$ rpki-client -vvf repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa File: 3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa (raw, json) Hash identifier: RtJ2p5QNEW/uF9klgSx5eHDHY6XjqqipAM/35eEdr1s= Subject key identifier: DF:E9:95:C4:AD:E1:CA:79:37:7B:F1:33:CC:84:57:06:20:25:CC:44 Certificate issuer: /CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Certificate serial: 4784E80AF7A08455612B31F1DDA0C3536610E643 Authority key identifier: 37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa Signing time: Mon 02 Jun 2025 02:05:01 +0000 ROA not before: Mon 02 Jun 2025 02:00:01 +0000 ROA not after: Mon 01 Jun 2026 02:05:01 +0000 asID: 24529 IP address blocks: 103.217.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:84:e8:0a:f7:a0:84:55:61:2b:31:f1:dd:a0:c3:53:66:10:e6:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Validity Not Before: Jun 2 02:00:01 2025 GMT Not After : Jun 1 02:05:01 2026 GMT Subject: CN=DFE995C4ADE1CA79377BF133CC8457062025CC44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5b:1d:34:57:15:b3:a6:ce:03:da:74:4f:74: 79:4e:c9:13:00:4d:e1:40:c2:b4:07:37:35:0c:09: 21:e5:0d:09:2b:27:bc:97:c7:1d:f6:b0:3c:29:71: d3:56:ed:f2:a3:08:42:14:97:32:3c:c4:da:e4:d2: 12:42:9a:b6:52:c0:9b:eb:c4:5f:a8:06:69:de:a1: 04:86:f6:c3:ec:36:b8:43:fb:4d:1b:fc:34:d0:20: 22:10:35:a5:07:d5:92:5b:a7:c4:87:93:77:08:ba: 9f:4d:52:27:00:06:2a:96:07:04:4d:0b:4e:03:13: 77:83:41:70:54:2e:6d:56:4e:84:9f:63:2a:f9:fd: 43:32:cb:9c:da:00:3b:41:9f:5d:df:14:c3:a7:66: 4c:c7:90:77:cb:ca:a4:72:8d:43:6c:a5:21:67:eb: 12:4d:e5:6c:5c:71:7f:08:6d:e8:38:c2:c7:ed:75: 57:cc:ec:f6:82:fb:6e:e5:d0:ea:59:e7:1c:84:f6: 8e:d9:b6:8e:15:19:8b:72:c8:4e:6e:4a:cd:7c:d3: cc:18:66:65:1a:b6:25:77:7e:be:bf:63:12:4b:79: 56:b1:50:81:05:62:ce:77:06:58:ac:39:b4:f8:b9: 3d:88:44:22:55:59:f6:99:09:3e:d0:91:89:11:af: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E9:95:C4:AD:E1:CA:79:37:7B:F1:33:CC:84:57:06:20:25:CC:44 X509v3 Authority Key Identifier: keyid:37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.219.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:34:27:6e:8e:35:37:d8:85:47:ac:a9:dc:72:d1:d7:65:08: f5:fb:bf:5d:9f:b4:0d:7c:72:1e:1f:8f:53:10:a0:4c:7c:a1: df:e9:72:23:2e:54:2e:22:34:e3:c0:0b:7b:1c:11:e2:88:61: 25:cc:98:ef:12:d6:0b:7d:8c:9c:11:27:d6:5b:ac:9f:ec:fc: c6:ec:d7:84:02:b1:49:dc:c8:4f:4a:07:bc:69:9b:37:5b:2b: 84:02:2c:ec:65:84:89:20:2d:59:42:04:bf:00:77:87:1e:31: 60:54:34:9a:09:c9:21:84:02:db:1f:1c:30:e6:31:de:d2:d0: 6a:05:c3:59:27:6c:d6:1b:60:03:c3:93:31:67:28:5e:3e:28: 35:57:3f:02:73:ab:da:62:b6:93:a7:26:bc:10:4b:72:46:c4: ec:d4:79:b3:5b:b2:44:3a:06:dd:04:7b:fe:90:8a:3a:b7:6b: af:2c:22:8f:bb:56:87:44:4c:e9:2f:8f:73:ac:8d:63:0f:30: 37:d5:e0:c2:81:1f:c5:3d:e4:d9:5c:e0:68:62:af:98:71:40: 36:38:2d:f0:c0:c3:b5:b5:6e:0d:d6:7b:8d:23:cc:96:c8:f9: 8b:23:a2:82:e8:5d:60:dd:52:f3:bd:98:7f:0c:23:fc:21:05: 0e:06:ba:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR4ToCveghFVhKzHx3aDDU2YQ5kMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3 NkQ1MUFDODAeFw0yNTA2MDIwMjAwMDFaFw0yNjA2MDEwMjA1MDFaMDMxMTAvBgNV BAMTKERGRTk5NUM0QURFMUNBNzkzNzdCRjEzM0NDODQ1NzA2MjAyNUNDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1Wx00VxWzps4D2nRPdHlOyRMA TeFAwrQHNzUMCSHlDQkrJ7yXxx32sDwpcdNW7fKjCEIUlzI8xNrk0hJCmrZSwJvr xF+oBmneoQSG9sPsNrhD+00b/DTQICIQNaUH1ZJbp8SHk3cIup9NUicABiqWBwRN C04DE3eDQXBULm1WToSfYyr5/UMyy5zaADtBn13fFMOnZkzHkHfLyqRyjUNspSFn 6xJN5WxccX8Ibeg4wsftdVfM7PaC+27l0OpZ5xyE9o7Zto4VGYtyyE5uSs1808wY ZmUatiV3fr6/YxJLeVaxUIEFYs53BlisObT4uT2IRCJVWfaZCT7QkYkRr8WlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3+mVxK3hynk3e/EzzIRXBiAlzEQwHwYDVR0j BBgwFoAUN96WFwfOyPY4NNzbjFong3bVGsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjJmNTE1Mi1hMjk1LTQ3YjctYWRkYy1mYmZlZjMyNDdlM2IvMC8zN0RFOTYxNzA3 Q0VDOEY2MzgzNERDREI4QzVBMjc4Mzc2RDUxQUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3NkQ1 MUFDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMmY1MTUyLWEyOTUtNDdiNy1h ZGRjLWZiZmVmMzI0N2UzYi8wLzMxMzAzMzJlMzIzMTM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9nbMA0GCSqG SIb3DQEBCwUAA4IBAQArNCdujjU32IVHrKncctHXZQj1+79dn7QNfHIeH49TEKBM fKHf6XIjLlQuIjTjwAt7HBHiiGElzJjvEtYLfYycESfWW6yf7PzG7NeEArFJ3MhP Sge8aZs3WyuEAizsZYSJIC1ZQgS/AHeHHjFgVDSaCckhhALbHxww5jHe0tBqBcNZ J2zWG2ADw5MxZyhePig1Vz8Cc6vaYraTpya8EEtyRsTs1HmzW7JEOgbdBHv+kIo6 t2uvLCKPu1aHREzpL49zrI1jDzA31eDCgR/FPeTZXOBoYq+YcUA2OC3wwMO1tW4N 1nuNI8yWyPmLI6KC6F1g3VLzvZh/DCP8IQUOBrp5 -----END CERTIFICATE-----Generated at Sat Jun 7 13:45:18 2025 by rpki-client