$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e32372e3230362e302f32332d3234203d3e203535363838.roa File: 3130332e32372e3230362e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: UUI0UvU6AUH37Q/H9zW8u0Apq7Y6pN001mJMdkH8taI= Subject key identifier: DC:6A:BD:2D:E6:5F:66:CE:DB:B1:87:55:F8:78:60:AD:B7:E4:5F:E4 Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 3EDEC166C332BC36709683C926C28168D5A43C80 Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e32372e3230362e302f32332d3234203d3e203535363838.roa Signing time: Mon 02 Jun 2025 01:02:48 +0000 ROA not before: Mon 02 Jun 2025 00:57:48 +0000 ROA not after: Mon 01 Jun 2026 01:02:48 +0000 asID: 55688 IP address blocks: 103.27.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:de:c1:66:c3:32:bc:36:70:96:83:c9:26:c2:81:68:d5:a4:3c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jun 2 00:57:48 2025 GMT Not After : Jun 1 01:02:48 2026 GMT Subject: CN=DC6ABD2DE65F66CEDBB18755F87860ADB7E45FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8a:3d:e0:72:da:85:94:7a:f3:92:ac:3c:ae: 59:bb:0c:96:40:bc:c5:ed:1e:bf:44:34:ad:ff:f7: d2:73:5b:61:05:66:da:3f:27:a1:2d:41:94:70:c5: 5a:42:04:a1:ab:3f:f1:40:82:53:c0:aa:c3:7c:19: fe:4b:46:03:64:3a:52:04:68:09:fd:b9:2f:51:b5: a9:77:65:93:96:e4:0d:c4:fe:7c:c7:5f:b4:68:91: cf:f6:8b:10:bd:e7:5d:45:c3:b3:51:1b:0c:84:42: fd:bc:63:ec:f6:91:b7:75:84:ff:1a:5c:35:54:21: e0:e3:da:78:2c:64:36:c5:31:84:ef:4b:0d:d3:4a: 21:38:1b:08:3b:96:09:33:67:4b:0a:b4:13:20:65: 13:65:34:e3:7b:62:b9:50:4e:73:95:65:46:04:3f: e8:3e:2d:57:92:d0:82:c3:b4:e2:1e:24:aa:a6:ae: f2:a9:75:28:f1:5e:ea:1b:06:96:55:6a:f6:95:92: 91:1d:69:79:69:4a:a6:b7:a1:38:03:19:b5:72:51: dd:6e:57:4a:d8:84:d7:70:0b:4c:d8:a6:3c:87:08: 72:5b:0d:02:8c:b9:f2:a4:6e:fa:84:ab:8f:cc:dc: a8:2c:a3:47:c0:58:5e:4f:aa:96:c2:12:a2:55:b0: 08:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6A:BD:2D:E6:5F:66:CE:DB:B1:87:55:F8:78:60:AD:B7:E4:5F:E4 X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e32372e3230362e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.206.0/23 Signature Algorithm: sha256WithRSAEncryption 55:e7:52:46:ad:f6:fc:10:14:0e:52:11:82:87:af:11:14:61: 04:9a:f3:a6:a0:e3:90:d0:a3:c2:fc:df:94:76:9d:2a:e4:cf: 49:52:5f:4f:b6:29:a7:1a:9f:07:83:c3:1f:e4:e3:a0:9f:cb: 21:23:4a:51:52:2e:89:1b:5a:92:10:4d:ea:63:9b:27:9e:3f: 33:8c:dd:dd:98:d9:ec:bc:08:ea:c8:a1:d8:42:52:8d:b0:94: 8e:61:7a:fc:64:8b:2d:fe:57:00:aa:34:f2:bf:4e:a9:38:68: c4:5c:ea:01:c9:5f:38:f5:5f:21:a4:2d:ca:c0:b8:77:b7:4d: 97:9c:b2:54:16:68:76:02:1e:fc:bb:c8:36:f0:86:23:4b:5a: b7:f8:4b:f5:b0:70:ae:09:98:56:16:4a:ad:c5:21:ad:91:2d: be:fb:96:bf:3b:f4:4e:76:8a:86:b1:27:5e:2b:3b:1b:ed:e0: df:3b:47:ea:81:62:e6:cf:37:cb:e3:1b:32:bc:e4:af:83:3f: 95:da:07:5c:d0:36:dd:53:c3:58:2d:f0:0a:72:72:3d:58:fa: c0:b1:30:7d:d9:7b:2b:ee:f0:17:50:16:d6:23:c1:74:6f:f8: 52:07:5a:28:9c:26:a1:ae:b7:f8:11:7f:61:13:26:9c:45:83: dc:2c:bc:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPt7BZsMyvDZwloPJJsKBaNWkPIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNTA2MDIwMDU3NDhaFw0yNjA2MDEwMTAyNDhaMDMxMTAvBgNV BAMTKERDNkFCRDJERTY1RjY2Q0VEQkIxODc1NUY4Nzg2MEFEQjdFNDVGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ij3gctqFlHrzkqw8rlm7DJZA vMXtHr9ENK3/99JzW2EFZto/J6EtQZRwxVpCBKGrP/FAglPAqsN8Gf5LRgNkOlIE aAn9uS9Rtal3ZZOW5A3E/nzHX7Rokc/2ixC9511Fw7NRGwyEQv28Y+z2kbd1hP8a XDVUIeDj2ngsZDbFMYTvSw3TSiE4Gwg7lgkzZ0sKtBMgZRNlNON7YrlQTnOVZUYE P+g+LVeS0ILDtOIeJKqmrvKpdSjxXuobBpZVavaVkpEdaXlpSqa3oTgDGbVyUd1u V0rYhNdwC0zYpjyHCHJbDQKMufKkbvqEq4/M3Kgso0fAWF5PqpbCEqJVsAi/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3Gq9LeZfZs7bsYdV+HhgrbfkX+QwHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3NThjODBlLWEzMjgtNGY4Yy1h MDNmLTkxYzNjMjYyMTRhMi8wLzMxMzAzMzJlMzIzNzJlMzIzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcbzjANBgkqhkiG 9w0BAQsFAAOCAQEAVedSRq32/BAUDlIRgoevERRhBJrzpqDjkNCjwvzflHadKuTP SVJfT7YppxqfB4PDH+TjoJ/LISNKUVIuiRtakhBN6mObJ54/M4zd3ZjZ7LwI6sih 2EJSjbCUjmF6/GSLLf5XAKo08r9OqThoxFzqAclfOPVfIaQtysC4d7dNl5yyVBZo dgIe/LvINvCGI0tat/hL9bBwrgmYVhZKrcUhrZEtvvuWvzv0TnaKhrEnXis7G+3g 3ztH6oFi5s83y+MbMrzkr4M/ldoHXNA23VPDWC3wCnJyPVj6wLEwfdl7K+7wF1AW 1iPBdG/4UgdaKJwmoa63+BF/YRMmnEWD3Cy8pw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:21 2025 by rpki-client