$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33302e302f32342d3234203d3e203538353532.roa File: 3130332e31312e33302e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: w/WXiKSs9c1rBVBTCxkyyWd+79wmvrbcVu1uRQwG1+E= Subject key identifier: 09:F7:0E:5C:D8:94:24:FE:39:0A:8D:8A:6F:00:F3:36:5A:1F:CE:9F Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 3792FF9296AB60D263FFF948F81BD01AE2E8E461 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33302e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 01:03:09 +0000 ROA not before: Mon 02 Jun 2025 00:58:09 +0000 ROA not after: Mon 01 Jun 2026 01:03:09 +0000 asID: 58552 IP address blocks: 103.11.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:92:ff:92:96:ab:60:d2:63:ff:f9:48:f8:1b:d0:1a:e2:e8:e4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:09 2025 GMT Not After : Jun 1 01:03:09 2026 GMT Subject: CN=09F70E5CD89424FE390A8D8A6F00F3365A1FCE9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6d:a1:d8:63:a5:8d:cf:96:78:4b:a6:d2:b6: 5d:6e:1f:30:02:59:8b:5d:71:e6:9f:d2:ec:11:07: 27:85:57:f2:97:b5:d4:36:1c:45:a4:36:47:9b:d3: b7:f9:29:55:8a:39:6c:38:87:6c:5f:38:79:c0:f7: bd:c9:06:99:04:d3:0e:61:f9:66:ce:a0:35:51:bd: 4e:41:13:74:96:f9:2d:41:91:94:ac:f7:29:b6:a3: 98:1c:31:3d:13:c5:63:9a:42:2c:85:1e:b7:04:3c: fc:e9:02:9e:12:33:35:f0:2f:2c:e1:74:c5:c2:71: 47:4c:93:e8:7d:c5:e9:5c:5b:be:71:da:cd:c4:04: 20:5c:2a:f9:b9:61:8e:50:7e:5f:80:72:70:af:00: 55:5e:2d:78:ff:5a:17:d9:74:06:b0:0e:a8:6d:4f: e8:18:03:b6:2c:b3:85:dc:7c:e6:ed:cc:73:0a:08: 12:14:db:1a:1a:25:bc:67:c7:7e:bf:3e:cf:97:75: 8f:b8:ab:95:78:b0:87:95:db:9f:93:6a:e7:cf:47: 2f:e8:2d:9d:f5:bf:69:51:89:5a:52:1e:7a:2d:d6: de:b6:19:be:0b:65:f2:59:1c:2a:50:5e:f8:ba:d4: 98:19:f8:a5:72:e0:54:75:30:89:fb:18:44:b4:1c: 9b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F7:0E:5C:D8:94:24:FE:39:0A:8D:8A:6F:00:F3:36:5A:1F:CE:9F X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33302e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.30.0/24 Signature Algorithm: sha256WithRSAEncryption af:8f:42:cf:a9:06:7a:4d:51:96:4a:60:0e:96:82:50:b5:74: f2:b2:9d:11:c3:0e:7b:61:b6:b7:69:c0:00:7e:66:b6:9c:8d: 7c:6d:67:33:c5:87:28:6c:1e:c9:56:ec:81:f1:4f:c3:e9:57: 67:62:b1:dc:56:17:3e:e3:19:66:5f:51:2f:7b:ac:00:ed:4b: 62:44:95:05:e2:b4:7e:60:42:5f:88:73:a9:bd:f5:f1:e1:51: da:eb:d3:62:ce:20:b7:60:56:93:bd:a7:9c:8e:af:de:f1:6f: 44:83:72:30:b8:ef:4d:50:66:92:db:9e:0d:b1:45:ad:aa:9c: 10:22:72:ae:63:10:69:e8:c9:97:12:63:b2:fd:30:bd:d3:55: 40:06:e7:7a:b5:49:d8:c2:b1:3a:5a:bf:3c:f4:ef:05:f6:f8: a0:57:b7:84:ca:31:6e:1c:8d:5f:ae:fe:16:b4:1d:e2:c7:93: bf:8a:73:c2:34:24:ed:3f:2b:6a:11:c9:2f:fb:97:01:63:eb: d6:23:9a:63:c6:8b:f5:ac:2b:70:88:29:41:a1:ea:d6:b0:67: 00:c4:c6:68:64:fa:26:a5:0b:f4:8b:3d:dd:89:52:83:03:3b: 73:01:0f:72:f2:41:4a:b3:22:a7:66:37:06:f5:96:8f:f7:ff: af:2b:c1:54 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUN5L/kparYNJj//lI+BvQGuLo5GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDlaFw0yNjA2MDEwMTAzMDlaMDMxMTAvBgNV BAMTKDA5RjcwRTVDRDg5NDI0RkUzOTBBOEQ4QTZGMDBGMzM2NUExRkNFOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0baHYY6WNz5Z4S6bStl1uHzAC WYtdceaf0uwRByeFV/KXtdQ2HEWkNkeb07f5KVWKOWw4h2xfOHnA973JBpkE0w5h +WbOoDVRvU5BE3SW+S1BkZSs9ym2o5gcMT0TxWOaQiyFHrcEPPzpAp4SMzXwLyzh dMXCcUdMk+h9xelcW75x2s3EBCBcKvm5YY5Qfl+AcnCvAFVeLXj/WhfZdAawDqht T+gYA7Yss4XcfObtzHMKCBIU2xoaJbxnx36/Ps+XdY+4q5V4sIeV25+TaufPRy/o LZ31v2lRiVpSHnot1t62Gb4LZfJZHCpQXvi61JgZ+KVy4FR1MIn7GES0HJvHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCfcOXNiUJP45Co2KbwDzNlofzp8wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnCx4wDQYJKoZIhvcN AQELBQADggEBAK+PQs+pBnpNUZZKYA6WglC1dPKynRHDDnthtrdpwAB+ZracjXxt ZzPFhyhsHslW7IHxT8PpV2disdxWFz7jGWZfUS97rADtS2JElQXitH5gQl+Ic6m9 9fHhUdrr02LOILdgVpO9p5yOr97xb0SDcjC4701QZpLbng2xRa2qnBAicq5jEGno yZcSY7L9ML3TVUAG53q1SdjCsTpavzz07wX2+KBXt4TKMW4cjV+u/ha0HeLHk7+K c8I0JO0/K2oRyS/7lwFj69YjmmPGi/WsK3CIKUGh6tawZwDExmhk+ialC/SLPd2J UoMDO3MBD3LyQUqzIqdmNwb1lo/3/68rwVQ= -----END CERTIFICATE-----Generated at Tue Nov 4 09:27:29 2025 by rpki-client