$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa File: 3130332e31302e3132302e302f32322d3232203d3e203536323436.roa (raw, json) Hash identifier: NtbFO+hPaWeqMOpWosbF0L/a5CPSHj1EKb7NteyTfWc= Subject key identifier: C2:25:B5:3F:20:CE:DE:0D:7C:F2:F0:07:47:D7:95:B2:79:20:BC:B2 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0AC39BACD53A76DB00F00F891114849030A576D6 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:08 +0000 ROA not before: Mon 02 Jun 2025 00:58:08 +0000 ROA not after: Mon 01 Jun 2026 01:03:08 +0000 asID: 56246 IP address blocks: 103.10.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c3:9b:ac:d5:3a:76:db:00:f0:0f:89:11:14:84:90:30:a5:76:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:08 2025 GMT Not After : Jun 1 01:03:08 2026 GMT Subject: CN=C225B53F20CEDE0D7CF2F00747D795B27920BCB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a6:10:4e:bb:1d:76:f4:2d:42:48:d2:a8:30: de:6a:24:57:4b:e3:31:0b:b3:8e:e5:24:f3:9c:0a: bf:18:2b:b8:f5:cd:a9:7a:af:c8:9a:c9:40:f8:b0: 3b:65:b6:2e:52:a5:b1:5b:0a:1d:0a:f1:ce:81:f7: 26:7d:85:c9:fe:24:93:10:e7:30:1c:83:d8:7e:e5: 51:ac:8c:7d:bd:da:0d:82:f3:05:33:9c:d2:fc:29: 33:f8:6a:54:d9:4a:7a:fd:e5:84:c7:ef:a1:c6:2d: 96:6e:21:d6:3f:4a:13:b8:8a:99:52:c6:19:50:66: fc:93:a9:18:d8:93:20:29:93:3c:3e:60:dc:3e:16: 9c:67:84:ef:b1:28:0c:92:6d:92:05:d2:b6:7e:fa: d6:71:c7:99:a4:45:b2:2a:b7:83:e1:2f:7a:26:7c: c3:c7:8e:29:d2:d5:1f:d4:ba:27:2f:1a:a4:40:b0: 8a:52:c8:32:72:81:ac:7e:62:eb:c9:40:25:68:e8: 7d:3a:67:f5:3f:40:7d:e8:29:72:b1:09:57:9d:0e: db:c9:fa:b6:9b:f2:78:93:6f:dd:a6:d5:f6:2f:aa: 01:2c:69:1a:f9:25:6d:0b:86:86:18:3e:b0:4d:be: 80:d6:bf:4f:34:9a:8a:d0:5f:8e:82:00:23:15:15: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:25:B5:3F:20:CE:DE:0D:7C:F2:F0:07:47:D7:95:B2:79:20:BC:B2 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.120.0/22 Signature Algorithm: sha256WithRSAEncryption 10:0c:5b:2e:e4:ab:0b:ae:74:8d:0b:92:2d:36:fe:7d:72:01: 18:d4:44:aa:69:f5:71:e4:cb:7f:45:71:0d:e3:1e:75:0d:96: a5:c0:c9:f4:6f:e6:47:f2:e2:37:69:1d:f1:4d:7e:d9:96:88: 83:f7:17:b4:ce:34:00:83:6d:47:9b:09:a8:60:17:a8:31:8e: 90:a2:e5:22:98:fb:fc:1a:9b:cd:3d:d5:04:2c:da:6b:9c:e6: 5f:52:04:ed:84:4f:f7:a4:62:10:1d:71:e2:29:32:49:70:1f: 13:57:72:34:92:eb:59:19:c7:d5:a4:c9:c9:50:ef:1e:10:28: c1:bc:5a:74:57:4c:27:c1:d8:9c:d5:99:27:1a:24:b5:e4:18: b6:28:63:02:37:0f:8c:16:e3:54:a0:c2:c5:13:d3:94:fd:61: e6:80:0d:8f:dc:19:68:5e:7c:f3:ef:61:a8:ba:53:08:eb:67: 9d:31:db:62:4c:50:a4:3c:da:ef:a1:2c:b7:2c:49:b4:11:f5: 7b:1f:7c:11:0e:54:bc:41:75:e9:74:db:12:21:8b:89:1b:e7: 7f:07:7d:1f:51:96:dc:86:77:d4:6f:53:e6:d2:f0:57:2f:f1: f2:14:43:11:05:61:8b:50:36:bd:01:51:33:a0:4d:a4:fc:ef: 2f:10:bb:ae -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCsObrNU6dtsA8A+JERSEkDCldtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDhaFw0yNjA2MDEwMTAzMDhaMDMxMTAvBgNV BAMTKEMyMjVCNTNGMjBDRURFMEQ3Q0YyRjAwNzQ3RDc5NUIyNzkyMEJDQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnphBOux129C1CSNKoMN5qJFdL 4zELs47lJPOcCr8YK7j1zal6r8iayUD4sDtlti5SpbFbCh0K8c6B9yZ9hcn+JJMQ 5zAcg9h+5VGsjH292g2C8wUznNL8KTP4alTZSnr95YTH76HGLZZuIdY/ShO4iplS xhlQZvyTqRjYkyApkzw+YNw+FpxnhO+xKAySbZIF0rZ++tZxx5mkRbIqt4PhL3om fMPHjinS1R/UuicvGqRAsIpSyDJygax+YuvJQCVo6H06Z/U/QH3oKXKxCVedDtvJ +rab8niTb92m1fYvqgEsaRr5JW0LhoYYPrBNvoDWv080morQX46CACMVFVoXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwiW1PyDO3g188vAHR9eVsnkgvLIwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcKeDANBgkqhkiG 9w0BAQsFAAOCAQEAEAxbLuSrC650jQuSLTb+fXIBGNREqmn1ceTLf0VxDeMedQ2W pcDJ9G/mR/LiN2kd8U1+2ZaIg/cXtM40AINtR5sJqGAXqDGOkKLlIpj7/BqbzT3V BCzaa5zmX1IE7YRP96RiEB1x4ikySXAfE1dyNJLrWRnH1aTJyVDvHhAowbxadFdM J8HYnNWZJxokteQYtihjAjcPjBbjVKDCxRPTlP1h5oANj9wZaF588+9hqLpTCOtn nTHbYkxQpDza76EstyxJtBH1ex98EQ5UvEF16XTbEiGLiRvnfwd9H1GW3IZ31G9T 5tLwVy/x8hRDEQVhi1A2vQFRM6BNpPzvLxC7rg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:40:32 2025 by rpki-client