$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa File: 3130332e3234342e33382e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: d8faUdzBnFVRw5kIwanXJwWwTtXxeTRqt8Ed9RkYJwQ= Subject key identifier: 44:C4:8E:66:80:8A:72:46:E5:CC:A2:BE:66:F4:C2:75:FB:2A:69:4B Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1AC8149B576761C7200C284EE326EFE8551099CD Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:50 +0000 ROA not before: Mon 02 Jun 2025 01:58:50 +0000 ROA not after: Mon 01 Jun 2026 02:03:50 +0000 asID: 38500 IP address blocks: 103.244.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c8:14:9b:57:67:61:c7:20:0c:28:4e:e3:26:ef:e8:55:10:99:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:50 2025 GMT Not After : Jun 1 02:03:50 2026 GMT Subject: CN=44C48E66808A7246E5CCA2BE66F4C275FB2A694B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:af:40:a0:e3:d9:84:bd:e2:ec:04:5f:bb:2d: 50:2f:8e:df:68:26:f2:64:64:eb:ef:52:bb:6c:7b: 89:69:c9:2f:f0:7d:12:c7:7b:43:b9:fa:48:9d:c2: 88:cd:90:37:e4:19:d3:82:f0:1a:d7:87:c9:e6:51: 0f:fe:b2:3f:0c:84:d1:c0:17:6b:b2:f6:c3:76:12: 04:64:bd:af:9c:5f:6e:06:93:71:19:b9:6e:0c:56: b9:5b:88:5c:dd:06:a7:48:5e:a4:c6:88:2a:9d:ed: 3f:a4:2e:5c:39:52:7a:56:62:1d:55:99:af:84:1c: 21:04:ed:20:b0:0a:b3:2c:78:c5:e8:0d:54:d5:a5: 5e:fa:a9:fa:f5:fa:d7:da:2f:67:01:b7:89:25:a5: 2e:24:84:55:6a:8b:0b:3a:e7:64:66:38:69:d0:c0: 1c:f9:f7:37:9a:9b:e2:4e:1e:1d:1d:b5:88:48:29: 58:f6:a8:43:fd:e2:ea:25:f4:1f:20:d5:52:ea:8b: db:0d:69:ef:c7:fc:c3:fd:94:ea:c9:1f:a3:c7:5e: 5a:3e:45:1b:76:36:a7:fa:e2:f0:16:0b:a2:2b:62: c3:a1:70:7d:24:60:30:97:3b:fb:b7:50:5e:5c:91: 45:7d:b5:8f:91:51:eb:7f:98:d6:bc:bd:87:d7:6b: 8c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C4:8E:66:80:8A:72:46:E5:CC:A2:BE:66:F4:C2:75:FB:2A:69:4B X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.38.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b3:6a:d7:4a:db:e5:75:39:8b:63:1d:a4:31:3e:81:cb:22: aa:31:cd:79:e6:34:f2:6b:72:bd:38:3e:f8:55:53:a0:fa:42: 89:a9:f7:bb:ca:92:29:09:aa:f1:2a:ab:8c:64:14:e3:c1:07: b5:d9:4b:d9:3a:b2:2e:74:3c:d5:cf:cf:0c:27:b6:8f:07:d8: d5:0d:6f:9f:76:40:77:60:95:01:4c:72:3a:26:16:d6:9a:70: 02:34:0a:df:26:b1:b0:58:27:80:86:35:3d:e4:61:33:ff:40: df:79:05:6a:a3:93:1b:a7:a5:08:56:d4:7b:f7:ad:d2:e0:73: 24:c6:e0:17:99:98:2a:34:78:1a:bb:b0:12:6f:8f:4e:85:06: ac:25:cd:3d:fe:65:5b:a4:ca:c5:5f:cb:18:a4:a8:f8:4d:25: 8b:7a:fd:10:bb:64:09:de:9c:b4:1d:dd:fa:9c:29:66:ff:c8: bb:e6:cd:ad:96:6e:85:2a:04:5a:67:10:f1:8c:ed:ad:f6:be: 6a:b1:ca:9c:2a:03:db:5f:14:41:1c:12:55:ec:dd:c5:c6:37: 62:67:b7:bd:18:56:96:54:c7:1f:15:16:ab:d6:20:35:16:0e: b3:ca:aa:63:b7:34:b8:33:3f:b5:4d:3c:10:36:70:2c:49:c5: fb:4b:e3:a2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGsgUm1dnYccgDChO4ybv6FUQmc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTBaFw0yNjA2MDEwMjAzNTBaMDMxMTAvBgNV BAMTKDQ0QzQ4RTY2ODA4QTcyNDZFNUNDQTJCRTY2RjRDMjc1RkIyQTY5NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNr0Cg49mEveLsBF+7LVAvjt9o JvJkZOvvUrtse4lpyS/wfRLHe0O5+kidwojNkDfkGdOC8BrXh8nmUQ/+sj8MhNHA F2uy9sN2EgRkva+cX24Gk3EZuW4MVrlbiFzdBqdIXqTGiCqd7T+kLlw5UnpWYh1V ma+EHCEE7SCwCrMseMXoDVTVpV76qfr1+tfaL2cBt4klpS4khFVqiws652RmOGnQ wBz59zeam+JOHh0dtYhIKVj2qEP94uol9B8g1VLqi9sNae/H/MP9lOrJH6PHXlo+ RRt2Nqf64vAWC6IrYsOhcH0kYDCXO/u3UF5ckUV9tY+RUet/mNa8vYfXa4zFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURMSOZoCKckblzKK+ZvTCdfsqaUswHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzAzMzJlMzIzNDM0MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf0JjANBgkqhkiG 9w0BAQsFAAOCAQEAfrNq10rb5XU5i2MdpDE+gcsiqjHNeeY08mtyvTg++FVToPpC ian3u8qSKQmq8SqrjGQU48EHtdlL2TqyLnQ81c/PDCe2jwfY1Q1vn3ZAd2CVAUxy OiYW1ppwAjQK3yaxsFgngIY1PeRhM/9A33kFaqOTG6elCFbUe/et0uBzJMbgF5mY KjR4GruwEm+PToUGrCXNPf5lW6TKxV/LGKSo+E0li3r9ELtkCd6ctB3d+pwpZv/I u+bNrZZuhSoEWmcQ8Yztrfa+arHKnCoD218UQRwSVezdxcY3Yme3vRhWllTHHxUW q9YgNRYOs8qqY7c0uDM/tU08EDZwLEnF+0vjog== -----END CERTIFICATE-----Generated at Sat Jun 7 14:12:18 2025 by rpki-client