$ rpki-client -vvf repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3234382e302f32332d3234203d3e20313337323836.roa File: 3130332e39302e3234382e302f32332d3234203d3e20313337323836.roa (raw, json) Hash identifier: jxHxbJF/eRRjfrisoO0mVeSb4ItOk+aEiVd997Gm3wQ= Subject key identifier: 49:23:19:71:C1:07:C5:0A:D1:E2:31:B1:06:09:37:EE:03:69:68:3A Certificate issuer: /CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Certificate serial: 18C8D1932ACEC13FC9D2F883AE9EB5787C8B8309 Authority key identifier: 5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3234382e302f32332d3234203d3e20313337323836.roa Signing time: Mon 02 Jun 2025 02:03:01 +0000 ROA not before: Mon 02 Jun 2025 01:58:01 +0000 ROA not after: Mon 01 Jun 2026 02:03:01 +0000 asID: 137286 IP address blocks: 103.90.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c8:d1:93:2a:ce:c1:3f:c9:d2:f8:83:ae:9e:b5:78:7c:8b:83:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Validity Not Before: Jun 2 01:58:01 2025 GMT Not After : Jun 1 02:03:01 2026 GMT Subject: CN=49231971C107C50AD1E231B1060937EE0369683A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e8:0f:d4:0a:d2:4c:23:e3:56:59:f3:8c:c4: f0:91:37:0e:d4:f7:f5:99:78:3c:56:8e:af:7f:77: d6:d2:48:fa:37:55:5b:94:1d:ee:10:ea:a2:bf:77: 2f:64:9f:f0:18:29:b4:26:cb:e6:f5:27:06:76:5e: 97:72:b2:36:e2:d4:2e:0a:11:b8:5d:7a:c9:0d:13: 2b:c6:79:eb:ef:42:cd:d9:9e:c5:83:31:31:36:29: f3:55:45:54:f6:c6:33:40:54:96:44:9f:13:77:72: a2:b9:5a:40:70:c0:ee:e7:24:66:19:43:f6:66:63: 37:4f:3e:bb:f4:cd:e2:33:0b:c5:bb:45:72:95:b8: 11:0e:c0:db:a0:b3:56:d0:8e:fa:07:bc:c8:4f:38: dc:15:10:c2:24:24:77:dc:67:66:e3:90:93:64:b1: 50:9e:39:a1:09:56:52:ce:78:ba:db:49:6d:e1:d9: d2:29:77:06:30:53:29:68:d4:95:9f:72:3d:b1:8f: 8e:47:58:d9:52:89:58:1e:99:be:74:4f:72:3f:8a: 5f:a4:bd:08:c3:0b:24:84:8b:3c:dd:61:f7:7b:23: 5d:73:3d:ac:67:a0:4d:1b:bd:69:c2:29:95:af:89: 23:b1:c6:a5:5e:0f:da:e4:66:42:d3:39:32:52:e1: 35:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:23:19:71:C1:07:C5:0A:D1:E2:31:B1:06:09:37:EE:03:69:68:3A X509v3 Authority Key Identifier: keyid:5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3234382e302f32332d3234203d3e20313337323836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.248.0/23 Signature Algorithm: sha256WithRSAEncryption ad:b1:01:d4:b4:27:bf:3e:6f:fc:cc:f4:30:0f:a9:6d:cd:83: 08:e3:91:8c:ad:75:ec:2a:e3:c9:b9:ca:f3:a6:66:1c:64:f5: b1:06:42:6b:44:76:45:d2:33:46:18:bc:9f:47:61:11:ad:21: 1b:7d:f5:27:3f:e0:95:3b:ba:06:46:30:1d:de:5b:0d:93:ec: 1b:8a:f1:e0:af:9a:1f:73:d7:06:56:32:75:07:9b:9e:1c:2d: d3:20:ca:5b:41:85:c5:99:91:93:00:c9:7e:bb:79:ce:9d:a9: 9e:98:d3:0d:81:8c:0e:c1:b0:ef:02:0c:6f:6e:60:57:1d:15: 2a:82:2a:7c:b3:07:e6:44:4b:75:2e:1e:aa:4b:84:03:93:40: 91:d6:bc:af:2a:16:d0:60:78:04:f4:21:9f:f3:4a:c6:87:b8: ee:02:bf:f4:c0:d1:64:66:40:14:5e:80:d8:50:f4:97:78:9e: 16:52:56:b1:18:69:fd:fc:bf:16:6a:10:37:73:e2:ce:9e:56: 7a:2b:d2:a1:27:57:7b:5d:bd:1c:a1:d2:21:08:57:ca:02:a5: 50:84:f7:6e:d3:ae:b2:a2:3a:29:ba:cb:76:9d:d1:6b:06:1a: 3f:5d:9c:6f:43:b9:52:17:46:93:45:a0:96:f3:f0:aa:17:e9: b4:14:5b:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGMjRkyrOwT/J0viDrp61eHyLgwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNF MTczRTcxQzAeFw0yNTA2MDIwMTU4MDFaFw0yNjA2MDEwMjAzMDFaMDMxMTAvBgNV BAMTKDQ5MjMxOTcxQzEwN0M1MEFEMUUyMzFCMTA2MDkzN0VFMDM2OTY4M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY6A/UCtJMI+NWWfOMxPCRNw7U 9/WZeDxWjq9/d9bSSPo3VVuUHe4Q6qK/dy9kn/AYKbQmy+b1JwZ2Xpdysjbi1C4K EbhdeskNEyvGeevvQs3ZnsWDMTE2KfNVRVT2xjNAVJZEnxN3cqK5WkBwwO7nJGYZ Q/ZmYzdPPrv0zeIzC8W7RXKVuBEOwNugs1bQjvoHvMhPONwVEMIkJHfcZ2bjkJNk sVCeOaEJVlLOeLrbSW3h2dIpdwYwUylo1JWfcj2xj45HWNlSiVgemb50T3I/il+k vQjDCySEizzdYfd7I11zPaxnoE0bvWnCKZWviSOxxqVeD9rkZkLTOTJS4TUdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSSMZccEHxQrR4jGxBgk37gNpaDowHwYDVR0j BBgwFoAUXx7AN4x7OokSyjLjgtLAg+Fz5xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDAyZGFhNS1mYjBjLTRhMjQtOTg4OS0zM2JkNTBkYjRmZTAvMC81RjFFQzAzNzhD N0IzQTg5MTJDQTMyRTM4MkQyQzA4M0UxNzNFNzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNFMTcz RTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzkzMDJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM3MzIzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1r4MA0GCSqG SIb3DQEBCwUAA4IBAQCtsQHUtCe/Pm/8zPQwD6ltzYMI45GMrXXsKuPJucrzpmYc ZPWxBkJrRHZF0jNGGLyfR2ERrSEbffUnP+CVO7oGRjAd3lsNk+wbivHgr5ofc9cG VjJ1B5ueHC3TIMpbQYXFmZGTAMl+u3nOnamemNMNgYwOwbDvAgxvbmBXHRUqgip8 swfmREt1Lh6qS4QDk0CR1ryvKhbQYHgE9CGf80rGh7juAr/0wNFkZkAUXoDYUPSX eJ4WUlaxGGn9/L8WahA3c+LOnlZ6K9KhJ1d7Xb0codIhCFfKAqVQhPdu066yojop ust2ndFrBho/XZxvQ7lSF0aTRaCW8/CqF+m0FFsH -----END CERTIFICATE-----Generated at Sun Jun 8 07:31:34 2025 by rpki-client