$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa File: 3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: Erv1ZAI2ozApMougspqXIYa5UqCrwEq3FWVDu2V0OJs= Subject key identifier: 35:CB:1F:DE:3A:E4:46:C8:E3:81:19:70:53:55:D3:B5:C4:0E:43:FA Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 11DEBB12942C3A26C324AAC9316F196B23B7E05A Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:09 +0000 ROA not before: Mon 02 Jun 2025 02:00:09 +0000 ROA not after: Mon 01 Jun 2026 02:05:09 +0000 asID: 55666 IP address blocks: 103.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:de:bb:12:94:2c:3a:26:c3:24:aa:c9:31:6f:19:6b:23:b7:e0:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:09 2025 GMT Not After : Jun 1 02:05:09 2026 GMT Subject: CN=35CB1FDE3AE446C8E38119705355D3B5C40E43FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f3:20:69:2a:97:ab:d9:6f:85:ee:52:ae:7c: e1:8f:1f:e7:91:4d:7a:08:90:6c:93:6e:aa:3a:07: 5b:8a:39:dc:48:2c:ba:cf:70:3a:e8:04:9d:18:94: 62:43:05:c5:5a:a3:b4:78:ea:07:78:36:46:01:24: 3a:e9:46:c1:eb:00:5b:79:0a:6d:1a:28:fc:f6:74: 7a:2c:ab:e0:b1:f6:12:08:ab:43:c0:07:48:12:3e: b2:e0:18:8f:37:92:7b:cf:ca:9d:d1:d5:e4:fc:2c: 57:08:31:da:c9:fc:05:2d:8c:5c:14:ed:14:3a:11: 98:9b:13:59:e1:ec:57:77:96:c9:f8:fc:a2:07:52: 0f:d1:4c:bc:4e:ac:97:b8:d1:01:94:99:90:2f:12: 02:b3:c6:c2:27:d9:0b:2e:ca:6c:42:5f:c8:8c:c4: 60:d9:33:ad:c7:0e:3d:f8:53:b3:44:3d:38:57:49: 6f:28:29:02:25:13:b9:76:ca:70:3b:1b:9b:46:cf: 18:a6:2c:fc:7c:6b:db:95:5e:90:34:b8:dc:d7:39: 0b:3a:8f:74:8e:d6:6c:fa:2b:fe:8c:83:a4:7f:fc: 2d:a1:b9:a5:16:31:2c:a5:13:30:c8:03:d2:02:b1: a8:03:ae:70:ab:b3:0d:61:89:66:ba:b4:63:e7:3a: de:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CB:1F:DE:3A:E4:46:C8:E3:81:19:70:53:55:D3:B5:C4:0E:43:FA X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption b1:b3:8c:10:57:a9:21:99:04:04:a1:ac:83:73:9e:81:53:f5: 22:71:13:1c:fb:ca:aa:83:93:ad:6d:2e:a2:38:27:57:25:9b: 00:af:54:13:37:55:35:d6:3f:eb:83:b3:2d:56:ee:8a:ab:29: 9f:1c:f0:fe:5a:c5:db:af:c9:fb:3f:02:4f:a0:84:03:27:f3: f8:2a:28:a9:c5:88:32:47:ab:6d:77:31:66:43:fb:10:4f:9d: 8d:92:6b:4f:1c:2c:de:a1:23:71:1d:90:2a:cc:52:29:40:3b: 62:34:ae:1c:05:ab:bb:2c:86:ff:6e:11:11:c0:5d:b1:c4:33: 40:0d:c4:23:a2:7f:0e:cf:ac:8f:f7:99:e0:d2:e1:07:ea:a0: e2:49:72:ab:73:cc:b0:44:e6:cf:46:cb:9c:8b:90:8a:aa:79: 13:4e:ae:72:65:11:ab:96:53:8c:2d:28:a4:68:32:cc:e4:58: eb:4c:c8:6f:bb:9c:63:77:a6:10:d8:64:1d:93:cc:5b:ae:e9: ac:53:ce:7a:c5:fe:86:f8:28:c4:02:62:41:5b:f1:b2:2f:18: d3:4a:a4:82:b4:6f:1c:2d:41:8c:bc:dc:e7:86:a6:50:ce:40: fb:f4:b6:6e:66:8f:e7:d1:64:14:ef:6f:2f:3a:0d:1c:f1:06: 39:7f:79:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEd67EpQsOibDJKrJMW8ZayO34FowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDlaFw0yNjA2MDEwMjA1MDlaMDMxMTAvBgNV BAMTKDM1Q0IxRkRFM0FFNDQ2QzhFMzgxMTk3MDUzNTVEM0I1QzQwRTQzRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC98yBpKper2W+F7lKufOGPH+eR TXoIkGyTbqo6B1uKOdxILLrPcDroBJ0YlGJDBcVao7R46gd4NkYBJDrpRsHrAFt5 Cm0aKPz2dHosq+Cx9hIIq0PAB0gSPrLgGI83knvPyp3R1eT8LFcIMdrJ/AUtjFwU 7RQ6EZibE1nh7Fd3lsn4/KIHUg/RTLxOrJe40QGUmZAvEgKzxsIn2QsuymxCX8iM xGDZM63HDj34U7NEPThXSW8oKQIlE7l2ynA7G5tGzximLPx8a9uVXpA0uNzXOQs6 j3SO1mz6K/6Mg6R//C2huaUWMSylEzDIA9ICsagDrnCrsw1hiWa6tGPnOt5lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNcsf3jrkRsjjgRlwU1XTtcQOQ/owHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNTM1MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ//wMA0GCSqG SIb3DQEBCwUAA4IBAQCxs4wQV6khmQQEoayDc56BU/UicRMc+8qqg5OtbS6iOCdX JZsAr1QTN1U11j/rg7MtVu6KqymfHPD+WsXbr8n7PwJPoIQDJ/P4KiipxYgyR6tt dzFmQ/sQT52NkmtPHCzeoSNxHZAqzFIpQDtiNK4cBau7LIb/bhERwF2xxDNADcQj on8Oz6yP95ng0uEH6qDiSXKrc8ywRObPRsuci5CKqnkTTq5yZRGrllOMLSikaDLM 5FjrTMhvu5xjd6YQ2GQdk8xbrumsU856xf6G+CjEAmJBW/GyLxjTSqSCtG8cLUGM vNznhqZQzkD79LZuZo/n0WQU728vOg0c8QY5f3mV -----END CERTIFICATE-----Generated at Thu Jun 5 19:07:19 2025 by rpki-client