$ rpki-client -vvf repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa File: 3130332e34382e3132382e302f32322d3234203d3e203633383631.roa (raw, json) Hash identifier: QAI5cYTeOrxvcausPsC1CnYV2kULdBh9ytAc4ZJZoM0= Subject key identifier: 7A:53:88:66:1C:BF:26:C8:7B:35:DF:C5:55:BB:C0:08:4C:08:33:28 Certificate issuer: /CN=A70723C87D2C27B95BE6227C631E7D85EF89D513 Certificate serial: 2ED51FED8EC4DD75147C7858698355CC6E2D48B1 Authority key identifier: A7:07:23:C8:7D:2C:27:B9:5B:E6:22:7C:63:1E:7D:85:EF:89:D5:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa Signing time: Mon 02 Jun 2025 01:02:56 +0000 ROA not before: Mon 02 Jun 2025 00:57:56 +0000 ROA not after: Mon 01 Jun 2026 01:02:56 +0000 asID: 63861 IP address blocks: 103.48.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.crl rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 11:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d5:1f:ed:8e:c4:dd:75:14:7c:78:58:69:83:55:cc:6e:2d:48:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A70723C87D2C27B95BE6227C631E7D85EF89D513 Validity Not Before: Jun 2 00:57:56 2025 GMT Not After : Jun 1 01:02:56 2026 GMT Subject: CN=7A5388661CBF26C87B35DFC555BBC0084C083328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:49:57:3a:2c:9b:39:0f:d6:bb:bf:16:2b: 75:fc:ab:75:2a:0c:ee:93:15:e4:91:12:57:4f:f7: 49:ed:41:f5:ca:92:ba:61:b6:bc:0e:75:3a:0e:95: e3:81:ba:e4:9e:a2:fc:02:96:c5:61:53:00:84:89: 52:0b:58:84:a8:2b:95:f5:05:65:76:99:13:70:00: 98:01:b2:b5:ea:87:12:21:a3:e9:c9:44:78:06:95: 0c:49:28:85:e9:2e:23:f3:8f:00:d9:6b:55:f9:c9: 72:bb:46:85:1e:d3:6b:84:dc:74:2f:58:fe:91:e1: 83:58:ce:76:fd:97:7f:cb:ae:87:6b:5f:3f:a4:80: af:57:33:ea:0e:a1:b3:6f:1c:01:32:ba:33:e5:fc: c0:91:d0:57:8d:4e:b2:de:55:a9:56:28:4d:38:62: ae:4e:19:7a:15:29:ab:0b:af:ff:75:38:31:85:40: b8:28:dc:e2:e7:3f:c1:c8:f6:a2:85:37:2b:4c:bb: cb:6e:e3:fa:d0:a5:1e:b5:48:88:ed:4a:94:7e:db: 25:df:0a:78:9f:ad:ae:19:ab:24:c3:c6:a3:34:0d: bd:48:62:55:96:07:82:17:d5:2f:3f:69:3d:d8:06: e5:91:94:f3:2d:17:7c:0e:ad:37:c6:da:b1:e0:b5: 21:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:53:88:66:1C:BF:26:C8:7B:35:DF:C5:55:BB:C0:08:4C:08:33:28 X509v3 Authority Key Identifier: keyid:A7:07:23:C8:7D:2C:27:B9:5B:E6:22:7C:63:1E:7D:85:EF:89:D5:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.48.128.0/22 Signature Algorithm: sha256WithRSAEncryption 72:3a:95:01:61:c3:9b:df:ee:29:34:7f:c4:0d:e9:3c:1f:e1: 26:ec:74:1c:8c:84:3e:67:4c:e5:02:df:84:f6:73:a7:48:68: af:79:36:a8:8b:9c:5b:44:91:51:26:77:ad:1e:1f:0e:ba:5f: 83:a5:86:49:4a:24:52:00:f1:86:f5:14:e2:6f:ff:9f:36:d5: 6f:3d:38:31:bb:bf:f2:77:4b:c0:d9:5a:31:d6:e0:3f:68:0d: 3d:85:97:86:66:ed:87:55:1e:4a:f8:7f:f0:54:f6:53:48:a9: e1:70:a3:bd:e4:34:23:df:ac:6c:5f:79:c3:d9:c4:0b:c9:13: 15:3f:70:ff:d6:dd:68:86:7f:63:c7:46:50:df:65:60:d0:f4: 28:62:1e:3c:e5:06:18:1a:18:13:10:18:b5:32:47:9a:0e:ea: 87:22:b6:ee:d1:ad:a9:ef:c8:45:d5:4e:9c:4b:2e:5d:b1:c2: 90:d5:4b:60:e4:57:e8:f1:ff:f6:39:be:fe:cc:1a:53:31:26: bd:6f:0f:e5:d9:b3:ec:5c:be:28:d3:66:93:8e:43:c9:25:d3: 15:8d:20:f0:4a:9d:5a:2b:0a:80:67:b6:4e:7e:6e:bb:ad:5d: a7:f4:da:83:b2:f0:61:cf:78:80:d2:74:0d:24:d0:71:17:10: 71:66:47:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULtUf7Y7E3XUUfHhYaYNVzG4tSLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcwNzIzQzg3RDJDMjdCOTVCRTYyMjdDNjMxRTdEODVF Rjg5RDUxMzAeFw0yNTA2MDIwMDU3NTZaFw0yNjA2MDEwMTAyNTZaMDMxMTAvBgNV BAMTKDdBNTM4ODY2MUNCRjI2Qzg3QjM1REZDNTU1QkJDMDA4NEMwODMzMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/klXOiybOQ/Wu78WK3X8q3Uq DO6TFeSREldP90ntQfXKkrphtrwOdToOleOBuuSeovwClsVhUwCEiVILWISoK5X1 BWV2mRNwAJgBsrXqhxIho+nJRHgGlQxJKIXpLiPzjwDZa1X5yXK7RoUe02uE3HQv WP6R4YNYznb9l3/LrodrXz+kgK9XM+oOobNvHAEyujPl/MCR0FeNTrLeValWKE04 Yq5OGXoVKasLr/91ODGFQLgo3OLnP8HI9qKFNytMu8tu4/rQpR61SIjtSpR+2yXf Cnifra4ZqyTDxqM0Db1IYlWWB4IX1S8/aT3YBuWRlPMtF3wOrTfG2rHgtSHjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUelOIZhy/Jsh7Nd/FVbvACEwIMygwHwYDVR0j BBgwFoAUpwcjyH0sJ7lb5iJ8Yx59he+J1RMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjcwOTA0NC01NzE4LTRmMWQtYTZkMC04NzY2ZWE3M2VhZjQvMC9BNzA3MjNDODdE MkMyN0I5NUJFNjIyN0M2MzFFN0Q4NUVGODlENTEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTcwNzIzQzg3RDJDMjdCOTVCRTYyMjdDNjMxRTdEODVFRjg5 RDUxMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliNzA5MDQ0LTU3MTgtNGYxZC1h NmQwLTg3NjZlYTczZWFmNC8wLzMxMzAzMzJlMzQzODJlMzEzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcwgDANBgkqhkiG 9w0BAQsFAAOCAQEAcjqVAWHDm9/uKTR/xA3pPB/hJux0HIyEPmdM5QLfhPZzp0ho r3k2qIucW0SRUSZ3rR4fDrpfg6WGSUokUgDxhvUU4m//nzbVbz04Mbu/8ndLwNla MdbgP2gNPYWXhmbth1UeSvh/8FT2U0ip4XCjveQ0I9+sbF95w9nEC8kTFT9w/9bd aIZ/Y8dGUN9lYND0KGIePOUGGBoYExAYtTJHmg7qhyK27tGtqe/IRdVOnEsuXbHC kNVLYORX6PH/9jm+/swaUzEmvW8P5dmz7Fy+KNNmk45DySXTFY0g8EqdWisKgGe2 Tn5uu61dp/Tag7LwYc94gNJ0DSTQcRcQcWZHzg== -----END CERTIFICATE-----Generated at Sat Jun 7 14:46:03 2025 by rpki-client