$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31322e302f32322d3234203d3e20313331373036.roa File: 3130332e3234372e31322e302f32322d3234203d3e20313331373036.roa (raw, json) Hash identifier: mWjb/DW+b3X3xyLO8KMUDwzQ73HydHkJibyBar99dKU= Subject key identifier: 3B:65:97:29:7E:53:C7:9F:19:EF:ED:51:24:BF:A8:EA:A9:86:CB:93 Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 108C41FDA4576370E0EDADC46E6CE9A19E5AC735 Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31322e302f32322d3234203d3e20313331373036.roa Signing time: Mon 02 Jun 2025 02:03:04 +0000 ROA not before: Mon 02 Jun 2025 01:58:04 +0000 ROA not after: Mon 01 Jun 2026 02:03:04 +0000 asID: 131706 IP address blocks: 103.247.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:42:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:8c:41:fd:a4:57:63:70:e0:ed:ad:c4:6e:6c:e9:a1:9e:5a:c7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Jun 2 01:58:04 2025 GMT Not After : Jun 1 02:03:04 2026 GMT Subject: CN=3B6597297E53C79F19EFED5124BFA8EAA986CB93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:62:d6:59:25:90:11:98:35:1a:90:9e:3c:cb: 3e:0e:00:e8:29:76:03:f7:90:4c:4d:7f:52:f4:59: ef:c0:3e:7f:79:d1:e9:d7:25:50:b0:3d:3e:62:e1: 1d:a9:6e:07:95:b4:88:34:c8:8d:ee:66:5a:82:0e: b7:ae:c8:36:28:e3:f1:2a:12:3c:ed:f2:58:8d:34: 38:32:ce:66:09:7a:27:f0:9b:da:dd:b0:59:21:8e: 2f:79:e2:fd:7e:91:21:82:77:9b:f3:b4:96:01:61: 8f:a9:f5:31:31:55:35:fb:7c:70:20:ae:d9:87:d7: a3:1a:7a:f1:fd:fa:31:4e:9e:f3:f6:a9:76:78:69: 05:7b:80:f1:59:fd:a1:6d:17:ad:19:7f:12:1e:78: f0:b5:ec:b0:c2:b0:ec:2a:bd:77:6d:22:88:fe:65: 82:95:42:e4:fb:d6:d1:d6:50:35:77:6e:fa:68:03: 5e:72:f5:ef:63:d3:d1:e7:f3:f2:ec:ed:29:69:43: 9d:cd:81:ff:73:1d:b3:eb:49:eb:f6:e3:9a:2d:e3: fd:93:d1:60:0d:90:28:1c:77:28:5a:55:92:f1:bf: 4d:4a:1f:27:1a:65:4f:93:9d:d5:4f:69:d7:2c:16: f7:ca:2d:96:44:32:77:48:fc:00:b5:a4:58:e2:84: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:65:97:29:7E:53:C7:9F:19:EF:ED:51:24:BF:A8:EA:A9:86:CB:93 X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3130332e3234372e31322e302f32322d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.12.0/22 Signature Algorithm: sha256WithRSAEncryption 35:6b:11:d2:3c:78:17:d4:14:b7:b2:7d:3d:38:7d:a3:a7:f0: ed:6c:7d:6d:58:3c:94:d8:5b:09:32:bd:a6:2d:b3:14:7a:29: d3:68:3c:9a:be:4b:3c:c3:10:34:3f:41:0f:b1:0c:bd:1c:70: a5:d1:08:3c:dc:6f:58:aa:46:65:cc:6f:11:e1:fb:96:4f:a1: dd:a9:1d:33:73:66:b2:76:ae:14:d5:36:c4:fc:be:ba:a2:a4: 62:2f:da:48:7b:97:27:5e:7b:15:46:7c:db:38:ab:62:f9:6a: d1:e1:db:4f:07:75:1f:d2:02:1d:40:12:a1:8b:01:49:a4:50: 1d:30:4f:6d:7b:db:00:ff:66:2e:97:77:14:d2:20:6c:f1:e4: 09:d0:5c:e4:14:86:3c:75:c1:a2:aa:40:6e:70:20:13:55:29: 38:fd:a3:c9:df:34:1d:a3:8f:cb:9a:61:b3:33:da:78:3d:5e: 6b:9b:a9:ae:d9:08:9b:66:be:d4:a3:3a:7c:42:ae:f5:dc:4b: 76:b2:ba:f6:7b:68:ff:59:ee:df:ba:30:ae:35:31:6f:61:64: 70:1a:17:23:d9:6a:36:ca:f4:f4:b5:47:ab:b4:5a:f4:e1:b4: cd:4c:e4:2e:73:19:18:2e:29:6c:77:e4:9e:aa:1e:ed:ac:b8: 7b:4f:84:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEIxB/aRXY3Dg7a3EbmzpoZ5axzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNTA2MDIwMTU4MDRaFw0yNjA2MDEwMjAzMDRaMDMxMTAvBgNV BAMTKDNCNjU5NzI5N0U1M0M3OUYxOUVGRUQ1MTI0QkZBOEVBQTk4NkNCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7YtZZJZARmDUakJ48yz4OAOgp dgP3kExNf1L0We/APn950enXJVCwPT5i4R2pbgeVtIg0yI3uZlqCDreuyDYo4/Eq Ejzt8liNNDgyzmYJeifwm9rdsFkhji954v1+kSGCd5vztJYBYY+p9TExVTX7fHAg rtmH16MaevH9+jFOnvP2qXZ4aQV7gPFZ/aFtF60ZfxIeePC17LDCsOwqvXdtIoj+ ZYKVQuT71tHWUDV3bvpoA15y9e9j09Hn8/Ls7SlpQ53Ngf9zHbPrSev245ot4/2T 0WANkCgcdyhaVZLxv01KHycaZU+TndVPadcsFvfKLZZEMndI/AC1pFjihBhvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO2WXKX5Tx58Z7+1RJL+o6qmGy5MwHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzAzMzJlMzIzNDM3MmUzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/cMMA0GCSqG SIb3DQEBCwUAA4IBAQA1axHSPHgX1BS3sn09OH2jp/DtbH1tWDyU2FsJMr2mLbMU einTaDyavks8wxA0P0EPsQy9HHCl0Qg83G9YqkZlzG8R4fuWT6HdqR0zc2aydq4U 1TbE/L66oqRiL9pIe5cnXnsVRnzbOKti+WrR4dtPB3Uf0gIdQBKhiwFJpFAdME9t e9sA/2Yul3cU0iBs8eQJ0FzkFIY8dcGiqkBucCATVSk4/aPJ3zQdo4/LmmGzM9p4 PV5rm6mu2QibZr7Uozp8Qq713Et2srr2e2j/We7fujCuNTFvYWRwGhcj2Wo2yvT0 tUertFr04bTNTOQucxkYLilsd+Seqh7trLh7T4SP -----END CERTIFICATE-----Generated at Sat Jun 7 15:27:25 2025 by rpki-client