$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32342d3234203d3e203633383732.roa File: 3130332e35322e3137302e302f32342d3234203d3e203633383732.roa (raw, json) Hash identifier: Z+FoVz2t/bU9Oh29fvVmEj58qbcaPFxm8OsmszzE23M= Subject key identifier: D2:77:13:EB:1F:31:95:40:15:98:03:E4:5D:B3:6C:00:09:47:95:35 Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 25635A22457F8F4D7005EB54030D12653264021D Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32342d3234203d3e203633383732.roa Signing time: Mon 02 Jun 2025 02:04:50 +0000 ROA not before: Mon 02 Jun 2025 01:59:50 +0000 ROA not after: Mon 01 Jun 2026 02:04:50 +0000 asID: 63872 IP address blocks: 103.52.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:63:5a:22:45:7f:8f:4d:70:05:eb:54:03:0d:12:65:32:64:02:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jun 2 01:59:50 2025 GMT Not After : Jun 1 02:04:50 2026 GMT Subject: CN=D27713EB1F319540159803E45DB36C0009479535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:db:0a:aa:f1:29:8b:e1:82:26:2d:09:15:b6: ed:52:e2:b0:c3:c1:b1:01:3b:1a:66:df:27:ff:39: b9:a1:92:43:14:65:8f:31:97:6b:63:14:e0:3c:e4: 2e:cb:08:25:29:90:f0:dc:ca:fa:be:ea:b3:8b:eb: 90:c5:bd:1d:9b:2c:e6:1f:42:3d:ec:11:29:ae:24: 4c:4c:99:6e:cc:5f:22:9e:45:bb:7b:f9:8d:f1:11: 1d:89:81:ed:fa:9e:9e:37:c7:a3:3b:38:b2:e5:15: 12:f8:a9:67:08:ff:90:eb:0b:d7:96:ef:b6:26:53: 51:83:a0:08:26:31:07:e2:0f:ba:91:2c:71:d9:e2: 17:54:f6:d8:6c:4a:64:9c:02:f6:d5:4c:11:1e:5a: 60:21:bf:b4:80:05:f4:19:27:fc:54:b6:b6:c6:de: 52:46:af:76:0b:c4:98:7d:9a:69:2c:9c:f1:bc:90: 2e:6a:bb:3c:a3:b2:65:a9:6a:73:cd:8c:74:c1:c6: a3:22:cb:57:85:e9:3c:be:fd:c1:15:35:74:cd:0e: 72:c7:f8:3f:6f:15:92:3b:54:9f:ef:db:81:f9:3a: 83:a8:55:9e:99:4a:c0:f6:be:16:b0:fa:4e:75:99: 4c:f5:a8:f4:8e:fc:f3:aa:87:b6:5c:d7:42:da:3f: d3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:77:13:EB:1F:31:95:40:15:98:03:E4:5D:B3:6C:00:09:47:95:35 X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137302e302f32342d3234203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.170.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:0e:e3:32:2c:45:43:e0:9a:06:fe:d8:3c:3b:e3:e8:32:bf: 0f:9d:b4:6a:3c:a0:c4:5e:4e:50:73:df:4a:0d:dd:35:08:96: 27:07:d9:61:13:56:ba:9f:b1:7d:80:83:ec:15:5e:a0:3a:c6: a2:dc:7d:cb:33:82:c3:11:31:de:03:9a:0b:92:69:f2:a2:bc: 0d:5f:3d:ef:ef:c7:2d:df:ff:cd:c5:ab:7b:95:f8:fd:c6:10: 2f:8e:2d:65:eb:ae:a0:2b:d1:1d:3b:da:98:97:b4:08:8e:c8: 65:d6:1a:76:2c:6e:09:6f:8d:38:a7:9e:9d:1b:ce:2a:a3:7b: 8d:f6:e5:f7:92:f2:a8:8b:95:61:9b:4b:3b:30:08:38:50:01: f6:f5:a2:b6:78:63:6d:c0:b7:72:04:ac:99:77:51:99:f0:4f: 12:6e:2a:33:4a:a4:15:e7:67:21:6c:a1:3f:1c:a1:f1:ee:77: a6:a7:1a:ce:c3:d6:ec:64:77:d0:5c:2e:9c:f7:ac:0a:6c:a5: 77:54:47:fc:af:4d:32:25:19:c3:0d:c2:f0:30:7e:76:fd:31: 76:9b:c8:28:bf:6e:71:8a:a8:c3:51:fe:f4:c7:5e:c1:7a:cb: b1:e8:73:cf:ae:ed:27:3d:c2:b7:bd:d5:9f:42:00:68:46:a5: d5:fb:3f:9b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJWNaIkV/j01wBetUAw0SZTJkAh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yNTA2MDIwMTU5NTBaFw0yNjA2MDEwMjA0NTBaMDMxMTAvBgNV BAMTKEQyNzcxM0VCMUYzMTk1NDAxNTk4MDNFNDVEQjM2QzAwMDk0Nzk1MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2wqq8SmL4YImLQkVtu1S4rDD wbEBOxpm3yf/ObmhkkMUZY8xl2tjFOA85C7LCCUpkPDcyvq+6rOL65DFvR2bLOYf Qj3sESmuJExMmW7MXyKeRbt7+Y3xER2Jge36np43x6M7OLLlFRL4qWcI/5DrC9eW 77YmU1GDoAgmMQfiD7qRLHHZ4hdU9thsSmScAvbVTBEeWmAhv7SABfQZJ/xUtrbG 3lJGr3YLxJh9mmksnPG8kC5quzyjsmWpanPNjHTBxqMiy1eF6Ty+/cEVNXTNDnLH +D9vFZI7VJ/v24H5OoOoVZ6ZSsD2vhaw+k51mUz1qPSO/POqh7Zc10LaP9MXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0ncT6x8xlUAVmAPkXbNsAAlHlTUwHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMxMzAzMzJlMzUzMjJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0qjANBgkqhkiG 9w0BAQsFAAOCAQEAKw7jMixFQ+CaBv7YPDvj6DK/D520ajygxF5OUHPfSg3dNQiW JwfZYRNWup+xfYCD7BVeoDrGotx9yzOCwxEx3gOaC5Jp8qK8DV897+/HLd//zcWr e5X4/cYQL44tZeuuoCvRHTvamJe0CI7IZdYadixuCW+NOKeenRvOKqN7jfbl95Ly qIuVYZtLOzAIOFAB9vWitnhjbcC3cgSsmXdRmfBPEm4qM0qkFednIWyhPxyh8e53 pqcazsPW7GR30FwunPesCmyld1RH/K9NMiUZww3C8DB+dv0xdpvIKL9ucYqow1H+ 9MdewXrLsehzz67tJz3Ct73Vn0IAaEal1fs/mw== -----END CERTIFICATE-----Generated at Sat Jun 7 23:01:55 2025 by rpki-client