$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32342d3234203d3e203338353135.roa File: 3130332e3130372e3234382e302f32342d3234203d3e203338353135.roa (raw, json) Hash identifier: MZkAsgI1LK8w1LPPO7mrWaTwnV05X/ESMWLzLbTQIP0= Subject key identifier: 3F:20:BF:F9:1C:AA:57:4F:24:8E:73:FB:C3:74:06:E5:C3:CD:CB:B6 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 1B5ABCF183A0305D5840B3E64C490FC1495E2FEA Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32342d3234203d3e203338353135.roa Signing time: Mon 02 Jun 2025 01:03:16 +0000 ROA not before: Mon 02 Jun 2025 00:58:16 +0000 ROA not after: Mon 01 Jun 2026 01:03:16 +0000 asID: 38515 IP address blocks: 103.107.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5a:bc:f1:83:a0:30:5d:58:40:b3:e6:4c:49:0f:c1:49:5e:2f:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Jun 2 00:58:16 2025 GMT Not After : Jun 1 01:03:16 2026 GMT Subject: CN=3F20BFF91CAA574F248E73FBC37406E5C3CDCBB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:e9:15:1d:a5:80:90:98:b8:d0:a6:01:83: ef:f9:8a:7e:64:a1:94:e3:5c:48:21:e8:a4:90:b8: 3c:7c:bb:9e:25:0f:1e:40:ed:10:7f:6b:0c:8d:63: b3:26:e8:ac:0d:11:c3:0a:e8:44:dd:70:ce:18:51: 92:9c:cb:ba:c0:c3:9f:0c:60:3d:aa:c4:f0:f5:6c: 03:78:02:57:cf:2f:39:74:18:3e:d7:d4:64:93:36: 33:c4:ce:bf:e8:7a:ed:5c:de:e5:af:4c:75:f5:35: 57:af:d3:71:40:6e:e5:f0:f2:19:88:7f:fa:48:3a: 37:d7:da:c1:04:2c:fd:98:34:f4:5f:9b:b6:62:b6: 45:4a:65:a4:f9:59:3c:e8:9b:de:f3:32:0a:a3:cc: bb:bc:79:c7:26:74:d7:07:54:cd:33:a7:38:4e:6e: 8e:be:1c:2c:99:f8:e4:2d:06:d9:0a:7f:7e:42:e2: e0:f6:ed:65:b0:1f:b3:41:56:33:6a:e3:fd:4c:8a: f8:5a:10:bf:17:e2:32:b4:f8:98:9e:1b:ee:2d:1d: c6:b9:14:bb:43:ff:bb:df:8f:34:51:1d:ac:91:c6: dd:c4:ff:dc:ea:8b:f9:7c:ee:1d:ce:02:d9:12:6f: fc:01:2c:81:78:a5:77:2b:82:49:cb:9d:3b:c2:21: f4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:20:BF:F9:1C:AA:57:4F:24:8E:73:FB:C3:74:06:E5:C3:CD:CB:B6 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32342d3234203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.248.0/24 Signature Algorithm: sha256WithRSAEncryption 00:af:18:c3:47:bb:44:00:1d:c9:71:91:17:56:c4:5e:a0:f5: f5:6c:05:fc:ff:2f:db:8a:95:a6:e3:49:9c:65:2e:0f:e4:ef: e2:2f:8c:45:b7:72:6f:00:11:05:72:03:e2:59:6d:e6:05:af: bf:e8:17:f9:89:ef:b2:3f:20:d5:7e:ba:b5:a7:c9:bf:61:bf: 0e:f3:77:11:43:17:6d:b9:cf:e8:1a:19:10:5b:cc:43:52:3e: 03:3f:fe:95:a8:44:9f:db:e0:4d:1d:47:31:cb:41:e6:25:63: 6b:bc:6f:2b:6b:0d:a1:e8:b4:d0:bd:b1:f1:83:82:f0:23:1a: 61:ef:a5:2d:33:69:9e:37:f1:67:f1:5a:09:ca:5d:66:a0:42: f7:7c:99:db:9f:f6:06:37:cf:51:ee:da:9b:1a:b1:d5:31:6e: ba:89:a1:c7:b6:b6:0b:d9:46:4b:e5:63:37:4f:e6:1f:72:fa: cf:d5:2e:cc:3d:fc:6d:4e:04:1e:70:f9:58:5f:4d:25:63:4f: b4:b3:a0:c7:1d:4a:29:3f:aa:79:c6:64:1a:f9:5c:4a:d8:b3: 2e:ff:84:f6:dc:51:b6:25:0a:6f:57:13:aa:41:37:f2:6a:4b: 33:8c:1d:ee:26:87:c3:9b:ac:2e:46:fa:8b:0b:3e:ff:76:5f: 09:2d:ba:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG1q88YOgMF1YQLPmTEkPwUleL+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA2MDIwMDU4MTZaFw0yNjA2MDEwMTAzMTZaMDMxMTAvBgNV BAMTKDNGMjBCRkY5MUNBQTU3NEYyNDhFNzNGQkMzNzQwNkU1QzNDRENCQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIRekVHaWAkJi40KYBg+/5in5k oZTjXEgh6KSQuDx8u54lDx5A7RB/awyNY7Mm6KwNEcMK6ETdcM4YUZKcy7rAw58M YD2qxPD1bAN4AlfPLzl0GD7X1GSTNjPEzr/oeu1c3uWvTHX1NVev03FAbuXw8hmI f/pIOjfX2sEELP2YNPRfm7ZitkVKZaT5WTzom97zMgqjzLu8eccmdNcHVM0zpzhO bo6+HCyZ+OQtBtkKf35C4uD27WWwH7NBVjNq4/1MivhaEL8X4jK0+JieG+4tHca5 FLtD/7vfjzRRHayRxt3E/9zqi/l87h3OAtkSb/wBLIF4pXcrgknLnTvCIfS7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPyC/+RyqV08kjnP7w3QG5cPNy7YwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMxMzAzMzJlMzEzMDM3MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2v4MA0GCSqG SIb3DQEBCwUAA4IBAQAArxjDR7tEAB3JcZEXVsReoPX1bAX8/y/bipWm40mcZS4P 5O/iL4xFt3JvABEFcgPiWW3mBa+/6Bf5ie+yPyDVfrq1p8m/Yb8O83cRQxdtuc/o GhkQW8xDUj4DP/6VqESf2+BNHUcxy0HmJWNrvG8raw2h6LTQvbHxg4LwIxph76Ut M2meN/Fn8VoJyl1moEL3fJnbn/YGN89R7tqbGrHVMW66iaHHtrYL2UZL5WM3T+Yf cvrP1S7MPfxtTgQecPlYX00lY0+0s6DHHUopP6p5xmQa+VxK2LMu/4T23FG2JQpv VxOqQTfyakszjB3uJofDm6wuRvqLCz7/dl8JLbpE -----END CERTIFICATE-----Generated at Sat Jun 7 16:09:50 2025 by rpki-client