$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa File: 3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa (raw, json) Hash identifier: 9V43hWJhD106Qur+e/iXVkOrJHa3wYOoVgiuMpwP8PI= Subject key identifier: 19:BA:F1:DC:D6:25:7D:14:D2:B8:6D:64:5A:BE:CC:0D:B7:B0:34:F5 Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Certificate serial: 6EB12342C30EE4BE3656CB3EDE23F74014D570BC Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa Signing time: Mon 02 Jun 2025 02:04:41 +0000 ROA not before: Mon 02 Jun 2025 01:59:41 +0000 ROA not after: Mon 01 Jun 2026 02:04:41 +0000 asID: 131746 IP address blocks: 103.248.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:b1:23:42:c3:0e:e4:be:36:56:cb:3e:de:23:f7:40:14:d5:70:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Validity Not Before: Jun 2 01:59:41 2025 GMT Not After : Jun 1 02:04:41 2026 GMT Subject: CN=19BAF1DCD6257D14D2B86D645ABECC0DB7B034F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:82:0c:50:94:60:b8:25:89:82:d3:6d:78:43: c8:09:1f:12:ba:10:8d:16:6a:ce:ba:f5:bd:e5:6b: fa:dd:53:2c:10:88:0f:9b:e1:18:77:ff:43:be:7d: e3:fd:44:94:91:19:ee:3f:ad:27:57:52:a3:46:4f: 32:c9:c3:41:93:04:aa:83:d6:c8:99:66:d6:cf:fd: cc:c2:cb:3b:81:d0:6e:cc:cb:cf:c1:c2:3b:ba:ec: 3d:56:62:36:12:ae:93:21:78:1a:8f:66:32:e4:06: 48:89:ad:dd:bd:6e:57:7a:e1:66:a1:a1:f4:72:2d: 94:63:da:52:c7:53:bd:11:01:cc:0d:20:4f:25:aa: d8:d9:93:2a:9b:22:b3:48:6b:2c:2f:e1:ac:ae:79: 6a:e5:c8:82:14:6b:12:45:66:78:fc:f3:3e:68:b9: 24:18:4c:c2:a0:31:14:94:d5:50:e8:5a:9e:7e:55: 92:34:9d:9f:d4:3c:49:e7:2b:d1:14:34:1f:69:26: 91:61:b3:ef:60:c5:f8:18:8c:da:92:45:a1:e3:04: d4:3d:e0:37:cf:8a:3f:73:dd:43:10:3e:e2:14:de: f7:ea:3e:1e:a9:24:e7:73:43:ec:b4:ee:4a:84:6f: e0:cb:ca:28:1e:12:bb:d6:99:2e:cb:72:90:9a:ae: c8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BA:F1:DC:D6:25:7D:14:D2:B8:6D:64:5A:BE:CC:0D:B7:B0:34:F5 X509v3 Authority Key Identifier: keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.196.0/22 Signature Algorithm: sha256WithRSAEncryption 09:0a:32:ee:a9:3a:bf:9d:0f:b3:0e:05:5e:27:49:f9:c3:14: 8b:36:cd:75:26:09:ab:ae:5a:43:2e:ad:31:a9:86:40:4e:83: 8c:72:2f:e2:ee:ea:e9:07:f9:62:22:c9:4f:a9:b1:fb:23:3d: ad:64:e8:86:0b:98:11:07:cf:36:cb:ad:7e:c0:e9:6f:54:21: b7:cf:9f:f2:12:3a:a5:f6:ef:31:d9:f8:89:47:47:f6:1f:cf: f8:81:a7:1c:f1:15:54:c9:81:18:43:61:6e:96:29:6f:03:b4: 70:46:9d:29:ab:f1:cd:a8:e4:be:33:d9:78:12:fe:d9:90:52: 29:bf:b0:47:b8:11:db:5d:43:af:ee:23:fc:92:85:54:e9:f9: 81:a5:25:41:f1:f9:f3:d4:2a:7f:a5:64:60:48:0f:94:af:81: 08:82:88:4b:1b:7d:96:d8:c6:68:43:e5:03:fa:1e:9e:21:25: 69:b0:20:71:1c:73:a4:43:a9:90:15:eb:ed:ea:06:11:e0:2a: 20:85:99:1b:ca:b0:f5:6a:2b:c3:c1:87:46:76:60:8a:1c:29: 0b:26:cb:35:9f:5f:62:19:18:e5:4f:d0:d5:4b:dd:38:bd:45: c1:ca:14:c0:83:39:a9:04:1f:81:3c:81:40:9c:1b:17:d0:e5: b1:7d:e1:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbrEjQsMO5L42Vss+3iP3QBTVcLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5 QzhFRTgwMDAeFw0yNTA2MDIwMTU5NDFaFw0yNjA2MDEwMjA0NDFaMDMxMTAvBgNV BAMTKDE5QkFGMURDRDYyNTdEMTREMkI4NkQ2NDVBQkVDQzBEQjdCMDM0RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ggxQlGC4JYmC0214Q8gJHxK6 EI0Was669b3la/rdUywQiA+b4Rh3/0O+feP9RJSRGe4/rSdXUqNGTzLJw0GTBKqD 1siZZtbP/czCyzuB0G7My8/Bwju67D1WYjYSrpMheBqPZjLkBkiJrd29bld64Wah ofRyLZRj2lLHU70RAcwNIE8lqtjZkyqbIrNIaywv4ayueWrlyIIUaxJFZnj88z5o uSQYTMKgMRSU1VDoWp5+VZI0nZ/UPEnnK9EUNB9pJpFhs+9gxfgYjNqSRaHjBNQ9 4DfPij9z3UMQPuIU3vfqPh6pJOdzQ+y07kqEb+DLyigeErvWmS7LcpCarsgRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGbrx3NYlfRTSuG1kWr7MDbewNPUwHwYDVR0j BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3 NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF RTgwMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMxMzAzMzJlMzIzNDM4MmUzMTM5MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn+MQwDQYJ KoZIhvcNAQELBQADggEBAAkKMu6pOr+dD7MOBV4nSfnDFIs2zXUmCauuWkMurTGp hkBOg4xyL+Lu6ukH+WIiyU+psfsjPa1k6IYLmBEHzzbLrX7A6W9UIbfPn/ISOqX2 7zHZ+IlHR/Yfz/iBpxzxFVTJgRhDYW6WKW8DtHBGnSmr8c2o5L4z2XgS/tmQUim/ sEe4EdtdQ6/uI/yShVTp+YGlJUHx+fPUKn+lZGBID5SvgQiCiEsbfZbYxmhD5QP6 Hp4hJWmwIHEcc6RDqZAV6+3qBhHgKiCFmRvKsPVqK8PBh0Z2YIocKQsmyzWfX2IZ GOVP0NVL3Ti9RcHKFMCDOakEH4E8gUCcGxfQ5bF94a4= -----END CERTIFICATE-----Generated at Sat Jun 7 17:24:40 2025 by rpki-client