$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233302e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3233302e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: qOHmsXxOnT/77ezyNoXktCRxuQDt7aEAeLXvslUNW+I= Subject key identifier: 08:3D:16:CC:F5:08:93:7E:2C:20:D1:5E:73:9B:27:ED:1A:A9:87:08 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 04B685DBC93A6E62FEFD8B04110C8412A822213F Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233302e302f32342d3234203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:24 +0000 ROA not before: Mon 02 Jun 2025 01:58:24 +0000 ROA not after: Mon 01 Jun 2026 02:03:24 +0000 asID: 136088 IP address blocks: 103.87.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b6:85:db:c9:3a:6e:62:fe:fd:8b:04:11:0c:84:12:a8:22:21:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:24 2025 GMT Not After : Jun 1 02:03:24 2026 GMT Subject: CN=083D16CCF508937E2C20D15E739B27ED1AA98708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:af:23:a5:e5:2c:2b:c2:12:ef:ab:45:36:5a: 22:f8:02:60:66:28:f6:7b:01:6b:7f:5d:60:a3:ed: 36:4a:db:60:d8:a2:b6:8d:35:dd:8b:d7:48:73:07: 54:7f:62:82:77:a6:0c:bf:41:8c:3d:4f:fe:b2:0f: f5:95:8f:76:a5:1d:7e:ff:90:0b:9d:f6:5b:e0:d8: 56:6d:49:75:56:fb:78:d1:18:d9:9a:e0:2c:0e:d5: 37:72:22:a7:b7:16:d7:50:b9:87:01:bd:99:f7:f4: 84:e0:0d:95:0d:07:dd:9f:98:c3:e1:03:d9:34:9b: b2:2e:e4:33:94:69:2b:cb:d5:40:0b:5a:35:20:53: a5:15:60:c1:0f:db:4e:8e:1e:55:09:08:5a:93:7e: a1:59:9e:ca:fd:22:e4:b7:82:8c:34:44:a7:70:82: 15:29:11:82:b6:3f:4a:7b:e0:6d:3a:72:77:82:58: 0e:2d:03:05:e4:86:8a:1a:e7:07:69:2e:7e:fd:e4: 73:0f:99:ba:93:b6:e6:a0:36:62:fc:88:41:65:59: de:87:34:38:c4:e2:d7:00:10:3e:e0:79:10:fc:29: 1d:94:26:b9:f5:a0:47:f3:f9:4a:69:09:ab:41:7c: 42:57:51:70:8f:d7:ae:7d:b7:f8:34:d8:9e:9d:1e: 83:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:3D:16:CC:F5:08:93:7E:2C:20:D1:5E:73:9B:27:ED:1A:A9:87:08 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233302e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.230.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:19:97:70:1c:6d:d7:4d:47:ff:49:11:1e:a9:33:16:06:45: c2:0c:bd:1c:e3:5e:40:25:e4:75:ef:78:24:67:e2:88:f4:48: ae:a0:b8:fc:06:c9:3a:e1:e9:61:22:2c:73:df:99:ea:36:c5: 70:98:04:8a:0a:d7:64:b9:bd:07:29:ce:d7:a4:54:e9:f8:1d: b8:97:76:24:39:64:70:7e:58:ac:66:c1:03:29:d3:0d:1a:6b: 82:40:f0:ee:cf:2e:79:61:cb:ba:16:58:19:5f:c8:ce:a3:86: d0:2d:e8:07:a7:ed:87:70:e5:0f:0c:b8:ac:23:dc:0e:25:d4: 09:9f:10:92:9b:a3:29:b6:42:cf:18:99:d5:4f:9d:82:e5:23: 56:ad:36:00:64:41:ab:7c:56:fc:cc:f5:d8:73:94:74:4a:53: b3:30:85:36:6f:cd:68:1e:dd:fa:e0:dc:ad:f9:e9:69:8f:b3: 71:7b:f6:e5:96:78:ba:57:19:3e:ec:f6:54:53:d4:27:6f:5b: fd:68:45:16:11:b9:29:de:a4:3c:63:4f:b2:f3:69:86:ee:f4: b0:a9:90:8f:31:55:5c:4f:f0:d6:6c:e5:e6:a1:29:34:3d:79: 78:91:f0:ba:27:1d:bc:37:f8:dc:63:64:32:96:cf:52:d5:a9: 4f:ed:0b:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBLaF28k6bmL+/YsEEQyEEqgiIT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjRaFw0yNjA2MDEwMjAzMjRaMDMxMTAvBgNV BAMTKDA4M0QxNkNDRjUwODkzN0UyQzIwRDE1RTczOUIyN0VEMUFBOTg3MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ryOl5SwrwhLvq0U2WiL4AmBm KPZ7AWt/XWCj7TZK22DYoraNNd2L10hzB1R/YoJ3pgy/QYw9T/6yD/WVj3alHX7/ kAud9lvg2FZtSXVW+3jRGNma4CwO1TdyIqe3FtdQuYcBvZn39ITgDZUNB92fmMPh A9k0m7Iu5DOUaSvL1UALWjUgU6UVYMEP206OHlUJCFqTfqFZnsr9IuS3gow0RKdw ghUpEYK2P0p74G06cneCWA4tAwXkhooa5wdpLn795HMPmbqTtuagNmL8iEFlWd6H NDjE4tcAED7geRD8KR2UJrn1oEfz+UppCatBfEJXUXCP1659t/g02J6dHoPtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCD0WzPUIk34sINFec5sn7RqphwgwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1fmMA0GCSqG SIb3DQEBCwUAA4IBAQA/GZdwHG3XTUf/SREeqTMWBkXCDL0c415AJeR173gkZ+KI 9EiuoLj8Bsk64elhIixz35nqNsVwmASKCtdkub0HKc7XpFTp+B24l3YkOWRwflis ZsEDKdMNGmuCQPDuzy55Ycu6FlgZX8jOo4bQLegHp+2HcOUPDLisI9wOJdQJnxCS m6MptkLPGJnVT52C5SNWrTYAZEGrfFb8zPXYc5R0SlOzMIU2b81oHt364Nyt+elp j7Nxe/bllni6Vxk+7PZUU9Qnb1v9aEUWEbkp3qQ8Y0+y82mG7vSwqZCPMVVcT/DW bOXmoSk0PXl4kfC6Jx28N/jcY2Qyls9S1alP7QsV -----END CERTIFICATE-----Generated at Sun Jun 8 07:41:40 2025 by rpki-client