$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa File: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (raw, json) Hash identifier: s3jB5rGy3ygjsQ7KSNEtfVl4k8P8QCufhhtVBzaX2IQ= Subject key identifier: 81:A2:C1:7C:D3:7D:47:11:37:41:14:06:E3:E4:81:4C:72:1E:78:D6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 61B9F3ED8708D695875B247B1F7B69F2C9155C0D Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa Signing time: Mon 02 Jun 2025 10:02:24 +0000 ROA not before: Mon 02 Jun 2025 09:57:24 +0000 ROA not after: Mon 01 Jun 2026 10:02:24 +0000 asID: 134623 IP address blocks: 103.197.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b9:f3:ed:87:08:d6:95:87:5b:24:7b:1f:7b:69:f2:c9:15:5c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jun 2 09:57:24 2025 GMT Not After : Jun 1 10:02:24 2026 GMT Subject: CN=81A2C17CD37D471137411406E3E4814C721E78D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:45:8a:5c:d0:0a:ef:50:3d:f1:b2:ff:11:8a: 4c:2e:d7:53:b9:03:06:95:58:b6:3f:9b:b2:c6:8d: 95:22:b3:a3:45:ff:6e:4b:30:34:08:ca:a9:c4:67: 16:69:31:b9:5d:e0:af:d5:84:89:ba:b1:9c:ad:b5: bc:6d:5d:03:12:72:e8:88:79:0f:e4:bf:ad:6f:7a: 20:e0:38:05:3b:e0:44:25:ca:9d:de:58:e4:89:04: 9b:d3:b3:50:57:3f:1c:11:d3:98:dd:58:c3:03:48: 1c:91:b0:53:9d:47:2e:b6:ac:fd:8b:e7:62:5f:40: 26:0e:c2:64:70:49:10:ed:f3:b1:63:ea:d3:09:16: 43:c1:cc:cb:04:25:56:2e:24:fa:db:b0:3c:7d:78: 6e:45:64:57:a2:05:d6:28:ec:36:8c:51:f8:ae:8b: eb:84:4f:05:87:28:7f:87:a1:53:6f:a6:4e:91:63: 21:4b:a6:d6:f0:5e:30:11:82:33:89:b7:b5:eb:1b: 1a:71:b1:9f:79:67:78:12:33:c3:c2:c4:6d:95:29: db:1a:84:d5:72:40:1b:cb:d6:f8:c2:48:38:0d:a0: 3a:0d:6b:6f:99:5c:f5:32:03:21:06:d3:b8:44:0b: be:99:cb:ec:ad:56:47:fb:29:fc:10:a5:de:50:3c: a8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A2:C1:7C:D3:7D:47:11:37:41:14:06:E3:E4:81:4C:72:1E:78:D6 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.92.0/24 Signature Algorithm: sha256WithRSAEncryption 07:1e:c6:66:b1:03:cf:b1:98:3e:cb:c5:47:a7:3b:f5:ab:f1: 84:05:92:a4:00:85:23:4f:ce:b1:8b:b3:84:69:03:e8:72:4f: 31:aa:83:9e:0b:80:dc:f7:7f:db:88:f8:6c:71:3d:b8:fa:87: 9a:e7:50:dc:9b:c9:8f:d0:75:f1:68:9e:49:d0:09:89:db:34: 0f:22:69:bb:59:ad:04:3b:f8:e1:0d:c4:61:dc:eb:14:92:60: c7:35:9b:15:9f:af:2e:c7:75:90:97:36:9e:a3:25:e0:7c:aa: af:e6:03:e3:de:11:f0:5e:e8:3d:8a:c0:52:99:22:77:55:5d: 42:29:2b:f9:0b:6c:dc:95:a6:e8:03:a8:f9:3f:93:e4:bd:70: 54:ec:a9:e5:b0:ac:33:30:17:a8:08:f1:fb:e4:72:37:c7:a7: d0:54:dc:5d:90:2e:77:cd:b4:37:71:70:e1:d6:60:6d:7c:b6: 11:84:b6:f3:97:63:07:03:98:0b:af:da:e7:0d:c4:6c:eb:fe: 87:54:3a:0c:e0:c4:e4:c4:65:0c:7d:46:15:45:2d:be:ea:01: 53:77:8b:8d:18:74:f7:98:d8:e9:ea:d6:fe:d2:ab:21:f0:e6: e1:4f:55:0b:e9:1b:ae:16:25:22:67:2e:3f:f9:83:c5:ff:fe: 7b:5a:96:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYbnz7YcI1pWHWyR7H3tp8skVXA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA2MDIwOTU3MjRaFw0yNjA2MDExMDAyMjRaMDMxMTAvBgNV BAMTKDgxQTJDMTdDRDM3RDQ3MTEzNzQxMTQwNkUzRTQ4MTRDNzIxRTc4RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdRYpc0ArvUD3xsv8Rikwu11O5 AwaVWLY/m7LGjZUis6NF/25LMDQIyqnEZxZpMbld4K/VhIm6sZyttbxtXQMScuiI eQ/kv61veiDgOAU74EQlyp3eWOSJBJvTs1BXPxwR05jdWMMDSByRsFOdRy62rP2L 52JfQCYOwmRwSRDt87Fj6tMJFkPBzMsEJVYuJPrbsDx9eG5FZFeiBdYo7DaMUfiu i+uETwWHKH+HoVNvpk6RYyFLptbwXjARgjOJt7XrGxpxsZ95Z3gSM8PCxG2VKdsa hNVyQBvL1vjCSDgNoDoNa2+ZXPUyAyEG07hEC76Zy+ytVkf7KfwQpd5QPKiJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgaLBfNN9RxE3QRQG4+SBTHIeeNYwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlZDEwMGRmLTA0NDEtNDM4MS1h M2ZhLTU4N2RiOWU5YzJmMC8wLzMxMzAzMzJlMzEzOTM3MmUzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8VcMA0GCSqG SIb3DQEBCwUAA4IBAQAHHsZmsQPPsZg+y8VHpzv1q/GEBZKkAIUjT86xi7OEaQPo ck8xqoOeC4Dc93/biPhscT24+oea51Dcm8mP0HXxaJ5J0AmJ2zQPImm7Wa0EO/jh DcRh3OsUkmDHNZsVn68ux3WQlzaeoyXgfKqv5gPj3hHwXug9isBSmSJ3VV1CKSv5 C2zclaboA6j5P5PkvXBU7KnlsKwzMBeoCPH75HI3x6fQVNxdkC53zbQ3cXDh1mBt fLYRhLbzl2MHA5gLr9rnDcRs6/6HVDoM4MTkxGUMfUYVRS2+6gFTd4uNGHT3mNjp 6tb+0qsh8ObhT1UL6RuuFiUiZy4/+YPF//57WpYR -----END CERTIFICATE-----Generated at Sun Jun 8 00:40:44 2025 by rpki-client