$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa File: 3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa (raw, json) Hash identifier: WzW/Sss6A/kpJfugXeZWPxd++ZE3y6mEfaDI33YMU+M= Subject key identifier: F2:A0:83:C6:6F:5E:CB:73:49:32:C5:2D:AB:1E:02:D9:D6:77:1B:ED Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Certificate serial: 64F82EB538F3F3F2E094A2EFB34C0F247F2C94A5 Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa Signing time: Mon 02 Jun 2025 01:03:16 +0000 ROA not before: Mon 02 Jun 2025 00:58:16 +0000 ROA not after: Mon 01 Jun 2026 01:03:16 +0000 asID: 23756 IP address blocks: 103.242.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f8:2e:b5:38:f3:f3:f2:e0:94:a2:ef:b3:4c:0f:24:7f:2c:94:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Validity Not Before: Jun 2 00:58:16 2025 GMT Not After : Jun 1 01:03:16 2026 GMT Subject: CN=F2A083C66F5ECB734932C52DAB1E02D9D6771BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ae:c9:ef:1e:30:e9:e7:86:e6:44:60:f6:b9: 87:f0:0e:e9:da:48:1f:62:4a:e1:0e:a0:39:6c:41: 68:6d:08:62:6a:97:30:7c:de:c9:fa:de:f7:1a:a0: 70:29:be:d0:94:ba:97:b6:f0:c3:90:51:16:23:66: 99:5e:8e:82:e0:c0:44:20:ac:a3:50:fe:2d:57:a9: dd:7a:26:b8:7b:9f:40:19:d7:76:20:78:9e:2a:a8: 9e:3d:c0:e5:dd:74:d7:67:c6:0b:28:e7:7e:15:cc: 83:9b:95:f0:ad:03:21:48:44:8e:1d:3e:93:46:31: 79:e9:7f:8b:4b:dd:29:8a:48:01:36:46:26:56:37: 8e:62:f7:68:80:23:42:0d:05:de:d8:9b:f2:1e:a4: c2:a5:52:61:9b:b3:9c:34:c6:41:c0:21:3f:5c:84: f1:3b:2b:bf:d6:51:6e:55:2f:21:cf:22:1c:ab:d3: 2f:e9:7f:a3:c5:e4:bd:5a:33:b1:b6:5b:ec:c0:14: e5:10:4d:da:4b:7c:8a:e3:bc:48:7c:ae:e1:a8:6d: 81:0e:01:be:a2:fd:d5:bc:df:9a:bf:99:e4:af:81: 48:1c:87:2a:4c:c6:81:b9:60:ff:fe:52:3f:52:17: cc:b0:75:d3:6c:6e:db:7f:1b:af:27:d7:e6:1b:c3: 24:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A0:83:C6:6F:5E:CB:73:49:32:C5:2D:AB:1E:02:D9:D6:77:1B:ED X509v3 Authority Key Identifier: keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.204.0/22 Signature Algorithm: sha256WithRSAEncryption 18:89:66:36:62:a5:07:eb:27:48:60:65:fb:c8:93:5a:5f:6c: 41:6f:b6:66:48:95:90:15:14:f0:34:55:8e:cc:db:3e:25:57: 9e:57:fa:80:4d:7d:2c:ac:b3:6e:a8:5f:dd:75:cd:1f:c5:e6: 0d:da:d1:4c:9e:0e:44:a6:ea:62:91:bd:c7:94:ff:22:ea:e8: a8:48:fd:a1:b9:0e:49:33:0c:91:f2:0d:fe:fa:8b:a4:e1:cb: 3c:95:03:fc:8f:b2:ff:f1:59:eb:b9:37:75:3e:10:83:f9:74: 80:e3:2a:a1:70:ad:0e:7e:0b:de:52:e0:69:fa:4f:76:66:81: b2:f4:4b:71:f9:a1:c3:ee:e7:74:28:ac:29:c3:f4:9c:c6:7a: 5f:28:4c:de:c4:41:21:b0:5b:f1:cc:9b:b1:fd:3b:2a:2b:12: 8a:e2:0f:e0:48:a4:7e:00:15:40:47:6c:93:09:9c:41:3f:29: b8:bc:f9:df:9f:a6:84:65:29:92:c1:45:ba:09:d8:0f:18:5f: 99:63:75:e5:d3:71:4c:c5:84:7a:5f:e5:47:3b:62:ee:f7:d5: 0e:e2:2a:72:13:72:d4:f5:a3:86:51:f0:ac:73:6d:59:ab:7a: 86:03:61:70:56:fd:8a:c6:31:7b:8a:66:01:76:9a:b3:21:04: 31:d8:d0:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZPgutTjz8/LglKLvs0wPJH8slKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2 MThFODI4MjAeFw0yNTA2MDIwMDU4MTZaFw0yNjA2MDEwMTAzMTZaMDMxMTAvBgNV BAMTKEYyQTA4M0M2NkY1RUNCNzM0OTMyQzUyREFCMUUwMkQ5RDY3NzFCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCirsnvHjDp54bmRGD2uYfwDuna SB9iSuEOoDlsQWhtCGJqlzB83sn63vcaoHApvtCUupe28MOQURYjZplejoLgwEQg rKNQ/i1Xqd16Jrh7n0AZ13YgeJ4qqJ49wOXddNdnxgso534VzIOblfCtAyFIRI4d PpNGMXnpf4tL3SmKSAE2RiZWN45i92iAI0INBd7Ym/IepMKlUmGbs5w0xkHAIT9c hPE7K7/WUW5VLyHPIhyr0y/pf6PF5L1aM7G2W+zAFOUQTdpLfIrjvEh8ruGobYEO Ab6i/dW835q/meSvgUgchypMxoG5YP/+Uj9SF8ywddNsbtt/G68n1+YbwyT1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8qCDxm9ey3NJMsUtqx4C2dZ3G+0wHwYDVR0j BBgwFoAU2/WX6invinBlZEavdc8z8GGOgoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDBmMWE2ZS04M2I2LTQ1MzQtOTY3ZC1mOGRiM2MzNzExZjQvMC9EQkY1OTdFQTI5 RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYxOEU4MjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2MThF ODI4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkMGYxYTZlLTgzYjYtNDUzNC05 NjdkLWY4ZGIzYzM3MTFmNC8wLzMxMzAzMzJlMzIzNDMyMmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjMzMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/LMMA0GCSqG SIb3DQEBCwUAA4IBAQAYiWY2YqUH6ydIYGX7yJNaX2xBb7ZmSJWQFRTwNFWOzNs+ JVeeV/qATX0srLNuqF/ddc0fxeYN2tFMng5Epupikb3HlP8i6uioSP2huQ5JMwyR 8g3++ouk4cs8lQP8j7L/8VnruTd1PhCD+XSA4yqhcK0OfgveUuBp+k92ZoGy9Etx +aHD7ud0KKwpw/ScxnpfKEzexEEhsFvxzJux/TsqKxKK4g/gSKR+ABVAR2yTCZxB Pym4vPnfn6aEZSmSwUW6CdgPGF+ZY3Xl03FMxYR6X+VHO2Lu99UO4ipyE3LU9aOG UfCsc21Zq3qGA2FwVv2KxjF7imYBdpqzIQQx2NA6 -----END CERTIFICATE-----Generated at Sun Jun 8 03:56:39 2025 by rpki-client