$ rpki-client -vvf repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa File: 3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: Lfmrbgi7I4VUpzGw3wvKThYLzEQmB11Zng6ABNZdlxE= Subject key identifier: 4A:63:92:40:CA:94:FF:52:02:E4:64:E7:08:AC:59:7D:9B:D2:1B:9B Certificate issuer: /CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Certificate serial: 768A0705D918CE83FDFAB1D34246901830C988CD Authority key identifier: A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 01:03:12 +0000 ROA not before: Mon 02 Jun 2025 00:58:12 +0000 ROA not after: Mon 01 Jun 2026 01:03:12 +0000 asID: 131745 IP address blocks: 103.30.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:8a:07:05:d9:18:ce:83:fd:fa:b1:d3:42:46:90:18:30:c9:88:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Validity Not Before: Jun 2 00:58:12 2025 GMT Not After : Jun 1 01:03:12 2026 GMT Subject: CN=4A639240CA94FF5202E464E708AC597D9BD21B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:5c:4a:d2:9b:f0:f5:6f:74:10:cf:28:0d: eb:3e:54:22:46:29:24:4b:28:35:f0:79:7e:c1:94: cc:66:45:f7:b6:d1:a4:52:04:ee:e2:c3:5b:7b:1b: 04:9d:5a:ce:38:4b:27:2d:5d:c4:36:1b:53:21:d7: d8:83:54:76:f8:b7:a7:8c:e7:10:a0:70:1f:cc:10: 0e:50:76:63:5d:23:1a:28:b4:85:08:96:e5:2f:0b: 55:61:3c:e9:3d:6f:0c:c7:89:0d:a4:64:7f:d6:9d: 50:99:29:1b:22:be:8a:e4:f0:63:ad:45:e1:b7:68: d3:55:f0:8f:b5:3a:7f:a6:85:1d:36:3f:ca:7c:f4: e3:8a:2e:8e:ea:91:79:b4:fe:ba:c7:c2:0b:f2:fa: 33:87:57:0e:f6:c4:b7:14:d6:45:08:72:13:ce:db: 52:e0:20:8f:5e:31:2d:50:06:6d:b2:1b:15:d8:e8: b5:05:cc:41:bd:96:dd:23:18:a0:61:05:3a:1d:00: 1d:3c:a4:51:29:e0:c6:a5:77:76:76:af:16:4a:c0: 98:b0:5d:43:f8:db:e1:7b:0e:e3:8b:41:78:b0:bf: 9f:84:94:8f:14:7b:9b:eb:fa:0b:39:37:5f:4f:01: db:74:4b:0a:13:f9:ec:d2:50:21:6c:fe:f2:7d:08: bf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:63:92:40:CA:94:FF:52:02:E4:64:E7:08:AC:59:7D:9B:D2:1B:9B X509v3 Authority Key Identifier: keyid:A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.244.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:15:25:f5:6f:5f:4b:45:54:85:bc:78:ff:3b:8b:f2:bf:c7: 5b:35:f7:ff:ff:d7:b5:21:35:d7:79:2f:25:43:32:6c:3a:8a: 45:55:b2:60:b3:53:f2:ef:1e:b1:68:90:a1:bb:f5:86:fb:2e: ad:88:5c:22:41:52:07:cf:d9:0f:65:62:5d:d4:34:3f:07:33: 4a:b0:5a:f2:44:d9:b8:de:48:35:a1:4f:56:36:dd:49:c2:ca: 6a:77:c6:a3:75:5c:82:b6:66:17:1a:0b:03:57:a2:15:7b:5a: e2:49:36:bf:90:bc:7a:c5:7b:b8:fe:c5:d0:3a:f4:d6:1f:c0: bc:40:ab:b1:e9:10:28:45:56:87:c7:76:22:74:51:6e:bd:49: 61:97:b3:84:e8:80:13:c4:a4:6f:37:9c:a8:c2:2d:b9:bf:7b: 21:5e:de:6a:b0:d8:ca:45:96:bc:b4:b1:6c:eb:e2:e1:8e:8b: 6c:3e:d0:95:04:8a:9d:dc:5d:0f:7b:52:0a:1f:5f:b9:f1:6d: 02:80:28:db:85:f5:2e:b2:f4:29:fd:fa:7b:6e:70:f9:a8:81: 9d:65:c2:b4:ac:e8:62:31:71:e1:a2:d9:fc:b7:ba:ef:82:82: 20:71:66:d5:38:88:0a:fc:9c:8e:d5:bc:2b:9a:db:f0:ea:46: dc:e8:2d:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdooHBdkYzoP9+rHTQkaQGDDJiM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1 QjBCRUI0QTAeFw0yNTA2MDIwMDU4MTJaFw0yNjA2MDEwMTAzMTJaMDMxMTAvBgNV BAMTKDRBNjM5MjQwQ0E5NEZGNTIwMkU0NjRFNzA4QUM1OTdEOUJEMjFCOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXFxK0pvw9W90EM8oDes+VCJG KSRLKDXweX7BlMxmRfe20aRSBO7iw1t7GwSdWs44SyctXcQ2G1Mh19iDVHb4t6eM 5xCgcB/MEA5QdmNdIxootIUIluUvC1VhPOk9bwzHiQ2kZH/WnVCZKRsivork8GOt ReG3aNNV8I+1On+mhR02P8p89OOKLo7qkXm0/rrHwgvy+jOHVw72xLcU1kUIchPO 21LgII9eMS1QBm2yGxXY6LUFzEG9lt0jGKBhBTodAB08pFEp4Mald3Z2rxZKwJiw XUP42+F7DuOLQXiwv5+ElI8Ue5vr+gs5N19PAdt0SwoT+ezSUCFs/vJ9CL87AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSmOSQMqU/1IC5GTnCKxZfZvSG5swHwYDVR0j BBgwFoAUpm5veHt94uov8cGfMN/iIVsL60owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzhjNjIxZC0wNWJjLTRiY2QtOTY1Ny1jZGYzMzg2MGYyMWEvMC9BNjZFNkY3ODdC N0RFMkVBMkZGMUMxOUYzMERGRTIyMTVCMEJFQjRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1QjBC RUI0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMxMzAzMzJlMzMzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx70MA0GCSqG SIb3DQEBCwUAA4IBAQBMFSX1b19LRVSFvHj/O4vyv8dbNff//9e1ITXXeS8lQzJs OopFVbJgs1Py7x6xaJChu/WG+y6tiFwiQVIHz9kPZWJd1DQ/BzNKsFryRNm43kg1 oU9WNt1Jwspqd8ajdVyCtmYXGgsDV6IVe1riSTa/kLx6xXu4/sXQOvTWH8C8QKux 6RAoRVaHx3YidFFuvUlhl7OE6IATxKRvN5yowi25v3shXt5qsNjKRZa8tLFs6+Lh jotsPtCVBIqd3F0Pe1IKH1+58W0CgCjbhfUusvQp/fp7bnD5qIGdZcK0rOhiMXHh otn8t7rvgoIgcWbVOIgK/JyO1bwrmtvw6kbc6C2n -----END CERTIFICATE-----Generated at Sat Jun 7 12:22:47 2025 by rpki-client