$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: CamY8eX6kfj5MZjd7GTKNGu0eML2pclOVMqWYRohOEs= Subject key identifier: 0C:DB:06:51:E7:7F:0D:D1:A3:32:3B:FF:D4:74:E3:05:E4:AD:34:1A Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 06AAC19E47EBFA4304733BFCD7E566D7A66E14DB Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa Signing time: Mon 02 Jun 2025 02:04:38 +0000 ROA not before: Mon 02 Jun 2025 01:59:38 +0000 ROA not after: Mon 01 Jun 2026 02:04:38 +0000 asID: 136840 IP address blocks: 103.100.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:aa:c1:9e:47:eb:fa:43:04:73:3b:fc:d7:e5:66:d7:a6:6e:14:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jun 2 01:59:38 2025 GMT Not After : Jun 1 02:04:38 2026 GMT Subject: CN=0CDB0651E77F0DD1A3323BFFD474E305E4AD341A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:af:65:47:51:7b:96:96:85:16:bf:85:e4:ce: c8:f7:5f:b6:b9:eb:e0:d0:22:4f:0e:1b:de:b3:70: 53:e1:9c:09:b7:6b:f9:3b:83:4d:e8:c4:4f:4d:eb: 6d:30:09:3c:dd:63:bf:1d:79:ca:08:1c:91:e5:79: 05:d9:49:63:27:08:bb:f1:57:19:7d:ae:fd:5d:d6: 23:76:a0:8f:6b:57:2e:bc:66:6e:79:25:dc:49:43: 34:9f:19:84:9f:87:d2:e7:65:aa:90:a7:e1:19:36: 49:8b:68:3d:cc:cd:a2:8e:bd:a9:b5:e5:e3:0c:02: 7c:6f:ce:14:b5:21:f9:56:a7:44:98:34:c0:44:0d: d3:d4:26:08:96:34:ed:fa:6a:ab:ed:c1:3b:4b:8b: 14:7a:72:f7:28:de:f9:e2:42:a3:d0:99:92:6d:81: ea:e1:99:80:ad:80:22:fe:5f:21:6e:e0:c2:3a:94: 5a:c6:64:24:a2:8f:82:3a:40:9c:10:81:e4:c5:54: 05:ca:ca:3b:87:47:d1:05:e6:b9:2b:82:cc:0d:b9: 66:5c:6b:7a:2b:6e:74:3a:f7:bd:49:73:14:3d:5b: c3:f8:3c:29:92:42:bf:e1:42:8f:c5:49:3a:66:6f: ce:ed:4c:1c:5b:12:7a:81:32:b8:1a:86:f2:aa:66: 4c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DB:06:51:E7:7F:0D:D1:A3:32:3B:FF:D4:74:E3:05:E4:AD:34:1A X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.181.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:f2:e4:b3:ac:58:0b:37:cd:4c:46:eb:a5:2e:1d:6b:21:b0: df:26:52:3f:87:13:b6:28:20:ff:35:45:0d:c4:44:ca:fe:fd: 04:7a:40:d8:e5:de:1d:29:c9:9d:79:c8:58:3e:b5:ba:9d:18: 84:5d:63:6d:3b:74:3f:e6:af:0d:48:c3:51:3f:66:12:9c:4a: 1d:6a:d4:fd:3d:a6:e8:15:58:77:5b:d3:7d:26:5d:a1:93:34: c1:c7:f7:88:a5:62:cf:72:ad:8d:c3:e4:9d:5d:ba:62:00:16: c3:de:11:e7:6c:26:57:1c:74:2a:78:15:39:80:dc:1c:62:17: be:29:e7:d8:32:17:97:b3:bb:73:eb:86:44:de:9d:a4:10:eb: 82:44:a0:ae:92:ed:a2:ed:fb:43:c7:6c:61:32:9f:b1:79:22: 40:17:79:37:df:16:95:a7:6e:b1:91:5c:a1:9c:af:06:60:de: 07:0c:0d:91:57:5c:4b:d5:c6:f0:26:2e:59:39:80:92:bf:ef: 8c:35:2a:3c:b5:39:58:43:2a:4f:e9:13:c9:d7:4b:9a:3d:60: a6:71:67:53:c6:00:23:58:2b:fa:ae:a6:36:59:6d:60:6d:89: 12:7a:8f:f4:67:ae:03:36:e2:1b:dc:30:d8:85:95:3e:3e:b8: 9b:95:ec:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBqrBnkfr+kMEczv81+Vm16ZuFNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNTA2MDIwMTU5MzhaFw0yNjA2MDEwMjA0MzhaMDMxMTAvBgNV BAMTKDBDREIwNjUxRTc3RjBERDFBMzMyM0JGRkQ0NzRFMzA1RTRBRDM0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCir2VHUXuWloUWv4Xkzsj3X7a5 6+DQIk8OG96zcFPhnAm3a/k7g03oxE9N620wCTzdY78decoIHJHleQXZSWMnCLvx Vxl9rv1d1iN2oI9rVy68Zm55JdxJQzSfGYSfh9LnZaqQp+EZNkmLaD3MzaKOvam1 5eMMAnxvzhS1IflWp0SYNMBEDdPUJgiWNO36aqvtwTtLixR6cvco3vniQqPQmZJt gerhmYCtgCL+XyFu4MI6lFrGZCSij4I6QJwQgeTFVAXKyjuHR9EF5rkrgswNuWZc a3orbnQ6971JcxQ9W8P4PCmSQr/hQo/FSTpmb87tTBxbEnqBMrgahvKqZkwnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDNsGUed/DdGjMjv/1HTjBeStNBowHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLUwDQYJ KoZIhvcNAQELBQADggEBAAvy5LOsWAs3zUxG66UuHWshsN8mUj+HE7YoIP81RQ3E RMr+/QR6QNjl3h0pyZ15yFg+tbqdGIRdY207dD/mrw1Iw1E/ZhKcSh1q1P09pugV WHdb030mXaGTNMHH94ilYs9yrY3D5J1dumIAFsPeEedsJlccdCp4FTmA3BxiF74p 59gyF5ezu3PrhkTenaQQ64JEoK6S7aLt+0PHbGEyn7F5IkAXeTffFpWnbrGRXKGc rwZg3gcMDZFXXEvVxvAmLlk5gJK/74w1Kjy1OVhDKk/pE8nXS5o9YKZxZ1PGACNY K/qupjZZbWBtiRJ6j/RnrgM24hvcMNiFlT4+uJuV7Kc= -----END CERTIFICATE-----Generated at Sat Jun 7 12:30:36 2025 by rpki-client