$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: pJsTkpfzo7xE3BJVA5XsGXVaKZmkODwYxkUzqV/Mjn8= Subject key identifier: 84:A3:D5:03:80:D5:F8:EE:CD:03:E9:87:E9:0A:03:C2:C0:CC:DA:4B Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 0753E71CE2310E561D40503BF083887E27C9D01F Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:21 +0000 ROA not before: Mon 02 Jun 2025 01:58:21 +0000 ROA not after: Mon 01 Jun 2026 02:03:21 +0000 asID: 136088 IP address blocks: 103.87.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:53:e7:1c:e2:31:0e:56:1d:40:50:3b:f0:83:88:7e:27:c9:d0:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:21 2025 GMT Not After : Jun 1 02:03:21 2026 GMT Subject: CN=84A3D50380D5F8EECD03E987E90A03C2C0CCDA4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b6:88:ee:7f:6b:62:d0:63:7b:53:1c:f0:2f: a0:26:ca:df:53:c3:4c:4a:7b:3d:ba:b4:37:9b:c8: ef:25:05:50:cd:0e:e6:56:e6:9c:ed:b8:5f:85:37: 61:db:6f:3d:e6:07:7c:ba:5a:90:07:a8:75:aa:3c: 2c:a2:ad:0e:7c:80:a0:fc:35:5b:c4:d3:19:1b:5a: 43:e8:d7:01:2b:72:d5:39:c9:d9:9f:2a:10:d3:e2: b3:22:df:77:0d:01:4e:5f:c6:d5:7c:0e:d3:ac:57: 57:92:98:e2:d2:0c:0d:dd:0f:49:44:dc:6d:a2:45: 8d:74:24:c3:59:24:75:e5:fc:dc:e2:36:cb:7b:54: eb:34:16:32:f7:e1:e3:12:3b:03:5f:20:ff:38:34: a9:af:25:67:86:8f:fc:9b:6f:cb:df:44:a2:83:74: 51:b7:4f:9b:82:9f:0b:8d:de:38:a8:06:82:c9:a6: 7d:4e:33:0e:eb:db:3a:0d:a7:99:38:67:dd:bf:f0: b5:48:21:d2:97:ad:33:76:0e:63:2e:d0:25:6e:38: d9:39:68:cc:85:4a:69:82:8b:2b:2d:71:82:ce:e2: 63:1b:62:a3:fd:7f:09:62:8a:37:b3:58:7e:1c:d8: fa:d2:1f:8b:ca:a8:7d:cd:f6:fa:f4:eb:44:5f:44: 6b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A3:D5:03:80:D5:F8:EE:CD:03:E9:87:E9:0A:03:C2:C0:CC:DA:4B X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3232392e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.229.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:88:71:0c:3d:2b:d0:5e:c0:bf:62:fd:e2:9a:e1:50:4a:c5: 26:8b:7b:a4:8a:d3:ed:08:f7:0c:56:c8:1f:85:09:39:76:9f: 7c:98:49:1a:45:07:46:91:0a:ec:2b:a3:ee:51:9f:67:e2:a7: b2:16:65:35:ee:8c:50:b8:ce:02:bd:b6:bd:f6:cc:8c:34:9c: 63:cf:66:26:d1:7b:27:86:ca:21:dc:96:45:d2:ad:f4:a1:b5: 64:6a:3b:c4:04:71:b3:fc:eb:d1:1c:0c:30:3f:4e:5c:0b:86: ef:db:2d:57:1f:f2:1c:77:2f:c5:5b:7e:e0:4f:e7:54:c9:9f: 22:68:b9:51:99:ac:75:dd:c5:e4:00:ec:d6:78:b9:32:4c:01: 25:d7:fe:b1:f6:d9:7c:b3:1a:eb:aa:5d:58:f2:14:83:a4:d9: 55:29:6c:ab:df:ea:b6:5a:41:07:79:fb:b7:b4:60:7f:d7:bb: b2:73:c9:0b:8e:a9:d9:03:ee:ab:3f:59:98:a9:7e:a4:b4:da: 45:87:88:d6:7b:50:a7:74:70:90:ef:ec:a0:ff:15:58:b8:96: 6a:a1:0b:14:89:11:ce:72:80:d1:d8:5a:c3:ab:59:a5:4b:23: 14:21:fd:7f:2b:92:c0:7b:a7:3f:5c:24:b3:51:d3:db:d1:52: ed:5a:3f:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB1PnHOIxDlYdQFA78IOIfifJ0B8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjFaFw0yNjA2MDEwMjAzMjFaMDMxMTAvBgNV BAMTKDg0QTNENTAzODBENUY4RUVDRDAzRTk4N0U5MEEwM0MyQzBDQ0RBNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCftojuf2ti0GN7UxzwL6Amyt9T w0xKez26tDebyO8lBVDNDuZW5pztuF+FN2Hbbz3mB3y6WpAHqHWqPCyirQ58gKD8 NVvE0xkbWkPo1wErctU5ydmfKhDT4rMi33cNAU5fxtV8DtOsV1eSmOLSDA3dD0lE 3G2iRY10JMNZJHXl/NziNst7VOs0FjL34eMSOwNfIP84NKmvJWeGj/ybb8vfRKKD dFG3T5uCnwuN3jioBoLJpn1OMw7r2zoNp5k4Z92/8LVIIdKXrTN2DmMu0CVuONk5 aMyFSmmCiystcYLO4mMbYqP9fwliijezWH4c2PrSH4vKqH3N9vr060RfRGsLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhKPVA4DV+O7NA+mH6QoDwsDM2kswHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1flMA0GCSqG SIb3DQEBCwUAA4IBAQBuiHEMPSvQXsC/Yv3imuFQSsUmi3ukitPtCPcMVsgfhQk5 dp98mEkaRQdGkQrsK6PuUZ9n4qeyFmU17oxQuM4Cvba99syMNJxjz2Ym0Xsnhsoh 3JZF0q30obVkajvEBHGz/OvRHAwwP05cC4bv2y1XH/Icdy/FW37gT+dUyZ8iaLlR max13cXkAOzWeLkyTAEl1/6x9tl8sxrrql1Y8hSDpNlVKWyr3+q2WkEHefu3tGB/ 17uyc8kLjqnZA+6rP1mYqX6ktNpFh4jWe1CndHCQ7+yg/xVYuJZqoQsUiRHOcoDR 2FrDq1mlSyMUIf1/K5LAe6c/XCSzUdPb0VLtWj8T -----END CERTIFICATE-----Generated at Sun Jun 8 06:19:58 2025 by rpki-client