$ rpki-client -vvf repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/3130332e3233332e3130302e302f32342d3234203d3e20313333333537.roa File: 3130332e3233332e3130302e302f32342d3234203d3e20313333333537.roa (raw, json) Hash identifier: Sp1gcRSl9gkUunIoA7wttKs/P7PqHdCHTdTVU9qZ8Lk= Subject key identifier: 5E:FD:49:FC:A0:4C:2E:E0:88:DC:69:C1:EC:9B:7F:72:E1:4B:60:48 Certificate issuer: /CN=6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640 Certificate serial: 301F40FF89B57792008C33DD93B2D3CCFBD5D652 Authority key identifier: 6D:DA:5C:1E:72:FD:CA:12:9B:06:9E:D9:C4:4B:8A:AE:08:BA:E6:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.cer Subject info access: rsync://repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/3130332e3233332e3130302e302f32342d3234203d3e20313333333537.roa Signing time: Mon 02 Jun 2025 02:02:59 +0000 ROA not before: Mon 02 Jun 2025 01:57:59 +0000 ROA not after: Mon 01 Jun 2026 02:02:59 +0000 asID: 133357 IP address blocks: 103.233.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.crl rsync://repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:1f:40:ff:89:b5:77:92:00:8c:33:dd:93:b2:d3:cc:fb:d5:d6:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640 Validity Not Before: Jun 2 01:57:59 2025 GMT Not After : Jun 1 02:02:59 2026 GMT Subject: CN=5EFD49FCA04C2EE088DC69C1EC9B7F72E14B6048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0b:8e:4b:c5:da:c5:2e:bc:ab:d9:9e:7d:a2: 9c:8d:57:73:96:0a:71:f5:04:e0:3a:b3:68:63:b7: 3e:c3:01:6f:84:cf:85:5f:98:fd:4b:ba:44:3d:45: 3a:37:34:0a:57:6f:5c:62:0a:98:31:ad:4c:cd:02: df:f0:f2:05:b6:ca:b9:6e:0d:e7:b4:ba:3c:59:31: 10:ff:9d:f9:c0:c8:09:82:c8:de:4b:49:71:f4:80: 57:6d:d4:7f:8b:fe:84:c0:a9:df:31:bc:38:eb:7c: 4a:4e:57:0e:8e:fa:99:47:93:ff:94:08:08:40:66: ce:c3:22:7b:33:5e:b8:68:e2:9d:7f:b5:8b:ac:4d: 96:9b:83:87:02:2f:2e:07:05:1b:4a:7a:29:fe:c8: eb:92:4b:f8:b3:79:e9:cc:05:19:10:6a:ff:47:52: 21:eb:c9:5c:22:74:31:e3:cb:60:0d:75:20:20:e7: 00:d2:1b:b5:ff:c6:85:16:b3:9d:a7:b6:f7:c3:76: 39:c4:25:f7:b8:4f:d0:97:6d:a4:21:22:40:17:8a: c1:aa:5e:7c:7e:ec:a9:f0:a0:be:91:a7:bd:f8:e5: 2f:0c:72:c5:32:ca:f3:dd:69:df:5a:7a:c0:d1:9c: 9f:9a:92:9d:df:d9:69:96:60:2e:65:b8:90:35:b5: 90:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FD:49:FC:A0:4C:2E:E0:88:DC:69:C1:EC:9B:7F:72:E1:4B:60:48 X509v3 Authority Key Identifier: keyid:6D:DA:5C:1E:72:FD:CA:12:9B:06:9E:D9:C4:4B:8A:AE:08:BA:E6:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DDA5C1E72FDCA129B069ED9C44B8AAE08BAE640.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/517c8c01-4af7-41b0-85a3-9d1fa4eb9fba/0/3130332e3233332e3130302e302f32342d3234203d3e20313333333537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.100.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f0:08:3a:9e:5f:f5:4d:7d:60:e6:0a:2f:7a:06:bb:7d:3d: b5:99:4b:96:ea:31:a4:ad:0c:b4:98:12:21:f7:51:12:f4:85: f3:0b:5f:b7:0d:b2:14:b6:26:83:ee:c0:2d:e7:22:60:5f:e2: 95:40:bc:b7:de:ca:ee:fb:51:17:91:88:28:06:e2:76:98:20: b1:fe:0b:6c:9f:5d:b5:8c:f5:e2:38:a5:0f:0b:99:be:f6:ff: 6b:a8:6b:ed:e2:b1:e4:66:ff:ef:53:69:19:1c:3e:8b:bd:94: 2e:c6:4d:55:9f:4e:93:f1:7c:ad:51:3a:8e:0e:c3:98:fe:2a: 07:ac:66:14:a0:c9:cc:5c:2f:36:b2:ea:90:10:3a:01:77:50: c1:7f:7c:89:39:6e:ea:dd:a4:dd:fa:8e:6e:8a:37:02:3d:5d: ad:86:ad:ad:c7:f8:d2:ff:55:4e:ca:b0:8c:92:e6:4b:5f:4a: 99:d8:6e:aa:ac:16:30:13:c4:12:ab:4a:2a:a0:cf:5a:e9:02: a2:c3:38:26:a7:af:f8:33:58:46:2c:82:25:58:80:86:6c:68: be:5a:e9:f9:11:14:04:a4:3e:77:f5:ec:34:4e:1e:1c:e5:48: 06:36:c1:71:67:78:26:96:45:81:46:ac:aa:7b:48:bf:23:3d: 3d:72:7d:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMB9A/4m1d5IAjDPdk7LTzPvV1lIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkREQTVDMUU3MkZEQ0ExMjlCMDY5RUQ5QzQ0QjhBQUUw OEJBRTY0MDAeFw0yNTA2MDIwMTU3NTlaFw0yNjA2MDEwMjAyNTlaMDMxMTAvBgNV BAMTKDVFRkQ0OUZDQTA0QzJFRTA4OERDNjlDMUVDOUI3RjcyRTE0QjYwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfC45LxdrFLryr2Z59opyNV3OW CnH1BOA6s2hjtz7DAW+Ez4VfmP1LukQ9RTo3NApXb1xiCpgxrUzNAt/w8gW2yrlu Dee0ujxZMRD/nfnAyAmCyN5LSXH0gFdt1H+L/oTAqd8xvDjrfEpOVw6O+plHk/+U CAhAZs7DInszXrho4p1/tYusTZabg4cCLy4HBRtKein+yOuSS/izeenMBRkQav9H UiHryVwidDHjy2ANdSAg5wDSG7X/xoUWs52ntvfDdjnEJfe4T9CXbaQhIkAXisGq Xnx+7KnwoL6Rp7345S8McsUyyvPdad9aesDRnJ+akp3f2WmWYC5luJA1tZCvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXv1J/KBMLuCI3GnB7Jt/cuFLYEgwHwYDVR0j BBgwFoAUbdpcHnL9yhKbBp7ZxEuKrgi65kAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTdjOGMwMS00YWY3LTQxYjAtODVhMy05ZDFmYTRlYjlmYmEvMC82RERBNUMxRTcy RkRDQTEyOUIwNjlFRDlDNDRCOEFBRTA4QkFFNjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkREQTVDMUU3MkZEQ0ExMjlCMDY5RUQ5QzQ0QjhBQUUwOEJB RTY0MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxN2M4YzAxLTRhZjctNDFiMC04 NWEzLTlkMWZhNGViOWZiYS8wLzMxMzAzMzJlMzIzMzMzMmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn6WQwDQYJ KoZIhvcNAQELBQADggEBAIDwCDqeX/VNfWDmCi96Brt9PbWZS5bqMaStDLSYEiH3 URL0hfMLX7cNshS2JoPuwC3nImBf4pVAvLfeyu77UReRiCgG4naYILH+C2yfXbWM 9eI4pQ8Lmb72/2uoa+3iseRm/+9TaRkcPou9lC7GTVWfTpPxfK1ROo4Ow5j+Kges ZhSgycxcLzay6pAQOgF3UMF/fIk5burdpN36jm6KNwI9Xa2Gra3H+NL/VU7KsIyS 5ktfSpnYbqqsFjATxBKrSiqgz1rpAqLDOCanr/gzWEYsgiVYgIZsaL5a6fkRFASk Pnf17DROHhzlSAY2wXFneCaWRYFGrKp7SL8jPT1yfTk= -----END CERTIFICATE-----Generated at Sat Jun 7 15:29:14 2025 by rpki-client