$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3139312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: LO02TuMxZ2sYLhjGvOrXumoD7e95xfU5CNux1Z+c3M8= Subject key identifier: 97:FB:04:1A:FC:F5:AA:77:16:13:58:8A:F4:40:28:82:AB:AC:67:33 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 6662600F50673F15675BC82F08FBC6C37C1F31AB Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:46 +0000 ROA not before: Mon 02 Jun 2025 01:59:46 +0000 ROA not after: Mon 01 Jun 2026 02:04:46 +0000 asID: 55685 IP address blocks: 103.20.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:62:60:0f:50:67:3f:15:67:5b:c8:2f:08:fb:c6:c3:7c:1f:31:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:46 2025 GMT Not After : Jun 1 02:04:46 2026 GMT Subject: CN=97FB041AFCF5AA771613588AF4402882ABAC6733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f5:5c:be:86:77:34:70:88:2f:68:94:91:62: 4b:03:da:a7:57:38:2d:f8:3c:14:50:82:85:47:90: a3:75:2b:b3:1b:82:ea:8e:a2:05:e1:07:67:5c:d3: e6:96:d4:3d:f5:c9:c4:95:80:f9:43:18:7b:17:b6: ab:25:0e:15:5b:2a:06:57:4c:f2:85:5e:64:87:26: 55:37:69:7f:2c:48:a3:b1:9f:bf:ad:e5:a0:d9:5e: 46:61:77:14:c2:ab:57:72:f1:0c:48:e2:95:25:32: 3a:57:36:38:e0:36:a0:3f:d6:3d:16:40:04:0b:88: b3:e7:d0:1c:57:78:70:39:15:cb:e9:b8:a6:5c:43: cf:0c:e8:2b:4c:24:8d:98:40:bd:d8:68:51:a4:24: a8:77:4c:5c:01:38:43:b0:ad:d3:eb:09:22:cc:28: 2b:2c:38:6e:df:f1:15:e1:72:b4:6b:0c:2c:67:49: ae:f3:70:4b:52:d9:aa:97:fd:f4:26:a6:dd:27:cb: 91:66:ab:d8:b2:4a:fe:5f:9b:3e:e4:b2:aa:56:39: 8d:5f:de:bd:42:16:41:1f:b4:be:a7:c4:4e:ba:dd: 23:c1:c8:a6:5a:f3:d3:f9:38:96:e5:49:0a:53:e1: a5:da:04:09:d5:7b:04:0e:1b:c9:5d:c5:c3:d2:10: d3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FB:04:1A:FC:F5:AA:77:16:13:58:8A:F4:40:28:82:AB:AC:67:33 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.191.0/24 Signature Algorithm: sha256WithRSAEncryption 10:cd:39:c3:cc:7f:70:9f:72:10:6f:33:e5:23:dc:ae:4f:fd: 49:44:09:57:87:40:d6:9e:1e:a1:92:e3:6d:30:c4:a6:27:cb: cc:e9:da:5a:4e:c3:b2:1d:2d:3d:21:2b:2d:24:1e:b9:1d:44: cf:3f:e1:7d:12:d8:0a:f2:50:10:37:a3:20:8b:f2:41:0d:76: 1b:03:2e:5a:d3:9a:6b:45:86:ec:e1:a3:05:26:52:a7:cb:55: fe:e9:73:4f:7a:a6:22:b3:08:42:95:77:9b:66:f8:37:7c:4a: 83:c9:09:d7:5b:65:40:d5:2e:98:14:b1:e0:e6:39:9f:85:31: 79:b7:67:73:b3:40:d3:b6:de:65:19:0e:09:e8:92:c2:1b:24: be:1d:1e:ff:d5:10:54:07:de:dd:83:0f:31:09:93:7b:09:fd: 31:da:a3:e1:1d:85:16:ff:ad:9e:80:83:dd:23:1a:f7:79:93: f3:ae:0c:25:3e:d1:52:82:86:55:f1:01:b8:ca:10:79:40:e7: cb:aa:d0:bc:5d:f2:22:eb:9f:1c:24:df:f2:c5:32:4c:f2:39: 8f:92:95:f1:e9:08:87:5e:e2:74:1d:78:c7:54:41:d5:f5:5a: d8:77:22:d2:6d:a4:1d:08:9a:36:a4:19:16:e3:70:69:db:c2: db:43:6c:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZmJgD1BnPxVnW8gvCPvGw3wfMaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDZaFw0yNjA2MDEwMjA0NDZaMDMxMTAvBgNV BAMTKDk3RkIwNDFBRkNGNUFBNzcxNjEzNTg4QUY0NDAyODgyQUJBQzY3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL9Vy+hnc0cIgvaJSRYksD2qdX OC34PBRQgoVHkKN1K7MbguqOogXhB2dc0+aW1D31ycSVgPlDGHsXtqslDhVbKgZX TPKFXmSHJlU3aX8sSKOxn7+t5aDZXkZhdxTCq1dy8QxI4pUlMjpXNjjgNqA/1j0W QAQLiLPn0BxXeHA5FcvpuKZcQ88M6CtMJI2YQL3YaFGkJKh3TFwBOEOwrdPrCSLM KCssOG7f8RXhcrRrDCxnSa7zcEtS2aqX/fQmpt0ny5Fmq9iySv5fmz7ksqpWOY1f 3r1CFkEftL6nxE663SPByKZa89P5OJblSQpT4aXaBAnVewQOG8ldxcPSENPtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl/sEGvz1qncWE1iK9EAogqusZzMwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvzANBgkqhkiG 9w0BAQsFAAOCAQEAEM05w8x/cJ9yEG8z5SPcrk/9SUQJV4dA1p4eoZLjbTDEpifL zOnaWk7Dsh0tPSErLSQeuR1Ezz/hfRLYCvJQEDejIIvyQQ12GwMuWtOaa0WG7OGj BSZSp8tV/ulzT3qmIrMIQpV3m2b4N3xKg8kJ11tlQNUumBSx4OY5n4Uxebdnc7NA 07beZRkOCeiSwhskvh0e/9UQVAfe3YMPMQmTewn9Mdqj4R2FFv+tnoCD3SMa93mT 864MJT7RUoKGVfEBuMoQeUDny6rQvF3yIuufHCTf8sUyTPI5j5KV8ekIh17idB14 x1RB1fVa2Hci0m2kHQiaNqQZFuNwadvC20NsWA== -----END CERTIFICATE-----Generated at Sun Jun 8 04:57:46 2025 by rpki-client