$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa File: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (raw, json) Hash identifier: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc= Subject key identifier: F7:5D:98:F9:A6:4A:46:79:37:9F:88:D1:AA:E4:E4:0A:2E:21:8F:BC Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 45BB348A57B66158DFD4AD60AB61EFDD2853CABF Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:03:54 +0000 ROA not before: Mon 02 Jun 2025 01:58:54 +0000 ROA not after: Mon 01 Jun 2026 02:03:54 +0000 asID: 63497 IP address blocks: 103.232.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:bb:34:8a:57:b6:61:58:df:d4:ad:60:ab:61:ef:dd:28:53:ca:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 2 01:58:54 2025 GMT Not After : Jun 1 02:03:54 2026 GMT Subject: CN=F75D98F9A64A4679379F88D1AAE4E40A2E218FBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:46:4b:a8:00:b7:8f:b4:c7:c9:8b:9c:3c: 41:3d:a9:fd:e7:4b:b2:d8:db:31:61:c4:f0:07:0f: bd:08:52:5a:2f:8c:b0:81:4d:d5:54:28:5b:66:41: c3:33:2b:a6:62:e3:cb:2f:44:e4:c3:3f:e6:6c:b0: 62:41:82:fa:c7:e4:b0:43:29:20:fa:56:a5:30:05: 3d:89:1d:9a:14:55:81:84:90:b4:4a:d5:cf:7a:87: 7a:a2:68:6a:40:c3:f1:58:27:f6:8c:44:08:d8:14: 0f:a0:25:e4:ba:76:30:d9:b7:19:28:26:7b:3f:ab: 68:8f:bc:dc:0c:d5:0f:d5:d5:3d:bf:51:f5:0c:38: 46:e2:98:40:45:f2:99:5c:95:9e:f7:d7:2d:5f:d7: 45:55:55:4e:0e:0c:a2:55:5a:0a:28:e8:75:b2:db: 59:65:2e:cb:f2:0c:e7:b7:98:84:45:48:eb:dc:4f: a4:87:52:75:33:d6:23:74:92:ca:15:d8:15:1e:33: fe:2d:4b:d2:ba:5f:02:cf:fc:bf:c4:79:4c:a0:7f: 5c:7f:b9:a6:3b:c4:9b:a3:e4:8b:dc:b5:1a:e8:44: fc:fb:1b:01:2b:09:e6:82:d3:0e:e0:bc:8c:c1:af: 63:28:7a:63:1c:6f:cc:44:6c:2f:76:e3:40:98:7b: 06:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:5D:98:F9:A6:4A:46:79:37:9F:88:D1:AA:E4:E4:0A:2E:21:8F:BC X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.242.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:0c:0d:e4:e3:b4:ed:75:8b:b6:94:c9:0c:32:33:c7:a7:c9: 24:79:4f:65:69:ad:df:20:d3:de:1e:50:6c:78:eb:61:f7:65: f9:77:9e:f2:0c:6d:06:d7:9e:f3:f5:e5:b6:55:f2:43:95:69: 8f:8f:4f:f3:e2:a4:d7:33:95:62:01:9d:91:fb:1d:c6:c0:d9: e7:00:54:cd:f9:2e:8a:91:78:19:ac:02:b8:d9:e1:02:b7:bb: c6:9a:0f:31:57:10:00:52:25:ae:6e:5f:f8:90:fb:48:7a:22: 98:f5:28:a8:c9:68:f5:34:da:02:6a:44:14:be:94:d1:e2:d6: 36:b3:c7:25:6a:bb:18:19:70:b0:d0:e8:d3:c7:45:cc:7c:4f: a7:4f:6b:d4:8a:42:58:10:27:5c:71:0c:62:a7:b1:2d:73:bd: 1b:34:c3:bb:c1:a6:aa:11:c3:bc:3d:23:66:8c:b3:85:a5:b2: ef:1b:04:70:e0:61:f4:37:bc:c6:8e:f3:22:ba:36:7c:25:fe: eb:17:e6:e0:99:5a:ae:ad:d1:3c:de:5c:e0:ab:77:20:3c:a2: 60:af:df:43:0d:07:19:f4:17:2f:08:78:91:2a:21:ed:54:6f: 20:6b:d3:32:ff:0c:85:2c:31:a2:b5:f3:0c:0d:e2:87:4e:5a: 4a:a2:1d:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURbs0ile2YVjf1K1gq2Hv3ShTyr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDIwMTU4NTRaFw0yNjA2MDEwMjAzNTRaMDMxMTAvBgNV BAMTKEY3NUQ5OEY5QTY0QTQ2NzkzNzlGODhEMUFBRTRFNDBBMkUyMThGQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy8kZLqAC3j7THyYucPEE9qf3n S7LY2zFhxPAHD70IUlovjLCBTdVUKFtmQcMzK6Zi48svROTDP+ZssGJBgvrH5LBD KSD6VqUwBT2JHZoUVYGEkLRK1c96h3qiaGpAw/FYJ/aMRAjYFA+gJeS6djDZtxko Jns/q2iPvNwM1Q/V1T2/UfUMOEbimEBF8plclZ731y1f10VVVU4ODKJVWgoo6HWy 21llLsvyDOe3mIRFSOvcT6SHUnUz1iN0ksoV2BUeM/4tS9K6XwLP/L/EeUygf1x/ uaY7xJuj5IvctRroRPz7GwErCeaC0w7gvIzBr2MoemMcb8xEbC9240CYewbhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU912Y+aZKRnk3n4jRquTkCi4hj7wwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+jyMA0GCSqG SIb3DQEBCwUAA4IBAQB7DA3k47TtdYu2lMkMMjPHp8kkeU9laa3fINPeHlBseOth 92X5d57yDG0G157z9eW2VfJDlWmPj0/z4qTXM5ViAZ2R+x3GwNnnAFTN+S6KkXgZ rAK42eECt7vGmg8xVxAAUiWubl/4kPtIeiKY9SioyWj1NNoCakQUvpTR4tY2s8cl arsYGXCw0OjTx0XMfE+nT2vUikJYECdccQxip7Etc70bNMO7waaqEcO8PSNmjLOF pbLvGwRw4GH0N7zGjvMiujZ8Jf7rF+bgmVqurdE83lzgq3cgPKJgr99DDQcZ9Bcv CHiRKiHtVG8ga9My/wyFLDGitfMMDeKHTlpKoh2E -----END CERTIFICATE-----Generated at Sat Jun 7 23:05:13 2025 by rpki-client