$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa File: 3130332e32332e3233332e302f32342d3234203d3e203538343735.roa (raw, json) Hash identifier: 3NZfWHZFid4ea+GUoLaGMRlr2s5vOkiU2EzRl6OGUWo= Subject key identifier: FD:A5:15:22:10:01:87:D9:D2:21:D6:F7:25:5D:78:EF:FF:2E:E8:1A Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 1023AD13D3643C9468A28E4D683503579D73233C Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa Signing time: Mon 02 Jun 2025 02:04:56 +0000 ROA not before: Mon 02 Jun 2025 01:59:56 +0000 ROA not after: Mon 01 Jun 2026 02:04:56 +0000 asID: 58475 IP address blocks: 103.23.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:23:ad:13:d3:64:3c:94:68:a2:8e:4d:68:35:03:57:9d:73:23:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jun 2 01:59:56 2025 GMT Not After : Jun 1 02:04:56 2026 GMT Subject: CN=FDA51522100187D9D221D6F7255D78EFFF2EE81A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:e6:c1:0b:2d:01:aa:f4:ce:1b:16:f2:39: c0:bf:2e:15:86:78:e7:4e:d7:e5:c9:d7:8e:ae:13: d2:34:ec:77:82:4d:37:8d:c0:72:f4:1c:ad:a0:3e: 66:c9:62:95:4c:92:ac:f4:1b:40:b1:89:15:85:5a: ff:15:03:d3:74:92:1b:c6:0a:b1:16:38:4f:30:92: 25:a5:e9:ab:d2:82:80:8d:a7:52:37:5d:ce:72:b7: d6:63:a9:1d:d5:96:56:e6:4b:23:4c:47:c0:35:19: ca:7a:7b:c4:48:72:4d:71:a5:ee:37:d6:99:75:19: 14:e1:6b:9c:8c:3a:65:ac:bf:3f:f9:fe:bd:4c:fe: 0a:be:d6:73:e9:37:1f:ba:0d:ac:e2:b1:65:a1:d0: 6e:ed:eb:a7:4b:2b:1c:69:ba:1e:43:39:59:99:91: 9e:96:52:2c:99:64:92:58:05:c0:b8:19:50:cf:34: 75:02:8f:e9:15:54:cb:08:be:d5:ad:76:1e:a8:f6: 98:f3:99:74:37:28:e7:39:36:29:1f:4d:cf:d6:ee: 93:30:4f:f4:32:c0:8d:7f:eb:a6:67:a3:52:1b:b0: 59:ef:f7:1c:d9:60:71:9d:f3:b4:aa:bc:8a:ec:43: 44:a0:df:d3:22:28:9a:43:6f:b6:de:65:6f:9a:dc: d9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A5:15:22:10:01:87:D9:D2:21:D6:F7:25:5D:78:EF:FF:2E:E8:1A X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.233.0/24 Signature Algorithm: sha256WithRSAEncryption 88:21:2d:0b:5b:a9:bf:96:f5:fc:82:5a:fe:34:26:45:65:8a: 7a:5a:6f:19:00:3f:96:0c:ef:d7:79:ef:0a:ea:00:75:36:9a: 2a:2b:5b:46:06:eb:c3:75:04:7c:7b:ae:0f:17:7d:4f:20:c0: 12:b2:d5:f0:70:a5:f0:83:3a:9a:d5:54:7d:47:65:17:b1:fd: 39:63:67:4f:21:1c:35:90:f9:90:66:0f:ac:8c:c3:cc:03:72: 78:64:ef:8b:18:57:a5:a5:f1:23:0e:62:c9:ef:d7:f1:5a:74: 81:b7:3f:0d:a5:85:18:f0:5e:9e:a5:9a:cd:ae:a6:c9:28:f9: 48:48:9d:e8:be:f5:25:3a:ac:30:b9:7d:a4:f0:7d:5a:91:3a: 24:6f:19:75:b0:15:50:6b:eb:fd:6f:21:33:48:e1:cb:fb:8b: 08:3d:7b:59:12:43:20:01:da:85:96:84:a3:5c:04:b2:0c:a7: 65:07:44:8f:1a:23:a6:ee:35:37:0f:37:cb:a1:1b:56:4e:51: e9:d7:ee:5a:b8:25:0b:be:f1:68:0c:a2:c4:5f:b3:ee:b6:73: 14:98:a0:a4:23:b6:50:c1:f2:b3:f3:ff:9b:f7:9b:73:34:19: dd:6a:70:e2:eb:79:2a:f5:6a:56:88:c5:dd:d7:05:68:3f:c1: 45:f0:3b:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUECOtE9NkPJRooo5NaDUDV51zIzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNTA2MDIwMTU5NTZaFw0yNjA2MDEwMjA0NTZaMDMxMTAvBgNV BAMTKEZEQTUxNTIyMTAwMTg3RDlEMjIxRDZGNzI1NUQ3OEVGRkYyRUU4MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+M+bBCy0BqvTOGxbyOcC/LhWG eOdO1+XJ146uE9I07HeCTTeNwHL0HK2gPmbJYpVMkqz0G0CxiRWFWv8VA9N0khvG CrEWOE8wkiWl6avSgoCNp1I3Xc5yt9ZjqR3VllbmSyNMR8A1Gcp6e8RIck1xpe43 1pl1GRTha5yMOmWsvz/5/r1M/gq+1nPpNx+6DazisWWh0G7t66dLKxxpuh5DOVmZ kZ6WUiyZZJJYBcC4GVDPNHUCj+kVVMsIvtWtdh6o9pjzmXQ3KOc5NikfTc/W7pMw T/QywI1/66Zno1IbsFnv9xzZYHGd87SqvIrsQ0Sg39MiKJpDb7beZW+a3Nn9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/aUVIhABh9nSIdb3JV147/8u6BowHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMxMzAzMzJlMzIzMzJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6TANBgkqhkiG 9w0BAQsFAAOCAQEAiCEtC1upv5b1/IJa/jQmRWWKelpvGQA/lgzv13nvCuoAdTaa KitbRgbrw3UEfHuuDxd9TyDAErLV8HCl8IM6mtVUfUdlF7H9OWNnTyEcNZD5kGYP rIzDzANyeGTvixhXpaXxIw5iye/X8Vp0gbc/DaWFGPBenqWaza6mySj5SEid6L71 JTqsMLl9pPB9WpE6JG8ZdbAVUGvr/W8hM0jhy/uLCD17WRJDIAHahZaEo1wEsgyn ZQdEjxojpu41Nw83y6EbVk5R6dfuWrglC77xaAyixF+z7rZzFJigpCO2UMHys/P/ m/ebczQZ3Wpw4ut5KvVqVojF3dcFaD/BRfA7ow== -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:37 2025 by rpki-client