$ rpki-client -vvf repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa File: 3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa (raw, json) Hash identifier: BHlKkUg0NjANH6Mliit3f4KGxxDlGbzPwZhqnWpcPcU= Subject key identifier: A9:EA:8A:44:D8:44:88:70:69:8B:A4:22:C7:06:9A:85:B8:6F:94:68 Certificate issuer: /CN=30C39359651C33B59AC32BC46831980108960568 Certificate serial: 115B7DB4BFA3F1FC13C9BBD76A67CF00F2CBBB91 Authority key identifier: 30:C3:93:59:65:1C:33:B5:9A:C3:2B:C4:68:31:98:01:08:96:05:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30C39359651C33B59AC32BC46831980108960568.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 137297 IP address blocks: 103.107.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/30C39359651C33B59AC32BC46831980108960568.crl rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/30C39359651C33B59AC32BC46831980108960568.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30C39359651C33B59AC32BC46831980108960568.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5b:7d:b4:bf:a3:f1:fc:13:c9:bb:d7:6a:67:cf:00:f2:cb:bb:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30C39359651C33B59AC32BC46831980108960568 Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=A9EA8A44D8448870698BA422C7069A85B86F9468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:c0:8c:31:29:41:18:8b:1b:2d:82:82:29:1d: 00:46:33:fc:28:26:41:37:98:75:45:5e:15:8a:e5: b7:50:ef:e8:f5:7f:ff:f2:03:75:cf:7f:88:7c:88: bc:81:a6:1f:4e:4e:a1:4e:d1:18:00:ff:57:a6:98: 21:45:3d:28:02:f2:3d:82:5b:70:40:18:32:b2:42: 2f:4a:67:8d:a0:13:64:e3:07:c4:f8:39:2d:16:0e: 97:3d:63:4f:cb:28:f4:33:ea:63:d4:b6:04:fa:98: 25:d3:50:8f:97:70:22:3c:72:23:3f:66:0e:c4:9c: de:e2:61:e1:03:e3:87:9a:2d:fd:1f:9f:c3:91:5a: 19:d7:62:cc:5e:a5:40:c0:39:55:2c:56:9b:c9:ac: 65:a1:5e:74:70:90:4d:2e:6c:39:66:e0:d6:61:f2: 5f:e5:23:ce:79:2e:9e:be:bd:63:18:b1:83:34:47: 81:d1:6f:bc:2b:50:57:6e:7e:46:95:ad:31:84:17: 15:af:dd:c7:27:6b:28:6e:2b:58:8b:c7:c6:bc:bb: 26:c5:49:d9:00:b1:cd:fc:d8:de:50:3b:06:96:f9: 40:39:ae:b1:32:01:dc:99:cf:70:77:91:dc:9c:ac: a4:9b:08:d5:51:5b:15:43:04:bc:73:b8:de:6e:28: c9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:8A:44:D8:44:88:70:69:8B:A4:22:C7:06:9A:85:B8:6F:94:68 X509v3 Authority Key Identifier: keyid:30:C3:93:59:65:1C:33:B5:9A:C3:2B:C4:68:31:98:01:08:96:05:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/30C39359651C33B59AC32BC46831980108960568.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30C39359651C33B59AC32BC46831980108960568.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.140.0/24 Signature Algorithm: sha256WithRSAEncryption c5:de:72:a3:cb:ba:82:e3:30:82:68:a6:5a:14:c9:85:fb:e3: f1:44:c2:d0:59:a9:09:cf:a2:b9:af:e6:78:03:70:fc:d4:e9: 2c:ef:cb:95:77:c7:98:4c:5e:fe:98:ac:4d:95:43:70:6f:df: 8d:d3:c5:ff:88:21:87:b6:a4:5b:2a:f3:a9:ca:4e:c9:94:92: e0:ac:96:d4:42:93:fc:f7:f4:69:8a:da:ad:45:5d:d6:7f:8b: 8d:5e:83:ae:65:54:57:ae:e4:d5:61:af:3f:a2:8f:9e:f6:51: e2:1e:3a:9b:c1:02:ef:0d:b8:ea:cc:fb:21:c7:2a:02:7e:3d: 9e:52:b8:c1:e2:86:a6:0a:03:38:a2:9d:8a:29:2d:24:87:7a: 62:ef:11:8c:1d:40:f2:7f:bb:d4:9f:e4:4e:44:c8:37:a1:af: ef:fe:93:db:1d:29:b8:3b:6e:45:2c:0e:d8:f0:c2:8c:c1:5f: c7:cc:dc:20:7e:3d:d1:67:07:3e:c6:d4:35:dd:ba:e9:29:fe: b5:15:7c:38:1f:a1:a9:68:10:f5:da:53:06:5c:5e:5f:44:77: 92:32:83:0f:cc:d6:9d:10:15:81:a8:3e:30:c9:a6:98:3e:41: a8:a1:e4:2f:4e:37:7a:b8:44:2a:12:f1:76:0e:02:eb:b1:05: 81:a1:b1:67 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEVt9tL+j8fwTybvXamfPAPLLu5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBDMzkzNTk2NTFDMzNCNTlBQzMyQkM0NjgzMTk4MDEw ODk2MDU2ODAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKEE5RUE4QTQ0RDg0NDg4NzA2OThCQTQyMkM3MDY5QTg1Qjg2Rjk0NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+wIwxKUEYixstgoIpHQBGM/wo JkE3mHVFXhWK5bdQ7+j1f//yA3XPf4h8iLyBph9OTqFO0RgA/1emmCFFPSgC8j2C W3BAGDKyQi9KZ42gE2TjB8T4OS0WDpc9Y0/LKPQz6mPUtgT6mCXTUI+XcCI8ciM/ Zg7EnN7iYeED44eaLf0fn8ORWhnXYsxepUDAOVUsVpvJrGWhXnRwkE0ubDlm4NZh 8l/lI855Lp6+vWMYsYM0R4HRb7wrUFdufkaVrTGEFxWv3ccnayhuK1iLx8a8uybF SdkAsc382N5QOwaW+UA5rrEyAdyZz3B3kdycrKSbCNVRWxVDBLxzuN5uKMkZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqeqKRNhEiHBpi6QixwaahbhvlGgwHwYDVR0j BBgwFoAUMMOTWWUcM7WawyvEaDGYAQiWBWgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTc5OTZmNS1hOTM0LTRiNDQtODU0Ny0xOWVjMzdjZjdjMTQvMC8zMEMzOTM1OTY1 MUMzM0I1OUFDMzJCQzQ2ODMxOTgwMTA4OTYwNTY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBDMzkzNTk2NTFDMzNCNTlBQzMyQkM0NjgzMTk4MDEwODk2 MDU2OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1Nzk5NmY1LWE5MzQtNGI0NC04 NTQ3LTE5ZWMzN2NmN2MxNC8wLzMxMzAzMzJlMzEzMDM3MmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMjM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna4wwDQYJ KoZIhvcNAQELBQADggEBAMXecqPLuoLjMIJoploUyYX74/FEwtBZqQnPormv5ngD cPzU6Szvy5V3x5hMXv6YrE2VQ3Bv343Txf+IIYe2pFsq86nKTsmUkuCsltRCk/z3 9GmK2q1FXdZ/i41eg65lVFeu5NVhrz+ij572UeIeOpvBAu8NuOrM+yHHKgJ+PZ5S uMHihqYKAziinYopLSSHemLvEYwdQPJ/u9Sf5E5EyDehr+/+k9sdKbg7bkUsDtjw wozBX8fM3CB+PdFnBz7G1DXduukp/rUVfDgfoaloEPXaUwZcXl9Ed5Iygw/M1p0Q FYGoPjDJppg+Qaih5C9ON3q4RCoS8XYOAuuxBYGhsWc= -----END CERTIFICATE-----Generated at Sun Jun 8 14:45:49 2025 by rpki-client