$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132322e302f32342d3234203d3e203536323436.roa File: 3130332e31302e3132322e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: GvHE+FfApbuRCyO/CK6qTKi4zard5Q6TG73sC/S7US8= Subject key identifier: DE:99:B7:59:23:63:4F:1F:3D:9E:0C:77:72:86:D1:AF:9F:93:9F:65 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 415274CBD15FAE0B1D002B82754CA6C2573DCEBA Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132322e302f32342d3234203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:08 +0000 ROA not before: Mon 02 Jun 2025 00:58:08 +0000 ROA not after: Mon 01 Jun 2026 01:03:08 +0000 asID: 56246 IP address blocks: 103.10.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:52:74:cb:d1:5f:ae:0b:1d:00:2b:82:75:4c:a6:c2:57:3d:ce:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:08 2025 GMT Not After : Jun 1 01:03:08 2026 GMT Subject: CN=DE99B75923634F1F3D9E0C777286D1AF9F939F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ac:e6:66:a6:97:13:e6:d3:e6:7b:2a:3e:26: 6f:1f:5c:11:22:dc:8b:3e:89:5b:ca:f4:a0:f7:22: d1:a2:03:35:48:50:32:db:b5:85:c5:dc:9b:5c:3a: 86:07:d8:8e:a5:18:6b:34:a9:63:cb:f1:31:49:21: f9:22:cc:5a:b4:4d:72:05:45:8c:e6:15:68:c0:03: 32:4a:ae:c9:01:79:4e:42:a3:cc:9d:86:68:19:b8: bc:2c:b2:65:fb:3a:b5:98:84:6c:fb:47:31:2e:17: 49:4d:2d:7a:c1:b3:59:78:90:bf:c8:82:92:a8:b8: 33:30:7e:7f:39:74:d6:cd:45:d7:15:4c:4f:8e:5c: 9e:3c:5e:a6:04:6c:95:d6:91:ea:b8:b8:13:8f:0c: 34:a8:a1:84:09:4c:d7:27:0e:96:d9:bc:74:3e:28: 6a:29:ed:4b:f3:0c:cf:be:db:2a:bd:2c:33:db:16: 0b:46:0b:72:7f:21:8c:03:60:25:b4:3f:63:aa:cf: 00:63:d6:1b:70:13:2e:05:f1:60:d2:34:0a:87:70: 8f:25:92:e2:40:f2:2f:ad:c3:e5:b1:00:31:97:ee: 99:c4:a1:d4:72:3c:ca:27:1f:00:ad:52:af:36:45: 53:ba:0b:28:10:c4:d2:63:3f:60:48:7b:a5:da:de: ce:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:99:B7:59:23:63:4F:1F:3D:9E:0C:77:72:86:D1:AF:9F:93:9F:65 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132322e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.122.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:d7:b1:3f:a5:92:f9:7c:47:ba:6a:6d:58:33:27:4a:23:30: e8:6f:f6:de:20:80:10:fe:9c:76:c1:2b:dc:3b:0b:29:ec:62: c6:75:ee:cc:73:3f:1d:99:4f:dc:05:92:be:29:71:fb:02:6d: b9:c5:80:27:d7:9b:2a:b2:9f:9a:31:e9:a3:75:2c:23:fe:18: c4:5b:21:ac:c9:38:dc:1a:d8:92:87:e0:3a:0d:68:fb:e8:d7: f8:53:8a:7d:a3:82:5b:ad:06:54:a1:b4:aa:9c:58:66:a9:e5: 87:e0:c4:87:6c:f2:eb:5f:26:e2:e4:c6:7e:76:36:c5:6f:39: e9:e2:a5:b7:30:47:6b:8b:c3:18:f2:fb:2d:c1:16:6a:17:6e: 51:67:d6:49:f6:ef:33:21:41:00:2c:27:f8:3b:2b:2e:cd:9b: 65:3c:a3:59:3d:ee:9d:56:9d:90:e0:9c:3c:f2:fe:cc:01:99: de:ac:be:c5:a0:2f:4a:4d:84:70:d0:78:57:50:70:4c:f5:38: 5a:79:68:c0:d0:84:3f:50:bd:93:c4:89:13:fd:4e:1f:a3:e5: 39:00:ae:e4:ff:e5:e5:c6:b8:b1:bb:f7:c2:eb:da:d4:65:62: ff:0b:23:37:a1:11:35:7c:71:f9:80:02:b0:12:59:03:d0:d9: f9:16:7e:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQVJ0y9FfrgsdACuCdUymwlc9zrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDhaFw0yNjA2MDEwMTAzMDhaMDMxMTAvBgNV BAMTKERFOTlCNzU5MjM2MzRGMUYzRDlFMEM3NzcyODZEMUFGOUY5MzlGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrrOZmppcT5tPmeyo+Jm8fXBEi 3Is+iVvK9KD3ItGiAzVIUDLbtYXF3JtcOoYH2I6lGGs0qWPL8TFJIfkizFq0TXIF RYzmFWjAAzJKrskBeU5Co8ydhmgZuLwssmX7OrWYhGz7RzEuF0lNLXrBs1l4kL/I gpKouDMwfn85dNbNRdcVTE+OXJ48XqYEbJXWkeq4uBOPDDSooYQJTNcnDpbZvHQ+ KGop7UvzDM++2yq9LDPbFgtGC3J/IYwDYCW0P2OqzwBj1htwEy4F8WDSNAqHcI8l kuJA8i+tw+WxADGX7pnEodRyPMonHwCtUq82RVO6CygQxNJjP2BIe6Xa3s69AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3pm3WSNjTx89ngx3cobRr5+Tn2UwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKejANBgkqhkiG 9w0BAQsFAAOCAQEAbNexP6WS+XxHumptWDMnSiMw6G/23iCAEP6cdsEr3DsLKexi xnXuzHM/HZlP3AWSvilx+wJtucWAJ9ebKrKfmjHpo3UsI/4YxFshrMk43BrYkofg Og1o++jX+FOKfaOCW60GVKG0qpxYZqnlh+DEh2zy618m4uTGfnY2xW856eKltzBH a4vDGPL7LcEWahduUWfWSfbvMyFBACwn+DsrLs2bZTyjWT3unVadkOCcPPL+zAGZ 3qy+xaAvSk2EcNB4V1BwTPU4WnlowNCEP1C9k8SJE/1OH6PlOQCu5P/l5ca4sbv3 wuva1GVi/wsjN6ERNXxx+YACsBJZA9DZ+RZ+qQ== -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:16 2025 by rpki-client