$ rpki-client -vvf repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa File: 3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa (raw, json) Hash identifier: mEwVbYgiqYJGIGp+5J9MnWrl5gm8ToUUdLv1IaAGjLQ= Subject key identifier: 25:A8:3D:E0:6D:A2:0B:F0:D6:13:8A:55:24:6E:59:F8:13:41:1E:62 Certificate issuer: /CN=69D341364BC344B4ED6B3A65031AACB403AB3222 Certificate serial: 65AF838C3E1E93671BA75197D8DDDBCACA71A71F Authority key identifier: 69:D3:41:36:4B:C3:44:B4:ED:6B:3A:65:03:1A:AC:B4:03:AB:32:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer Subject info access: rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa Signing time: Mon 02 Jun 2025 02:04:19 +0000 ROA not before: Mon 02 Jun 2025 01:59:19 +0000 ROA not after: Mon 01 Jun 2026 02:04:19 +0000 asID: 136873 IP address blocks: 103.105.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.crl rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:af:83:8c:3e:1e:93:67:1b:a7:51:97:d8:dd:db:ca:ca:71:a7:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D341364BC344B4ED6B3A65031AACB403AB3222 Validity Not Before: Jun 2 01:59:19 2025 GMT Not After : Jun 1 02:04:19 2026 GMT Subject: CN=25A83DE06DA20BF0D6138A55246E59F813411E62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8e:8d:d0:c3:7b:60:25:f2:7a:ee:6a:84:d5: 63:0f:50:fa:46:9d:f9:df:62:0f:91:5c:d4:c1:d2: f6:4c:29:32:f2:3c:a5:cf:bc:5c:fe:0b:07:7f:0f: b6:c2:bf:63:18:da:0a:97:39:93:c4:db:b6:07:50: 22:84:b2:97:ac:ea:78:4d:a5:d6:2c:92:25:f2:0e: 04:5b:b5:aa:0b:98:18:69:26:e9:bb:36:21:d0:df: 88:17:ec:6d:c7:7e:e0:1e:a7:22:da:9c:53:fc:10: c6:da:d7:0a:4f:a5:e8:8b:d3:4a:43:1e:b3:6c:35: 49:c3:b9:5a:78:61:7a:27:78:c1:b8:63:1f:73:e5: db:94:92:f1:73:9d:5e:a0:b8:e2:2c:4e:92:58:83: e3:39:33:65:5a:55:b9:ca:0c:af:ed:98:6b:f4:33: f2:0a:71:b9:21:ae:0b:a1:f9:ed:74:07:08:6a:0f: f5:7f:a9:cd:fa:8b:d5:88:b9:3c:16:08:5f:34:fe: 09:bf:92:3b:1d:92:d6:a6:6d:a4:33:2a:7e:5c:65: 16:36:b7:13:2d:e8:d5:d2:5b:ea:d8:51:55:9d:55: e9:0c:78:1f:12:ed:4a:51:91:20:ab:eb:e0:1c:02: 8b:7d:76:58:7b:82:90:9f:22:85:04:4c:a8:5a:86: 01:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A8:3D:E0:6D:A2:0B:F0:D6:13:8A:55:24:6E:59:F8:13:41:1E:62 X509v3 Authority Key Identifier: keyid:69:D3:41:36:4B:C3:44:B4:ED:6B:3A:65:03:1A:AC:B4:03:AB:32:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.52.0/22 Signature Algorithm: sha256WithRSAEncryption 27:69:9f:9f:70:17:30:82:2e:2f:22:3e:c8:00:ae:a9:1a:9d: fb:4c:8a:f7:9a:1b:2b:09:23:15:10:79:3d:20:e2:c2:b5:11: c3:fe:4e:50:40:0a:79:85:ce:06:5b:ed:d7:bb:f0:27:8b:9a: 57:01:84:73:6c:11:f5:5f:da:0c:f9:6b:33:9a:84:46:5b:2b: 04:6c:94:9c:23:95:81:1c:74:80:8e:70:8f:d9:d8:85:1b:a5: 95:ae:16:cc:5c:34:d8:85:47:44:bc:33:a4:75:96:0e:0c:89: 2c:a7:cc:29:95:d0:3a:4e:4e:84:32:f7:98:fa:6b:ce:c8:e1: 6f:82:e9:a9:c9:84:e8:05:4c:a3:cb:48:1d:43:f0:e2:b7:49: 8c:ec:40:d1:ae:a7:74:c1:32:41:ca:95:3b:7a:e3:3a:60:1a: e8:58:03:04:11:39:a6:4c:8d:06:8a:64:c9:f0:ea:11:d0:21: f4:42:35:5d:07:b0:d3:f0:0b:51:1b:3e:42:1c:54:f9:00:6c: 37:48:e1:7e:0e:69:2f:8e:1d:d3:66:48:c2:99:e2:5e:e2:47: e9:09:64:01:bb:7a:ca:9c:ac:bd:8a:36:cd:7a:41:a5:94:24: 80:75:4b:e3:51:83:fa:48:f1:20:6c:4c:d8:06:0e:d9:bd:38: bf:dd:1a:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZa+DjD4ek2cbp1GX2N3byspxpx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEMzQxMzY0QkMzNDRCNEVENkIzQTY1MDMxQUFDQjQw M0FCMzIyMjAeFw0yNTA2MDIwMTU5MTlaFw0yNjA2MDEwMjA0MTlaMDMxMTAvBgNV BAMTKDI1QTgzREUwNkRBMjBCRjBENjEzOEE1NTI0NkU1OUY4MTM0MTFFNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTjo3Qw3tgJfJ67mqE1WMPUPpG nfnfYg+RXNTB0vZMKTLyPKXPvFz+Cwd/D7bCv2MY2gqXOZPE27YHUCKEspes6nhN pdYskiXyDgRbtaoLmBhpJum7NiHQ34gX7G3HfuAepyLanFP8EMba1wpPpeiL00pD HrNsNUnDuVp4YXoneMG4Yx9z5duUkvFznV6guOIsTpJYg+M5M2VaVbnKDK/tmGv0 M/IKcbkhrguh+e10BwhqD/V/qc36i9WIuTwWCF80/gm/kjsdktambaQzKn5cZRY2 txMt6NXSW+rYUVWdVekMeB8S7UpRkSCr6+AcAot9dlh7gpCfIoUETKhahgHBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJag94G2iC/DWE4pVJG5Z+BNBHmIwHwYDVR0j BBgwFoAUadNBNkvDRLTtazplAxqstAOrMiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTdhNmJjYi05ZWI2LTQ5ZGUtYjk5OC0wYmVkM2M1YzEyNzgvMC82OUQzNDEzNjRC QzM0NEI0RUQ2QjNBNjUwMzFBQUNCNDAzQUIzMjIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlEMzQxMzY0QkMzNDRCNEVENkIzQTY1MDMxQUFDQjQwM0FC MzIyMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2E2YmNiLTllYjYtNDlkZS1i OTk4LTBiZWQzYzVjMTI3OC8wLzMxMzAzMzJlMzEzMDM1MmUzNTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2k0MA0GCSqG SIb3DQEBCwUAA4IBAQAnaZ+fcBcwgi4vIj7IAK6pGp37TIr3mhsrCSMVEHk9IOLC tRHD/k5QQAp5hc4GW+3Xu/Ani5pXAYRzbBH1X9oM+WszmoRGWysEbJScI5WBHHSA jnCP2diFG6WVrhbMXDTYhUdEvDOkdZYODIksp8wpldA6Tk6EMveY+mvOyOFvgump yYToBUyjy0gdQ/Dit0mM7EDRrqd0wTJBypU7euM6YBroWAMEETmmTI0GimTJ8OoR 0CH0QjVdB7DT8AtRGz5CHFT5AGw3SOF+Dmkvjh3TZkjCmeJe4kfpCWQBu3rKnKy9 ijbNekGllCSAdUvjUYP6SPEgbEzYBg7ZvTi/3RrC -----END CERTIFICATE-----Generated at Sat Jun 7 19:52:00 2025 by rpki-client