$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa File: 3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: rTOdy2cdmmm5QYorTFShkoD3ZBHt/J9THDepoiG1zQU= Subject key identifier: D7:6C:AA:3C:C5:A7:7E:2F:1F:08:DF:CA:B7:B2:27:83:20:A1:99:42 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 51E1FC8B674CD4ECF0AC21299B84C35516C90C97 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:09 +0000 ROA not before: Mon 02 Jun 2025 02:00:09 +0000 ROA not after: Mon 01 Jun 2026 02:05:09 +0000 asID: 55666 IP address blocks: 103.247.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:e1:fc:8b:67:4c:d4:ec:f0:ac:21:29:9b:84:c3:55:16:c9:0c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:09 2025 GMT Not After : Jun 1 02:05:09 2026 GMT Subject: CN=D76CAA3CC5A77E2F1F08DFCAB7B2278320A19942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:05:fd:8f:38:1e:39:f6:ca:10:f0:b9:40:b8: f4:5d:57:21:7c:65:73:9f:78:3a:00:f7:00:f5:13: cf:63:ea:70:82:ce:72:69:fd:6e:7c:20:b1:aa:ed: f8:47:eb:07:d1:b7:7a:34:62:f4:5b:4a:69:d7:af: 43:93:9c:62:96:30:51:2d:55:c3:e7:77:e1:98:31: d7:3e:41:a6:b9:78:bd:a3:54:cf:95:55:bf:16:d3: dd:e7:ff:c1:e6:f9:91:e0:b5:42:d0:e4:9f:49:29: 2f:30:c5:41:0b:71:a7:42:36:09:39:a2:8a:c1:0b: 14:99:da:d6:2f:1c:75:e1:1e:71:32:3c:10:23:79: 59:da:90:37:9e:6a:10:27:b5:1e:23:1b:a2:44:b0: b9:58:d3:ec:f4:73:a6:e1:5b:cb:42:06:2d:8e:51: 01:76:c8:61:e7:d8:3d:bc:fa:6f:1d:d3:f8:f2:c5: 2f:ca:95:f1:95:f1:0d:59:83:23:2a:2b:02:ca:d0: 9a:af:93:69:65:d3:5b:10:05:9f:59:45:ad:04:91: 57:ab:9d:63:4a:1f:51:db:b6:1e:38:7b:18:b2:38: 37:d2:52:d3:98:58:35:d8:16:a3:ec:0c:8e:a8:8a: ea:c4:63:5a:1b:38:14:5e:b6:3c:06:10:2d:ac:34: bf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6C:AA:3C:C5:A7:7E:2F:1F:08:DF:CA:B7:B2:27:83:20:A1:99:42 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.120.0/22 Signature Algorithm: sha256WithRSAEncryption 01:fb:f4:06:ba:1a:41:fc:13:54:ff:73:b8:6d:6b:b1:ce:a1: 2f:f4:6a:d9:f3:cd:95:1e:6b:de:69:f0:23:6d:46:e6:41:d8: a6:1e:bf:97:7a:49:ee:42:d7:ed:c6:35:c5:6a:ba:e4:00:d3: b0:3e:b7:6c:77:62:a8:7d:14:fb:53:f8:4a:bc:53:68:b5:1a: e0:f8:98:b2:b0:e9:e9:1c:34:65:e7:d1:b1:64:d5:92:3f:9a: bd:bc:7b:66:4b:65:bf:93:7e:76:4e:60:f1:3d:c3:0e:95:4c: 5e:bb:c3:5b:17:48:70:fb:4b:fa:58:21:99:4e:20:37:11:6c: 7f:ae:80:48:86:78:11:0d:96:dc:67:34:ae:94:61:16:20:c3: a0:93:04:94:b3:3b:6d:36:83:79:7b:0b:70:04:3e:17:5d:01: 40:51:09:34:a2:70:04:dd:2d:7d:95:fc:6f:27:4a:5b:c9:fb: 8c:0c:90:fe:50:07:08:d6:3c:f9:eb:f1:76:b8:5e:8e:b3:b0: bd:6e:53:5d:96:8d:1f:fa:d8:ee:65:90:6d:41:80:ce:30:8a: 05:49:61:a6:f2:51:d0:c9:51:10:cd:49:00:46:f8:66:ae:c9: 5b:8d:9d:a5:8c:73:a0:f5:e4:e9:10:33:b9:63:90:b6:90:f1: 47:af:cc:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUeH8i2dM1OzwrCEpm4TDVRbJDJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDlaFw0yNjA2MDEwMjA1MDlaMDMxMTAvBgNV BAMTKEQ3NkNBQTNDQzVBNzdFMkYxRjA4REZDQUI3QjIyNzgzMjBBMTk5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZBf2POB459soQ8LlAuPRdVyF8 ZXOfeDoA9wD1E89j6nCCznJp/W58ILGq7fhH6wfRt3o0YvRbSmnXr0OTnGKWMFEt VcPnd+GYMdc+Qaa5eL2jVM+VVb8W093n/8Hm+ZHgtULQ5J9JKS8wxUELcadCNgk5 oorBCxSZ2tYvHHXhHnEyPBAjeVnakDeeahAntR4jG6JEsLlY0+z0c6bhW8tCBi2O UQF2yGHn2D28+m8d0/jyxS/KlfGV8Q1ZgyMqKwLK0Jqvk2ll01sQBZ9ZRa0EkVer nWNKH1Hbth44exiyODfSUtOYWDXYFqPsDI6oiurEY1obOBRetjwGEC2sNL95AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU12yqPMWnfi8fCN/Kt7IngyChmUIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNDM3MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/d4MA0GCSqG SIb3DQEBCwUAA4IBAQAB+/QGuhpB/BNU/3O4bWuxzqEv9GrZ882VHmveafAjbUbm QdimHr+XeknuQtftxjXFarrkANOwPrdsd2KofRT7U/hKvFNotRrg+JiysOnpHDRl 59GxZNWSP5q9vHtmS2W/k352TmDxPcMOlUxeu8NbF0hw+0v6WCGZTiA3EWx/roBI hngRDZbcZzSulGEWIMOgkwSUszttNoN5ewtwBD4XXQFAUQk0onAE3S19lfxvJ0pb yfuMDJD+UAcI1jz56/F2uF6Os7C9blNdlo0f+tjuZZBtQYDOMIoFSWGm8lHQyVEQ zUkARvhmrslbjZ2ljHOg9eTpEDO5Y5C2kPFHr8xW -----END CERTIFICATE-----Generated at Fri Jun 6 16:59:55 2025 by rpki-client