$ rpki-client -vvf repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa File: 3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa (raw, json) Hash identifier: SgJaLekQ3Q9cVNBqu5Sas48wyzpxdaLZB6LIMnNqJ+c= Subject key identifier: C8:23:4C:7D:F0:44:04:DA:3A:81:7D:4C:95:95:C9:56:06:EA:59:64 Certificate issuer: /CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Certificate serial: 59D1A0DB1149DECB1AF37C1FA610434D0E1BD2D5 Authority key identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa Signing time: Mon 02 Jun 2025 02:03:20 +0000 ROA not before: Mon 02 Jun 2025 01:58:20 +0000 ROA not after: Mon 01 Jun 2026 02:03:20 +0000 asID: 137366 IP address blocks: 103.116.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d1:a0:db:11:49:de:cb:1a:f3:7c:1f:a6:10:43:4d:0e:1b:d2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Validity Not Before: Jun 2 01:58:20 2025 GMT Not After : Jun 1 02:03:20 2026 GMT Subject: CN=C8234C7DF04404DA3A817D4C9595C95606EA5964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:79:12:ee:2f:57:1a:c3:2f:de:48:e8:d4:ff: 33:74:3f:18:0e:da:23:27:b4:5e:ba:85:c2:2c:5a: 28:1d:fc:b5:a1:3b:15:1d:cb:d5:df:1e:9f:5f:da: 90:e7:a7:c2:14:18:01:ab:d0:7d:f7:e7:9e:8b:77: 7e:62:11:b0:9b:83:c2:ae:68:e9:42:df:b5:88:18: 8b:62:d1:86:ec:bd:1d:8b:15:dc:6b:fc:e8:95:f8: 64:e4:1b:19:13:36:04:df:91:16:71:6b:d5:fa:de: f8:2d:2c:06:d1:13:e7:5d:e0:66:83:08:bf:4f:3c: 68:a4:a1:b8:75:30:13:75:75:c5:fd:3c:ee:8a:3a: 45:a2:1d:ba:4e:a8:7d:34:69:99:2d:a7:bb:5b:1f: f4:a9:fc:93:78:f3:d2:05:23:d8:0f:bf:34:e8:9e: a6:d1:c8:b0:74:de:ee:d0:15:92:64:12:8c:1d:0b: 6d:fa:70:6d:bc:8a:82:dc:f4:6a:e6:84:d1:4c:ea: 2b:de:41:21:c8:85:fa:38:97:92:2e:7b:a7:17:7e: ca:fc:c7:47:39:d6:95:69:81:3c:ac:15:0b:df:04: 50:ca:eb:bf:57:07:cd:a2:1a:0d:eb:c3:08:9d:09: 13:58:0c:4c:d5:47:d5:57:7d:5f:a6:7a:7d:be:b5: 31:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:23:4C:7D:F0:44:04:DA:3A:81:7D:4C:95:95:C9:56:06:EA:59:64 X509v3 Authority Key Identifier: keyid:DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.218.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:3e:08:89:fa:55:70:24:ba:b0:69:7b:19:0f:2b:33:07:64: 4e:a3:c3:32:bc:8b:e3:ec:3f:64:92:79:84:f4:92:10:00:2e: 72:72:74:59:0e:9c:7c:cf:ad:3b:35:d8:cb:f0:90:c2:20:31: af:fc:04:c3:c8:6d:cb:56:39:8f:a4:57:35:fe:59:26:34:4c: d5:0d:5f:c8:3e:59:58:df:59:17:74:8a:8d:58:d8:87:d5:f4: ba:de:f4:e6:0d:c3:6e:28:9e:7e:10:67:21:cc:ec:b5:85:06: 62:12:57:72:95:82:d0:77:6b:7b:09:b1:35:bd:13:0a:51:f6: 4c:e7:fa:48:2a:a3:3b:e5:c4:ba:af:2b:ea:16:ba:63:59:9e: e0:17:28:a1:5a:25:7a:60:03:8b:0b:95:62:7f:ea:37:c2:b5: 05:0d:cc:75:32:7e:31:9c:59:d3:9b:82:85:66:98:77:69:e1: 32:5a:7b:6b:81:cb:51:63:bc:ea:00:96:e1:6c:62:46:a7:8c: 5d:00:04:7c:a9:40:3f:a3:8f:53:70:8d:80:bb:8a:17:11:23: 5b:04:5e:e5:90:d3:2e:a9:3a:76:e2:28:df:23:03:fc:0e:33: 87:e5:b0:cf:7c:d6:65:06:36:c5:53:d3:c2:c4:0d:0b:46:93: 3e:44:59:f5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWdGg2xFJ3ssa83wfphBDTQ4b0tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQy REMyRDdGMzAeFw0yNTA2MDIwMTU4MjBaFw0yNjA2MDEwMjAzMjBaMDMxMTAvBgNV BAMTKEM4MjM0QzdERjA0NDA0REEzQTgxN0Q0Qzk1OTVDOTU2MDZFQTU5NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTeRLuL1cawy/eSOjU/zN0PxgO 2iMntF66hcIsWigd/LWhOxUdy9XfHp9f2pDnp8IUGAGr0H33556Ld35iEbCbg8Ku aOlC37WIGIti0YbsvR2LFdxr/OiV+GTkGxkTNgTfkRZxa9X63vgtLAbRE+dd4GaD CL9PPGikobh1MBN1dcX9PO6KOkWiHbpOqH00aZktp7tbH/Sp/JN489IFI9gPvzTo nqbRyLB03u7QFZJkEowdC236cG28ioLc9GrmhNFM6iveQSHIhfo4l5Iue6cXfsr8 x0c51pVpgTysFQvfBFDK679XB82iGg3rwwidCRNYDEzVR9VXfV+men2+tTGzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyCNMffBEBNo6gX1MlZXJVgbqWWQwHwYDVR0j BBgwFoAU22urlWFPaYEfKum0g3PnnS3C1/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmQ3MjBkNS1iN2Q0LTQzOTUtYTA2Yi0xOTkwNGE2M2Y5NDgvMC9EQjZCQUI5NTYx NEY2OTgxMUYyQUU5QjQ4MzczRTc5RDJEQzJEN0YzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQyREMy RDdGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZDcyMGQ1LWI3ZDQtNDM5NS1h MDZiLTE5OTA0YTYzZjk0OC8wLzMxMzAzMzJlMzEzMTM2MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndNowDQYJ KoZIhvcNAQELBQADggEBAG4+CIn6VXAkurBpexkPKzMHZE6jwzK8i+PsP2SSeYT0 khAALnJydFkOnHzPrTs12MvwkMIgMa/8BMPIbctWOY+kVzX+WSY0TNUNX8g+WVjf WRd0io1Y2IfV9Lre9OYNw24onn4QZyHM7LWFBmISV3KVgtB3a3sJsTW9EwpR9kzn +kgqozvlxLqvK+oWumNZnuAXKKFaJXpgA4sLlWJ/6jfCtQUNzHUyfjGcWdObgoVm mHdp4TJae2uBy1FjvOoAluFsYkanjF0ABHypQD+jj1NwjYC7ihcRI1sEXuWQ0y6p OnbiKN8jA/wOM4flsM981mUGNsVT08LEDQtGkz5EWfU= -----END CERTIFICATE-----Generated at Fri Jun 6 16:49:14 2025 by rpki-client