:16:74:4c:0e:4b:58:fb:4a: be:af:dc:0b:88:ea:e9:62:d8:5b:ba:ef:cd:bd:86: 2f:dd:29:29:f2:cc:7e:89:a6:aa:ce:36:58:79:fc: 75:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:03:60:75:4C:D3:B0:E3:56:A1:E3:74:B5:14:68:B5:28:E2:AC:D9 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.0.0/23 Signature Algorithm: sha256WithRSAEncryption 98:46:ea:d9:e0:9c:e9:47:68:03:7d:95:c8:7b:ac:54:e2:e6: 72:55:c3:fa:45:37:3a:da:c8:85:cb:cb:76:09:44:27:41:a6: 57:aa:3c:ba:06:d9:69:19:6d:db:32:a0:7b:b6:ce:67:f0:6e: 20:20:af:3e:57:fd:99:c4:6e:2c:e9:41:d6:b7:4a:cb:71:f1: 0e:3f:b8:9d:5f:c8:61:64:61:a2:04:3c:c0:60:6c:ca:19:0f: 0f:25:e8:ba:b4:64:45:28:07:95:39:6e:f0:6b:9c:b7:1a:d3: 42:a2:fd:7b:87:95:f2:5d:fd:0c:63:6b:2d:62:fe:28:bb:66: a5:5c:1b:e2:80:b9:14:28:50:36:67:c3:8a:34:98:e9:f5:db: 74:ef:36:b8:a2:9b:72:35:2f:13:de:d1:97:21:8a:73:83:bb: 17:42:6c:5d:21:87:82:07:12:ce:b7:06:55:7f:a7:be:2d:74: 4d:81:9a:6d:e3:32:37:7e:cc:e1:c2:46:02:16:96:4b:6a:6a: eb:64:53:fc:9b:0b:4a:ae:fc:14:b2:af:0a:45:3f:31:bf:f6: 12:09:2c:2d:ff:b4:2c:ec:c8:31:86:d6:35:7d:de:4d:49:ca: cd:b1:51:80:82:ca:c7:dc:5d:13:9a:63:59:bc:88:8a:52:99: d1:10:0e:bc -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUBzvsxkxnWybRHo7LN1EKgVlp6JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MDIwMjAwMDNaFw0yNjA2MDEwMjA1MDNaMDMxMTAvBgNV BAMTKDE4MDM2MDc1NENEM0IwRTM1NkExRTM3NEI1MTQ2OEI1MjhFMkFDRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoLBhAg/aotG3QN4xi7trPpHHw It3Zcfkokpt0dkrXUo4z8wMyJwKfYNtA4ZDY9TzRcrSzF6wGplyZvwHYP+A4nvdR Pqufjkts14Suz4oEmOjjH+9xNxrxjQ1HP9a1Cs9DcUQJfYFn3dCpmLJ9EWF1xsNB OWwdg9bjUeW+wCcL6us+Tob/DbLWJKEKYk6eDlTSBD/pfndFuvmx9u4Am7z9hNUv 6+/4TBKth5yNnC5Sttgwr/Bi6ka1O4bv3RFn7D8jwb96YAGutSDuxxCxOr8ChTL6 RGox/LwWdEwOS1j7Sr6v3AuI6uli2Fu67829hi/dKSnyzH6JpqrONlh5/HVlAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUGANgdUzTsONWoeN0tRRotSjirNkwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzAyZTMwMmYzMjMzMmQzMjMz MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZwcAMA0GCSqGSIb3DQEBCwUA A4IBAQCYRurZ4JzpR2gDfZXIe6xU4uZyVcP6RTc62siFy8t2CUQnQaZXqjy6Btlp GW3bMqB7ts5n8G4gIK8+V/2ZxG4s6UHWt0rLcfEOP7idX8hhZGGiBDzAYGzKGQ8P Jei6tGRFKAeVOW7wa5y3GtNCov17h5XyXf0MY2stYv4ou2alXBvigLkUKFA2Z8OK NJjp9dt07za4optyNS8T3tGXIYpzg7sXQmxdIYeCBxLOtwZVf6e+LXRNgZpt4zI3 fszhwkYCFpZLamrrZFP8mwtKrvwUsq8KRT8xv/YSCSwt/7Qs7MgxhtY1fd5NScrN sVGAgsrH3F0TmmNZvIiKUpnREA68 -----END CERTIFICATE-----Generated at Sat Jun 7 14:01:03 2025 by rpki-client