$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa File: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (raw, json) Hash identifier: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck= Subject key identifier: 23:CB:C4:4E:8D:93:5A:7C:E1:FD:BC:8E:1F:9B:1A:96:6B:CC:94:6E Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 761963359346648EAA514E4E8D150AC952A1EF58 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa Signing time: Sat 07 Jun 2025 06:00:01 +0000 ROA not before: Sat 07 Jun 2025 05:55:01 +0000 ROA not after: Sat 06 Jun 2026 06:00:01 +0000 asID: 141895 IP address blocks: 103.163.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 13:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:19:63:35:93:46:64:8e:aa:51:4e:4e:8d:15:0a:c9:52:a1:ef:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Jun 7 05:55:01 2025 GMT Not After : Jun 6 06:00:01 2026 GMT Subject: CN=23CBC44E8D935A7CE1FDBC8E1F9B1A966BCC946E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4d:5c:ca:4c:91:31:a9:7b:d6:0f:98:90:d5: 6b:27:e6:0a:b6:e1:4e:e7:69:de:af:fd:1d:62:90: 91:f4:6e:74:86:a6:35:ec:bc:60:d4:e0:74:67:cb: 69:44:51:ea:d8:81:ef:16:0f:fc:00:47:ff:b7:c1: 82:15:88:c0:2e:44:8f:d0:ae:c3:44:9a:a9:da:d5: a4:bd:37:91:fe:6d:a1:44:09:e2:72:db:5c:e7:af: 57:bc:2e:2d:e2:cd:0b:30:9a:4f:76:6e:ae:5d:fb: cb:58:64:87:5a:9d:ee:8a:18:69:e3:52:32:d9:84: 5f:62:ce:62:8a:55:f9:fd:08:92:e5:ab:c2:4f:79: ba:a8:43:59:ca:1d:f2:f2:27:e4:59:73:87:f4:34: ce:60:03:4f:1c:8a:52:88:10:7b:f5:f3:f2:59:d1: 55:ea:1e:0c:01:74:52:fa:4e:ee:08:5d:a3:cd:e6: 6d:72:07:45:59:0d:73:57:13:a6:4b:ba:47:da:2f: 1b:f6:27:19:3b:02:1b:65:72:47:75:7c:1a:39:b2: 47:90:f9:8f:f8:00:a5:f0:64:89:fe:22:5e:79:be: 23:95:37:57:b4:1c:08:fa:7e:59:9d:23:a8:75:89: 42:26:cf:98:6f:bd:38:89:d7:ac:51:5b:69:8a:d3: a9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CB:C4:4E:8D:93:5A:7C:E1:FD:BC:8E:1F:9B:1A:96:6B:CC:94:6E X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.229.0/24 Signature Algorithm: sha256WithRSAEncryption 20:1b:6c:3f:63:8c:e8:30:61:c8:bc:8d:4c:f6:59:c4:88:a1: d5:43:a9:33:1a:44:b9:05:9a:a9:35:99:ec:5a:80:42:af:18: e3:80:54:60:cf:a8:fa:2d:64:a4:57:4e:9e:e0:56:9c:5a:47: 64:6d:55:e3:54:00:d0:21:df:ca:da:48:1b:6c:99:51:05:81: 4a:b9:02:d2:7c:4b:93:64:61:05:c4:a5:68:be:c3:25:cc:cf: b0:24:7e:4d:1e:e2:67:ff:cd:78:f1:c7:c1:a8:32:b9:51:66: 83:0c:05:9c:b6:2d:70:9b:42:ff:6c:0b:70:3d:e5:66:04:8a: 51:3d:bc:7e:fd:8b:bd:d4:49:c9:8c:e6:e0:25:77:7f:0c:d1: b0:3f:b9:15:83:bf:4c:b7:14:b8:05:1a:37:92:26:a1:f9:21: e0:a8:91:ee:51:1b:5f:06:c9:f7:fd:8b:76:2d:67:aa:24:bf: 04:58:94:ef:a7:8d:50:b1:06:17:f7:91:b3:fb:40:9f:1f:92: 5b:54:24:41:83:41:08:42:ee:23:63:3c:33:a9:53:1b:52:2f: 63:87:fa:a4:b7:f9:8d:00:57:96:a4:6e:6a:2c:e3:56:db:bf: 66:5b:69:27:29:a3:d9:d4:d3:2d:db:bb:d7:f6:1b:c8:ac:7e: c3:00:39:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdhljNZNGZI6qUU5OjRUKyVKh71gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA2MDcwNTU1MDFaFw0yNjA2MDYwNjAwMDFaMDMxMTAvBgNV BAMTKDIzQ0JDNDRFOEQ5MzVBN0NFMUZEQkM4RTFGOUIxQTk2NkJDQzk0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCTVzKTJExqXvWD5iQ1Wsn5gq2 4U7nad6v/R1ikJH0bnSGpjXsvGDU4HRny2lEUerYge8WD/wAR/+3wYIViMAuRI/Q rsNEmqna1aS9N5H+baFECeJy21znr1e8Li3izQswmk92bq5d+8tYZIdane6KGGnj UjLZhF9izmKKVfn9CJLlq8JPebqoQ1nKHfLyJ+RZc4f0NM5gA08cilKIEHv18/JZ 0VXqHgwBdFL6Tu4IXaPN5m1yB0VZDXNXE6ZLukfaLxv2Jxk7Ahtlckd1fBo5skeQ +Y/4AKXwZIn+Il55viOVN1e0HAj6flmdI6h1iUImz5hvvTiJ16xRW2mK06kdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI8vETo2TWnzh/byOH5salmvMlG4wHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDBkN2ZhLWQ2ZjgtNGMyMi1i NDhhLTU4YjhlZDhlZGRhNy8wLzMxMzAzMzJlMzEzNjMzMmUzMjMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+UwDQYJ KoZIhvcNAQELBQADggEBACAbbD9jjOgwYci8jUz2WcSIodVDqTMaRLkFmqk1mexa gEKvGOOAVGDPqPotZKRXTp7gVpxaR2RtVeNUANAh38raSBtsmVEFgUq5AtJ8S5Nk YQXEpWi+wyXMz7Akfk0e4mf/zXjxx8GoMrlRZoMMBZy2LXCbQv9sC3A95WYEilE9 vH79i73UScmM5uAld38M0bA/uRWDv0y3FLgFGjeSJqH5IeCoke5RG18Gyff9i3Yt Z6okvwRYlO+njVCxBhf3kbP7QJ8fkltUJEGDQQhC7iNjPDOpUxtSL2OH+qS3+Y0A V5akbmos41bbv2ZbaScpo9nU0y3bu9f2G8isfsMAOQQ= -----END CERTIFICATE-----Generated at Sun Jun 8 04:05:38 2025 by rpki-client