$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa File: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0= Subject key identifier: EE:6E:8C:04:19:E0:BE:8D:54:C2:B1:B2:79:C1:21:59:ED:BB:95:76 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 0F7D77F7B6172D251A71FE28799EB1D4B9856743 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:03:53 +0000 ROA not before: Mon 02 Jun 2025 01:58:53 +0000 ROA not after: Mon 01 Jun 2026 02:03:53 +0000 asID: 63497 IP address blocks: 103.90.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7d:77:f7:b6:17:2d:25:1a:71:fe:28:79:9e:b1:d4:b9:85:67:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 2 01:58:53 2025 GMT Not After : Jun 1 02:03:53 2026 GMT Subject: CN=EE6E8C0419E0BE8D54C2B1B279C12159EDBB9576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4a:2c:29:28:76:3a:d2:08:70:33:3a:f5:ee: e9:e1:12:87:25:41:2c:a8:16:e0:a2:7a:b6:36:f2: 59:ab:66:09:78:47:49:83:b1:46:f8:81:6b:b1:92: b3:69:13:f2:3f:1c:90:fb:bf:a1:f8:02:ba:92:08: 32:26:eb:f5:b2:eb:49:03:de:0e:ac:3b:c6:9b:5c: 22:71:d3:fc:27:11:5e:d1:da:c2:b6:c3:22:16:4d: 67:e5:de:20:28:b7:b1:a3:80:b3:af:3d:4c:c9:9b: e4:87:55:28:7b:e2:ce:68:19:8f:e9:b1:eb:cb:20: 4e:b5:4c:04:52:29:e1:8d:a0:56:56:39:81:e7:ff: 9f:9e:bf:25:79:b1:b1:57:a8:f4:62:36:1d:ee:c1: 04:cd:76:4d:bb:62:c5:9d:12:0f:22:9f:4d:bd:1b: 41:4a:5d:97:eb:59:7c:e3:e4:d5:29:ab:c1:62:c2: 12:17:eb:c7:a0:ff:92:47:44:45:24:47:49:f7:63: 83:c7:fd:df:55:ae:36:4a:40:dc:89:af:88:7c:50: 41:8e:2b:bc:e2:83:27:0f:ab:c8:84:dd:70:59:4e: ca:4a:26:03:84:c0:8e:67:4e:df:20:a1:79:45:5c: be:ad:93:fc:50:5b:bf:17:9e:3c:5e:69:4a:17:f2: f0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6E:8C:04:19:E0:BE:8D:54:C2:B1:B2:79:C1:21:59:ED:BB:95:76 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.26.0/24 Signature Algorithm: sha256WithRSAEncryption 39:47:2e:0c:9b:cf:bb:74:29:e3:bf:30:fa:82:90:72:1a:25: b2:11:e6:16:34:28:ab:f2:b5:56:3e:f3:68:62:62:95:79:45: 8b:fd:35:87:5f:e5:cc:49:72:05:a3:0b:7c:fc:aa:1d:74:e2: 34:e1:21:29:a0:e1:82:16:7a:9f:b8:a8:5f:6d:71:65:ff:6d: 16:77:b4:9a:71:a8:a9:40:91:61:78:25:30:f3:a1:42:90:1e: dc:97:a2:a2:0e:8a:74:ba:2a:5b:ac:41:1e:7b:8e:0f:70:04: 37:23:70:14:03:b4:d9:3f:d9:bb:5a:68:3f:89:bf:1d:50:89: 6e:ee:c9:2c:cc:42:06:74:f8:ea:23:92:d8:79:04:77:7e:96: 1a:48:97:9a:79:e3:96:3a:34:83:19:e2:9a:62:15:cb:53:81: 9c:34:17:b2:34:7f:93:be:da:2a:d5:ac:0d:f1:d2:48:ff:59: e1:a8:94:0a:08:95:2e:c7:f1:8e:c2:31:f6:4f:5c:19:f3:77: e0:3e:df:2d:63:f5:d7:41:17:72:2f:4b:87:90:a4:b1:c9:a5: 4d:76:40:33:fd:c2:31:e0:30:59:64:cc:fe:80:f1:06:50:f9: 82:01:ab:d1:73:e6:ec:cf:ac:ae:65:9c:64:2e:8c:cf:96:68: d2:0f:59:05 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUD31397YXLSUacf4oeZ6x1LmFZ0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDIwMTU4NTNaFw0yNjA2MDEwMjAzNTNaMDMxMTAvBgNV BAMTKEVFNkU4QzA0MTlFMEJFOEQ1NEMyQjFCMjc5QzEyMTU5RURCQjk1NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3SiwpKHY60ghwMzr17unhEocl QSyoFuCierY28lmrZgl4R0mDsUb4gWuxkrNpE/I/HJD7v6H4ArqSCDIm6/Wy60kD 3g6sO8abXCJx0/wnEV7R2sK2wyIWTWfl3iAot7GjgLOvPUzJm+SHVSh74s5oGY/p sevLIE61TARSKeGNoFZWOYHn/5+evyV5sbFXqPRiNh3uwQTNdk27YsWdEg8in029 G0FKXZfrWXzj5NUpq8FiwhIX68eg/5JHREUkR0n3Y4PH/d9VrjZKQNyJr4h8UEGO K7zigycPq8iE3XBZTspKJgOEwI5nTt8goXlFXL6tk/xQW78XnjxeaUoX8vA5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7m6MBBngvo1UwrGyecEhWe27lXYwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzkzMDJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzNDM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnWhowDQYJKoZIhvcN AQELBQADggEBADlHLgybz7t0KeO/MPqCkHIaJbIR5hY0KKvytVY+82hiYpV5RYv9 NYdf5cxJcgWjC3z8qh104jThISmg4YIWep+4qF9tcWX/bRZ3tJpxqKlAkWF4JTDz oUKQHtyXoqIOinS6KlusQR57jg9wBDcjcBQDtNk/2btaaD+Jvx1QiW7uySzMQgZ0 +Oojkth5BHd+lhpIl5p545Y6NIMZ4ppiFctTgZw0F7I0f5O+2irVrA3x0kj/WeGo lAoIlS7H8Y7CMfZPXBnzd+A+3y1j9ddBF3IvS4eQpLHJpU12QDP9wjHgMFlkzP6A 8QZQ+YIBq9Fz5uzPrK5lnGQujM+WaNIPWQU= -----END CERTIFICATE-----Generated at Sat Jun 7 14:47:42 2025 by rpki-client