$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa File: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU= Subject key identifier: FD:AF:C1:A7:97:99:4F:74:D4:38:99:50:83:5F:AE:17:A3:02:3F:9F Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 596B3D67AD8EFDE3C6AA42248285D390402FDB69 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:03:53 +0000 ROA not before: Mon 02 Jun 2025 01:58:53 +0000 ROA not after: Mon 01 Jun 2026 02:03:53 +0000 asID: 63497 IP address blocks: 103.232.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:6b:3d:67:ad:8e:fd:e3:c6:aa:42:24:82:85:d3:90:40:2f:db:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 2 01:58:53 2025 GMT Not After : Jun 1 02:03:53 2026 GMT Subject: CN=FDAFC1A797994F74D4389950835FAE17A3023F9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:09:fe:81:33:6f:82:d1:c6:09:a7:ad:ca:a6: 36:27:68:6c:97:ee:88:8e:01:3a:53:a7:45:7f:7d: 4a:46:90:e2:98:69:ec:2f:29:dc:6d:78:16:f8:09: 82:2b:59:58:be:2b:de:31:f6:18:84:34:5e:c0:a2: cd:a4:4e:76:4f:52:fd:04:0b:c0:fe:bd:97:6b:de: 92:7a:41:59:3d:f6:56:ed:ae:fc:70:c8:92:a0:ee: 6d:a3:3a:22:5d:97:5e:bc:7a:87:0e:1e:66:a7:9c: cc:73:2b:33:09:9c:a5:fc:1c:04:4d:6b:67:19:5c: cb:18:db:48:f7:46:20:5e:b1:f1:a7:4f:8d:9c:c2: f8:c0:f9:71:aa:64:fd:b2:73:c1:db:88:e7:45:dd: 3c:e7:4c:b9:6e:78:30:d8:80:95:f6:65:7b:4a:79: 02:f0:b1:25:61:3b:88:49:53:fc:77:f3:de:bd:8c: d5:7e:b1:d7:c0:c4:71:41:7b:22:6b:8a:da:c4:d6: 84:ea:19:e9:26:bb:61:a7:cd:27:53:fd:96:c5:ea: fa:f4:a8:0f:22:10:3d:fc:91:4f:80:c2:b8:b4:52: 30:4f:94:e3:dd:90:d7:37:e7:4c:73:e2:8e:f3:4d: f1:e0:d4:ae:19:25:42:5d:dd:85:b6:bb:7b:0e:e1: 89:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AF:C1:A7:97:99:4F:74:D4:38:99:50:83:5F:AE:17:A3:02:3F:9F X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.242.0/24 Signature Algorithm: sha256WithRSAEncryption 78:49:e2:ec:e1:21:ab:b9:0f:72:c7:a0:7d:03:ae:7c:1c:34: 8d:4d:7b:cd:4b:5b:dc:6d:b8:54:a5:c6:7c:6f:dd:49:1b:88: da:b6:2d:b5:a7:75:66:db:bd:64:68:da:3d:3c:97:21:14:3a: d1:2e:f2:71:f6:e2:5b:20:5c:0c:e0:b7:c9:50:3d:50:b9:bf: 41:c5:4c:6f:42:bf:49:7f:92:5f:df:6f:30:c3:af:e5:3a:e2: c5:bd:31:c7:02:cb:7e:4a:94:29:62:eb:2e:50:7b:fd:9a:fb: 1c:0f:02:28:59:2a:b8:d1:f5:60:28:9d:60:0d:ac:c1:00:6c: 76:db:74:c2:d5:6f:8e:72:b4:be:a6:3d:07:64:59:11:a9:84: 7d:32:fb:74:3f:f8:36:7b:27:5f:e9:00:9d:38:ee:83:1c:72: ae:77:aa:0c:b6:9d:25:1f:7d:9c:48:55:20:8d:17:dd:5d:e1: 20:5e:04:82:c4:14:b2:68:be:ca:a5:7b:5a:a4:c0:bc:85:3f: 65:da:c2:51:c6:cf:af:d7:a3:5b:20:21:98:1f:e3:ea:7e:ac: 94:62:c6:ea:75:17:2e:f9:9d:08:f7:4d:34:2c:88:79:a7:9e: 26:24:e6:f7:ac:d4:fb:7e:16:17:10:3b:dd:aa:0b:0e:b0:0a: ab:b3:f1:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWWs9Z62O/ePGqkIkgoXTkEAv22kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDIwMTU4NTNaFw0yNjA2MDEwMjAzNTNaMDMxMTAvBgNV BAMTKEZEQUZDMUE3OTc5OTRGNzRENDM4OTk1MDgzNUZBRTE3QTMwMjNGOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHCf6BM2+C0cYJp63KpjYnaGyX 7oiOATpTp0V/fUpGkOKYaewvKdxteBb4CYIrWVi+K94x9hiENF7Aos2kTnZPUv0E C8D+vZdr3pJ6QVk99lbtrvxwyJKg7m2jOiJdl168eocOHmannMxzKzMJnKX8HARN a2cZXMsY20j3RiBesfGnT42cwvjA+XGqZP2yc8HbiOdF3TznTLlueDDYgJX2ZXtK eQLwsSVhO4hJU/x38969jNV+sdfAxHFBeyJritrE1oTqGekmu2GnzSdT/ZbF6vr0 qA8iED38kU+Awri0UjBPlOPdkNc350xz4o7zTfHg1K4ZJUJd3YW2u3sO4Yk7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/a/Bp5eZT3TUOJlQg1+uF6MCP58wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+jyMA0GCSqG SIb3DQEBCwUAA4IBAQB4SeLs4SGruQ9yx6B9A658HDSNTXvNS1vcbbhUpcZ8b91J G4jati21p3Vm271kaNo9PJchFDrRLvJx9uJbIFwM4LfJUD1Qub9BxUxvQr9Jf5Jf 328ww6/lOuLFvTHHAst+SpQpYusuUHv9mvscDwIoWSq40fVgKJ1gDazBAGx223TC 1W+OcrS+pj0HZFkRqYR9Mvt0P/g2eydf6QCdOO6DHHKud6oMtp0lH32cSFUgjRfd XeEgXgSCxBSyaL7KpXtapMC8hT9l2sJRxs+v16NbICGYH+PqfqyUYsbqdRcu+Z0I 9000LIh5p54mJOb3rNT7fhYXEDvdqgsOsAqrs/Fd -----END CERTIFICATE-----Generated at Sat Jun 7 14:53:20 2025 by rpki-client