$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232352e302f32342d3234203d3e203536323431.roa File: 3130332e33372e3232352e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: /+k3ui8GytmO1tlj+y1Z8gmj9HsQuJiXxCeCVdhSkSk= Subject key identifier: 6B:02:6C:34:33:31:E8:E6:7F:9A:90:36:4D:89:91:11:E4:FB:2B:B4 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 7F7DF72143B8D08DAE7D29BDE7A3716C80AD48C5 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232352e302f32342d3234203d3e203536323431.roa Signing time: Mon 26 May 2025 05:00:00 +0000 ROA not before: Mon 26 May 2025 04:55:00 +0000 ROA not after: Mon 25 May 2026 05:00:00 +0000 asID: 56241 IP address blocks: 103.37.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7d:f7:21:43:b8:d0:8d:ae:7d:29:bd:e7:a3:71:6c:80:ad:48:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 26 04:55:00 2025 GMT Not After : May 25 05:00:00 2026 GMT Subject: CN=6B026C343331E8E67F9A90364D899111E4FB2BB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:70:13:e7:e4:35:07:ee:bb:24:c0:4e:ca: 84:3f:24:4e:4c:fd:3e:c5:4c:0c:33:36:56:7b:af: bf:1a:44:d8:a2:7c:6f:96:0f:5f:6a:4b:8d:45:95: bf:01:c3:53:60:f5:ab:d8:75:c7:ff:3a:5d:d4:a8: 8e:52:1a:13:37:d9:66:65:a2:cc:fe:e4:c4:66:5d: 28:64:c2:8e:b6:ef:2d:9b:ff:60:da:29:3e:a9:06: 88:d4:29:e6:ae:73:48:73:f7:59:6a:21:16:6b:3d: e6:65:fa:51:5c:fb:7e:33:4a:39:57:97:46:74:5d: 33:64:ac:de:18:bd:07:0d:27:39:af:d9:9d:c2:f1: 71:49:ae:05:39:62:1f:fa:a5:16:ba:c4:c9:06:97: e2:59:1e:47:5b:d0:fc:81:41:50:17:31:d0:f9:0f: e4:9c:40:45:ff:90:cc:b1:ac:c6:8e:28:cb:43:88: 98:81:10:12:a8:ee:10:a5:1b:e5:cf:a3:d3:bb:a7: 7b:de:ce:a4:dd:80:10:3d:e7:17:61:c0:81:a8:81: e5:c9:2f:d2:7a:72:39:06:c5:a8:fa:23:e1:8f:53: f4:19:1c:e9:bf:21:24:d5:16:09:89:27:00:c9:d4: 25:8c:5b:f7:1b:82:a0:e7:d6:67:9b:9b:a8:9c:69: dc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:02:6C:34:33:31:E8:E6:7F:9A:90:36:4D:89:91:11:E4:FB:2B:B4 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3130332e33372e3232352e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.225.0/24 Signature Algorithm: sha256WithRSAEncryption 38:48:1d:52:55:25:85:b4:76:99:a1:8a:47:69:bf:45:c2:f4: c8:60:47:d4:f1:5a:2e:66:c4:47:94:d9:8a:21:3d:c5:1d:ff: 78:eb:4f:52:79:8a:6a:83:27:3c:22:93:09:03:79:96:f5:bf: 14:2e:6d:69:3a:4e:58:d7:8d:84:c2:c6:d5:be:fb:11:01:66: 57:4a:4b:82:ff:b4:60:f2:c8:f8:24:ab:91:f4:57:1e:1c:12: 0b:8d:3c:77:d9:03:20:77:e8:01:40:1d:e0:76:0e:6f:26:73: 0c:ec:ac:87:06:a5:32:50:2a:d3:32:9b:0b:f0:dc:10:87:ce: 88:8f:93:62:f6:ee:57:2a:b8:98:5d:4b:52:6d:b3:a5:11:82: 84:2e:ee:88:ea:34:27:9a:78:74:9b:91:68:62:7f:43:21:e2: f1:47:8b:41:02:dc:98:9f:28:95:a7:cb:72:19:e8:a2:1e:d4: 6a:89:6f:3b:a3:b3:e6:67:d9:6a:e9:e7:ec:b7:e8:17:f0:3b: 0b:49:b1:76:cf:f7:e1:93:aa:5a:67:10:94:05:97:11:3f:98: 28:e7:9b:5e:ac:92:8c:31:a8:01:1d:4d:ba:01:d3:ec:72:5a: 08:f0:9e:a1:e3:ae:e1:8b:a3:a9:ed:78:55:96:db:83:6c:c7: 3c:43:7e:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf333IUO40I2ufSm956NxbICtSMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MjYwNDU1MDBaFw0yNjA1MjUwNTAwMDBaMDMxMTAvBgNV BAMTKDZCMDI2QzM0MzMzMUU4RTY3RjlBOTAzNjREODk5MTExRTRGQjJCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGWnAT5+Q1B+67JMBOyoQ/JE5M /T7FTAwzNlZ7r78aRNiifG+WD19qS41Flb8Bw1Ng9avYdcf/Ol3UqI5SGhM32WZl osz+5MRmXShkwo627y2b/2DaKT6pBojUKeauc0hz91lqIRZrPeZl+lFc+34zSjlX l0Z0XTNkrN4YvQcNJzmv2Z3C8XFJrgU5Yh/6pRa6xMkGl+JZHkdb0PyBQVAXMdD5 D+ScQEX/kMyxrMaOKMtDiJiBEBKo7hClG+XPo9O7p3vezqTdgBA95xdhwIGogeXJ L9J6cjkGxaj6I+GPU/QZHOm/ISTVFgmJJwDJ1CWMW/cbgqDn1mebm6icadwpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUawJsNDMx6OZ/mpA2TYmREeT7K7QwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMxMzAzMzJlMzMzNzJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcl4TANBgkqhkiG 9w0BAQsFAAOCAQEAOEgdUlUlhbR2maGKR2m/RcL0yGBH1PFaLmbER5TZiiE9xR3/ eOtPUnmKaoMnPCKTCQN5lvW/FC5taTpOWNeNhMLG1b77EQFmV0pLgv+0YPLI+CSr kfRXHhwSC408d9kDIHfoAUAd4HYObyZzDOyshwalMlAq0zKbC/DcEIfOiI+TYvbu Vyq4mF1LUm2zpRGChC7uiOo0J5p4dJuRaGJ/QyHi8UeLQQLcmJ8olafLchnooh7U aolvO6Oz5mfZaunn7LfoF/A7C0mxds/34ZOqWmcQlAWXET+YKOebXqySjDGoAR1N ugHT7HJaCPCeoeOu4Yujqe14VZbbg2zHPEN+7Q== -----END CERTIFICATE-----Generated at Sat Jun 7 05:58:17 2025 by rpki-client