$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: kQuHiDr0EacrTshG7dHgP6puMqC4eSM0VYASsjgtGzA= Subject key identifier: 15:55:74:F6:EB:B6:D9:0E:8D:4E:C9:EE:F0:8C:44:38:98:D2:82:81 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 23BA2B838C3AD7EEC0ADAA996537B05D23A653BE Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:24 +0000 ROA not before: Mon 02 Jun 2025 01:58:24 +0000 ROA not after: Mon 01 Jun 2026 02:03:24 +0000 asID: 136088 IP address blocks: 103.87.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ba:2b:83:8c:3a:d7:ee:c0:ad:aa:99:65:37:b0:5d:23:a6:53:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:24 2025 GMT Not After : Jun 1 02:03:24 2026 GMT Subject: CN=155574F6EBB6D90E8D4EC9EEF08C443898D28281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dc:c6:6f:a4:a6:cc:4c:f8:9a:24:06:6c:eb: 6e:29:8b:86:33:d1:d8:8c:b6:dd:67:75:76:de:2f: 83:7f:75:d7:9f:5b:29:4e:34:39:5e:65:67:61:27: 28:88:50:60:74:18:ad:47:9d:a7:76:93:c5:f2:ce: d8:cc:28:5f:1e:05:e6:52:b1:b7:c6:77:58:2e:7c: ca:bf:21:ab:f3:b0:0f:26:58:f3:bc:f2:8c:99:10: f9:9a:6c:21:ea:99:3c:b2:ef:99:41:bc:28:8c:53: e5:eb:6e:a5:4a:c0:6c:dd:e5:3b:81:ec:9a:75:ab: b2:fe:68:2d:b0:65:f6:ab:05:e6:d4:c4:6d:ae:c6: 31:8f:01:15:7f:cd:8a:29:83:0e:4b:87:f6:c3:84: c7:55:22:3e:93:5f:3e:f8:33:81:4b:34:61:12:e9: 03:57:95:dd:7a:4a:ab:45:f6:f9:0d:ed:ac:ee:48: 77:a8:96:47:be:c5:71:11:06:3c:a7:92:82:4a:d5: 8d:d3:c1:4a:2f:62:8d:a8:9a:cf:94:e7:4d:a9:1d: d8:0a:48:b8:29:f1:19:36:dc:0f:8d:c8:71:eb:a9: c9:51:46:f2:61:9b:6b:ba:ac:36:67:35:f8:4c:68: 37:bc:08:f6:94:75:f3:8e:ab:f7:28:96:55:49:40: ae:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:55:74:F6:EB:B6:D9:0E:8D:4E:C9:EE:F0:8C:44:38:98:D2:82:81 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232382e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.228.0/24 Signature Algorithm: sha256WithRSAEncryption cb:12:6e:09:da:ac:16:bf:a7:04:18:de:c3:da:28:7f:93:03: 62:a8:7c:bd:8e:69:4c:fd:99:24:9c:c3:a2:e2:7b:73:3e:fc: f8:6e:1b:fd:10:11:28:b0:f1:16:02:c6:05:b7:91:84:d3:1d: ed:4d:fa:2f:49:1e:52:29:18:b0:11:4b:8c:f0:cb:20:8b:89: 3c:b7:60:0b:d8:0d:8c:81:83:e1:74:de:2b:97:89:ee:8b:ef: c0:94:4d:5a:0a:dd:67:08:d2:b9:e2:1e:0b:1c:ec:ff:87:ab: ed:e4:4e:54:fe:15:93:ca:55:72:83:a6:87:dc:1c:31:bd:50: 59:40:e3:21:ce:75:5e:26:82:97:d6:a3:e1:61:6b:f0:89:eb: 09:04:81:26:ef:a8:0d:e2:1f:9e:87:db:a8:db:ea:0a:b8:07: 07:fd:51:37:7c:ac:f8:58:f4:19:83:02:0f:d9:db:3c:1e:07: a1:3d:cc:f9:fc:ad:a5:24:ef:56:76:8d:ac:04:82:62:fe:fb: 13:e7:22:68:0a:8f:fc:38:42:2f:59:e2:a6:2f:55:d6:13:b7: 72:bd:d6:2c:5a:6e:77:2f:d3:3d:54:d3:a1:ec:fd:1f:ba:b2: f8:93:1a:43:67:75:2a:12:78:75:f3:7d:e1:01:a6:1a:72:f3: ac:18:0e:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI7org4w61+7AraqZZTewXSOmU74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjRaFw0yNjA2MDEwMjAzMjRaMDMxMTAvBgNV BAMTKDE1NTU3NEY2RUJCNkQ5MEU4RDRFQzlFRUYwOEM0NDM4OThEMjgyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY3MZvpKbMTPiaJAZs624pi4Yz 0diMtt1ndXbeL4N/ddefWylONDleZWdhJyiIUGB0GK1Hnad2k8XyztjMKF8eBeZS sbfGd1gufMq/IavzsA8mWPO88oyZEPmabCHqmTyy75lBvCiMU+XrbqVKwGzd5TuB 7Jp1q7L+aC2wZfarBebUxG2uxjGPARV/zYopgw5Lh/bDhMdVIj6TXz74M4FLNGES 6QNXld16SqtF9vkN7azuSHeolke+xXERBjynkoJK1Y3TwUovYo2oms+U502pHdgK SLgp8Rk23A+NyHHrqclRRvJhm2u6rDZnNfhMaDe8CPaUdfOOq/collVJQK6fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFVV09uu22Q6NTsnu8IxEOJjSgoEwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1fkMA0GCSqG SIb3DQEBCwUAA4IBAQDLEm4J2qwWv6cEGN7D2ih/kwNiqHy9jmlM/ZkknMOi4ntz Pvz4bhv9EBEosPEWAsYFt5GE0x3tTfovSR5SKRiwEUuM8Msgi4k8t2AL2A2MgYPh dN4rl4nui+/AlE1aCt1nCNK54h4LHOz/h6vt5E5U/hWTylVyg6aH3BwxvVBZQOMh znVeJoKX1qPhYWvwiesJBIEm76gN4h+eh9uo2+oKuAcH/VE3fKz4WPQZgwIP2ds8 HgehPcz5/K2lJO9Wdo2sBIJi/vsT5yJoCo/8OEIvWeKmL1XWE7dyvdYsWm53L9M9 VNOh7P0furL4kxpDZ3UqEnh1833hAaYacvOsGA5w -----END CERTIFICATE-----Generated at Sun Jun 8 06:22:46 2025 by rpki-client