$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa File: 3130332e33382e3130302e302f32322d3232203d3e203338353234.roa (raw, json) Hash identifier: JAPAP8oJxpB0ozm9mrLSbEXaFspTve14bNykmoMuqtY= Subject key identifier: 0A:D7:85:E6:6A:89:5B:8C:2C:8D:79:12:A5:3E:43:4B:CB:26:CB:24 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 6252CC83F200930D956A4CE47C2D0911F8347581 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:47 +0000 ROA not before: Mon 02 Jun 2025 01:57:47 +0000 ROA not after: Mon 01 Jun 2026 02:02:47 +0000 asID: 38524 IP address blocks: 103.38.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:52:cc:83:f2:00:93:0d:95:6a:4c:e4:7c:2d:09:11:f8:34:75:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:47 2025 GMT Not After : Jun 1 02:02:47 2026 GMT Subject: CN=0AD785E66A895B8C2C8D7912A53E434BCB26CB24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:dd:68:01:7a:6a:1d:e6:87:8c:75:c6:0e: 5a:3e:19:65:38:b8:a8:a1:98:30:ea:a3:64:8d:f7: 47:da:d3:31:21:00:76:ac:f0:61:5c:1c:75:e1:b8: e9:97:e7:e1:8b:6d:76:40:6e:09:b8:ed:cc:3b:83: ef:f5:c5:08:e7:9a:38:b4:d0:ea:74:db:45:d7:eb: f7:e6:b7:3b:66:54:7f:52:1c:88:96:79:a6:86:ec: 70:59:ae:d6:25:10:dd:f7:79:d2:4e:0e:03:88:09: 67:a9:17:62:01:ca:a8:60:b1:e4:1a:ec:67:4e:5c: be:f1:24:36:33:a4:c5:45:67:c4:c4:d0:66:1c:45: c8:37:d8:63:3b:77:18:da:e0:90:26:d2:16:95:da: c6:45:9b:d8:4b:18:8e:3c:98:72:b3:51:91:17:3a: 36:2c:42:d3:ed:d1:23:70:7c:8a:5d:3d:87:b2:a0: f6:55:ff:cc:39:19:64:1e:f4:55:e8:ea:cd:06:cb: d9:c4:30:f4:7b:30:5a:d4:f4:7f:9e:3b:d5:47:87: 0c:74:e7:06:40:d7:6b:83:71:22:64:2d:46:1d:04: 51:2e:a7:76:61:82:83:c7:ca:26:49:31:ad:e5:9f: 7d:38:25:a9:a9:ed:1c:07:08:4e:1c:3d:29:b8:06: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D7:85:E6:6A:89:5B:8C:2C:8D:79:12:A5:3E:43:4B:CB:26:CB:24 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.100.0/22 Signature Algorithm: sha256WithRSAEncryption 19:71:aa:d4:8a:b8:54:e5:b6:7d:9c:fe:11:02:24:c6:3e:ad: 86:88:26:ef:52:c8:c1:45:22:9b:c4:09:cf:10:fe:cf:eb:13: 8c:41:88:14:dc:db:cd:b6:14:1f:d5:4c:b5:97:76:89:4e:5a: 9b:8c:39:be:16:d2:f0:d4:de:14:b8:d1:9a:68:d9:77:1f:f2: de:0e:f9:66:0a:cf:f3:76:94:f8:4f:a2:ad:f6:95:1c:4d:fa: 5a:27:46:93:17:29:5f:0d:ca:18:eb:ef:b4:75:b1:d8:3f:e8: 5e:8e:af:05:2e:fa:d9:98:e7:c6:8b:e8:a9:ac:87:13:d0:9a: f0:8c:a3:2b:f2:c9:0b:3b:2d:a3:6c:80:c7:bd:7d:32:da:60: f3:70:32:2d:2c:83:ed:e0:70:9b:02:bc:ab:46:3f:4d:0c:34: 52:b9:54:bb:21:9a:40:37:be:07:f6:28:22:e7:45:81:50:44: 84:75:90:09:c5:79:fe:4d:4b:bf:b6:4f:8f:65:07:d6:69:de: d3:41:40:ab:dc:aa:0e:52:ef:a9:5c:01:40:af:b2:02:b0:4e: c9:7a:bd:f1:3e:3b:a9:20:55:1a:df:a2:e1:2e:0e:b2:01:5c: 99:66:d5:bf:93:17:5f:06:6f:e7:41:63:0b:3e:13:ff:c4:cf: 4e:f6:8b:9b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYlLMg/IAkw2VakzkfC0JEfg0dYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDdaFw0yNjA2MDEwMjAyNDdaMDMxMTAvBgNV BAMTKDBBRDc4NUU2NkE4OTVCOEMyQzhENzkxMkE1M0U0MzRCQ0IyNkNCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC07t1oAXpqHeaHjHXGDlo+GWU4 uKihmDDqo2SN90fa0zEhAHas8GFcHHXhuOmX5+GLbXZAbgm47cw7g+/1xQjnmji0 0Op020XX6/fmtztmVH9SHIiWeaaG7HBZrtYlEN33edJODgOICWepF2IByqhgseQa 7GdOXL7xJDYzpMVFZ8TE0GYcRcg32GM7dxja4JAm0haV2sZFm9hLGI48mHKzUZEX OjYsQtPt0SNwfIpdPYeyoPZV/8w5GWQe9FXo6s0Gy9nEMPR7MFrU9H+eO9VHhwx0 5wZA12uDcSJkLUYdBFEup3ZhgoPHyiZJMa3ln304Jamp7RwHCE4cPSm4BpihAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCteF5mqJW4wsjXkSpT5DS8smyyQwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcmZDANBgkqhkiG 9w0BAQsFAAOCAQEAGXGq1Iq4VOW2fZz+EQIkxj6thogm71LIwUUim8QJzxD+z+sT jEGIFNzbzbYUH9VMtZd2iU5am4w5vhbS8NTeFLjRmmjZdx/y3g75ZgrP83aU+E+i rfaVHE36WidGkxcpXw3KGOvvtHWx2D/oXo6vBS762ZjnxovoqayHE9Ca8IyjK/LJ Czsto2yAx719Mtpg83AyLSyD7eBwmwK8q0Y/TQw0UrlUuyGaQDe+B/YoIudFgVBE hHWQCcV5/k1Lv7ZPj2UH1mne00FAq9yqDlLvqVwBQK+yArBOyXq98T47qSBVGt+i 4S4OsgFcmWbVv5MXXwZv50FjCz4T/8TPTvaLmw== -----END CERTIFICATE-----Generated at Sat Jun 7 09:21:56 2025 by rpki-client