$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa File: 3130332e36362e37302e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: Wxz1us2zDXrNlhEeTyTFEnQyiq4EZlAgNa1zZuJQj0g= Subject key identifier: BB:F2:F4:CB:9E:D2:A3:8B:4C:FE:39:A9:8A:B4:24:6B:27:5C:36:FC Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 0E00519D1FFB0FE60C835851F567CB8C131561CA Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa Signing time: Mon 02 Jun 2025 02:03:11 +0000 ROA not before: Mon 02 Jun 2025 01:58:11 +0000 ROA not after: Mon 01 Jun 2026 02:03:11 +0000 asID: 133840 IP address blocks: 103.66.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:00:51:9d:1f:fb:0f:e6:0c:83:58:51:f5:67:cb:8c:13:15:61:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Jun 2 01:58:11 2025 GMT Not After : Jun 1 02:03:11 2026 GMT Subject: CN=BBF2F4CB9ED2A38B4CFE39A98AB4246B275C36FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f8:35:95:79:8b:4e:66:ed:e8:45:73:f2:d4: a4:a0:a2:f6:31:51:8e:48:86:d2:13:7d:28:49:76: 4d:d1:37:06:b8:3e:f0:21:03:22:f1:34:71:7c:1d: 02:17:75:d6:b1:a8:60:8d:fc:83:c2:36:11:a2:e4: 25:b7:db:83:e2:f5:98:86:32:a3:97:77:93:0d:6b: 25:72:74:0b:12:db:ec:46:de:5c:a6:fa:09:2a:e1: 00:54:3c:71:20:3b:48:53:1e:3a:a8:29:4f:bd:f9: 5f:39:00:50:cc:a3:a8:0b:53:49:03:9d:f5:ad:2d: d7:23:37:8c:07:64:79:d3:3f:1c:20:bb:07:e7:bd: ba:32:41:eb:bf:bf:28:b8:20:dd:b1:86:ef:91:2c: 6f:09:79:e3:f0:36:8e:8d:ed:e3:e8:8f:4d:6a:ac: 59:b7:ed:f8:7b:dd:69:2f:26:fa:10:e5:19:1a:d3: b4:48:a9:44:0b:b7:06:3e:81:5b:60:e6:ae:49:5f: ac:63:81:fe:4a:f1:b0:5f:85:53:d8:f1:6c:d2:e6: c7:55:94:49:29:8d:f6:5e:42:90:82:eb:ab:ea:23: ad:e3:cc:3c:b6:78:fa:2a:55:ce:86:69:91:32:64: bb:a2:83:54:e2:29:a6:5d:18:18:dc:d3:cf:5e:77: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F2:F4:CB:9E:D2:A3:8B:4C:FE:39:A9:8A:B4:24:6B:27:5C:36:FC X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.70.0/24 Signature Algorithm: sha256WithRSAEncryption e7:76:c7:6e:a5:cc:90:11:39:58:86:31:6b:4a:db:23:67:c6: c9:6c:3a:2e:d7:1c:53:d1:ed:c9:99:a0:28:a4:0f:2a:c9:b3: 0a:5c:94:a2:02:82:c7:09:15:a8:e6:3d:b7:ee:87:62:bf:17: 18:ca:9e:9e:69:a2:a6:6f:c4:a3:14:76:c0:bd:ee:ad:11:7d: 76:e9:d5:2b:3b:5a:c2:f6:f5:61:25:b9:55:ab:cc:de:6e:d6: 69:1b:23:b8:d5:61:b1:97:af:47:8b:39:7f:6e:e3:c2:c2:c9: f5:4a:ea:84:00:80:f0:e5:46:37:48:27:e3:0f:7f:23:8a:80: f5:5a:ac:3f:42:5a:e1:9c:63:c0:a8:37:22:68:d9:69:ba:59: 9e:e5:dd:a2:94:0e:03:8b:e8:38:12:e9:70:d6:ee:ba:db:49: 64:08:1f:ad:b5:00:f7:5a:70:09:b7:35:75:34:01:e8:b7:04: 68:e4:f4:fa:e1:15:f9:e8:7f:d6:0f:48:f0:02:20:46:b8:0a: 0c:15:3c:ec:f6:d0:ee:a9:88:67:4d:d2:6d:b2:7a:25:ee:09: bd:c8:02:7a:e4:9b:5d:de:bb:7d:78:13:15:b2:6a:6e:b6:5b: 72:21:9f:2d:9b:7e:96:d9:81:64:2c:98:1f:5d:bd:52:94:24: c3:55:e2:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDgBRnR/7D+YMg1hR9WfLjBMVYcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNTA2MDIwMTU4MTFaFw0yNjA2MDEwMjAzMTFaMDMxMTAvBgNV BAMTKEJCRjJGNENCOUVEMkEzOEI0Q0ZFMzlBOThBQjQyNDZCMjc1QzM2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj+DWVeYtOZu3oRXPy1KSgovYx UY5IhtITfShJdk3RNwa4PvAhAyLxNHF8HQIXddaxqGCN/IPCNhGi5CW324Pi9ZiG MqOXd5MNayVydAsS2+xG3lym+gkq4QBUPHEgO0hTHjqoKU+9+V85AFDMo6gLU0kD nfWtLdcjN4wHZHnTPxwguwfnvboyQeu/vyi4IN2xhu+RLG8JeePwNo6N7ePoj01q rFm37fh73WkvJvoQ5Rka07RIqUQLtwY+gVtg5q5JX6xjgf5K8bBfhVPY8WzS5sdV lEkpjfZeQpCC66vqI63jzDy2ePoqVc6GaZEyZLuig1TiKaZdGBjc089ed393AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu/L0y57So4tM/jmpirQkaydcNvwwHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzczMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCRjANBgkqhkiG 9w0BAQsFAAOCAQEA53bHbqXMkBE5WIYxa0rbI2fGyWw6LtccU9HtyZmgKKQPKsmz ClyUogKCxwkVqOY9t+6HYr8XGMqenmmipm/EoxR2wL3urRF9dunVKztawvb1YSW5 VavM3m7WaRsjuNVhsZevR4s5f27jwsLJ9UrqhACA8OVGN0gn4w9/I4qA9VqsP0Ja 4ZxjwKg3ImjZabpZnuXdopQOA4voOBLpcNbuuttJZAgfrbUA91pwCbc1dTQB6LcE aOT0+uEV+eh/1g9I8AIgRrgKDBU87PbQ7qmIZ03SbbJ6Je4JvcgCeuSbXd67fXgT FbJqbrZbciGfLZt+ltmBZCyYH129UpQkw1Xi2Q== -----END CERTIFICATE-----Generated at Sat Jun 7 14:53:47 2025 by rpki-client