$ rpki-client -vvf repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa File: 3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa (raw, json) Hash identifier: mBRrtROIE48QsfIN72FcaFORTS/I0EXZvv4EQqPOI/g= Subject key identifier: 8A:DD:A5:27:CB:E5:03:0E:C7:D5:0F:A6:0E:25:B8:4E:31:44:13:2D Certificate issuer: /CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Certificate serial: 2FC9D6C93311B7BBE65B7507B0EE88759BA101F0 Authority key identifier: CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa Signing time: Mon 02 Jun 2025 02:03:30 +0000 ROA not before: Mon 02 Jun 2025 01:58:30 +0000 ROA not after: Mon 01 Jun 2026 02:03:30 +0000 asID: 58821 IP address blocks: 103.242.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:c9:d6:c9:33:11:b7:bb:e6:5b:75:07:b0:ee:88:75:9b:a1:01:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Validity Not Before: Jun 2 01:58:30 2025 GMT Not After : Jun 1 02:03:30 2026 GMT Subject: CN=8ADDA527CBE5030EC7D50FA60E25B84E3144132D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:f4:c7:f4:81:93:f4:62:47:f3:76:64:83: 8a:e9:d0:ba:18:e5:33:28:6b:6b:c0:0c:b0:82:d1: a0:64:5e:ad:3e:b6:c5:b4:1b:65:14:02:d9:11:fc: 2d:38:cb:d6:22:5d:83:76:df:08:c9:09:36:fd:92: 54:cf:17:2f:20:5b:ff:01:9f:0a:80:45:b5:5f:4c: 32:d9:8a:2e:5e:b7:98:f1:88:d7:c1:32:b9:e2:f6: 88:0c:e2:8d:b2:fc:50:da:bf:2b:96:bd:8f:58:a0: c5:d6:32:b5:11:b7:85:2e:03:0e:d7:db:3a:f0:d6: 36:bc:84:59:41:94:67:25:5d:b8:70:d5:f5:a3:4d: f8:88:2c:0f:95:50:90:10:15:d2:b7:50:0a:9f:74: 3b:21:44:ce:79:7e:2a:3b:20:81:fe:fc:ed:6c:c0: 88:d5:37:a9:ac:cf:97:00:a3:e9:73:c4:c7:08:6f: c8:46:8b:64:2b:31:81:a2:8a:e3:01:ad:ff:2b:dd: 5f:55:a1:e2:fa:1e:f1:8d:8f:d6:12:f4:d2:2d:32: 48:41:ff:59:95:87:2e:8f:dc:f6:d7:31:fb:38:29: 43:36:cc:7d:7b:47:a0:c7:f6:32:5b:f8:6b:6a:b7: 08:65:13:d6:1c:30:e0:33:28:2f:56:6a:b4:80:98: 6b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DD:A5:27:CB:E5:03:0E:C7:D5:0F:A6:0E:25:B8:4E:31:44:13:2D X509v3 Authority Key Identifier: keyid:CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.104.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:46:09:0d:ce:df:8a:cc:3d:2c:80:1c:5d:bf:1c:a4:6a:40: 37:ca:44:12:ad:06:c3:41:ef:67:7a:3b:a3:ab:c0:b2:22:d9: 3c:52:75:e6:51:d3:fc:c1:cb:db:e1:b2:83:e2:c3:dc:bf:59: 41:e5:4b:a6:cc:4b:99:83:51:76:b9:cb:07:86:7d:8c:e3:53: c3:9b:67:dc:1a:02:1e:d7:6e:72:9f:9d:a9:7e:1f:6a:8e:92: 6b:96:ea:a1:ba:3e:0e:8d:ed:75:87:cf:2a:ab:e5:47:5f:9e: a6:df:40:c2:c4:ba:6e:bf:43:a5:d0:f7:6c:44:ff:ad:6a:fe: b2:00:b6:a5:e9:fd:34:34:5b:70:c0:30:84:75:22:3d:bd:87: a4:fc:27:d6:36:6a:dd:b7:b3:2f:dd:b0:03:c7:38:41:74:ce: c3:37:e2:8a:16:71:ec:56:e4:8f:e6:8e:ad:32:4a:3e:7a:80: b6:42:69:6a:ed:82:6b:c0:93:c9:81:e7:38:91:90:6a:77:ef: f1:37:bf:f1:d5:6e:96:68:d3:82:24:7b:66:a3:ab:59:bd:25: 18:aa:2f:43:69:9e:b3:c1:99:38:31:9e:37:87:70:01:f3:d0: a8:3b:fb:81:b6:26:53:c6:4a:72:34:f8:96:19:54:25:b0:72: 7f:c8:51:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL8nWyTMRt7vmW3UHsO6IdZuhAfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0 OEUxNkVEQjAeFw0yNTA2MDIwMTU4MzBaFw0yNjA2MDEwMjAzMzBaMDMxMTAvBgNV BAMTKDhBRERBNTI3Q0JFNTAzMEVDN0Q1MEZBNjBFMjVCODRFMzE0NDEzMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAiPTH9IGT9GJH83Zkg4rp0LoY 5TMoa2vADLCC0aBkXq0+tsW0G2UUAtkR/C04y9YiXYN23wjJCTb9klTPFy8gW/8B nwqARbVfTDLZii5et5jxiNfBMrni9ogM4o2y/FDavyuWvY9YoMXWMrURt4UuAw7X 2zrw1ja8hFlBlGclXbhw1fWjTfiILA+VUJAQFdK3UAqfdDshRM55fio7IIH+/O1s wIjVN6msz5cAo+lzxMcIb8hGi2QrMYGiiuMBrf8r3V9VoeL6HvGNj9YS9NItMkhB /1mVhy6P3PbXMfs4KUM2zH17R6DH9jJb+GtqtwhlE9YcMOAzKC9WarSAmGv/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUit2lJ8vlAw7H1Q+mDiW4TjFEEy0wHwYDVR0j BBgwFoAUzEMFqgtoSN/Qdmz+e0LStEjhbtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTQ1YzllYi0zYmI2LTQyMDMtOGM4Ni1mMDhiNjRkYTNlYTkvMC9DQzQzMDVBQTBC Njg0OERGRDA3NjZDRkU3QjQyRDJCNDQ4RTE2RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0OEUx NkVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlNDVjOWViLTNiYjYtNDIwMy04 Yzg2LWYwOGI2NGRhM2VhOS8wLzMxMzAzMzJlMzIzNDMyMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/JoMA0GCSqG SIb3DQEBCwUAA4IBAQBqRgkNzt+KzD0sgBxdvxykakA3ykQSrQbDQe9nejujq8Cy Itk8UnXmUdP8wcvb4bKD4sPcv1lB5UumzEuZg1F2ucsHhn2M41PDm2fcGgIe125y n52pfh9qjpJrluqhuj4Oje11h88qq+VHX56m30DCxLpuv0Ol0PdsRP+tav6yALal 6f00NFtwwDCEdSI9vYek/CfWNmrdt7Mv3bADxzhBdM7DN+KKFnHsVuSP5o6tMko+ eoC2Qmlq7YJrwJPJgec4kZBqd+/xN7/x1W6WaNOCJHtmo6tZvSUYqi9DaZ6zwZk4 MZ43h3AB89CoO/uBtiZTxkpyNPiWGVQlsHJ/yFE+ -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:41 2025 by rpki-client