$ rpki-client -vvf repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa File: 3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa (raw, json) Hash identifier: H/9gUkMoKOxaM6bJMIhdfazqxPd02FQG7yEvZqg/6f4= Subject key identifier: 3A:06:91:69:15:D8:61:39:F8:CE:63:C6:CF:E0:B6:57:92:8F:6C:B3 Certificate issuer: /CN=D296B71263A794DB76A99329A0A6CD91F03F997C Certificate serial: 751AA92DE44FB37FB3A8F7189AE8E90B5599AEF2 Authority key identifier: D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa Signing time: Mon 02 Jun 2025 02:02:35 +0000 ROA not before: Mon 02 Jun 2025 01:57:35 +0000 ROA not after: Mon 01 Jun 2026 02:02:35 +0000 asID: 18351 IP address blocks: 103.231.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 01:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1a:a9:2d:e4:4f:b3:7f:b3:a8:f7:18:9a:e8:e9:0b:55:99:ae:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D296B71263A794DB76A99329A0A6CD91F03F997C Validity Not Before: Jun 2 01:57:35 2025 GMT Not After : Jun 1 02:02:35 2026 GMT Subject: CN=3A06916915D86139F8CE63C6CFE0B657928F6CB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:43:2e:51:f0:a9:05:d3:14:f2:6b:e8:18:8e: 11:0a:f9:9c:e5:2b:cd:02:e6:d5:13:72:2e:07:34: 17:2c:cb:0a:7c:93:1c:34:b0:18:1a:75:a0:2e:68: d2:5f:00:6d:9b:d0:84:5c:c8:82:3e:5d:0b:45:df: 4d:55:5b:43:35:23:ff:62:41:e4:a1:d7:7d:b7:b7: 70:2a:29:55:2e:e2:ef:40:17:f8:b5:4d:1c:ba:d1: 91:bf:11:fb:6b:bc:98:ad:87:7b:c3:d3:22:ee:b4: e0:fb:8f:33:17:43:e7:d0:62:d7:1b:da:1a:4f:35: f1:1f:3e:f0:96:53:05:50:65:36:6f:45:51:99:22: f3:4b:32:66:62:ab:fa:dc:0a:0c:81:2f:48:67:20: 5e:3f:2f:8b:29:f3:b1:58:42:dd:2a:28:be:f9:f3: b6:e1:b2:99:f8:0f:2a:88:3b:52:aa:4a:12:eb:87: 30:14:1c:ec:13:40:ad:20:8b:99:33:9f:0a:4e:35: 22:d2:57:48:6c:15:05:95:89:f0:2b:fa:ac:2a:d6: 82:96:d9:c5:fd:92:42:b0:3e:6c:8f:4b:88:52:9c: 33:78:26:b9:9a:37:16:63:4f:4b:ed:47:28:dc:5f: bf:b6:fe:58:b4:cf:7d:9b:49:18:2b:3c:84:2b:ed: 70:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:06:91:69:15:D8:61:39:F8:CE:63:C6:CF:E0:B6:57:92:8F:6C:B3 X509v3 Authority Key Identifier: keyid:D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.108.0/22 Signature Algorithm: sha256WithRSAEncryption 27:be:17:21:bd:21:5c:26:97:6d:e2:d8:d4:d3:05:a9:2a:78: 5e:7c:11:89:16:60:bf:4d:ec:b2:1b:4c:1b:5b:e0:15:9b:d2: c0:f9:f3:42:05:35:87:ab:f9:7e:7a:6b:28:a0:9e:ba:95:2a: 26:a7:fd:8b:14:90:82:85:25:81:1e:0f:5a:ae:49:d8:2e:9d: 33:ab:ed:97:62:74:9e:62:d2:72:f0:97:5a:0a:bc:97:72:96: dd:81:92:30:e0:d9:d5:b4:1f:16:d5:ac:a2:8c:71:20:27:b6: d1:93:6b:5f:f6:9e:64:58:15:d5:e7:2b:6e:38:3c:50:66:48: da:4b:a8:3b:04:48:56:20:80:55:ef:e2:63:30:ac:53:16:bd: 66:d4:0f:dc:75:3c:3e:0d:eb:80:5d:e0:5a:83:a9:72:f0:77: 72:61:c5:e3:e5:04:c9:20:b9:27:19:f2:50:6a:fc:4d:97:39: 3d:9c:40:c1:30:54:aa:bf:bc:ed:cb:8a:fd:03:c4:e0:46:08: a0:a9:f5:d6:7f:87:f2:df:4d:aa:64:b9:a9:08:6f:71:42:9c: e6:9d:4b:ee:f2:3b:f8:5e:13:4f:3c:d2:26:8e:44:41:38:28: 31:50:a4:38:c8:2f:ef:68:b7:e1:29:b4:04:c7:cd:9b:13:07: 2b:63:01:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdRqpLeRPs3+zqPcYmujpC1WZrvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFG MDNGOTk3QzAeFw0yNTA2MDIwMTU3MzVaFw0yNjA2MDEwMjAyMzVaMDMxMTAvBgNV BAMTKDNBMDY5MTY5MTVEODYxMzlGOENFNjNDNkNGRTBCNjU3OTI4RjZDQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWQy5R8KkF0xTya+gYjhEK+Zzl K80C5tUTci4HNBcsywp8kxw0sBgadaAuaNJfAG2b0IRcyII+XQtF301VW0M1I/9i QeSh1323t3AqKVUu4u9AF/i1TRy60ZG/EftrvJith3vD0yLutOD7jzMXQ+fQYtcb 2hpPNfEfPvCWUwVQZTZvRVGZIvNLMmZiq/rcCgyBL0hnIF4/L4sp87FYQt0qKL75 87bhspn4DyqIO1KqShLrhzAUHOwTQK0gi5kznwpONSLSV0hsFQWVifAr+qwq1oKW 2cX9kkKwPmyPS4hSnDN4JrmaNxZjT0vtRyjcX7+2/li0z32bSRgrPIQr7XBHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOgaRaRXYYTn4zmPGz+C2V5KPbLMwHwYDVR0j BBgwFoAU0pa3EmOnlNt2qZMpoKbNkfA/mXwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 M2Y3NWU5OC0xNGVmLTQ0NTctOTRmMy1lNWI3M2E5MjJmYzUvMC9EMjk2QjcxMjYz QTc5NERCNzZBOTkzMjlBMEE2Q0Q5MUYwM0Y5OTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFGMDNG OTk3Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzZjc1ZTk4LTE0ZWYtNDQ1Ny05 NGYzLWU1YjczYTkyMmZjNS8wLzMxMzAzMzJlMzIzMzMxMmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dsMA0GCSqG SIb3DQEBCwUAA4IBAQAnvhchvSFcJpdt4tjU0wWpKnhefBGJFmC/TeyyG0wbW+AV m9LA+fNCBTWHq/l+emsooJ66lSomp/2LFJCChSWBHg9arknYLp0zq+2XYnSeYtJy 8JdaCryXcpbdgZIw4NnVtB8W1ayijHEgJ7bRk2tf9p5kWBXV5ytuODxQZkjaS6g7 BEhWIIBV7+JjMKxTFr1m1A/cdTw+DeuAXeBag6ly8HdyYcXj5QTJILknGfJQavxN lzk9nEDBMFSqv7zty4r9A8TgRgigqfXWf4fy302qZLmpCG9xQpzmnUvu8jv4XhNP PNImjkRBOCgxUKQ4yC/vaLfhKbQEx82bEwcrYwHI -----END CERTIFICATE-----Generated at Sat Oct 25 10:51:36 2025 by rpki-client