$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa File: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (raw, json) Hash identifier: fbMC3foKpfnHAAX7CqNwv+8CUIBKmVdM4iWFdYY2w+c= Subject key identifier: 09:3E:DC:D0:8E:7A:A4:C8:CF:9B:00:11:65:7B:02:95:2F:17:D5:CA Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 4928FC69B4EAE85133380BD878E5906866114679 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa Signing time: Mon 02 Jun 2025 10:02:24 +0000 ROA not before: Mon 02 Jun 2025 09:57:24 +0000 ROA not after: Mon 01 Jun 2026 10:02:24 +0000 asID: 134623 IP address blocks: 103.197.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:28:fc:69:b4:ea:e8:51:33:38:0b:d8:78:e5:90:68:66:11:46:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jun 2 09:57:24 2025 GMT Not After : Jun 1 10:02:24 2026 GMT Subject: CN=093EDCD08E7AA4C8CF9B0011657B02952F17D5CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c1:6c:a4:dd:93:88:ee:d2:48:a0:ad:d2:c0: 50:9e:bc:b3:96:66:f1:1d:2a:9e:a5:3d:ea:d3:e5: d8:94:07:07:d2:86:d4:8d:d0:39:c4:01:78:d3:70: 29:ec:26:de:2a:b2:a1:b0:b3:ee:5a:74:e1:cf:6c: ef:e5:c9:49:30:90:ba:72:31:78:69:fb:ca:4f:9b: 8f:d3:ca:0c:61:f9:f6:92:34:cd:4a:33:1a:b5:d4: 58:af:d4:60:d1:7b:96:8b:85:c8:fc:58:03:f7:e6: 8d:28:6f:4f:2a:1b:ad:31:ff:63:d1:f9:5d:9a:a5: 7b:46:57:39:10:d5:bc:7e:94:48:eb:db:c8:a9:2b: 75:a4:d8:39:39:03:ec:d9:d4:99:ff:30:46:2f:fb: b1:4e:42:c5:a8:36:16:7c:f2:09:ac:e6:7b:d4:a1: 90:f6:b3:52:54:f1:b3:2a:ff:07:eb:76:b8:36:98: b4:c2:92:a0:87:9c:c7:18:68:03:ba:8b:e0:43:e8: 7a:36:e0:47:72:0f:27:3f:b1:2e:06:0f:11:5e:11: 2d:a2:fc:8a:2c:b3:11:89:35:8d:38:d1:db:14:d8: 1f:ea:f3:03:e6:80:33:59:c0:71:8f:59:0c:07:8a: bb:02:28:14:21:db:41:17:9b:58:fa:1f:63:c2:7e: 4e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3E:DC:D0:8E:7A:A4:C8:CF:9B:00:11:65:7B:02:95:2F:17:D5:CA X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.94.0/24 Signature Algorithm: sha256WithRSAEncryption b6:10:85:03:dc:3f:15:71:1f:5e:ad:c4:d6:d3:5f:e0:3e:8f: 16:cf:c0:96:05:29:93:1f:12:fd:65:31:80:d3:82:eb:5d:6b: a0:17:5c:1e:cd:22:10:71:6e:8a:a6:0e:df:a0:c8:05:69:f1: 62:30:81:82:19:f2:b6:0b:37:a9:d5:2d:c1:61:30:b3:c4:5f: b7:65:d5:d4:83:5a:60:5b:04:e5:53:28:6d:3e:12:0b:06:53: 0f:55:77:57:b4:c5:57:31:ae:97:4f:94:2a:c1:de:66:3b:14: e0:3a:de:b1:13:7c:1e:1f:44:dd:6d:c2:d5:a3:1a:8f:2d:ef: c6:06:b6:34:4c:78:02:f1:1c:89:9e:a4:25:ab:f7:ea:67:7a: 11:9c:0e:7f:f0:3b:f5:a7:70:61:7a:25:a3:0b:bb:be:f2:7d: 2b:95:7b:3f:83:bd:9d:12:e5:c2:f7:19:84:03:ea:d9:98:38: 0a:da:ad:7c:48:4c:06:fe:da:27:13:a5:52:af:2d:2d:d0:51: d8:40:73:22:2d:d0:9c:94:64:b4:54:a5:cd:0c:4e:ca:72:a6: df:c7:a3:97:cc:04:8f:b3:df:e9:40:05:5f:54:fb:de:d5:b3: 32:73:a6:9b:92:44:25:0d:52:49:e0:6d:b9:b7:11:c7:3d:ab: 3c:86:12:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSSj8abTq6FEzOAvYeOWQaGYRRnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA2MDIwOTU3MjRaFw0yNjA2MDExMDAyMjRaMDMxMTAvBgNV BAMTKDA5M0VEQ0QwOEU3QUE0QzhDRjlCMDAxMTY1N0IwMjk1MkYxN0Q1Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwwWyk3ZOI7tJIoK3SwFCevLOW ZvEdKp6lPerT5diUBwfShtSN0DnEAXjTcCnsJt4qsqGws+5adOHPbO/lyUkwkLpy MXhp+8pPm4/Tygxh+faSNM1KMxq11Fiv1GDRe5aLhcj8WAP35o0ob08qG60x/2PR +V2apXtGVzkQ1bx+lEjr28ipK3Wk2Dk5A+zZ1Jn/MEYv+7FOQsWoNhZ88gms5nvU oZD2s1JU8bMq/wfrdrg2mLTCkqCHnMcYaAO6i+BD6Ho24EdyDyc/sS4GDxFeES2i /IossxGJNY040dsU2B/q8wPmgDNZwHGPWQwHirsCKBQh20EXm1j6H2PCfk5lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCT7c0I56pMjPmwARZXsClS8X1cowHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlZDEwMGRmLTA0NDEtNDM4MS1h M2ZhLTU4N2RiOWU5YzJmMC8wLzMxMzAzMzJlMzEzOTM3MmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8VeMA0GCSqG SIb3DQEBCwUAA4IBAQC2EIUD3D8VcR9ercTW01/gPo8Wz8CWBSmTHxL9ZTGA04Lr XWugF1wezSIQcW6Kpg7foMgFafFiMIGCGfK2Czep1S3BYTCzxF+3ZdXUg1pgWwTl UyhtPhILBlMPVXdXtMVXMa6XT5Qqwd5mOxTgOt6xE3weH0TdbcLVoxqPLe/GBrY0 THgC8RyJnqQlq/fqZ3oRnA5/8Dv1p3BheiWjC7u+8n0rlXs/g72dEuXC9xmEA+rZ mDgK2q18SEwG/tonE6VSry0t0FHYQHMiLdCclGS0VKXNDE7Kcqbfx6OXzASPs9/p QAVfVPve1bMyc6abkkQlDVJJ4G25txHHPas8hhJ+ -----END CERTIFICATE-----Generated at Sat Jun 7 04:08:28 2025 by rpki-client