$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa File: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s= Subject key identifier: E1:20:E2:3C:9D:FE:0C:5E:37:C6:F0:BE:18:48:3A:17:ED:5A:DB:E9 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 1CE4EA3EE63813DB59A2DD30A0B15617CECF9801 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:03:53 +0000 ROA not before: Mon 02 Jun 2025 01:58:53 +0000 ROA not after: Mon 01 Jun 2026 02:03:53 +0000 asID: 63497 IP address blocks: 103.250.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e4:ea:3e:e6:38:13:db:59:a2:dd:30:a0:b1:56:17:ce:cf:98:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 2 01:58:53 2025 GMT Not After : Jun 1 02:03:53 2026 GMT Subject: CN=E120E23C9DFE0C5E37C6F0BE18483A17ED5ADBE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:0f:10:fb:70:03:df:d5:56:86:c3:7b:da: 57:b6:7e:42:21:12:76:68:6c:b4:28:b9:eb:e1:8d: e8:8d:22:10:f0:7d:e5:b2:e9:58:10:58:c4:36:6a: 38:1d:e0:40:d7:1f:96:be:02:b8:90:02:e3:5c:bc: b8:0d:08:f7:59:84:c6:76:e5:64:ad:f5:1c:98:1f: c4:05:57:ef:73:a5:1c:ac:02:95:69:07:3b:66:14: 86:e4:87:37:1f:84:5d:01:82:57:b1:df:9e:8b:eb: f3:c3:aa:4f:c1:ed:a0:a2:11:d1:2f:b1:35:b3:54: 03:2b:86:e1:c2:b5:b2:49:fa:cb:6e:b4:db:a7:e4: bb:2d:84:c4:f2:99:16:ed:47:ca:df:1d:26:55:e2: 1f:9e:80:40:f7:b1:76:f5:d3:f9:b2:b4:d8:8c:22: fe:73:5e:58:48:d2:b4:ae:5a:e5:83:0f:c6:fd:96: 45:2b:e6:c1:cb:11:ac:62:e7:51:56:77:e6:8a:aa: 9f:f9:79:db:fc:76:1c:0c:ae:ef:fa:5e:08:4c:ca: 11:f3:5d:01:c4:f6:a0:31:0a:96:e4:cc:76:22:87: 1c:03:5a:93:b7:ed:cb:9c:7c:d4:22:c9:3d:62:21: d7:7a:e1:c3:66:02:20:b3:07:0c:c7:81:5e:4e:d3: 7b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:20:E2:3C:9D:FE:0C:5E:37:C6:F0:BE:18:48:3A:17:ED:5A:DB:E9 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.199.0/24 Signature Algorithm: sha256WithRSAEncryption 19:23:ab:a5:8c:79:1b:4d:9c:1a:13:78:5d:ce:64:a0:3c:b8: a2:20:42:7a:58:7f:c5:9c:c4:7c:1b:db:90:38:a0:2e:2c:5e: bc:1c:1b:f0:4c:25:c9:84:8a:aa:ce:a0:af:1f:36:cf:bb:cf: 13:b5:aa:5d:88:f5:16:70:e1:f6:43:28:64:de:39:59:d8:1b: 29:8b:33:aa:ab:39:6d:60:a7:20:b6:e8:02:49:da:86:56:d8: 29:13:90:a0:b4:50:ec:60:95:9a:db:61:ea:7d:66:2f:b6:64: 67:6d:f6:42:29:88:6a:9e:94:d8:20:db:b1:12:19:d1:20:84: 7b:20:7c:cf:66:be:66:1a:05:2a:7f:32:85:3f:02:d9:1b:03: d3:8d:53:3c:8e:80:c0:d1:1d:f9:6d:40:80:d7:79:9c:38:7a: fa:b9:52:89:73:2f:fe:35:7a:44:59:ec:d1:f0:c8:9e:63:1b: bf:db:f9:78:87:8e:95:de:0f:41:ec:4c:29:b0:d2:9a:5c:95: 03:46:83:fe:b2:ab:6b:8a:e4:a6:c0:56:f3:16:72:ec:f0:a4: dc:9c:6a:ca:66:8a:34:6e:e4:fb:5f:17:82:a1:05:e4:76:7e: cc:86:29:28:a1:74:33:86:e6:dc:63:97:9f:ff:1f:bf:fe:7f: 09:79:88:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHOTqPuY4E9tZot0woLFWF87PmAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDIwMTU4NTNaFw0yNjA2MDEwMjAzNTNaMDMxMTAvBgNV BAMTKEUxMjBFMjNDOURGRTBDNUUzN0M2RjBCRTE4NDgzQTE3RUQ1QURCRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3nA8Q+3AD39VWhsN72le2fkIh EnZobLQouevhjeiNIhDwfeWy6VgQWMQ2ajgd4EDXH5a+AriQAuNcvLgNCPdZhMZ2 5WSt9RyYH8QFV+9zpRysApVpBztmFIbkhzcfhF0Bglex356L6/PDqk/B7aCiEdEv sTWzVAMrhuHCtbJJ+stutNun5LsthMTymRbtR8rfHSZV4h+egED3sXb10/mytNiM Iv5zXlhI0rSuWuWDD8b9lkUr5sHLEaxi51FWd+aKqp/5edv8dhwMru/6XghMyhHz XQHE9qAxCpbkzHYihxwDWpO37cucfNQiyT1iIdd64cNmAiCzBwzHgV5O03vNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4SDiPJ3+DF43xvC+GEg6F+1a2+kwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzNTMwMmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/rHMA0GCSqG SIb3DQEBCwUAA4IBAQAZI6uljHkbTZwaE3hdzmSgPLiiIEJ6WH/FnMR8G9uQOKAu LF68HBvwTCXJhIqqzqCvHzbPu88TtapdiPUWcOH2Qyhk3jlZ2BspizOqqzltYKcg tugCSdqGVtgpE5CgtFDsYJWa22HqfWYvtmRnbfZCKYhqnpTYINuxEhnRIIR7IHzP Zr5mGgUqfzKFPwLZGwPTjVM8joDA0R35bUCA13mcOHr6uVKJcy/+NXpEWezR8Mie Yxu/2/l4h46V3g9B7EwpsNKaXJUDRoP+sqtriuSmwFbzFnLs8KTcnGrKZoo0buT7 XxeCoQXkdn7MhikooXQzhubcY5ef/x+//n8JeYgh -----END CERTIFICATE-----Generated at Sat Jun 7 15:48:56 2025 by rpki-client