$ rpki-client -vvf repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa File: 3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa (raw, json) Hash identifier: orZMBlY9QwaffF3Sj5GAYnuUKegFXWi6cel4pBtcO+Y= Subject key identifier: A7:64:05:A4:98:E2:E5:59:48:F9:6C:4B:B7:0D:BB:88:FB:50:41:62 Certificate issuer: /CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Certificate serial: 5211CCE5041264A4E283A90037CF1DF45634ED82 Authority key identifier: 91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject info access: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa Signing time: Mon 02 Jun 2025 02:04:12 +0000 ROA not before: Mon 02 Jun 2025 01:59:12 +0000 ROA not after: Mon 01 Jun 2026 02:04:12 +0000 asID: 136886 IP address blocks: 103.106.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:11:cc:e5:04:12:64:a4:e2:83:a9:00:37:cf:1d:f4:56:34:ed:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Validity Not Before: Jun 2 01:59:12 2025 GMT Not After : Jun 1 02:04:12 2026 GMT Subject: CN=A76405A498E2E55948F96C4BB70DBB88FB504162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:62:81:0a:70:4c:69:46:ea:91:e8:0a:34:20: cf:20:19:10:43:ad:e3:10:d0:30:e6:cb:98:ce:39: 0e:a2:a5:fa:77:94:17:91:22:7e:6e:00:a5:a2:36: a7:e8:72:0c:4c:60:9a:a1:ff:a8:9a:01:c9:66:49: d5:03:b4:79:c0:94:77:8b:40:ba:74:e1:0d:f3:d4: f9:49:ca:d0:b7:41:63:b7:72:e9:df:6a:2b:e0:ca: e0:61:1f:33:ce:d9:31:75:75:88:51:57:d6:85:e2: ed:1d:dc:86:47:e5:bc:86:e7:5f:bb:a5:67:29:27: f2:9a:11:6f:ce:ee:d8:71:ee:32:35:5a:ba:fb:72: f5:bc:72:8c:84:20:7b:d9:03:9d:53:14:7e:50:c8: c1:8b:18:ab:93:52:96:b6:c4:ec:79:a7:6a:18:9b: 52:fa:76:fd:7d:e7:b3:a7:86:7e:62:73:99:df:bc: 76:32:5b:f6:56:38:87:28:ae:dd:35:85:3c:42:eb: f8:ac:63:ef:33:63:67:d9:25:bc:4f:fb:6f:51:bf: 46:a0:90:6a:a6:81:9a:b1:23:98:a5:c4:a5:26:49: e7:fc:c4:db:cc:e1:9f:3f:7c:23:54:56:c8:9a:77: 39:1e:0d:a3:08:d4:ba:8f:d6:c4:0f:0a:e6:d8:f0: 61:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:64:05:A4:98:E2:E5:59:48:F9:6C:4B:B7:0D:BB:88:FB:50:41:62 X509v3 Authority Key Identifier: keyid:91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.116.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:ca:e0:4f:43:8b:25:ea:24:34:9a:f9:d9:ac:4d:8d:78:3c: 91:dd:06:5f:34:54:5e:c8:79:b7:cf:87:b5:b1:e3:52:df:0f: 56:df:b2:e1:d5:28:03:5d:57:23:0e:46:f0:6a:72:99:61:8d: 28:2e:f1:54:59:48:4e:59:d4:2d:ff:4d:cf:3e:ed:d8:6a:ad: 92:06:e1:72:29:b3:ab:5c:0a:74:9f:38:de:bc:4a:82:a0:38: bd:b8:da:19:5c:c5:b1:1a:c2:f4:5f:a4:4d:d9:0a:24:25:c7: 00:c6:2d:be:4c:26:b9:f4:8c:db:73:c9:28:ee:6a:b1:db:8b: 35:8c:46:87:eb:5e:a6:3f:46:c9:32:e4:cd:33:c9:d6:73:58: bf:85:3e:c0:a3:48:93:a8:6d:e3:a9:20:bb:3c:dd:23:37:b6: 2a:08:42:7b:c9:f3:dc:03:2d:bb:1f:e5:a0:8b:e9:17:97:28: e4:d8:eb:3d:ae:11:29:8b:b5:f9:a5:3d:6d:6f:7b:84:18:ca: 24:a5:7f:c5:77:b4:e9:ee:2d:9e:8b:2d:19:31:9b:80:d7:90: 58:f3:b1:a7:e6:77:7a:a5:26:4f:78:34:b1:2f:95:50:48:1d: 2c:72:d5:99:b6:45:e1:7e:f0:f0:03:ee:28:1d:10:40:d1:28: bb:7e:4c:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUhHM5QQSZKTig6kAN88d9FY07YIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUw MkEzQTAxODAeFw0yNTA2MDIwMTU5MTJaFw0yNjA2MDEwMjA0MTJaMDMxMTAvBgNV BAMTKEE3NjQwNUE0OThFMkU1NTk0OEY5NkM0QkI3MERCQjg4RkI1MDQxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtYoEKcExpRuqR6Ao0IM8gGRBD reMQ0DDmy5jOOQ6ipfp3lBeRIn5uAKWiNqfocgxMYJqh/6iaAclmSdUDtHnAlHeL QLp04Q3z1PlJytC3QWO3cunfaivgyuBhHzPO2TF1dYhRV9aF4u0d3IZH5byG51+7 pWcpJ/KaEW/O7thx7jI1Wrr7cvW8coyEIHvZA51TFH5QyMGLGKuTUpa2xOx5p2oY m1L6dv1957Onhn5ic5nfvHYyW/ZWOIcort01hTxC6/isY+8zY2fZJbxP+29Rv0ag kGqmgZqxI5ilxKUmSef8xNvM4Z8/fCNUVsiadzkeDaMI1LqP1sQPCubY8GGHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUp2QFpJji5VlI+WxLtw27iPtQQWIwHwYDVR0j BBgwFoAUkZtg5NfhFxtmJPMYraG3RQKjoBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MDBhZWQxZC05NGM5LTQ5YTYtYTYwOS04ODJlMDNjZDA3YmEvMC85MTlCNjBFNEQ3 RTExNzFCNjYyNEYzMThBREExQjc0NTAyQTNBMDE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUwMkEz QTAxOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwMGFlZDFkLTk0YzktNDlhNi1h NjA5LTg4MmUwM2NkMDdiYS8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnanQwDQYJ KoZIhvcNAQELBQADggEBAH3K4E9DiyXqJDSa+dmsTY14PJHdBl80VF7IebfPh7Wx 41LfD1bfsuHVKANdVyMORvBqcplhjSgu8VRZSE5Z1C3/Tc8+7dhqrZIG4XIps6tc CnSfON68SoKgOL242hlcxbEawvRfpE3ZCiQlxwDGLb5MJrn0jNtzySjuarHbizWM RofrXqY/Rsky5M0zydZzWL+FPsCjSJOobeOpILs83SM3tioIQnvJ89wDLbsf5aCL 6ReXKOTY6z2uESmLtfmlPW1ve4QYyiSlf8V3tOnuLZ6LLRkxm4DXkFjzsafmd3ql Jk94NLEvlVBIHSxy1Zm2ReF+8PAD7igdEEDRKLt+TL0= -----END CERTIFICATE-----Generated at Sat Jun 7 05:17:44 2025 by rpki-client