$ rpki-client -vvf repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138312e302f32342d3234203d3e20313332363432.roa File: 3130332e31392e3138312e302f32342d3234203d3e20313332363432.roa (raw, json) Hash identifier: oFvKKDxpW/0C/Q3mkSaRj7w7VX6MBfKr//38ErGs2CE= Subject key identifier: AE:D2:6D:57:4E:5A:D7:55:37:5D:3D:16:B7:58:BB:0A:0F:9F:C5:0C Certificate issuer: /CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Certificate serial: 35A0C403AEB95543151B05280B74E7578D81A38C Authority key identifier: 81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138312e302f32342d3234203d3e20313332363432.roa Signing time: Mon 02 Jun 2025 01:02:27 +0000 ROA not before: Mon 02 Jun 2025 00:57:27 +0000 ROA not after: Mon 01 Jun 2026 01:02:27 +0000 asID: 132642 IP address blocks: 103.19.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a0:c4:03:ae:b9:55:43:15:1b:05:28:0b:74:e7:57:8d:81:a3:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Validity Not Before: Jun 2 00:57:27 2025 GMT Not After : Jun 1 01:02:27 2026 GMT Subject: CN=AED26D574E5AD755375D3D16B758BB0A0F9FC50C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9a:53:f2:c8:fd:82:af:ff:0f:6a:37:17:1e: b6:71:20:15:e6:a8:50:78:4f:80:fa:27:1c:52:c9: e7:7e:22:b9:16:ae:32:d3:d9:b9:27:30:8b:1f:16: bb:dc:76:45:b6:ab:02:66:c4:0b:23:b9:16:6d:1d: 53:c5:aa:0b:0c:3b:10:bc:07:2e:ab:ee:73:15:04: 02:b9:5b:7f:1b:cf:07:81:d2:c5:ab:9f:3c:0c:46: 01:fc:a9:19:ae:72:8a:52:10:99:cc:f6:86:6e:4e: a6:a9:4f:55:33:cb:9d:a3:47:51:97:fa:ba:3c:b5: ef:ab:91:d8:fe:20:97:e7:5d:25:fa:31:33:1f:28: 80:8a:42:1b:32:9d:e1:70:c0:c4:30:6e:06:27:dd: 2a:5a:cf:85:41:da:41:4a:81:d2:f2:9f:0a:3c:72: 42:ab:99:d3:f8:d7:f4:64:f6:5f:ef:de:1a:ba:0b: 23:9e:4d:b0:5d:dc:df:27:16:9e:e0:bc:75:f0:08: 4c:a1:e7:43:2b:40:3e:06:ce:3a:22:b8:3f:8d:9f: ef:cd:d6:09:89:05:d5:59:5f:14:c6:0a:fe:32:99: 21:31:35:54:80:47:42:77:07:63:c8:53:8a:11:f7: 7e:88:c6:b8:20:13:6b:80:61:97:53:cc:af:55:5f: 78:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D2:6D:57:4E:5A:D7:55:37:5D:3D:16:B7:58:BB:0A:0F:9F:C5:0C X509v3 Authority Key Identifier: keyid:81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138312e302f32342d3234203d3e20313332363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.181.0/24 Signature Algorithm: sha256WithRSAEncryption 51:5e:54:56:0c:93:ba:d4:c6:ac:df:f8:4a:50:52:12:a6:b2: 5c:b2:2a:ef:75:56:a1:68:aa:95:ca:01:d8:88:40:ea:82:6c: fb:b0:45:7b:aa:65:c9:a6:eb:24:82:60:01:81:84:f7:36:48: 9c:2a:97:5d:0b:62:e4:cc:cb:cf:e7:04:b6:b6:86:75:96:c7: 16:06:a8:08:2e:ee:85:49:30:1f:d9:35:3d:a3:e8:ae:24:e8: f5:fc:11:75:08:04:3e:dd:22:0e:9e:4a:89:ff:7e:1b:04:49: 91:e9:1b:7a:48:43:d3:e5:9d:fe:a0:89:fd:cd:22:e1:d4:78: fe:a1:05:ef:25:00:e6:b3:2d:2b:a2:0a:a4:31:8f:96:fd:05: 8d:57:c9:7b:7b:6a:ae:ef:4e:82:ae:c8:6d:7f:c0:41:31:c6: 94:ed:8b:cb:2a:aa:1f:3b:b8:d6:ca:1c:75:a8:e6:10:77:3b: 8d:a7:01:44:ed:aa:ba:48:cf:c7:95:d4:7f:24:43:83:f4:04: f3:6f:63:61:b3:55:5f:e0:8f:bd:5e:cc:be:fe:f2:4b:8b:07: e0:63:cd:d1:c2:16:0a:05:36:b6:08:68:be:ec:24:42:42:62: 65:56:0b:66:5a:ca:02:37:19:fc:90:0f:82:a5:9b:dc:1e:67: 01:7b:4c:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNaDEA665VUMVGwUoC3TnV42Bo4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0 MzdDQThFOTAeFw0yNTA2MDIwMDU3MjdaFw0yNjA2MDEwMTAyMjdaMDMxMTAvBgNV BAMTKEFFRDI2RDU3NEU1QUQ3NTUzNzVEM0QxNkI3NThCQjBBMEY5RkM1MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4mlPyyP2Cr/8PajcXHrZxIBXm qFB4T4D6JxxSyed+IrkWrjLT2bknMIsfFrvcdkW2qwJmxAsjuRZtHVPFqgsMOxC8 By6r7nMVBAK5W38bzweB0sWrnzwMRgH8qRmucopSEJnM9oZuTqapT1Uzy52jR1GX +ro8te+rkdj+IJfnXSX6MTMfKICKQhsyneFwwMQwbgYn3Spaz4VB2kFKgdLynwo8 ckKrmdP41/Rk9l/v3hq6CyOeTbBd3N8nFp7gvHXwCEyh50MrQD4GzjoiuD+Nn+/N 1gmJBdVZXxTGCv4ymSExNVSAR0J3B2PIU4oR936IxrggE2uAYZdTzK9VX3jFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrtJtV05a11U3XT0Wt1i7Cg+fxQwwHwYDVR0j BBgwFoAUgYgjtQ+NY+nZU8S3UvBNsEN8qOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGM3NzNjOC1mYjU2LTQ0OWYtODY0OS0xMTJkNmUxNjg2YjMvMC84MTg4MjNCNTBG OEQ2M0U5RDk1M0M0Qjc1MkYwNERCMDQzN0NBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0MzdD QThFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwYzc3M2M4LWZiNTYtNDQ5Zi04 NjQ5LTExMmQ2ZTE2ODZiMy8wLzMxMzAzMzJlMzEzOTJlMzEzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxO1MA0GCSqG SIb3DQEBCwUAA4IBAQBRXlRWDJO61Mas3/hKUFISprJcsirvdVahaKqVygHYiEDq gmz7sEV7qmXJpuskgmABgYT3NkicKpddC2LkzMvP5wS2toZ1lscWBqgILu6FSTAf 2TU9o+iuJOj1/BF1CAQ+3SIOnkqJ/34bBEmR6Rt6SEPT5Z3+oIn9zSLh1Hj+oQXv JQDmsy0rogqkMY+W/QWNV8l7e2qu706Crshtf8BBMcaU7YvLKqofO7jWyhx1qOYQ dzuNpwFE7aq6SM/HldR/JEOD9ATzb2Nhs1Vf4I+9Xsy+/vJLiwfgY83RwhYKBTa2 CGi+7CRCQmJlVgtmWsoCNxn8kA+CpZvcHmcBe0xF -----END CERTIFICATE-----Generated at Sat Jun 7 09:37:02 2025 by rpki-client