$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130322e302f32342d3234203d3e203338353234.roa File: 3130332e33382e3130322e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: JmMm388zSPECWah2EUHEBh2iisHpp4dC+vKF/XxHiZk= Subject key identifier: 34:AD:7B:56:63:A5:9F:1D:05:A7:CD:C6:86:F0:93:25:62:46:65:2B Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 0DA3F4B0FD6E23EEF3B6CF1C06BFE6C0B2613A0C Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130322e302f32342d3234203d3e203338353234.roa Signing time: Mon 02 Jun 2025 02:02:45 +0000 ROA not before: Mon 02 Jun 2025 01:57:45 +0000 ROA not after: Mon 01 Jun 2026 02:02:45 +0000 asID: 38524 IP address blocks: 103.38.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a3:f4:b0:fd:6e:23:ee:f3:b6:cf:1c:06:bf:e6:c0:b2:61:3a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 2 01:57:45 2025 GMT Not After : Jun 1 02:02:45 2026 GMT Subject: CN=34AD7B5663A59F1D05A7CDC686F093256246652B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:2c:d1:c8:ff:ae:2d:c3:eb:3e:90:98:bc: 58:2a:f4:23:08:26:91:03:23:9c:ce:22:74:e0:5b: 1b:51:49:22:6d:18:f3:1c:6d:db:2d:f6:40:f6:bb: a9:70:3c:11:1f:62:9a:b4:aa:ab:2e:db:c7:6a:10: 33:73:07:45:0a:bd:55:3b:37:78:ca:11:d4:f5:ac: 03:fc:97:8e:78:22:8d:5b:d3:72:3c:aa:1a:40:47: b3:77:de:9f:01:ad:e2:f4:26:7a:0b:da:92:04:90: 75:ed:1a:aa:90:0b:f2:a8:c9:29:bb:62:db:3e:a6: 10:2a:11:aa:e7:6a:0e:1d:0b:28:79:cf:83:81:df: 84:45:41:62:54:d1:b8:41:4c:53:04:34:82:a1:30: e1:e7:a8:cb:0a:b4:aa:49:16:72:1d:1e:f0:de:7d: a0:ac:aa:84:fc:41:7f:0b:aa:6d:17:5b:10:e8:2c: 52:c6:3a:65:7b:47:8b:4d:48:b9:1a:1f:5b:0b:38: e7:f9:e8:4a:1e:67:f4:2c:23:d9:01:78:79:80:b2: 8c:53:ea:e6:d8:b8:c7:76:83:1a:24:9b:12:29:73: 94:a4:7a:5a:35:c4:f3:ee:1d:d3:c5:95:07:9f:cd: 7e:77:90:76:c0:2a:5a:10:3d:bb:67:df:50:ec:18: c3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AD:7B:56:63:A5:9F:1D:05:A7:CD:C6:86:F0:93:25:62:46:65:2B X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130322e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.102.0/24 Signature Algorithm: sha256WithRSAEncryption 09:e6:95:d7:6e:78:8a:52:47:cb:e4:07:1f:8f:63:91:b0:ea: 57:56:1d:fa:d3:63:f5:92:4b:12:29:c4:d4:3b:62:bc:a5:12: 6b:8f:e7:ba:6f:f0:25:3e:08:9e:1f:71:5d:52:4e:ac:c1:4f: 28:30:a1:4b:d0:b0:bd:7a:fb:a7:15:b3:9e:84:43:ec:91:39: 44:52:a0:16:06:a3:a2:dd:51:e1:15:a2:8b:c5:78:4c:f2:e4: dd:47:43:c6:8c:fd:0d:64:cf:38:6a:7f:79:cb:39:dd:d8:8e: f8:26:72:af:3a:cd:59:4c:53:c1:d7:fd:79:cd:9b:92:8b:a0: b3:fb:08:fb:4b:46:99:d2:5c:04:a1:76:c6:37:4f:4e:be:c3: 0c:b4:57:a2:78:85:35:20:22:92:ac:14:cd:96:05:d3:3e:bd: f0:31:eb:20:5c:57:57:b1:f0:dc:26:18:cb:7c:c0:2b:49:56: f0:96:cd:3b:07:d3:b3:bb:50:e0:5a:b3:d7:3f:1e:dc:b9:13: 30:29:61:b0:bc:30:aa:f9:70:28:be:79:ee:b5:ea:a1:aa:90: 85:dc:a6:29:30:d2:8b:ae:6b:15:ca:1a:0f:c4:91:db:05:19: 6f:a9:12:ca:54:e9:f1:3a:1d:11:2e:e5:ed:d1:29:a2:07:32: 05:45:b3:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDaP0sP1uI+7zts8cBr/mwLJhOgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MDIwMTU3NDVaFw0yNjA2MDEwMjAyNDVaMDMxMTAvBgNV BAMTKDM0QUQ3QjU2NjNBNTlGMUQwNUE3Q0RDNjg2RjA5MzI1NjI0NjY1MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIKizRyP+uLcPrPpCYvFgq9CMI JpEDI5zOInTgWxtRSSJtGPMcbdst9kD2u6lwPBEfYpq0qqsu28dqEDNzB0UKvVU7 N3jKEdT1rAP8l454Io1b03I8qhpAR7N33p8BreL0JnoL2pIEkHXtGqqQC/KoySm7 Yts+phAqEarnag4dCyh5z4OB34RFQWJU0bhBTFMENIKhMOHnqMsKtKpJFnIdHvDe faCsqoT8QX8Lqm0XWxDoLFLGOmV7R4tNSLkaH1sLOOf56EoeZ/QsI9kBeHmAsoxT 6ubYuMd2gxokmxIpc5Skelo1xPPuHdPFlQefzX53kHbAKloQPbtn31DsGMN5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNK17VmOlnx0Fp83GhvCTJWJGZSswHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcmZjANBgkqhkiG 9w0BAQsFAAOCAQEACeaV1254ilJHy+QHH49jkbDqV1Yd+tNj9ZJLEinE1DtivKUS a4/num/wJT4Inh9xXVJOrMFPKDChS9CwvXr7pxWznoRD7JE5RFKgFgajot1R4RWi i8V4TPLk3UdDxoz9DWTPOGp/ecs53diO+CZyrzrNWUxTwdf9ec2bkougs/sI+0tG mdJcBKF2xjdPTr7DDLRXoniFNSAikqwUzZYF0z698DHrIFxXV7Hw3CYYy3zAK0lW 8JbNOwfTs7tQ4Fqz1z8e3LkTMClhsLwwqvlwKL557rXqoaqQhdymKTDSi65rFcoa D8SR2wUZb6kSylTp8TodES7l7dEpogcyBUWzNA== -----END CERTIFICATE-----Generated at Sat Jun 7 09:28:44 2025 by rpki-client