$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa File: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (raw, json) Hash identifier: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo= Subject key identifier: F5:4F:96:11:6A:4C:4B:9F:85:C0:DA:1F:43:B7:83:F7:AE:90:84:07 Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 15AA97871A1B4A4A2AE648C56B454E6F4A8493FA Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa Signing time: Mon 02 Jun 2025 00:00:00 +0000 ROA not before: Sun 01 Jun 2025 23:55:00 +0000 ROA not after: Mon 01 Jun 2026 00:00:00 +0000 asID: 135444 IP address blocks: 103.235.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:aa:97:87:1a:1b:4a:4a:2a:e6:48:c5:6b:45:4e:6f:4a:84:93:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Jun 1 23:55:00 2025 GMT Not After : Jun 1 00:00:00 2026 GMT Subject: CN=F54F96116A4C4B9F85C0DA1F43B783F7AE908407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:00:63:0d:de:bf:b8:66:1d:51:57:8a:52:de: 36:50:70:07:11:86:14:0e:e6:88:82:0a:60:b4:08: 1e:28:b4:16:64:50:5c:eb:cc:16:db:a5:0b:e9:c8: 41:ac:a3:70:90:f7:c1:ba:ba:0d:b2:3d:19:8e:ca: ef:0d:db:8a:f7:bc:46:59:9c:0e:d8:b0:01:1d:9d: db:f2:93:36:fc:7e:08:1e:6e:75:f8:0f:0b:9c:38: b5:a0:e4:c2:13:cc:7b:ee:63:46:30:99:3f:c2:ee: db:df:bd:3d:59:f1:2f:ce:a4:57:3b:7d:e8:d3:97: 0c:ad:16:12:6f:bc:09:12:57:ab:96:fc:ab:b9:6a: 95:19:48:6f:64:a1:f4:ff:be:83:35:cf:19:c9:1a: 91:3b:96:b7:7e:6f:03:b3:f0:72:6f:1e:33:36:a8: 5e:77:02:4b:f7:96:5e:69:0b:b1:98:b9:5a:58:e5: 57:89:14:49:5e:7e:db:3f:3b:ee:c0:42:f5:51:73: 43:62:03:27:8d:d3:52:6e:12:63:6a:81:04:34:a4: be:5e:00:c7:4d:1a:b0:06:c3:a3:c4:45:cf:99:5f: 4d:56:f1:b7:eb:06:5a:38:dc:6c:78:6e:48:e6:a6: 94:c7:54:63:40:44:62:50:1d:e7:2d:3e:d4:03:d3: 47:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4F:96:11:6A:4C:4B:9F:85:C0:DA:1F:43:B7:83:F7:AE:90:84:07 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.72.0/24 Signature Algorithm: sha256WithRSAEncryption 97:a1:a1:5a:9f:64:36:ce:01:59:24:2c:ce:57:a9:6e:35:d0: 16:ab:08:0a:0a:1f:85:7a:83:01:3b:76:ae:37:9e:ec:3c:58: 56:45:28:0b:82:20:38:eb:9b:63:df:46:b4:0f:7a:56:b4:b8: ca:d2:df:03:c0:f6:63:95:49:af:63:01:c2:94:9e:c6:a0:70: 2f:0a:69:4c:1b:f0:dc:19:8d:b0:46:f6:17:48:20:67:d2:73: d1:a8:85:f8:80:22:5f:3b:bf:ea:2a:58:37:70:f1:a8:86:fe: d3:ff:95:d5:a8:ec:0b:85:d1:30:97:f5:c5:2e:41:81:51:f9: 34:a5:d5:96:48:69:8d:1f:82:d6:05:b7:90:3b:26:6d:85:13: fc:33:0e:2f:50:b7:89:47:15:c4:4c:d3:e9:96:00:0c:25:4c: 06:70:6e:1c:c4:c2:08:c9:41:0e:bf:0e:5a:d8:61:2a:34:c9: 10:39:54:2f:e7:32:02:f7:2b:34:06:4d:d1:4d:67:26:0c:26: d3:3b:ce:93:ba:b5:f3:c4:83:e3:04:a7:fa:ec:64:37:f3:23: 05:79:66:af:2d:97:0c:6f:c3:ea:10:a6:e7:0c:0b:9d:3b:43: 8c:a0:ef:95:75:f1:ef:88:3b:f8:5e:59:18:78:f9:b3:a9:85: ae:cb:5f:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFaqXhxobSkoq5kjFa0VOb0qEk/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTA2MDEyMzU1MDBaFw0yNjA2MDEwMDAwMDBaMDMxMTAvBgNV BAMTKEY1NEY5NjExNkE0QzRCOUY4NUMwREExRjQzQjc4M0Y3QUU5MDg0MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzAGMN3r+4Zh1RV4pS3jZQcAcR hhQO5oiCCmC0CB4otBZkUFzrzBbbpQvpyEGso3CQ98G6ug2yPRmOyu8N24r3vEZZ nA7YsAEdndvykzb8fggebnX4DwucOLWg5MITzHvuY0YwmT/C7tvfvT1Z8S/OpFc7 fejTlwytFhJvvAkSV6uW/Ku5apUZSG9kofT/voM1zxnJGpE7lrd+bwOz8HJvHjM2 qF53Akv3ll5pC7GYuVpY5VeJFElefts/O+7AQvVRc0NiAyeN01JuEmNqgQQ0pL5e AMdNGrAGw6PERc+ZX01W8bfrBlo43Gx4bkjmppTHVGNARGJQHectPtQD00edAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9U+WEWpMS5+FwNofQ7eD966QhAcwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tIMA0GCSqG SIb3DQEBCwUAA4IBAQCXoaFan2Q2zgFZJCzOV6luNdAWqwgKCh+FeoMBO3auN57s PFhWRSgLgiA465tj30a0D3pWtLjK0t8DwPZjlUmvYwHClJ7GoHAvCmlMG/DcGY2w RvYXSCBn0nPRqIX4gCJfO7/qKlg3cPGohv7T/5XVqOwLhdEwl/XFLkGBUfk0pdWW SGmNH4LWBbeQOyZthRP8Mw4vULeJRxXETNPplgAMJUwGcG4cxMIIyUEOvw5a2GEq NMkQOVQv5zIC9ys0Bk3RTWcmDCbTO86TurXzxIPjBKf67GQ38yMFeWavLZcMb8Pq EKbnDAudO0OMoO+VdfHviDv4XlkYePmzqYWuy19z -----END CERTIFICATE-----Generated at Sat Jun 7 23:16:05 2025 by rpki-client