$ rpki-client -vvf repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa File: 3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa (raw, json) Hash identifier: r6bDLYYIyERHbAoCwxWGZY4ywTgVflQracjKfLYbn5I= Subject key identifier: AD:A0:E6:EA:2D:F0:F7:13:97:3A:3D:B6:6C:F4:AA:AD:CA:AC:74:E6 Certificate issuer: /CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Certificate serial: 176408459055EECC17F53C428C0C716A45E127D8 Authority key identifier: 37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa Signing time: Mon 02 Jun 2025 02:05:01 +0000 ROA not before: Mon 02 Jun 2025 02:00:01 +0000 ROA not after: Mon 01 Jun 2026 02:05:01 +0000 asID: 24529 IP address blocks: 103.217.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:64:08:45:90:55:ee:cc:17:f5:3c:42:8c:0c:71:6a:45:e1:27:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Validity Not Before: Jun 2 02:00:01 2025 GMT Not After : Jun 1 02:05:01 2026 GMT Subject: CN=ADA0E6EA2DF0F713973A3DB66CF4AAADCAAC74E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:42:58:72:36:5e:09:51:98:1f:6d:2f:e3: 62:c7:a7:a0:f8:11:51:66:a6:c3:57:3f:67:ce:ca: 44:ef:7b:d1:cb:bf:16:84:b2:54:70:89:df:3e:62: 78:7c:6d:cf:cd:b5:30:5b:5c:b7:18:e4:a9:fc:f5: de:c3:ee:c6:d8:c0:ea:85:e1:ae:d6:a2:e3:18:b0: 9d:6b:b1:57:4e:ba:98:5d:f8:bd:28:4c:98:7e:73: ee:99:50:6d:5d:dd:c6:3c:8b:86:ff:63:a3:2c:47: c8:7f:d1:d0:1c:22:30:a3:a5:28:cf:46:12:61:01: 93:90:f0:62:e4:d8:79:b1:f3:ab:47:99:df:cd:50: e0:d6:8d:dc:21:38:98:04:c4:a1:28:85:56:4f:f9: a6:d9:46:29:ec:ce:27:2c:aa:84:c8:b6:03:60:8e: cb:d7:81:71:65:ed:d6:bb:b5:ef:77:fe:13:e3:42: 67:32:c6:01:68:4b:a5:00:7c:a4:7a:1f:ec:1f:f9: 0c:e4:4c:67:ee:46:45:42:43:36:bc:91:02:c5:f9: dd:c9:e0:e4:0b:9b:7d:56:c1:a0:5c:99:15:b0:e8: 8d:ec:c6:46:dd:d6:4b:58:75:72:45:82:7d:5e:a7: b7:0b:2a:aa:61:0d:ba:e3:c6:c2:de:ce:19:fe:4e: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A0:E6:EA:2D:F0:F7:13:97:3A:3D:B6:6C:F4:AA:AD:CA:AC:74:E6 X509v3 Authority Key Identifier: keyid:37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.217.0/24 Signature Algorithm: sha256WithRSAEncryption 82:e8:46:dd:66:0e:ac:f6:ab:97:4a:4a:58:cf:a1:02:c9:a3: 6d:c2:53:01:8e:a3:23:d8:78:0c:a5:77:07:7e:97:31:05:4c: 2c:20:30:6d:a9:ba:93:0a:d5:22:be:4a:4e:d3:37:f3:61:df: 93:d0:e3:db:10:33:76:34:ba:99:ee:50:70:05:1c:6d:07:99: f5:30:39:7c:6f:2a:58:44:ec:be:46:2a:fb:cb:5e:8a:cf:52: a1:ef:df:25:27:92:e4:11:51:4d:1d:2c:b0:79:61:0a:5c:a4: 8e:5a:96:94:fd:26:f6:21:8c:69:5a:07:80:53:ae:0e:1d:48: ed:74:de:a1:20:25:aa:89:d1:a5:fc:41:60:bf:23:75:6d:d0: 02:9c:ff:f3:30:83:6e:ea:c2:f8:7e:fe:e1:76:5d:67:9e:33: a4:2e:4f:36:a8:25:fc:29:3f:8f:84:8b:c2:4b:66:f2:df:f8: a9:9b:03:25:7c:cf:52:5b:04:86:b1:8e:a2:47:58:09:ef:5f: 4a:39:89:eb:8c:60:84:af:ff:dc:e5:cd:51:3b:47:11:8d:3b: 76:a8:7a:80:8c:73:9f:32:0b:9c:01:ce:59:c2:c9:42:52:32: af:57:7e:b2:d1:57:bf:50:8e:75:16:9e:d7:34:75:88:66:36: 15:61:c3:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF2QIRZBV7swX9TxCjAxxakXhJ9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3 NkQ1MUFDODAeFw0yNTA2MDIwMjAwMDFaFw0yNjA2MDEwMjA1MDFaMDMxMTAvBgNV BAMTKEFEQTBFNkVBMkRGMEY3MTM5NzNBM0RCNjZDRjRBQUFEQ0FBQzc0RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LEJYcjZeCVGYH20v42LHp6D4 EVFmpsNXP2fOykTve9HLvxaEslRwid8+Ynh8bc/NtTBbXLcY5Kn89d7D7sbYwOqF 4a7WouMYsJ1rsVdOuphd+L0oTJh+c+6ZUG1d3cY8i4b/Y6MsR8h/0dAcIjCjpSjP RhJhAZOQ8GLk2Hmx86tHmd/NUODWjdwhOJgExKEohVZP+abZRinszicsqoTItgNg jsvXgXFl7da7te93/hPjQmcyxgFoS6UAfKR6H+wf+QzkTGfuRkVCQza8kQLF+d3J 4OQLm31WwaBcmRWw6I3sxkbd1ktYdXJFgn1ep7cLKqphDbrjxsLezhn+TjCLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUraDm6i3w9xOXOj22bPSqrcqsdOYwHwYDVR0j BBgwFoAUN96WFwfOyPY4NNzbjFong3bVGsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjJmNTE1Mi1hMjk1LTQ3YjctYWRkYy1mYmZlZjMyNDdlM2IvMC8zN0RFOTYxNzA3 Q0VDOEY2MzgzNERDREI4QzVBMjc4Mzc2RDUxQUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3NkQ1 MUFDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMmY1MTUyLWEyOTUtNDdiNy1h ZGRjLWZiZmVmMzI0N2UzYi8wLzMxMzAzMzJlMzIzMTM3MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9nZMA0GCSqG SIb3DQEBCwUAA4IBAQCC6EbdZg6s9quXSkpYz6ECyaNtwlMBjqMj2HgMpXcHfpcx BUwsIDBtqbqTCtUivkpO0zfzYd+T0OPbEDN2NLqZ7lBwBRxtB5n1MDl8bypYROy+ Rir7y16Kz1Kh798lJ5LkEVFNHSyweWEKXKSOWpaU/Sb2IYxpWgeAU64OHUjtdN6h ICWqidGl/EFgvyN1bdACnP/zMINu6sL4fv7hdl1nnjOkLk82qCX8KT+PhIvCS2by 3/ipmwMlfM9SWwSGsY6iR1gJ719KOYnrjGCEr//c5c1RO0cRjTt2qHqAjHOfMguc Ac5ZwslCUjKvV36y0Ve/UI51Fp7XNHWIZjYVYcPn -----END CERTIFICATE-----Generated at Sat Jun 7 13:41:56 2025 by rpki-client