$ rpki-client -vvf repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa File: 3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa (raw, json) Hash identifier: PVUcJRXcrGReJjyFsEOd8td3KR/jeVkGCBjn3FaVrZw= Subject key identifier: 48:4F:C1:16:DF:04:B2:DC:C5:9A:AC:FA:FB:A0:0C:E5:17:D2:2B:29 Certificate issuer: /CN=51122991EB0981E672637F95671E74F6E59AAC7B Certificate serial: 25B7214BA16020872B4D9554B401EF5E88C9C57B Authority key identifier: 51:12:29:91:EB:09:81:E6:72:63:7F:95:67:1E:74:F6:E5:9A:AC:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa Signing time: Mon 02 Jun 2025 01:03:15 +0000 ROA not before: Mon 02 Jun 2025 00:58:15 +0000 ROA not after: Mon 01 Jun 2026 01:03:15 +0000 asID: 133359 IP address blocks: 103.238.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.crl rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b7:21:4b:a1:60:20:87:2b:4d:95:54:b4:01:ef:5e:88:c9:c5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51122991EB0981E672637F95671E74F6E59AAC7B Validity Not Before: Jun 2 00:58:15 2025 GMT Not After : Jun 1 01:03:15 2026 GMT Subject: CN=484FC116DF04B2DCC59AACFAFBA00CE517D22B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0b:27:38:bb:33:71:57:01:59:a3:e9:ab:fd: 99:e1:c2:8f:88:40:0e:d1:1b:70:45:3d:3b:fe:38: e1:2d:58:4f:87:f1:ff:9d:5c:56:ef:af:4a:d4:68: e3:d1:19:63:ee:81:0c:50:d8:1a:e9:cc:5e:84:e8: 7d:34:07:0e:e0:47:0c:da:6a:6f:f9:51:2f:34:b9: 54:44:1c:dd:33:c5:9d:14:8c:44:2e:cf:1c:b9:b7: 61:65:5a:85:ba:c6:6e:80:ba:ca:e1:61:f9:60:8c: ed:6e:94:48:9a:91:e0:a1:3c:97:0c:37:ef:ef:4d: 3b:d7:0b:2b:f5:63:35:4b:36:6a:25:29:34:9d:da: 87:c8:32:9e:dc:f6:9f:c4:56:7c:8a:4e:64:61:85: 3e:aa:42:1e:c9:61:d0:fb:97:cb:f2:4a:13:f6:12: 79:6e:8c:46:6e:28:10:94:99:c4:fa:66:5e:65:bf: c5:9e:cc:dd:05:d8:b7:af:b7:67:cd:68:dd:ee:8b: f2:d4:05:e7:42:99:cd:ce:c7:f2:19:97:b0:c3:f1: aa:c1:22:4a:1c:e2:e3:fd:32:2d:cc:41:85:53:9b: 51:49:b5:14:06:c8:28:59:46:59:df:58:3c:75:38: a9:65:54:74:cb:c7:cd:fd:a1:3b:80:03:27:38:67: e3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4F:C1:16:DF:04:B2:DC:C5:9A:AC:FA:FB:A0:0C:E5:17:D2:2B:29 X509v3 Authority Key Identifier: keyid:51:12:29:91:EB:09:81:E6:72:63:7F:95:67:1E:74:F6:E5:9A:AC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/51122991EB0981E672637F95671E74F6E59AAC7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51122991EB0981E672637F95671E74F6E59AAC7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c219259-ed1a-4d18-bd92-94b60672e6a1/0/3130332e3233382e3133382e302f32332d3234203d3e20313333333539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.138.0/23 Signature Algorithm: sha256WithRSAEncryption 01:f0:96:83:55:95:d6:85:8f:f3:3a:f0:e6:2d:3c:51:75:16: d2:48:cc:72:c7:ed:a1:fb:58:77:50:ef:19:e0:9d:0f:08:b4: c5:a3:2f:ee:c1:6b:e2:64:b0:65:3b:ea:2b:5a:b1:b7:97:4f: aa:d4:4c:d7:85:f1:76:e7:40:f7:ca:79:2b:cc:d4:80:14:23: 65:87:5c:ba:08:22:86:16:31:f4:89:df:2b:0f:d3:e3:e9:9f: 19:3a:42:f7:b3:c6:66:5f:02:88:02:ad:02:ca:45:31:d5:f6: 62:25:0f:07:31:1b:be:64:a8:fd:09:fa:e8:f0:6c:18:53:c8: 91:67:cd:42:53:d5:a0:08:70:79:d2:66:ae:57:d3:71:b0:79: 21:d3:ff:eb:b4:99:fa:34:6e:b5:dd:20:4a:85:a0:60:d9:67: 32:6d:8b:1f:43:52:22:29:64:85:19:12:5b:54:d3:e5:3a:71: 4c:53:87:42:1c:5f:a0:38:a5:8d:47:bc:ac:b9:f5:89:e6:a5: 65:58:12:45:3c:8d:6d:c9:39:f9:f4:58:22:6f:4d:7f:90:97: 0c:25:0b:77:26:bf:4a:32:5f:0a:a5:b5:2b:ec:62:b8:d5:df: 14:6b:3c:18:b5:d0:98:87:e7:60:64:5f:50:a4:82:02:26:c1: c5:f9:a0:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJbchS6FgIIcrTZVUtAHvXojJxXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMjI5OTFFQjA5ODFFNjcyNjM3Rjk1NjcxRTc0RjZF NTlBQUM3QjAeFw0yNTA2MDIwMDU4MTVaFw0yNjA2MDEwMTAzMTVaMDMxMTAvBgNV BAMTKDQ4NEZDMTE2REYwNEIyRENDNTlBQUNGQUZCQTAwQ0U1MTdEMjJCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhCyc4uzNxVwFZo+mr/Znhwo+I QA7RG3BFPTv+OOEtWE+H8f+dXFbvr0rUaOPRGWPugQxQ2BrpzF6E6H00Bw7gRwza am/5US80uVREHN0zxZ0UjEQuzxy5t2FlWoW6xm6AusrhYflgjO1ulEiakeChPJcM N+/vTTvXCyv1YzVLNmolKTSd2ofIMp7c9p/EVnyKTmRhhT6qQh7JYdD7l8vyShP2 EnlujEZuKBCUmcT6Zl5lv8WezN0F2Levt2fNaN3ui/LUBedCmc3Ox/IZl7DD8arB Ikoc4uP9Mi3MQYVTm1FJtRQGyChZRlnfWDx1OKllVHTLx839oTuAAyc4Z+OxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSE/BFt8EstzFmqz6+6AM5RfSKykwHwYDVR0j BBgwFoAUURIpkesJgeZyY3+VZx509uWarHswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzIxOTI1OS1lZDFhLTRkMTgtYmQ5Mi05NGI2MDY3MmU2YTEvMC81MTEyMjk5MUVC MDk4MUU2NzI2MzdGOTU2NzFFNzRGNkU1OUFBQzdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTExMjI5OTFFQjA5ODFFNjcyNjM3Rjk1NjcxRTc0RjZFNTlB QUM3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjE5MjU5LWVkMWEtNGQxOC1i ZDkyLTk0YjYwNjcyZTZhMS8wLzMxMzAzMzJlMzIzMzM4MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn7oowDQYJ KoZIhvcNAQELBQADggEBAAHwloNVldaFj/M68OYtPFF1FtJIzHLH7aH7WHdQ7xng nQ8ItMWjL+7Ba+JksGU76itasbeXT6rUTNeF8XbnQPfKeSvM1IAUI2WHXLoIIoYW MfSJ3ysP0+Ppnxk6QvezxmZfAogCrQLKRTHV9mIlDwcxG75kqP0J+ujwbBhTyJFn zUJT1aAIcHnSZq5X03GweSHT/+u0mfo0brXdIEqFoGDZZzJtix9DUiIpZIUZEltU 0+U6cUxTh0IcX6A4pY1HvKy59YnmpWVYEkU8jW3JOfn0WCJvTX+QlwwlC3cmv0oy XwqltSvsYrjV3xRrPBi10JiH52BkX1CkggImwcX5oDk= -----END CERTIFICATE-----Generated at Mon Jun 9 04:44:23 2025 by rpki-client