$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa File: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o= Subject key identifier: 3C:A3:47:F2:0C:25:06:28:57:63:D7:42:35:CC:72:41:42:87:3E:47 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 74318D0F718ED4683D532BC583529089FE36F51A Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:03:54 +0000 ROA not before: Mon 02 Jun 2025 01:58:54 +0000 ROA not after: Mon 01 Jun 2026 02:03:54 +0000 asID: 63497 IP address blocks: 103.232.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:31:8d:0f:71:8e:d4:68:3d:53:2b:c5:83:52:90:89:fe:36:f5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 2 01:58:54 2025 GMT Not After : Jun 1 02:03:54 2026 GMT Subject: CN=3CA347F20C2506285763D74235CC724142873E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:07:50:47:89:34:8f:5f:50:dc:5c:c3:46: 7f:a3:94:c0:6f:97:47:bf:87:55:fe:ca:ea:25:0c: 30:77:3f:b0:8d:c4:12:54:f0:80:ff:54:e2:42:86: fc:cf:05:b6:13:55:d5:58:fb:68:3b:47:a6:74:17: b1:8b:ad:ea:0a:cd:59:90:6a:c7:4d:75:fa:fd:7e: 84:8b:f7:18:7c:2b:fc:e0:e0:f2:99:1a:48:f4:15: ab:ae:40:ff:6f:37:ba:14:f4:a4:37:3e:0d:c6:17: 16:d4:35:f5:95:a9:14:9f:fd:ca:5c:ff:c5:6a:29: 4e:85:40:03:e1:09:0f:69:64:f6:dc:83:5b:fb:d5: 0b:a3:a5:9d:97:1b:97:e9:f9:0e:af:c0:d8:bb:32: 96:41:15:31:45:9d:3d:f1:80:88:fc:ad:d9:bc:00: 14:50:8e:da:5e:bc:b7:4f:61:6b:31:a4:28:89:38: 8b:e3:53:f5:f5:6a:db:fa:c4:5d:20:e8:bc:48:5c: 8a:c8:77:20:10:2c:82:58:ac:42:36:b6:ed:b5:90: fa:23:b9:8e:9f:3c:4c:10:53:0a:f6:2e:ff:f4:f6: e7:47:57:83:4b:28:97:88:71:7c:8c:18:e2:ac:82: cd:0c:6d:2a:54:35:b1:c6:ce:7a:e2:50:09:ec:6c: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A3:47:F2:0C:25:06:28:57:63:D7:42:35:CC:72:41:42:87:3E:47 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.243.0/24 Signature Algorithm: sha256WithRSAEncryption 04:5e:be:1c:0b:8d:c8:18:3d:bf:b0:cf:94:0c:0a:7c:18:3d: 3a:9b:bd:4c:7c:f0:0c:74:43:82:4e:76:5a:94:5d:ed:be:83: a0:88:c1:46:3a:50:d4:68:61:62:79:eb:57:9c:d0:d8:59:65: 53:64:de:88:6e:e1:2b:78:0d:c4:4d:8c:c1:4b:bb:96:d9:a6: 17:3c:d0:7b:15:1a:d9:68:80:52:32:dd:ed:d0:43:5e:48:99: 10:d5:6e:e8:21:21:56:7e:22:8d:ef:c0:e1:63:a2:d4:84:48: 93:a8:94:05:64:0d:3f:71:64:82:89:cc:c7:91:53:cf:27:3e: e6:a7:d9:5e:f2:23:37:5a:32:af:12:a9:63:a9:49:9b:01:62: 9f:9e:cb:3a:30:f6:1a:89:ef:b5:bc:45:dc:55:43:48:35:07: b3:a6:f6:9a:0e:21:32:f3:e0:f5:bb:f7:19:cc:52:39:60:cb: a9:24:90:d0:56:a0:a4:c0:a8:67:24:0d:d9:a5:6d:72:a7:21: 4d:0c:d1:67:4c:65:91:ba:f0:43:19:dc:d5:ba:11:c9:0b:33: 70:fd:94:60:d1:1a:c1:e9:35:c0:a8:a3:f8:59:5d:0f:72:4e: 71:72:e8:11:20:87:fb:b2:f6:58:d9:fb:89:bf:c7:73:91:34: 95:4b:bc:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdDGND3GO1Gg9UyvFg1KQif429RowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDIwMTU4NTRaFw0yNjA2MDEwMjAzNTRaMDMxMTAvBgNV BAMTKDNDQTM0N0YyMEMyNTA2Mjg1NzYzRDc0MjM1Q0M3MjQxNDI4NzNFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDyQdQR4k0j19Q3FzDRn+jlMBv l0e/h1X+yuolDDB3P7CNxBJU8ID/VOJChvzPBbYTVdVY+2g7R6Z0F7GLreoKzVmQ asdNdfr9foSL9xh8K/zg4PKZGkj0FauuQP9vN7oU9KQ3Pg3GFxbUNfWVqRSf/cpc /8VqKU6FQAPhCQ9pZPbcg1v71QujpZ2XG5fp+Q6vwNi7MpZBFTFFnT3xgIj8rdm8 ABRQjtpevLdPYWsxpCiJOIvjU/X1atv6xF0g6LxIXIrIdyAQLIJYrEI2tu21kPoj uY6fPEwQUwr2Lv/09udHV4NLKJeIcXyMGOKsgs0MbSpUNbHGznriUAnsbCahAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPKNH8gwlBihXY9dCNcxyQUKHPkcwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+jzMA0GCSqG SIb3DQEBCwUAA4IBAQAEXr4cC43IGD2/sM+UDAp8GD06m71MfPAMdEOCTnZalF3t voOgiMFGOlDUaGFieetXnNDYWWVTZN6IbuEreA3ETYzBS7uW2aYXPNB7FRrZaIBS Mt3t0ENeSJkQ1W7oISFWfiKN78DhY6LUhEiTqJQFZA0/cWSCiczHkVPPJz7mp9le 8iM3WjKvEqljqUmbAWKfnss6MPYaie+1vEXcVUNINQezpvaaDiEy8+D1u/cZzFI5 YMupJJDQVqCkwKhnJA3ZpW1ypyFNDNFnTGWRuvBDGdzVuhHJCzNw/ZRg0RrB6TXA qKP4WV0Pck5xcugRIIf7svZY2fuJv8dzkTSVS7xX -----END CERTIFICATE-----Generated at Sat Jun 7 15:28:02 2025 by rpki-client