$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa File: 3130332e31312e3133342e302f32332d3234203d3e203538333932.roa (raw, json) Hash identifier: 94LnytYGAvUDKd9fbdJNB2oaz+VbJxQdkFyor1G2/5o= Subject key identifier: 9E:93:62:A6:91:42:B9:B8:E4:C1:FE:ED:CE:5E:B4:70:7E:64:B0:BE Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516 Certificate serial: 573BCDB328696EE52AC3FF46193C7BCE79B088C1 Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa Signing time: Mon 02 Jun 2025 02:03:12 +0000 ROA not before: Mon 02 Jun 2025 01:58:12 +0000 ROA not after: Mon 01 Jun 2026 02:03:12 +0000 asID: 58392 IP address blocks: 103.11.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3b:cd:b3:28:69:6e:e5:2a:c3:ff:46:19:3c:7b:ce:79:b0:88:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516 Validity Not Before: Jun 2 01:58:12 2025 GMT Not After : Jun 1 02:03:12 2026 GMT Subject: CN=9E9362A69142B9B8E4C1FEEDCE5EB4707E64B0BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1d:21:d6:37:be:19:58:11:ac:73:46:a7:19: 6c:76:98:d0:b0:46:f3:56:2a:40:22:ef:6b:c8:41: 4a:97:c4:a4:da:16:43:a8:20:c1:04:7e:c5:79:6f: c8:cb:9f:7b:f4:bf:59:d4:1e:b5:e3:11:ba:f2:ac: a1:cb:5e:2e:2c:f0:ca:34:4c:ce:5b:aa:fa:2d:4f: be:ae:c9:e6:31:79:cc:ec:0a:97:75:b5:33:c7:21: 74:6f:d3:e6:3a:63:9a:24:02:52:ed:ed:dc:3f:23: 6d:ef:a8:d4:1c:dd:14:aa:99:12:a3:d7:70:0e:28: 38:c8:91:60:60:e2:eb:51:4d:81:3e:6a:2a:2b:21: 3b:34:1b:6d:73:85:7a:66:95:45:d7:42:bf:6e:a0: 1c:9f:98:0e:7e:0d:3e:4f:3c:56:6b:60:2f:7c:4b: d9:81:8c:07:b3:54:89:74:7c:e7:1f:f7:cc:98:92: 61:48:b9:cc:2e:da:54:f0:e0:bb:bd:b6:c8:d8:9d: ab:5c:e1:5a:3f:d8:72:13:d1:e5:7c:0a:b9:72:d3: 84:66:64:8e:9d:dd:75:bb:f4:30:43:34:9a:89:12: e4:69:bb:48:36:28:ef:c6:e1:79:12:4b:72:d7:97: a0:8e:8e:34:31:de:92:39:d7:37:9c:09:c4:66:a7: 38:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:93:62:A6:91:42:B9:B8:E4:C1:FE:ED:CE:5E:B4:70:7E:64:B0:BE X509v3 Authority Key Identifier: keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.134.0/23 Signature Algorithm: sha256WithRSAEncryption 91:82:ee:1e:d0:52:b8:7b:d1:66:47:33:50:4d:bd:7e:1b:c2: 00:93:ac:b1:f2:73:f4:34:26:3d:60:55:35:92:9e:52:28:ca: 25:4e:e8:9b:8f:65:de:28:16:a7:a2:69:7d:90:7a:bc:e1:f2: 1a:24:87:e1:f9:a2:f6:93:0a:49:b1:ea:42:22:53:b8:14:de: 91:26:35:21:0f:f2:08:d7:09:a0:ca:3f:1d:10:86:3e:90:17: d3:3b:11:4f:bb:41:54:6a:10:15:18:09:0d:d8:3c:cf:11:a4: d8:28:16:87:41:40:9e:e2:a0:64:c2:4b:8a:1c:d9:1d:9d:8b: 5d:a2:9e:cc:1b:a3:22:47:b6:98:7e:cc:95:7d:f4:a8:f1:b4: b6:f3:f3:c3:2f:d5:10:e1:17:b9:f0:81:a0:5f:d5:e9:d7:88: fd:60:0e:da:b4:70:19:fa:29:a6:7a:52:23:e7:a4:45:0f:ee: 59:9c:f0:07:97:04:56:94:35:83:ce:b2:05:30:4f:c9:e2:5c: 49:44:ed:62:88:1f:32:3c:8b:a1:bb:c6:c5:f9:a5:1f:4c:8e: d5:aa:a4:c1:4a:6f:ca:0d:df:2d:72:fa:d2:b8:4e:02:3e:de: b3:1a:6c:13:0e:19:b4:ad:3e:92:da:d6:ec:1f:78:9b:18:7a: 66:3e:a9:77 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVzvNsyhpbuUqw/9GGTx7znmwiMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZF RDQ1MjUxNjAeFw0yNTA2MDIwMTU4MTJaFw0yNjA2MDEwMjAzMTJaMDMxMTAvBgNV BAMTKDlFOTM2MkE2OTE0MkI5QjhFNEMxRkVFRENFNUVCNDcwN0U2NEIwQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfHSHWN74ZWBGsc0anGWx2mNCw RvNWKkAi72vIQUqXxKTaFkOoIMEEfsV5b8jLn3v0v1nUHrXjEbryrKHLXi4s8Mo0 TM5bqvotT76uyeYxeczsCpd1tTPHIXRv0+Y6Y5okAlLt7dw/I23vqNQc3RSqmRKj 13AOKDjIkWBg4utRTYE+aiorITs0G21zhXpmlUXXQr9uoByfmA5+DT5PPFZrYC98 S9mBjAezVIl0fOcf98yYkmFIucwu2lTw4Lu9tsjYnatc4Vo/2HIT0eV8Crly04Rm ZI6d3XW79DBDNJqJEuRpu0g2KO/G4XkSS3LXl6COjjQx3pI51zecCcRmpzi1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnpNippFCubjkwf7tzl60cH5ksL4wHwYDVR0j BBgwFoAUr1BMTm44MfdW474HRpSD3+1FJRYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmZiNzc2Ny0zZGU5LTQ4MzMtYjRlNy1iMWI2MmVlM2NkOTkvMC9BRjUwNEM0RTZF MzgzMUY3NTZFM0JFMDc0Njk0ODNERkVENDUyNTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZFRDQ1 MjUxNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMxMzAzMzJlMzEzMTJlMzEzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcLhjANBgkqhkiG 9w0BAQsFAAOCAQEAkYLuHtBSuHvRZkczUE29fhvCAJOssfJz9DQmPWBVNZKeUijK JU7om49l3igWp6JpfZB6vOHyGiSH4fmi9pMKSbHqQiJTuBTekSY1IQ/yCNcJoMo/ HRCGPpAX0zsRT7tBVGoQFRgJDdg8zxGk2CgWh0FAnuKgZMJLihzZHZ2LXaKezBuj Ike2mH7MlX30qPG0tvPzwy/VEOEXufCBoF/V6deI/WAO2rRwGfoppnpSI+ekRQ/u WZzwB5cEVpQ1g86yBTBPyeJcSUTtYogfMjyLobvGxfmlH0yO1aqkwUpvyg3fLXL6 0rhOAj7esxpsEw4ZtK0+ktrW7B94mxh6Zj6pdw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:57 2025 by rpki-client