$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa File: 3130332e34392e32382e302f32342d3234203d3e203633383632.roa (raw, json) Hash identifier: Qke1nNFSxZLmY9LyDaTEBEuRylh5toA4mPl9cPKxAU4= Subject key identifier: E4:61:FD:50:43:7C:2D:FA:B8:04:75:6B:B2:CB:77:5F:DE:4B:4D:A0 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 687EBA383E0031E5AC5CB37DB75B877829EB3D8D Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa Signing time: Mon 02 Jun 2025 02:05:04 +0000 ROA not before: Mon 02 Jun 2025 02:00:04 +0000 ROA not after: Mon 01 Jun 2026 02:05:04 +0000 asID: 63862 IP address blocks: 103.49.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7e:ba:38:3e:00:31:e5:ac:5c:b3:7d:b7:5b:87:78:29:eb:3d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jun 2 02:00:04 2025 GMT Not After : Jun 1 02:05:04 2026 GMT Subject: CN=E461FD50437C2DFAB804756BB2CB775FDE4B4DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7f:3d:20:c1:bf:5a:59:ec:7d:48:05:47:88: 05:e9:a1:53:3c:72:60:0b:20:08:a9:03:e8:01:d6: be:f7:79:00:45:a6:70:aa:50:89:a3:ff:fe:d8:0a: b0:49:c4:c4:2d:3e:55:5d:17:ed:c8:13:36:61:d3: 67:09:52:5a:b2:f8:d2:47:2f:77:4b:83:cc:0a:80: ac:bf:19:e3:5b:be:01:b1:94:00:b2:f4:0b:d3:d6: da:74:91:95:7d:94:89:63:04:2f:11:58:e1:43:68: 54:e4:61:70:01:3b:90:0d:ac:e5:99:a4:93:c3:92: 49:9d:f9:b6:29:24:a7:97:05:d8:5b:2a:3f:d0:ed: ef:c0:40:b3:63:d5:23:b0:33:26:67:4d:fc:6b:86: ae:88:8f:b1:e8:f0:f7:e3:cf:31:1d:ba:bf:40:ba: 5b:c9:0c:bc:3a:11:b8:59:62:eb:9b:df:e0:d7:6f: 87:81:cc:fd:3f:db:9a:79:89:1d:a4:e1:d3:cc:f3: b9:9e:0c:59:86:c5:49:31:31:cd:07:c5:03:09:4f: 0f:7e:4f:ac:2b:92:16:e6:da:3d:ff:40:0f:5f:e6: 3c:6d:f3:40:35:eb:de:32:f9:e8:65:74:3d:b9:bc: 3f:63:de:cb:c5:5e:0b:f4:60:2e:04:af:12:7c:77: b6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:61:FD:50:43:7C:2D:FA:B8:04:75:6B:B2:CB:77:5F:DE:4B:4D:A0 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.28.0/24 Signature Algorithm: sha256WithRSAEncryption 07:62:d1:cb:0b:48:64:7b:70:ac:4f:fd:b9:45:a6:3c:1f:98: d3:ca:1b:2f:13:8d:d1:91:ee:c3:07:e9:a5:58:69:91:86:bd: b9:01:28:97:e8:b2:2c:e0:3c:dd:2c:08:ef:58:a2:a7:7f:4d: 83:5d:c0:35:24:16:9f:f0:11:c7:f9:2a:8c:1e:80:ab:26:cf: 3b:e6:0e:e8:25:e7:fc:4e:0d:c5:0b:6c:ae:93:35:c7:fd:e1: d5:6c:a4:23:11:f7:49:13:60:72:20:87:3c:fe:e4:0e:fd:ef: 49:ef:09:2e:45:15:84:02:32:e1:23:2e:0d:e9:5c:dd:93:17: fd:3a:96:80:f9:8c:49:c1:69:a8:0f:14:d0:46:15:97:3b:67: 50:6e:1e:20:18:8a:07:5d:ab:3c:50:d9:d6:9e:be:ab:49:ef: 27:30:e6:9f:e1:2c:5b:54:1a:18:6a:d8:ce:d8:09:f4:73:59: 41:ed:61:26:3d:b6:df:e9:c1:ca:9e:c8:8f:65:f4:ca:a0:55: d6:bc:0b:0e:f5:46:9a:be:20:b0:fe:a1:8d:f7:d5:a0:10:91: 71:7b:3b:fa:59:6b:65:c3:78:e7:bd:9f:e1:4c:40:e1:43:33: 4d:ba:f9:be:a5:6f:38:6c:38:40:de:52:88:1c:d7:47:93:ac: 0e:93:8c:bd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaH66OD4AMeWsXLN9t1uHeCnrPY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA2MDIwMjAwMDRaFw0yNjA2MDEwMjA1MDRaMDMxMTAvBgNV BAMTKEU0NjFGRDUwNDM3QzJERkFCODA0NzU2QkIyQ0I3NzVGREU0QjREQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjfz0gwb9aWex9SAVHiAXpoVM8 cmALIAipA+gB1r73eQBFpnCqUImj//7YCrBJxMQtPlVdF+3IEzZh02cJUlqy+NJH L3dLg8wKgKy/GeNbvgGxlACy9AvT1tp0kZV9lIljBC8RWOFDaFTkYXABO5ANrOWZ pJPDkkmd+bYpJKeXBdhbKj/Q7e/AQLNj1SOwMyZnTfxrhq6Ij7Ho8PfjzzEdur9A ulvJDLw6EbhZYuub3+DXb4eBzP0/25p5iR2k4dPM87meDFmGxUkxMc0HxQMJTw9+ T6wrkhbm2j3/QA9f5jxt80A1694y+ehldD25vD9j3svFXgv0YC4ErxJ8d7ajAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5GH9UEN8Lfq4BHVrsst3X95LTaAwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMRwwDQYJKoZIhvcN AQELBQADggEBAAdi0csLSGR7cKxP/blFpjwfmNPKGy8TjdGR7sMH6aVYaZGGvbkB KJfosizgPN0sCO9Yoqd/TYNdwDUkFp/wEcf5KowegKsmzzvmDugl5/xODcULbK6T Ncf94dVspCMR90kTYHIghzz+5A7970nvCS5FFYQCMuEjLg3pXN2TF/06loD5jEnB aagPFNBGFZc7Z1BuHiAYigddqzxQ2daevqtJ7ycw5p/hLFtUGhhq2M7YCfRzWUHt YSY9tt/pwcqeyI9l9MqgVda8Cw71Rpq+ILD+oY331aAQkXF7O/pZa2XDeOe9n+FM QOFDM026+b6lbzhsOEDeUogc10eTrA6TjL0= -----END CERTIFICATE-----Generated at Sun Jun 8 17:16:13 2025 by rpki-client