$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e33302e302f32332d3233203d3e203633383632.roa File: 3130332e34392e33302e302f32332d3233203d3e203633383632.roa (raw, json) Hash identifier: Tgc1IbbEQhYrvRTCHCliK+0ORHrdqANdS7E500/DQ9M= Subject key identifier: B8:5D:9A:7D:D7:00:76:8F:80:FC:74:EA:74:E7:EB:AE:74:EB:E1:7E Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 31ABAAFA7EC413A4ACC59203CA646117521D7402 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e33302e302f32332d3233203d3e203633383632.roa Signing time: Mon 02 Jun 2025 02:05:05 +0000 ROA not before: Mon 02 Jun 2025 02:00:05 +0000 ROA not after: Mon 01 Jun 2026 02:05:05 +0000 asID: 63862 IP address blocks: 103.49.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ab:aa:fa:7e:c4:13:a4:ac:c5:92:03:ca:64:61:17:52:1d:74:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jun 2 02:00:05 2025 GMT Not After : Jun 1 02:05:05 2026 GMT Subject: CN=B85D9A7DD700768F80FC74EA74E7EBAE74EBE17E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b6:52:2c:bc:f4:1d:74:eb:ac:c3:16:c5:0f: e6:00:a9:61:b8:5f:c0:9c:85:36:d1:cb:e8:9d:82: b9:72:fe:07:22:84:a4:82:ba:92:ad:c4:79:50:f9: 28:6f:62:b2:e8:15:3d:b1:f1:7b:c8:78:a1:56:21: 23:a1:2c:61:0a:f5:79:77:f9:de:1f:9a:8b:fc:8a: eb:9b:3a:95:68:4c:54:c2:7a:bd:c7:aa:a8:8f:84: 68:88:81:12:55:6d:0e:18:c1:24:05:8c:cf:83:a5: 2f:4a:c9:d1:08:3e:ad:40:20:f6:0e:24:e8:18:2e: 56:57:05:30:dd:cb:aa:94:d5:ae:b5:3e:db:79:d9: 25:9f:e0:c2:28:c4:40:77:7c:14:01:b1:01:04:25: ac:ab:db:de:c7:ba:d1:f7:a2:d5:ac:5c:ef:73:a1: 15:79:91:d7:79:be:69:2f:7e:48:30:2b:3a:16:13: 9e:dc:3e:cc:99:da:56:65:cd:84:e0:eb:00:e4:12: 17:0a:06:41:af:74:99:0a:cd:1c:d3:0a:48:bd:f9: ad:e1:0b:48:7e:c3:18:b3:4e:f7:e4:39:23:16:af: 68:8f:f0:ac:c1:0f:b2:e0:45:93:2c:9e:64:8d:74: d7:fc:9c:2e:03:5f:d2:aa:a0:3f:dd:0c:7c:07:a6: 27:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5D:9A:7D:D7:00:76:8F:80:FC:74:EA:74:E7:EB:AE:74:EB:E1:7E X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e33302e302f32332d3233203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.30.0/23 Signature Algorithm: sha256WithRSAEncryption 03:bf:98:f4:ef:ba:23:fe:0d:8e:c5:3a:90:74:e6:ee:38:ca: e1:51:45:ad:25:fc:69:cd:a8:6c:bf:26:c6:18:cb:7b:86:e5: 13:c6:7f:f3:b1:e6:07:4a:f0:a0:59:5c:bf:1a:3f:a2:d9:64: 64:72:e7:27:74:fa:b1:77:3d:fb:33:5d:87:05:de:61:99:4a: 3c:be:f0:7d:a1:c8:0c:b6:66:41:27:ac:b2:12:34:40:72:ed: 8d:93:cc:42:17:1c:84:1b:9b:ef:38:4e:9a:46:dc:3c:c0:00: a1:c1:a2:22:cb:6e:33:45:60:51:87:51:50:e9:76:df:26:58: 73:b2:d6:25:df:1b:ae:1b:99:3c:0f:09:f8:b3:05:dc:e3:eb: 71:04:58:1b:fd:f8:c3:c8:c0:bd:a0:60:72:59:31:79:e4:c6: 0e:ae:af:38:8d:f9:ef:b6:eb:8a:17:c1:45:2e:84:b0:62:84: 09:32:44:6d:19:fa:17:b5:dd:ef:41:3c:26:3e:ed:14:fa:d6: 20:03:71:6a:a4:00:6e:00:2e:e9:d9:42:04:97:8b:d8:bb:c1: 1c:fe:2a:9c:2a:da:e9:20:55:f2:fe:79:6c:73:83:dd:64:2a: fa:a7:be:51:34:62:8e:61:83:14:55:1f:c3:41:b5:bc:c0:50: 02:56:05:d7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMauq+n7EE6SsxZIDymRhF1IddAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA2MDIwMjAwMDVaFw0yNjA2MDEwMjA1MDVaMDMxMTAvBgNV BAMTKEI4NUQ5QTdERDcwMDc2OEY4MEZDNzRFQTc0RTdFQkFFNzRFQkUxN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCctlIsvPQddOuswxbFD+YAqWG4 X8CchTbRy+idgrly/gcihKSCupKtxHlQ+ShvYrLoFT2x8XvIeKFWISOhLGEK9Xl3 +d4fmov8iuubOpVoTFTCer3HqqiPhGiIgRJVbQ4YwSQFjM+DpS9KydEIPq1AIPYO JOgYLlZXBTDdy6qU1a61Ptt52SWf4MIoxEB3fBQBsQEEJayr297HutH3otWsXO9z oRV5kdd5vmkvfkgwKzoWE57cPsyZ2lZlzYTg6wDkEhcKBkGvdJkKzRzTCki9+a3h C0h+wxizTvfkOSMWr2iP8KzBD7LgRZMsnmSNdNf8nC4DX9KqoD/dDHwHpicTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuF2afdcAdo+A/HTqdOfrrnTr4X4wHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzMzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnMR4wDQYJKoZIhvcN AQELBQADggEBAAO/mPTvuiP+DY7FOpB05u44yuFRRa0l/GnNqGy/JsYYy3uG5RPG f/Ox5gdK8KBZXL8aP6LZZGRy5yd0+rF3PfszXYcF3mGZSjy+8H2hyAy2ZkEnrLIS NEBy7Y2TzEIXHIQbm+84TppG3DzAAKHBoiLLbjNFYFGHUVDpdt8mWHOy1iXfG64b mTwPCfizBdzj63EEWBv9+MPIwL2gYHJZMXnkxg6urziN+e+264oXwUUuhLBihAky RG0Z+he13e9BPCY+7RT61iADcWqkAG4ALunZQgSXi9i7wRz+Kpwq2ukgVfL+eWxz g91kKvqnvlE0Yo5hgxRVH8NBtbzAUAJWBdc= -----END CERTIFICATE-----Generated at Sun Jun 8 13:32:48 2025 by rpki-client