$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa File: 3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa (raw, json) Hash identifier: AljrwxcXPRJV2CeaxgkjeFz1mPYn0NpdJRkpDNeohWs= Subject key identifier: A1:BD:89:C0:EA:11:B8:41:FC:0F:4C:EA:97:BA:4E:45:BE:06:D6:40 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 617E006FA39831E3693B1B4FAF915ED80A1F5240 Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa Signing time: Sat 17 May 2025 10:00:01 +0000 ROA not before: Sat 17 May 2025 09:55:01 +0000 ROA not after: Sat 16 May 2026 10:00:01 +0000 asID: 142366 IP address blocks: 103.170.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7e:00:6f:a3:98:31:e3:69:3b:1b:4f:af:91:5e:d8:0a:1f:52:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 17 09:55:01 2025 GMT Not After : May 16 10:00:01 2026 GMT Subject: CN=A1BD89C0EA11B841FC0F4CEA97BA4E45BE06D640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bc:64:44:98:93:29:77:16:b2:65:b9:c2:60: ee:d4:18:37:86:e8:d8:ce:80:2f:f9:22:7e:56:15: 7e:8c:92:37:6f:7a:8e:77:5b:07:f2:58:43:6d:6d: 07:6a:59:41:41:f4:2d:74:79:9c:f1:e0:18:b2:e3: 94:79:33:a6:e5:d5:d6:1d:57:fd:49:f1:dd:8e:47: 76:b0:0b:07:17:5a:34:9a:1a:00:26:53:4a:26:84: 14:c4:6c:fc:7c:d9:24:55:5f:82:c1:37:00:e4:40: 3e:67:13:93:99:e9:15:f7:63:28:14:32:06:39:84: a6:60:a7:ba:d0:9f:7a:e2:e9:89:39:9f:b7:9b:57: f5:ae:53:68:72:e4:2a:da:47:da:88:97:ce:9a:60: 8f:7b:e9:0b:47:fc:e3:d1:02:75:12:0b:9e:e4:e2: c6:be:23:da:4e:fe:97:ba:84:5f:ab:31:72:d2:26: 62:7c:82:58:70:86:a5:30:81:97:ea:3c:65:16:b4: 54:63:42:99:e4:0a:4c:50:f5:12:b2:01:0e:9e:58: 48:f7:e1:b3:81:13:9d:1f:94:5c:94:60:e2:57:62: 84:57:53:7c:e1:90:a1:db:eb:06:82:aa:c1:fa:60: 74:9d:ef:bb:d9:79:3a:14:96:06:91:36:c3:63:dd: ac:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BD:89:C0:EA:11:B8:41:FC:0F:4C:EA:97:BA:4E:45:BE:06:D6:40 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.30.0/23 Signature Algorithm: sha256WithRSAEncryption 22:c6:e3:45:98:c3:df:b3:7f:d5:89:ec:ae:cc:b9:17:09:de: 52:e4:fe:ec:8e:84:41:c9:17:b8:97:ec:a1:40:d2:cc:13:20: 45:f3:cc:fc:c2:38:18:f7:a5:cf:b9:7e:bd:45:11:e8:30:4d: 87:13:c7:db:44:7c:5f:71:05:98:0d:c4:8d:8e:80:e8:a3:a9: c4:21:c2:5f:3e:4a:3f:0d:fe:fb:38:f1:a7:dd:f6:6e:f9:ca: 8c:84:38:f6:b7:b3:e9:c9:29:b0:05:02:5a:2a:ae:3d:28:1c: 44:08:d4:c3:e4:b5:53:0d:12:19:dd:60:f4:9a:9a:dc:b6:eb: ac:77:80:4a:a6:e1:3f:10:aa:ce:f0:0e:e0:58:42:5c:70:0e: 95:1c:b1:38:cd:35:97:a5:da:b9:42:26:43:5f:28:21:65:92: 4c:e6:83:fc:7f:7c:ac:0d:93:47:07:09:b2:8e:94:bb:e8:6a: 12:53:f0:ad:e9:4f:e2:c4:7b:d0:cc:4d:c7:a9:78:09:b1:4a: 4b:d8:b3:02:99:5a:95:9c:59:70:0f:b3:27:d7:4f:82:5a:08: 57:f7:a4:7a:2d:e6:e6:fc:9c:41:5e:e2:10:4a:ee:ec:a1:01: c1:a3:f2:ce:29:d5:3e:c9:f9:b6:cb:0f:2e:b5:a8:4f:f0:61: 48:44:4a:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYX4Ab6OYMeNpOxtPr5Fe2AofUkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MTcwOTU1MDFaFw0yNjA1MTYxMDAwMDFaMDMxMTAvBgNV BAMTKEExQkQ4OUMwRUExMUI4NDFGQzBGNENFQTk3QkE0RTQ1QkUwNkQ2NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjvGREmJMpdxayZbnCYO7UGDeG 6NjOgC/5In5WFX6Mkjdveo53WwfyWENtbQdqWUFB9C10eZzx4Biy45R5M6bl1dYd V/1J8d2OR3awCwcXWjSaGgAmU0omhBTEbPx82SRVX4LBNwDkQD5nE5OZ6RX3YygU MgY5hKZgp7rQn3ri6Yk5n7ebV/WuU2hy5CraR9qIl86aYI976QtH/OPRAnUSC57k 4sa+I9pO/pe6hF+rMXLSJmJ8glhwhqUwgZfqPGUWtFRjQpnkCkxQ9RKyAQ6eWEj3 4bOBE50flFyUYOJXYoRXU3zhkKHb6waCqsH6YHSd77vZeToUlgaRNsNj3awfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUob2JwOoRuEH8D0zql7pORb4G1kAwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMxMzAzMzJlMzEzNzMwMmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMyMzMzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6oeMA0GCSqG SIb3DQEBCwUAA4IBAQAixuNFmMPfs3/VieyuzLkXCd5S5P7sjoRByRe4l+yhQNLM EyBF88z8wjgY96XPuX69RRHoME2HE8fbRHxfcQWYDcSNjoDoo6nEIcJfPko/Df77 OPGn3fZu+cqMhDj2t7PpySmwBQJaKq49KBxECNTD5LVTDRIZ3WD0mprctuusd4BK puE/EKrO8A7gWEJccA6VHLE4zTWXpdq5QiZDXyghZZJM5oP8f3ysDZNHBwmyjpS7 6GoSU/Ct6U/ixHvQzE3HqXgJsUpL2LMCmVqVnFlwD7Mn10+CWghX96R6Lebm/JxB XuIQSu7soQHBo/LOKdU+yfm2yw8utahP8GFIREpW -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:20 2025 by rpki-client