$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa File: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (raw, json) Hash identifier: RrW5I2lzLuA+7ZMS1LEMZMinrm7Ftg4PYDdGcwSGY08= Subject key identifier: 1E:68:36:B0:31:8A:69:71:8E:5C:29:98:1B:B6:3A:B2:60:63:EA:D6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 7902088FE90018E98929700DD13A60B08A785F46 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa Signing time: Mon 02 Jun 2025 10:02:24 +0000 ROA not before: Mon 02 Jun 2025 09:57:24 +0000 ROA not after: Mon 01 Jun 2026 10:02:24 +0000 asID: 134623 IP address blocks: 103.197.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:02:08:8f:e9:00:18:e9:89:29:70:0d:d1:3a:60:b0:8a:78:5f:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jun 2 09:57:24 2025 GMT Not After : Jun 1 10:02:24 2026 GMT Subject: CN=1E6836B0318A69718E5C29981BB63AB26063EAD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:95:e9:99:58:d3:de:0d:ce:ad:02:93:fc: 42:bf:91:90:2b:15:92:6d:a2:a4:75:e0:25:f0:25: 34:92:e7:ef:9a:52:b1:fd:6b:a5:bb:ce:c4:e7:a9: d6:aa:0a:dc:6d:5d:40:7a:2c:5c:ef:83:4b:8f:60: 81:3f:15:ba:3b:44:93:16:60:3c:26:30:8c:b8:42: b8:60:a9:17:76:ab:3d:08:b3:28:43:41:a4:d4:25: 1b:9f:35:5b:55:dd:7d:65:75:75:d1:56:a5:be:37: ac:4f:4a:6e:11:da:49:57:6f:24:fa:f7:b6:af:20: 89:97:a2:9a:7d:20:8a:48:fe:64:5e:db:97:cf:b2: ff:b2:55:12:18:ad:af:b2:c7:df:8e:32:63:16:5e: ba:a7:33:a8:a6:03:bc:3e:2b:dd:23:99:97:00:85: b1:0a:1b:1d:95:1e:0c:31:47:9b:ef:7f:8b:de:c2: fa:42:47:64:90:58:76:06:de:d8:33:e5:9c:01:32: 67:c3:24:80:8e:9b:76:10:d1:b9:41:48:8d:1a:ec: af:6f:5e:44:4f:a2:52:c2:19:aa:15:dc:ec:21:f4: 1e:4b:96:6c:5b:ad:ec:08:df:87:25:d2:40:37:c9: 0d:75:1f:83:89:7b:eb:85:0c:46:cd:39:74:7f:4a: f3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:68:36:B0:31:8A:69:71:8E:5C:29:98:1B:B6:3A:B2:60:63:EA:D6 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.93.0/24 Signature Algorithm: sha256WithRSAEncryption 09:6f:99:f7:af:8e:f8:e4:ad:87:d0:c3:d2:f2:28:f0:4e:0b: ab:29:3f:d7:0d:19:34:7b:07:29:05:cf:0e:be:9a:bf:75:3e: 55:de:a4:6a:62:73:14:d0:1a:88:b5:23:22:27:a6:45:22:e3: 6c:88:84:b0:f7:43:29:dd:cf:bf:20:f0:e3:86:a3:47:d1:8e: 0e:62:4b:83:3b:85:90:59:19:97:71:31:15:1a:59:23:8f:50: 10:bb:7c:1f:41:64:56:60:99:08:05:67:ad:a3:fe:be:42:17: 74:f7:98:5e:28:54:e4:bb:8c:ec:e5:69:25:eb:6a:e1:cc:f2: e4:96:89:3a:50:c0:46:8d:46:3c:14:17:b8:ae:b3:9e:df:bd: ab:73:ed:a4:0b:7e:88:a3:76:96:08:5f:23:e6:bd:e5:8e:84: 61:9a:74:78:24:b7:60:b6:6a:b2:e7:78:8b:af:c6:68:b8:a2: 3c:70:d4:6b:1f:0a:ba:b9:6f:68:2f:6d:2f:e3:50:de:f1:da: 42:6f:21:66:0b:94:3f:93:03:8c:11:17:6e:a0:a4:8c:fa:36: 6a:01:fc:cc:8d:80:a2:4e:e9:85:1c:9b:85:ec:4f:b2:72:01: 3d:b1:7a:03:b0:4c:8f:82:ca:f7:ca:48:24:45:62:7b:1f:30: b2:1f:d6:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeQIIj+kAGOmJKXAN0TpgsIp4X0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA2MDIwOTU3MjRaFw0yNjA2MDExMDAyMjRaMDMxMTAvBgNV BAMTKDFFNjgzNkIwMzE4QTY5NzE4RTVDMjk5ODFCQjYzQUIyNjA2M0VBRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63ZXpmVjT3g3OrQKT/EK/kZAr FZJtoqR14CXwJTSS5++aUrH9a6W7zsTnqdaqCtxtXUB6LFzvg0uPYIE/Fbo7RJMW YDwmMIy4QrhgqRd2qz0IsyhDQaTUJRufNVtV3X1ldXXRVqW+N6xPSm4R2klXbyT6 97avIImXopp9IIpI/mRe25fPsv+yVRIYra+yx9+OMmMWXrqnM6imA7w+K90jmZcA hbEKGx2VHgwxR5vvf4vewvpCR2SQWHYG3tgz5ZwBMmfDJICOm3YQ0blBSI0a7K9v XkRPolLCGaoV3Owh9B5LlmxbrewI34cl0kA3yQ11H4OJe+uFDEbNOXR/SvOPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHmg2sDGKaXGOXCmYG7Y6smBj6tYwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlZDEwMGRmLTA0NDEtNDM4MS1h M2ZhLTU4N2RiOWU5YzJmMC8wLzMxMzAzMzJlMzEzOTM3MmUzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8VdMA0GCSqG SIb3DQEBCwUAA4IBAQAJb5n3r4745K2H0MPS8ijwTgurKT/XDRk0ewcpBc8Ovpq/ dT5V3qRqYnMU0BqItSMiJ6ZFIuNsiISw90Mp3c+/IPDjhqNH0Y4OYkuDO4WQWRmX cTEVGlkjj1AQu3wfQWRWYJkIBWeto/6+Qhd095heKFTku4zs5Wkl62rhzPLklok6 UMBGjUY8FBe4rrOe372rc+2kC36Io3aWCF8j5r3ljoRhmnR4JLdgtmqy53iLr8Zo uKI8cNRrHwq6uW9oL20v41De8dpCbyFmC5Q/kwOMERduoKSM+jZqAfzMjYCiTumF HJuF7E+ycgE9sXoDsEyPgsr3ykgkRWJ7HzCyH9ZX -----END CERTIFICATE-----Generated at Sat Jun 7 04:14:02 2025 by rpki-client