$ rpki-client -vvf repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31382e302f32342d3234203d3e20313531353036.roa File: 3130332e3233342e31382e302f32342d3234203d3e20313531353036.roa (raw, json) Hash identifier: OR1t4IQS/xyvZZqdpeuC2pHKP+AjsN9yFmbMgs+eujs= Subject key identifier: 7D:B8:56:22:3A:82:37:A3:C9:F9:69:2B:59:71:E6:8A:52:7B:BB:BC Certificate issuer: /CN=7365D5B1AE30C5B6450AFDDE98BA231F962A6C26 Certificate serial: 15DA1E4407761FE92749B5EBE395C2737101DE42 Authority key identifier: 73:65:D5:B1:AE:30:C5:B6:45:0A:FD:DE:98:BA:23:1F:96:2A:6C:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31382e302f32342d3234203d3e20313531353036.roa Signing time: Fri 23 May 2025 02:02:19 +0000 ROA not before: Fri 23 May 2025 01:57:19 +0000 ROA not after: Fri 22 May 2026 02:02:19 +0000 asID: 151506 IP address blocks: 103.234.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.crl rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:da:1e:44:07:76:1f:e9:27:49:b5:eb:e3:95:c2:73:71:01:de:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7365D5B1AE30C5B6450AFDDE98BA231F962A6C26 Validity Not Before: May 23 01:57:19 2025 GMT Not After : May 22 02:02:19 2026 GMT Subject: CN=7DB856223A8237A3C9F9692B5971E68A527BBBBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:f5:0c:79:af:31:84:3c:02:7d:3f:b5:5a: e1:44:ba:ac:4c:1f:79:c1:3a:e5:e1:90:41:42:7e: 96:c7:a5:2d:01:58:62:9d:a1:8f:b5:18:c0:1f:d3: eb:78:76:71:74:71:8d:3c:01:c1:25:f3:14:10:1e: a0:21:55:19:46:e7:f0:c1:c1:23:8a:30:5b:9b:0c: 4d:5e:ac:b9:04:55:58:d1:c0:d4:8e:95:be:1b:74: 49:31:9f:f0:9b:43:ab:7f:78:8b:75:42:37:38:e5: ed:1f:ed:56:81:07:37:61:26:e8:6b:d6:ec:e9:0b: 26:e2:48:12:73:7e:d6:d8:b9:c3:0c:db:83:d5:19: 77:58:29:a6:44:c8:08:0f:fa:ef:82:34:97:9d:ad: e3:0c:32:e1:04:36:5d:7b:40:f7:e7:39:7a:4f:47: 26:c3:05:97:86:bc:0a:e0:30:3c:c7:9e:35:88:01: 56:bc:a1:34:58:ae:38:a6:b8:63:76:45:fc:b2:91: 7b:eb:81:ae:ee:b9:5c:63:77:74:5b:5d:95:b4:52: 71:6a:ea:d1:a8:4a:26:b4:d1:a0:21:e1:7e:64:1a: 54:13:b6:d1:cc:ff:07:b6:63:51:87:0b:58:e5:f4: 56:8b:ef:8e:44:5e:fc:53:e9:59:00:f6:b9:fc:8b: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B8:56:22:3A:82:37:A3:C9:F9:69:2B:59:71:E6:8A:52:7B:BB:BC X509v3 Authority Key Identifier: keyid:73:65:D5:B1:AE:30:C5:B6:45:0A:FD:DE:98:BA:23:1F:96:2A:6C:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7365D5B1AE30C5B6450AFDDE98BA231F962A6C26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/388329ca-e8f7-4d3d-ace4-807f8aa58ae0/0/3130332e3233342e31382e302f32342d3234203d3e20313531353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.18.0/24 Signature Algorithm: sha256WithRSAEncryption 79:19:a5:38:e6:11:47:3f:af:1f:aa:ee:f3:61:ec:bc:21:0e: 7e:6a:d3:58:9b:86:46:3d:48:87:42:bc:98:f8:3d:3a:4b:98: 59:bf:d8:b7:07:b1:b9:18:75:a7:f4:44:ff:7c:26:74:a0:c5: c0:c8:05:3f:f4:fc:df:d6:d9:06:21:a7:ea:fe:9f:bb:c1:32: 4a:31:dd:3a:ae:e6:39:10:c8:ed:7a:39:da:f4:01:6e:66:bc: 31:25:9b:52:5b:89:74:3d:63:d4:2a:8a:44:28:fb:42:42:b5: 64:80:e4:52:d1:3f:bf:89:d9:f7:0e:d4:3a:26:55:71:d1:bf: 06:e2:15:ad:3d:e0:43:91:c3:b2:3b:0e:83:7b:a9:c0:4f:82: d0:9d:14:d5:a8:2a:5a:e1:51:ee:26:44:3d:96:e9:73:e7:41: 7b:a0:a6:09:c3:a3:80:e6:cc:e9:37:b6:12:4e:ab:c9:9f:09: 16:f6:a4:1a:ab:9f:19:3f:b2:34:fb:43:2a:b6:08:92:12:d2: b6:de:ba:36:79:fa:9b:2e:53:0b:2e:94:57:c1:3e:20:7e:27: fb:13:f3:12:79:24:6c:17:86:21:50:a4:4d:a2:d6:ec:07:d7: 35:9c:bd:39:50:fb:cc:f3:f6:6c:4a:ce:ac:c7:1c:da:6d:fc: 80:97:ab:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFdoeRAd2H+knSbXr45XCc3EB3kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM2NUQ1QjFBRTMwQzVCNjQ1MEFGRERFOThCQTIzMUY5 NjJBNkMyNjAeFw0yNTA1MjMwMTU3MTlaFw0yNjA1MjIwMjAyMTlaMDMxMTAvBgNV BAMTKDdEQjg1NjIyM0E4MjM3QTNDOUY5NjkyQjU5NzFFNjhBNTI3QkJCQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCssfUMea8xhDwCfT+1WuFEuqxM H3nBOuXhkEFCfpbHpS0BWGKdoY+1GMAf0+t4dnF0cY08AcEl8xQQHqAhVRlG5/DB wSOKMFubDE1erLkEVVjRwNSOlb4bdEkxn/CbQ6t/eIt1Qjc45e0f7VaBBzdhJuhr 1uzpCybiSBJzftbYucMM24PVGXdYKaZEyAgP+u+CNJedreMMMuEENl17QPfnOXpP RybDBZeGvArgMDzHnjWIAVa8oTRYrjimuGN2RfyykXvrga7uuVxjd3RbXZW0UnFq 6tGoSia00aAh4X5kGlQTttHM/we2Y1GHC1jl9FaL745EXvxT6VkA9rn8izS1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfbhWIjqCN6PJ+WkrWXHmilJ7u7wwHwYDVR0j BBgwFoAUc2XVsa4wxbZFCv3emLojH5YqbCYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODgzMjljYS1lOGY3LTRkM2QtYWNlNC04MDdmOGFhNThhZTAvMC83MzY1RDVCMUFF MzBDNUI2NDUwQUZEREU5OEJBMjMxRjk2MkE2QzI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM2NUQ1QjFBRTMwQzVCNjQ1MEFGRERFOThCQTIzMUY5NjJB NkMyNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4ODMyOWNhLWU4ZjctNGQzZC1h Y2U0LTgwN2Y4YWE1OGFlMC8wLzMxMzAzMzJlMzIzMzM0MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+oSMA0GCSqG SIb3DQEBCwUAA4IBAQB5GaU45hFHP68fqu7zYey8IQ5+atNYm4ZGPUiHQryY+D06 S5hZv9i3B7G5GHWn9ET/fCZ0oMXAyAU/9Pzf1tkGIafq/p+7wTJKMd06ruY5EMjt ejna9AFuZrwxJZtSW4l0PWPUKopEKPtCQrVkgORS0T+/idn3DtQ6JlVx0b8G4hWt PeBDkcOyOw6De6nAT4LQnRTVqCpa4VHuJkQ9lulz50F7oKYJw6OA5szpN7YSTqvJ nwkW9qQaq58ZP7I0+0MqtgiSEtK23ro2efqbLlMLLpRXwT4gfif7E/MSeSRsF4Yh UKRNotbsB9c1nL05UPvM8/ZsSs6sxxzabfyAl6vM -----END CERTIFICATE-----Generated at Sun Jun 8 06:30:30 2025 by rpki-client