$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232342e302f32342d3234203d3e203536323431.roa File: 3130332e33372e3232342e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: xYglbiMVDb2Bz7L8ERkpC+mlCGlzNAlNUw0DloGlYMY= Subject key identifier: DD:0E:24:D6:F7:1D:C7:6F:0E:B4:B9:B8:1A:32:BD:CD:34:CC:DC:7E Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 176547931E56D0716287A54E32BDE7312FA8869C Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232342e302f32342d3234203d3e203536323431.roa Signing time: Mon 26 May 2025 05:00:00 +0000 ROA not before: Mon 26 May 2025 04:55:00 +0000 ROA not after: Mon 25 May 2026 05:00:00 +0000 asID: 56241 IP address blocks: 103.37.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:65:47:93:1e:56:d0:71:62:87:a5:4e:32:bd:e7:31:2f:a8:86:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 26 04:55:00 2025 GMT Not After : May 25 05:00:00 2026 GMT Subject: CN=DD0E24D6F71DC76F0EB4B9B81A32BDCD34CCDC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3a:20:5b:0a:f2:16:44:12:a1:af:61:ce:f8: 44:89:43:7a:de:63:26:ff:3e:53:6f:7a:fe:5b:0c: d1:65:ec:ee:5f:07:6a:31:6e:db:a5:31:e6:ad:07: c6:68:22:50:94:8a:18:b2:02:5e:37:92:5f:93:c3: 69:ff:98:60:01:fc:b6:51:57:fa:23:78:e7:30:a7: 74:0f:16:c1:d0:80:fc:4e:32:ff:fa:d4:71:2c:41: 68:82:5a:9e:01:2d:cb:e7:5f:20:ab:22:ad:dc:e3: de:49:6d:a0:8e:a6:82:23:ac:25:1b:df:a6:38:62: 89:8d:47:32:8a:57:74:d8:7c:81:92:43:a7:5e:53: ac:6b:bb:69:ba:c2:d4:af:34:4e:7e:69:46:bd:8e: d8:de:15:ae:a1:62:1b:9a:af:9c:39:91:9e:5a:34: 05:c1:04:c8:7b:9c:94:c0:6d:5b:2d:87:4b:82:99: 93:4a:17:4e:b7:ad:f6:89:14:84:cc:ae:46:71:e6: 62:1b:2c:b5:f7:4f:f0:d7:00:65:ca:35:47:fb:47: 52:ca:99:aa:d5:bc:cf:47:c6:a1:11:d7:ef:76:4d: 8b:4e:47:52:71:06:c8:98:b6:48:cb:b4:b7:86:c5: 05:7b:77:4a:bc:24:c7:b5:28:a1:56:55:4f:38:c0: bc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0E:24:D6:F7:1D:C7:6F:0E:B4:B9:B8:1A:32:BD:CD:34:CC:DC:7E X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232342e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.224.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:7d:7d:4a:bd:c0:19:bd:e2:7e:e9:bb:de:cb:95:c2:b3:3c: e2:56:c0:43:6a:7f:3d:4a:f9:e1:17:e4:e9:59:ce:e7:d8:a6: 0f:d4:23:cf:f1:7d:14:b4:ff:0d:8c:a1:10:a1:ff:f4:00:86: 05:25:15:50:5f:26:94:19:c8:d3:63:3e:77:e3:8f:0d:d6:26: 9a:cb:ee:3a:87:de:ec:bd:74:b5:42:3b:85:7a:d4:59:c1:de: b2:7e:ee:3d:eb:ff:54:65:70:76:db:fa:a4:1d:dd:ba:9d:15: 10:53:41:f0:2c:db:71:7c:22:92:50:e5:e8:0f:c1:e0:a7:a9: 43:93:48:ce:6e:5c:b7:d7:f5:8e:30:9c:a1:a1:b7:40:78:d8: 40:02:93:4d:41:9b:3c:e1:f0:77:23:75:87:e3:87:ad:53:10: 35:54:29:03:4d:3a:b8:14:dd:3b:1f:d8:a8:ef:2a:53:d1:4b: ce:7c:2a:91:18:4c:fa:cf:8f:e8:97:80:f2:7e:2c:f5:4e:47: 99:ad:2e:04:9f:b6:1d:92:d1:a4:e6:42:5e:ff:64:a9:71:c2: 64:50:7c:14:a7:2a:cb:86:fd:30:c7:11:ac:28:6b:6f:ec:46: 64:3c:ad:79:5a:59:08:77:5f:4b:b0:6b:35:04:aa:b4:c4:19: 16:91:d6:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF2VHkx5W0HFih6VOMr3nMS+ohpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MjYwNDU1MDBaFw0yNjA1MjUwNTAwMDBaMDMxMTAvBgNV BAMTKEREMEUyNEQ2RjcxREM3NkYwRUI0QjlCODFBMzJCRENEMzRDQ0RDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwOiBbCvIWRBKhr2HO+ESJQ3re Yyb/PlNvev5bDNFl7O5fB2oxbtulMeatB8ZoIlCUihiyAl43kl+Tw2n/mGAB/LZR V/ojeOcwp3QPFsHQgPxOMv/61HEsQWiCWp4BLcvnXyCrIq3c495JbaCOpoIjrCUb 36Y4YomNRzKKV3TYfIGSQ6deU6xru2m6wtSvNE5+aUa9jtjeFa6hYhuar5w5kZ5a NAXBBMh7nJTAbVsth0uCmZNKF063rfaJFITMrkZx5mIbLLX3T/DXAGXKNUf7R1LK marVvM9HxqER1+92TYtOR1JxBsiYtkjLtLeGxQV7d0q8JMe1KKFWVU84wLy9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3Q4k1vcdx28OtLm4GjK9zTTM3H4wHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMxMzAzMzJlMzMzNzJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcl4DANBgkqhkiG 9w0BAQsFAAOCAQEAf319Sr3AGb3ifum73suVwrM84lbAQ2p/PUr54Rfk6VnO59im D9Qjz/F9FLT/DYyhEKH/9ACGBSUVUF8mlBnI02M+d+OPDdYmmsvuOofe7L10tUI7 hXrUWcHesn7uPev/VGVwdtv6pB3dup0VEFNB8CzbcXwiklDl6A/B4KepQ5NIzm5c t9f1jjCcoaG3QHjYQAKTTUGbPOHwdyN1h+OHrVMQNVQpA006uBTdOx/YqO8qU9FL znwqkRhM+s+P6JeA8n4s9U5Hma0uBJ+2HZLRpOZCXv9kqXHCZFB8FKcqy4b9MMcR rChrb+xGZDyteVpZCHdfS7BrNQSqtMQZFpHWEA== -----END CERTIFICATE-----Generated at Sun Jun 8 07:16:19 2025 by rpki-client