$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa File: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (raw, json) Hash identifier: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE= Subject key identifier: F9:C6:3D:15:0D:48:2E:15:D6:73:64:5C:BB:27:5B:37:68:8C:53:59 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 1DF37CA056328595A222AB8F98F5AD4E3EC5CDC3 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa Signing time: Sat 07 Jun 2025 06:00:01 +0000 ROA not before: Sat 07 Jun 2025 05:55:01 +0000 ROA not after: Sat 06 Jun 2026 06:00:01 +0000 asID: 141895 IP address blocks: 103.163.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 13:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f3:7c:a0:56:32:85:95:a2:22:ab:8f:98:f5:ad:4e:3e:c5:cd:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Jun 7 05:55:01 2025 GMT Not After : Jun 6 06:00:01 2026 GMT Subject: CN=F9C63D150D482E15D673645CBB275B37688C5359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:19:fa:3b:df:f8:08:fb:d4:27:07:86:ca: 64:7a:6b:4a:80:32:98:bf:80:55:48:e7:81:8a:b5: 24:5a:ed:a0:1b:65:5e:46:c1:5f:40:c8:c8:a4:4c: 2b:32:1e:16:22:50:02:d5:43:f0:81:2e:84:66:f8: 08:23:7a:ec:7f:87:24:cd:45:8f:6a:69:73:95:93: bc:01:c9:eb:bb:f0:4e:e9:ce:69:42:6f:60:cd:51: 9a:fb:ec:07:8f:80:9e:bd:70:09:6a:41:d3:80:75: ee:8f:10:26:a4:61:7b:9b:4e:fd:c0:10:dc:a3:61: f4:6a:80:49:ec:a1:57:a4:26:82:54:f1:fb:cd:27: 22:e2:8c:5c:31:a0:aa:78:6f:83:33:89:73:5f:69: 8f:d7:b2:a3:53:96:0e:d5:55:77:f7:1b:14:9c:66: 02:33:0a:f7:f8:23:71:12:d7:db:eb:b2:e4:4b:92: af:42:94:ed:9e:e9:04:4c:00:75:af:2d:41:bd:9f: c9:b0:87:fb:3b:72:6f:f7:a3:51:78:09:12:f9:bd: 31:6d:c7:f9:6f:37:62:a7:d9:f6:7c:c4:79:56:e4: 3f:0e:f5:4a:c2:53:83:4d:1c:c8:ac:1e:c4:cb:aa: 16:43:c7:02:86:dd:81:16:e4:e3:dd:7e:72:c8:70: 09:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C6:3D:15:0D:48:2E:15:D6:73:64:5C:BB:27:5B:37:68:8C:53:59 X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.228.0/24 Signature Algorithm: sha256WithRSAEncryption 99:9c:86:fb:cb:25:77:cd:6b:ce:7c:17:22:40:e1:90:b3:c3: 1c:d6:55:b9:43:e0:fe:ad:ba:b4:2d:80:f1:d7:87:2d:db:2c: ce:44:94:fc:03:c7:58:8e:0f:98:95:e1:28:7e:3e:92:b0:22: 99:53:cb:60:07:3f:89:e4:6e:2c:0f:21:a1:83:19:71:7e:db: 87:c4:45:01:a3:72:84:9d:30:01:87:6b:43:e9:77:99:01:c4: 13:cd:f1:ec:92:e4:14:81:4b:0f:36:96:7a:9e:24:c0:71:b0: 30:4f:c4:d2:46:26:70:69:c0:9e:3e:9d:ba:2c:ff:76:27:aa: 21:85:2b:50:b3:50:09:15:e0:12:d9:ea:00:4e:1f:42:56:53: dc:45:8c:f4:b4:35:43:b7:09:68:ff:ee:18:fe:0b:c2:15:0f: 4f:91:00:96:90:34:28:29:23:52:5e:ba:db:5a:53:71:f1:46: 00:17:64:2c:09:2a:c7:4b:8f:39:a0:b1:da:09:be:9a:94:9a: b7:be:bd:9f:8a:3f:4d:9b:4b:c0:25:8a:ce:ea:27:c9:12:47: 5f:57:08:da:91:91:a7:2e:18:bd:79:90:c9:70:19:5c:87:eb: 37:81:36:ec:56:b6:82:f9:42:3a:36:cf:00:34:07:56:a2:aa: 79:7b:be:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHfN8oFYyhZWiIquPmPWtTj7FzcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA2MDcwNTU1MDFaFw0yNjA2MDYwNjAwMDFaMDMxMTAvBgNV BAMTKEY5QzYzRDE1MEQ0ODJFMTVENjczNjQ1Q0JCMjc1QjM3Njg4QzUzNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Bxn6O9/4CPvUJweGymR6a0qA Mpi/gFVI54GKtSRa7aAbZV5GwV9AyMikTCsyHhYiUALVQ/CBLoRm+Agjeux/hyTN RY9qaXOVk7wByeu78E7pzmlCb2DNUZr77AePgJ69cAlqQdOAde6PECakYXubTv3A ENyjYfRqgEnsoVekJoJU8fvNJyLijFwxoKp4b4MziXNfaY/XsqNTlg7VVXf3GxSc ZgIzCvf4I3ES19vrsuRLkq9ClO2e6QRMAHWvLUG9n8mwh/s7cm/3o1F4CRL5vTFt x/lvN2Kn2fZ8xHlW5D8O9UrCU4NNHMisHsTLqhZDxwKG3YEW5OPdfnLIcAl9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+cY9FQ1ILhXWc2RcuydbN2iMU1kwHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDBkN2ZhLWQ2ZjgtNGMyMi1i NDhhLTU4YjhlZDhlZGRhNy8wLzMxMzAzMzJlMzEzNjMzMmUzMjMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+QwDQYJ KoZIhvcNAQELBQADggEBAJmchvvLJXfNa858FyJA4ZCzwxzWVblD4P6turQtgPHX hy3bLM5ElPwDx1iOD5iV4Sh+PpKwIplTy2AHP4nkbiwPIaGDGXF+24fERQGjcoSd MAGHa0Ppd5kBxBPN8eyS5BSBSw82lnqeJMBxsDBPxNJGJnBpwJ4+nbos/3YnqiGF K1CzUAkV4BLZ6gBOH0JWU9xFjPS0NUO3CWj/7hj+C8IVD0+RAJaQNCgpI1Jeutta U3HxRgAXZCwJKsdLjzmgsdoJvpqUmre+vZ+KP02bS8Alis7qJ8kSR19XCNqRkacu GL15kMlwGVyH6zeBNuxWtoL5Qjo2zwA0B1aiqnl7vsA= -----END CERTIFICATE-----Generated at Sun Jun 8 04:07:03 2025 by rpki-client