$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa File: 3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa (raw, json) Hash identifier: V0+izgb3kW/OtzIxZT6l6U4KDpKCH9ZjxQM8fPyZ410= Subject key identifier: B8:11:06:7F:BE:60:B8:5A:D0:50:A8:06:9D:45:B3:AC:59:47:3B:0D Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Certificate serial: 5BD7D6F7091305E526F7F7C61682119F1784D4FC Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa Signing time: Mon 02 Jun 2025 02:04:41 +0000 ROA not before: Mon 02 Jun 2025 01:59:41 +0000 ROA not after: Mon 01 Jun 2026 02:04:41 +0000 asID: 131746 IP address blocks: 103.21.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d7:d6:f7:09:13:05:e5:26:f7:f7:c6:16:82:11:9f:17:84:d4:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Validity Not Before: Jun 2 01:59:41 2025 GMT Not After : Jun 1 02:04:41 2026 GMT Subject: CN=B811067FBE60B85AD050A8069D45B3AC59473B0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:92:1c:23:8c:c4:04:a7:92:6b:22:10:a7:34: ba:c1:7e:a5:fa:d6:48:f5:88:c1:f7:c1:72:81:3b: 1c:fe:63:2e:47:2a:4c:55:60:29:eb:37:c2:d9:54: 9d:6d:9b:1c:fd:b3:e5:be:30:89:6d:4a:5c:28:5f: 5e:62:27:07:c7:59:19:86:1f:63:5f:35:f0:b7:7f: 5b:06:81:27:4a:2a:1c:62:4f:03:62:f9:69:3c:37: b6:4d:a5:fc:79:96:28:f0:0c:97:6c:0f:e9:ae:fa: 57:b8:77:62:18:aa:8a:3e:22:96:64:f4:e9:f2:b1: a3:78:7e:8a:4f:aa:b5:7a:2d:2b:7c:19:d9:dd:31: 9f:8a:fc:f4:14:a0:5b:70:ea:88:0b:0d:53:5c:5f: 0c:7d:84:00:5d:d2:74:4c:d9:60:03:14:79:d9:fe: c8:4d:0f:11:99:b2:2b:c7:e5:9a:27:87:cd:1b:61: 7d:47:eb:da:30:c3:7e:a9:63:7d:7a:a6:36:e2:9c: e3:d6:41:42:ae:35:66:91:2f:89:a4:eb:af:cd:ab: bd:cb:45:bb:71:d5:12:d2:5f:d8:4c:ef:42:01:ca: c1:29:43:ec:f2:18:5c:a3:86:a7:10:d1:51:ed:60: b9:f2:56:c4:77:9d:41:3a:02:6c:df:81:06:bf:d3: 93:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:11:06:7F:BE:60:B8:5A:D0:50:A8:06:9D:45:B3:AC:59:47:3B:0D X509v3 Authority Key Identifier: keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.204.0/22 Signature Algorithm: sha256WithRSAEncryption 23:3d:b9:2a:b6:6e:b4:84:b7:80:53:22:db:38:82:3e:00:6c: 01:02:f5:3c:b7:e9:f5:15:8f:02:97:ab:1d:22:c9:69:02:d5: fd:63:87:c4:87:e2:2c:36:6a:2b:7c:dd:6a:49:16:29:53:97: 10:99:cc:1a:1d:98:b4:44:0f:f0:7d:6f:05:a4:89:ed:d2:7a: 9e:9c:c6:d1:68:e4:d9:94:2f:a3:ae:82:da:68:7e:24:c6:7c: 10:0d:06:08:6a:19:66:31:bd:ae:b8:76:9a:fc:fd:fd:69:16: 6d:df:0a:2e:36:52:6a:4c:ef:29:6d:d6:a7:11:a1:11:d3:ef: dd:33:07:9b:c5:53:b0:b3:85:24:7c:21:1e:12:18:b3:8d:de: e8:fc:50:30:f4:d3:4e:e2:b9:92:96:fc:fa:5d:17:5a:65:9e: 51:3f:f8:d3:ea:ac:a1:7a:3d:06:7d:35:69:30:3b:2e:6f:a8: 07:dc:00:21:df:c8:80:53:73:c9:ad:73:83:fc:00:1c:d2:b7: 80:40:67:0f:c6:af:3e:c7:0f:fe:94:fd:fb:78:66:b1:d5:4d: 1b:87:58:a2:07:03:71:15:c4:f6:85:b6:f1:b6:cc:93:4c:b5: 89:be:c6:72:ff:6c:03:1f:38:e1:ad:47:77:0b:f9:6d:8e:f9: e1:10:de:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW9fW9wkTBeUm9/fGFoIRnxeE1PwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5 QzhFRTgwMDAeFw0yNTA2MDIwMTU5NDFaFw0yNjA2MDEwMjA0NDFaMDMxMTAvBgNV BAMTKEI4MTEwNjdGQkU2MEI4NUFEMDUwQTgwNjlENDVCM0FDNTk0NzNCMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYkhwjjMQEp5JrIhCnNLrBfqX6 1kj1iMH3wXKBOxz+Yy5HKkxVYCnrN8LZVJ1tmxz9s+W+MIltSlwoX15iJwfHWRmG H2NfNfC3f1sGgSdKKhxiTwNi+Wk8N7ZNpfx5lijwDJdsD+mu+le4d2IYqoo+IpZk 9OnysaN4fopPqrV6LSt8GdndMZ+K/PQUoFtw6ogLDVNcXwx9hABd0nRM2WADFHnZ /shNDxGZsivH5Zonh80bYX1H69oww36pY316pjbinOPWQUKuNWaRL4mk66/Nq73L Rbtx1RLSX9hM70IBysEpQ+zyGFyjhqcQ0VHtYLnyVsR3nUE6AmzfgQa/05MDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuBEGf75guFrQUKgGnUWzrFlHOw0wHwYDVR0j BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3 NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF RTgwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMxMzAzMzJlMzIzMTJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxXMMA0GCSqG SIb3DQEBCwUAA4IBAQAjPbkqtm60hLeAUyLbOII+AGwBAvU8t+n1FY8Cl6sdIslp AtX9Y4fEh+IsNmorfN1qSRYpU5cQmcwaHZi0RA/wfW8FpInt0nqenMbRaOTZlC+j roLaaH4kxnwQDQYIahlmMb2uuHaa/P39aRZt3wouNlJqTO8pbdanEaER0+/dMweb xVOws4UkfCEeEhizjd7o/FAw9NNO4rmSlvz6XRdaZZ5RP/jT6qyhej0GfTVpMDsu b6gH3AAh38iAU3PJrXOD/AAc0reAQGcPxq8+xw/+lP37eGax1U0bh1iiBwNxFcT2 hbbxtsyTTLWJvsZy/2wDHzjhrUd3C/ltjvnhEN5q -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:41 2025 by rpki-client