$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa File: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (raw, json) Hash identifier: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins= Subject key identifier: F6:95:3A:7A:B5:E1:0F:6A:22:24:AF:4A:F3:74:CB:A1:18:86:A4:E8 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 200D7833F6E55AE1E1B3886F7229125C2EC96D63 Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa Signing time: Mon 02 Jun 2025 01:02:46 +0000 ROA not before: Mon 02 Jun 2025 00:57:46 +0000 ROA not after: Mon 01 Jun 2026 01:02:46 +0000 asID: 133817 IP address blocks: 103.53.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0d:78:33:f6:e5:5a:e1:e1:b3:88:6f:72:29:12:5c:2e:c9:6d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Jun 2 00:57:46 2025 GMT Not After : Jun 1 01:02:46 2026 GMT Subject: CN=F6953A7AB5E10F6A2224AF4AF374CBA11886A4E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:21:45:d2:31:62:37:59:29:d3:40:87:55: dc:8d:4d:2e:45:57:3e:a0:04:2d:e6:96:ff:39:0f: 34:cf:0d:22:2b:c6:87:18:d3:e2:f6:b0:38:da:53: 6c:38:3a:c2:c9:84:c8:3d:49:f9:07:a0:18:4b:eb: 82:eb:db:5e:f9:49:32:29:a2:7b:d4:7e:22:e8:83: fe:e2:b7:25:1c:cc:19:9b:82:0a:c9:d3:cb:87:3f: 15:e9:61:66:58:36:f3:96:2d:ee:2f:55:4e:55:4e: bc:31:0a:8a:4b:5f:59:98:6c:28:89:38:1e:2f:42: 65:c8:a5:6f:e4:09:c1:4a:f7:13:26:c0:9e:63:6e: 9a:7b:8c:03:8a:bc:e1:fb:2a:7c:f3:3b:f9:d5:06: af:bf:f0:fe:03:1d:5d:96:ec:ab:46:dd:ae:96:2a: be:24:b0:9e:91:97:65:b9:96:67:09:bb:8b:f6:fc: 3d:11:bc:a1:c1:27:8a:f7:34:72:e1:f5:d0:b0:36: 62:fa:2a:02:13:5c:7e:c7:4a:1b:92:53:0e:76:36: 23:ae:88:c7:72:e1:20:98:f6:eb:20:bf:02:38:a2: 83:d3:83:88:89:0b:14:f4:3c:b7:c3:66:40:db:94: 8e:4a:79:9a:ef:a7:5e:d6:b6:88:6a:fc:25:53:07: 27:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:95:3A:7A:B5:E1:0F:6A:22:24:AF:4A:F3:74:CB:A1:18:86:A4:E8 X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.76.0/22 Signature Algorithm: sha256WithRSAEncryption 45:4a:70:7e:38:fb:af:3c:73:32:25:c1:5a:c0:66:84:c3:15: 03:8b:0e:5f:54:53:f2:36:6f:11:f1:fd:1b:22:ce:4f:54:17: c7:ba:3c:bd:5d:69:15:d7:09:8b:bf:23:3f:87:aa:ca:79:ec: 04:4c:c1:aa:cc:ca:59:7b:e1:b7:b6:00:7a:00:a8:1b:0c:0e: 41:3f:cc:ee:3a:75:66:92:0d:21:f7:e4:bf:7d:92:50:cc:af: 7b:40:cf:40:b3:3c:69:d2:3a:46:6b:38:c1:7d:0b:70:e2:8b: 1a:20:63:6b:86:0f:c9:bf:01:ac:6e:86:15:18:7b:b3:32:b9: f6:55:0c:7d:4d:7d:1c:37:3a:ca:a6:47:6e:4a:e0:37:3b:e1: d5:9a:0e:76:23:f1:43:44:fe:45:5e:0a:dc:00:01:b5:5f:1c: 3b:86:e5:63:d1:66:0f:b9:6a:83:17:78:db:42:ed:67:af:1f: b3:b4:2e:82:dc:3c:f5:8a:51:b2:7d:dc:a5:7a:e2:97:54:04: a8:a2:c1:db:f4:8f:8d:af:e9:a4:29:ca:fa:00:74:9c:5c:a5: 6e:69:da:36:9b:89:27:b9:e6:b8:33:1d:e2:b2:88:0d:e1:c2: c3:fb:cd:01:ae:74:d0:d4:5f:2d:cf:ca:94:6f:6e:d3:73:dd: 4f:ab:b3:05 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIA14M/blWuHhs4hvcikSXC7JbWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNTA2MDIwMDU3NDZaFw0yNjA2MDEwMTAyNDZaMDMxMTAvBgNV BAMTKEY2OTUzQTdBQjVFMTBGNkEyMjI0QUY0QUYzNzRDQkExMTg4NkE0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2SFF0jFiN1kp00CHVdyNTS5F Vz6gBC3mlv85DzTPDSIrxocY0+L2sDjaU2w4OsLJhMg9SfkHoBhL64Lr2175STIp onvUfiLog/7ityUczBmbggrJ08uHPxXpYWZYNvOWLe4vVU5VTrwxCopLX1mYbCiJ OB4vQmXIpW/kCcFK9xMmwJ5jbpp7jAOKvOH7KnzzO/nVBq+/8P4DHV2W7KtG3a6W Kr4ksJ6Rl2W5lmcJu4v2/D0RvKHBJ4r3NHLh9dCwNmL6KgITXH7HShuSUw52NiOu iMdy4SCY9usgvwI4ooPTg4iJCxT0PLfDZkDblI5KeZrvp17Wtohq/CVTBycBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9pU6erXhD2oiJK9K83TLoRiGpOgwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2ZjdlZjM0LTQ5OTEtNGJiMS05 NmI0LWJlNDNmMWVjYWJiNC8wLzMxMzAzMzJlMzUzMzJlMzczNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc1TDANBgkqhkiG 9w0BAQsFAAOCAQEARUpwfjj7rzxzMiXBWsBmhMMVA4sOX1RT8jZvEfH9GyLOT1QX x7o8vV1pFdcJi78jP4eqynnsBEzBqszKWXvht7YAegCoGwwOQT/M7jp1ZpINIffk v32SUMyve0DPQLM8adI6Rms4wX0LcOKLGiBja4YPyb8BrG6GFRh7szK59lUMfU19 HDc6yqZHbkrgNzvh1ZoOdiPxQ0T+RV4K3AABtV8cO4blY9FmD7lqgxd420LtZ68f s7Qugtw89YpRsn3cpXril1QEqKLB2/SPja/ppCnK+gB0nFylbmnaNpuJJ7nmuDMd 4rKIDeHCw/vNAa500NRfLc/KlG9u03PdT6uzBQ== -----END CERTIFICATE-----Generated at Sat Jun 7 06:02:11 2025 by rpki-client