$ rpki-client -vvf repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232302e302f32322d3234203d3e20313338383130.roa File: 3130332e3133342e3232302e302f32322d3234203d3e20313338383130.roa (raw, json) Hash identifier: XcqISTFOM7Q9TbfcoALleQWh8kdaQumXVURloov1uL4= Subject key identifier: 4F:FB:B7:06:E9:E9:E6:C9:2D:F2:64:D5:B1:89:0A:15:C5:BF:29:CB Certificate issuer: /CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Certificate serial: 0171F7359AA9EECB1211EFAD165405B7C785A102 Authority key identifier: B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232302e302f32322d3234203d3e20313338383130.roa Signing time: Mon 02 Jun 2025 02:03:56 +0000 ROA not before: Mon 02 Jun 2025 01:58:56 +0000 ROA not after: Mon 01 Jun 2026 02:03:56 +0000 asID: 138810 IP address blocks: 103.134.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:71:f7:35:9a:a9:ee:cb:12:11:ef:ad:16:54:05:b7:c7:85:a1:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Validity Not Before: Jun 2 01:58:56 2025 GMT Not After : Jun 1 02:03:56 2026 GMT Subject: CN=4FFBB706E9E9E6C92DF264D5B1890A15C5BF29CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:d4:c1:24:dc:2a:03:16:3e:c8:7a:38:2b: ad:1f:ee:e1:30:b5:50:12:41:8e:f7:80:43:b9:37: f2:20:60:d0:a4:af:e0:51:07:ab:ae:f2:eb:6e:09: 24:ed:9c:d8:cf:67:e4:e6:9a:76:10:d1:c9:c7:73: 08:7b:1b:9c:b8:1c:d2:97:34:96:aa:f1:3c:3c:3e: 85:54:a2:fe:31:bf:5c:c7:02:1a:e0:07:39:01:7a: fc:8b:7b:c9:18:2b:47:ad:63:3b:c8:6a:45:0f:20: 23:b5:46:b3:19:1f:0c:a2:45:02:a8:0d:6f:ee:b0: bb:78:c3:1b:54:54:de:9c:14:0c:e5:2d:fa:e1:09: f5:2d:cf:91:01:8a:06:54:10:51:99:91:1d:15:bf: 82:ba:b4:69:2b:67:a1:90:53:e5:2e:94:a2:32:ac: 89:58:8c:1e:12:70:7d:0c:4c:a8:42:49:b6:8f:7a: 2f:21:e1:c8:1e:28:2c:8b:08:28:2a:67:05:08:27: cb:2b:86:bf:85:62:0a:8b:10:6f:28:90:4b:b1:c0: 34:2a:5b:f7:cf:e4:30:3a:55:dc:c3:d1:82:fc:ef: 86:f8:57:c4:37:a1:9b:e1:5f:17:f4:9b:ba:89:24: 3a:5a:0b:41:db:31:fa:18:91:59:13:53:ef:17:21: 1a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FB:B7:06:E9:E9:E6:C9:2D:F2:64:D5:B1:89:0A:15:C5:BF:29:CB X509v3 Authority Key Identifier: keyid:B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/3130332e3133342e3232302e302f32322d3234203d3e20313338383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.220.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:5b:23:50:65:48:30:be:0f:c8:20:3d:6c:60:ad:d8:83:6a: 64:d9:31:7a:45:52:1e:f8:a1:aa:bc:b0:d0:29:5b:6c:6a:a2: 8e:bf:89:ba:f9:0c:20:fa:2a:bc:5a:13:97:d2:fb:1e:7b:e1: 30:06:21:65:0b:e7:9f:e0:8f:1a:5c:49:66:7f:fb:94:7b:e4: 3d:24:48:52:74:43:6d:09:dd:ce:55:e2:01:82:8c:33:ad:ce: e0:17:a1:af:82:6d:18:d3:e2:5a:42:72:6e:62:37:f9:f9:6e: 68:98:64:95:50:1c:44:4b:7d:6f:79:8e:c2:28:b3:45:d3:6a: ac:2b:e5:e4:fc:03:93:ba:ed:6c:b7:55:89:b4:81:28:b2:50: 78:9f:8f:a3:bd:5a:2b:5e:28:04:7a:45:cd:83:2a:05:f0:13: 52:4c:b7:67:f1:c8:21:63:a5:f9:4e:78:5a:8a:21:30:71:ad: 10:a7:7a:8d:75:9e:a9:aa:b9:21:d7:ff:b3:66:d8:58:13:fd: b4:d1:6d:80:d7:3b:2a:0b:8d:02:80:85:d7:64:16:fc:18:eb: c0:b3:fe:e8:c8:27:e3:0b:8b:d6:e8:67:9e:78:16:23:f4:96: 6d:7d:0f:40:62:1a:d2:d8:82:db:33:ce:99:b9:14:bb:aa:77: 89:ff:cb:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAXH3NZqp7ssSEe+tFlQFt8eFoQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNG RDI2NkI1QzAeFw0yNTA2MDIwMTU4NTZaFw0yNjA2MDEwMjAzNTZaMDMxMTAvBgNV BAMTKDRGRkJCNzA2RTlFOUU2QzkyREYyNjRENUIxODkwQTE1QzVCRjI5Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38dTBJNwqAxY+yHo4K60f7uEw tVASQY73gEO5N/IgYNCkr+BRB6uu8utuCSTtnNjPZ+TmmnYQ0cnHcwh7G5y4HNKX NJaq8Tw8PoVUov4xv1zHAhrgBzkBevyLe8kYK0etYzvIakUPICO1RrMZHwyiRQKo DW/usLt4wxtUVN6cFAzlLfrhCfUtz5EBigZUEFGZkR0Vv4K6tGkrZ6GQU+UulKIy rIlYjB4ScH0MTKhCSbaPei8h4cgeKCyLCCgqZwUIJ8srhr+FYgqLEG8okEuxwDQq W/fP5DA6VdzD0YL874b4V8Q3oZvhXxf0m7qJJDpaC0HbMfoYkVkTU+8XIRrVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT/u3Bunp5skt8mTVsYkKFcW/KcswHwYDVR0j BBgwFoAUsyY9aH1b37L7ToAqs7AD/P0ma1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjM2ZTg4ZC1kNTczLTRjYmItYjQ2MC1hMGI5NjlhYTg0ZDUvMC9CMzI2M0Q2ODdE NUJERkIyRkI0RTgwMkFCM0IwMDNGQ0ZEMjY2QjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNGRDI2 NkI1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMzZlODhkLWQ1NzMtNGNiYi1i NDYwLWEwYjk2OWFhODRkNS8wLzMxMzAzMzJlMzEzMzM0MmUzMjMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzODMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnhtwwDQYJ KoZIhvcNAQELBQADggEBADtbI1BlSDC+D8ggPWxgrdiDamTZMXpFUh74oaq8sNAp W2xqoo6/ibr5DCD6KrxaE5fS+x574TAGIWUL55/gjxpcSWZ/+5R75D0kSFJ0Q20J 3c5V4gGCjDOtzuAXoa+CbRjT4lpCcm5iN/n5bmiYZJVQHERLfW95jsIos0XTaqwr 5eT8A5O67Wy3VYm0gSiyUHifj6O9WiteKAR6Rc2DKgXwE1JMt2fxyCFjpflOeFqK ITBxrRCneo11nqmquSHX/7Nm2FgT/bTRbYDXOyoLjQKAhddkFvwY68Cz/ujIJ+ML i9boZ554FiP0lm19D0BiGtLYgtszzpm5FLuqd4n/yzA= -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:45 2025 by rpki-client