$ rpki-client -vvf repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38322e302f32342d3234203d3e20313331373335.roa File: 3130332e3233312e38322e302f32342d3234203d3e20313331373335.roa (raw, json) Hash identifier: 8zUKTcgIM2YuD1hdzVzeO7drrLCkIVs9L0M7lsGNsV4= Subject key identifier: 55:4C:EE:BB:3A:3B:00:3F:1B:5C:30:16:71:16:E3:AA:10:1D:14:5C Certificate issuer: /CN=2BB13827423575141DA0F1C57B33E7DE5D7A63A6 Certificate serial: 12CADAE1F08409A2449396F364DFEC8043536FF7 Authority key identifier: 2B:B1:38:27:42:35:75:14:1D:A0:F1:C5:7B:33:E7:DE:5D:7A:63:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38322e302f32342d3234203d3e20313331373335.roa Signing time: Sat 07 Jun 2025 08:00:01 +0000 ROA not before: Sat 07 Jun 2025 07:55:01 +0000 ROA not after: Sat 06 Jun 2026 08:00:01 +0000 asID: 131735 IP address blocks: 103.231.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.crl rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 16:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ca:da:e1:f0:84:09:a2:44:93:96:f3:64:df:ec:80:43:53:6f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2BB13827423575141DA0F1C57B33E7DE5D7A63A6 Validity Not Before: Jun 7 07:55:01 2025 GMT Not After : Jun 6 08:00:01 2026 GMT Subject: CN=554CEEBB3A3B003F1B5C30167116E3AA101D145C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:c0:70:a5:fd:d2:4e:73:e9:c9:8f:ba:6e: 73:ac:ea:df:1c:05:f1:5e:5c:78:b8:4c:74:13:f9: 9c:a6:a9:50:30:2d:f9:1f:56:12:a4:de:d1:82:d4: 99:58:4d:61:39:bd:c4:7f:96:8c:3d:d6:1d:2e:d6: ef:20:9a:3e:75:e2:1d:3d:6a:b9:41:e9:23:a1:84: ec:f8:e6:5a:2c:62:3e:7a:d5:e8:1c:86:13:95:83: 1e:b8:1a:88:60:53:a7:59:34:72:8e:ad:6a:b8:e4: 59:3f:af:2a:2e:1f:97:60:25:c9:bc:ba:7b:d0:06: c8:29:43:57:04:42:95:65:e8:c1:a3:8f:40:c1:bf: ba:96:6f:d1:9a:c2:27:81:cd:e0:3e:78:5e:fe:17: b0:dc:78:b8:3f:e3:16:12:c7:9c:0f:80:c6:2e:bf: 03:a3:16:a3:b9:40:7a:77:3e:81:17:16:99:4f:87: 74:41:f4:d3:99:f5:37:fc:65:4b:a6:a4:d4:bd:8e: 69:3f:f0:76:54:10:d8:64:76:38:2e:c5:97:66:db: 93:d9:45:b1:d9:24:d3:b7:42:ff:2f:63:0d:54:55: 34:a8:34:88:4e:4c:8f:c1:84:98:15:3f:5d:4c:6f: 5f:2f:dc:b6:23:62:f2:3d:4c:5d:51:43:f5:3f:c8: 04:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4C:EE:BB:3A:3B:00:3F:1B:5C:30:16:71:16:E3:AA:10:1D:14:5C X509v3 Authority Key Identifier: keyid:2B:B1:38:27:42:35:75:14:1D:A0:F1:C5:7B:33:E7:DE:5D:7A:63:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38322e302f32342d3234203d3e20313331373335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.82.0/24 Signature Algorithm: sha256WithRSAEncryption 33:fe:76:86:b8:c4:a3:11:37:53:65:01:65:ac:32:80:b6:1f: c9:8e:42:0f:99:f8:e6:2e:97:f3:d3:6b:47:b5:96:84:4d:cf: f2:8a:61:54:a5:81:37:04:98:62:d3:bf:08:d7:7d:b6:a8:78: 34:d5:3e:91:e6:73:c6:31:94:d8:c3:1c:11:0d:8e:c6:dc:8b: 4b:c0:c5:c3:b5:bc:14:4c:38:41:f3:46:77:97:46:7b:3d:a8: 16:0d:74:dc:a9:92:95:d6:13:4b:eb:85:bd:4a:09:0a:c8:52: ec:ef:53:7a:c7:ff:c6:12:2f:df:fa:2f:c4:15:f2:3f:a9:87: 29:3b:61:ce:fc:fe:53:fa:94:5c:9b:d7:d3:5f:fc:6a:0c:52: 34:27:55:4a:7a:13:30:c3:4a:72:16:be:6b:1b:de:c8:45:ee: b3:66:a8:4f:1d:51:60:ad:52:54:0a:bd:cd:16:b2:70:67:1a: 9b:01:4e:27:95:38:96:50:6f:ac:92:27:03:e2:ac:af:ed:ee: 15:bb:76:2a:c1:ce:0a:b6:36:ee:23:34:26:11:60:9b:f5:0a: 10:7b:83:af:b6:f5:9a:52:79:28:71:33:dc:96:f0:65:36:3a: a0:e3:21:4f:b9:79:79:0b:ca:32:2e:74:4f:ae:74:32:b2:64: 31:8f:44:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEsra4fCECaJEk5bzZN/sgENTb/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkJCMTM4Mjc0MjM1NzUxNDFEQTBGMUM1N0IzM0U3REU1 RDdBNjNBNjAeFw0yNTA2MDcwNzU1MDFaFw0yNjA2MDYwODAwMDFaMDMxMTAvBgNV BAMTKDU1NENFRUJCM0EzQjAwM0YxQjVDMzAxNjcxMTZFM0FBMTAxRDE0NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAA8Bwpf3STnPpyY+6bnOs6t8c BfFeXHi4THQT+ZymqVAwLfkfVhKk3tGC1JlYTWE5vcR/low91h0u1u8gmj514h09 arlB6SOhhOz45losYj561egchhOVgx64GohgU6dZNHKOrWq45Fk/ryouH5dgJcm8 unvQBsgpQ1cEQpVl6MGjj0DBv7qWb9GawieBzeA+eF7+F7DceLg/4xYSx5wPgMYu vwOjFqO5QHp3PoEXFplPh3RB9NOZ9Tf8ZUumpNS9jmk/8HZUENhkdjguxZdm25PZ RbHZJNO3Qv8vYw1UVTSoNIhOTI/BhJgVP11Mb18v3LYjYvI9TF1RQ/U/yAQFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVUzuuzo7AD8bXDAWcRbjqhAdFFwwHwYDVR0j BBgwFoAUK7E4J0I1dRQdoPHFezPn3l16Y6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTQ5M2JlMS1mMDY0LTQ5ZTYtOTQ5YS1jYjNlY2JmYzhmNDYvMC8yQkIxMzgyNzQy MzU3NTE0MURBMEYxQzU3QjMzRTdERTVEN0E2M0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkJCMTM4Mjc0MjM1NzUxNDFEQTBGMUM1N0IzM0U3REU1RDdB NjNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNDkzYmUxLWYwNjQtNDllNi05 NDlhLWNiM2VjYmZjOGY0Ni8wLzMxMzAzMzJlMzIzMzMxMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+dSMA0GCSqG SIb3DQEBCwUAA4IBAQAz/naGuMSjETdTZQFlrDKAth/JjkIPmfjmLpfz02tHtZaE Tc/yimFUpYE3BJhi078I1322qHg01T6R5nPGMZTYwxwRDY7G3ItLwMXDtbwUTDhB 80Z3l0Z7PagWDXTcqZKV1hNL64W9SgkKyFLs71N6x//GEi/f+i/EFfI/qYcpO2HO /P5T+pRcm9fTX/xqDFI0J1VKehMww0pyFr5rG97IRe6zZqhPHVFgrVJUCr3NFrJw ZxqbAU4nlTiWUG+skicD4qyv7e4Vu3Yqwc4KtjbuIzQmEWCb9QoQe4OvtvWaUnko cTPclvBlNjqg4yFPuXl5C8oyLnRPrnQysmQxj0Qw -----END CERTIFICATE-----Generated at Sun Jun 8 11:20:56 2025 by rpki-client