$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa File: 3130332e32332e33322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: 6MeWYAWtNqzt67sAV06u6BArwq93v2nLiPhDZr8DwFc= Subject key identifier: 09:2C:EF:CF:16:CA:89:1F:07:23:A6:5C:45:95:34:01:E3:70:F8:23 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 1C7F19CBE2EF359B84E971D8A208835C58029040 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:07 +0000 ROA not before: Mon 02 Jun 2025 01:58:07 +0000 ROA not after: Mon 01 Jun 2026 02:03:07 +0000 asID: 55699 IP address blocks: 103.23.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7f:19:cb:e2:ef:35:9b:84:e9:71:d8:a2:08:83:5c:58:02:90:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:07 2025 GMT Not After : Jun 1 02:03:07 2026 GMT Subject: CN=092CEFCF16CA891F0723A65C45953401E370F823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8a:78:63:80:4b:b7:55:fc:d8:75:42:44:00: 09:31:2c:2c:ce:6f:19:16:03:29:81:80:79:3d:3f: 0d:b9:25:a0:15:8e:6b:18:d7:69:40:5c:53:db:e1: 5a:5c:eb:26:ab:bb:59:7c:72:84:ea:50:46:45:22: 47:7f:56:4c:67:b6:e4:3e:ea:42:f8:3d:29:d6:44: 8c:a6:00:f4:e5:f6:ba:6b:82:c2:43:66:2c:ae:8d: 26:33:a0:aa:1f:b7:db:13:1e:90:ed:45:36:d1:dd: 27:87:e8:09:e6:55:f8:2a:bb:43:db:bb:ac:e2:0c: 6e:59:9c:95:1c:fb:e5:b1:64:49:46:1c:21:af:26: 19:9e:40:81:40:86:e5:5c:05:be:76:42:d3:4c:27: f3:dd:c6:0e:e8:8b:c4:70:c3:e2:81:cf:02:bf:54: 3b:7b:f4:9a:30:1f:03:3f:75:4f:48:58:00:7b:0e: 75:ae:fb:01:86:c0:99:3b:43:8e:7e:e4:89:b9:98: 46:f5:5c:f2:bc:d0:59:1c:a5:e9:68:9c:36:c4:0f: 28:5a:f7:1b:85:75:f1:d1:46:b6:39:c3:ab:04:2f: 17:66:1a:34:f6:40:56:75:a7:08:eb:ee:93:1e:68: 1f:c5:fe:f6:d7:b9:97:83:14:88:f2:9d:49:da:0e: 9e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2C:EF:CF:16:CA:89:1F:07:23:A6:5C:45:95:34:01:E3:70:F8:23 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.32.0/22 Signature Algorithm: sha256WithRSAEncryption 02:0b:32:69:59:51:6b:59:03:1a:21:53:e7:ad:de:9e:08:ce: 27:da:36:1f:22:5e:88:2c:1c:df:a4:11:17:ef:3a:20:02:7b: 55:9c:75:32:50:53:39:4a:29:9f:03:3f:a5:64:01:8b:4e:29: 13:65:68:71:c2:17:87:c3:1a:61:53:ba:21:ce:30:b7:c2:f8: 83:cb:0c:87:59:0b:ac:b7:1a:4e:e1:3f:5b:1f:18:8d:1d:0b: ed:3d:b0:2a:21:6e:b0:9a:00:c9:dd:af:01:fd:67:aa:97:6d: 75:cf:58:f1:db:c5:71:d8:61:d1:08:ea:e5:a5:23:95:18:62: 78:72:50:ec:50:5a:8c:6c:33:6f:c6:03:ef:c1:20:e8:4b:27: 2d:d4:c5:15:de:04:3d:78:6f:3c:4d:36:a4:dc:aa:f2:99:28: 12:1e:87:dd:52:94:6a:2e:f2:8b:be:b5:dc:5a:27:78:de:8e: 28:b3:84:5a:41:3e:b0:c8:41:80:c8:e4:5b:d0:ba:a6:f6:a2: b8:13:56:9e:18:2b:3e:6f:fb:e2:a9:9c:a2:14:48:8e:7f:27: e9:16:a6:25:f2:cd:0c:13:1b:27:f5:5f:5b:55:20:1a:84:d0: 46:df:2c:65:39:b3:b7:fc:91:92:06:ab:09:80:49:4c:6b:be: 4d:45:d2:c5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHH8Zy+LvNZuE6XHYogiDXFgCkEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDdaFw0yNjA2MDEwMjAzMDdaMDMxMTAvBgNV BAMTKDA5MkNFRkNGMTZDQTg5MUYwNzIzQTY1QzQ1OTUzNDAxRTM3MEY4MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcinhjgEu3VfzYdUJEAAkxLCzO bxkWAymBgHk9Pw25JaAVjmsY12lAXFPb4Vpc6yaru1l8coTqUEZFIkd/VkxntuQ+ 6kL4PSnWRIymAPTl9rprgsJDZiyujSYzoKoft9sTHpDtRTbR3SeH6AnmVfgqu0Pb u6ziDG5ZnJUc++WxZElGHCGvJhmeQIFAhuVcBb52QtNMJ/Pdxg7oi8Rww+KBzwK/ VDt79JowHwM/dU9IWAB7DnWu+wGGwJk7Q45+5Im5mEb1XPK80FkcpelonDbEDyha 9xuFdfHRRrY5w6sELxdmGjT2QFZ1pwjr7pMeaB/F/vbXuZeDFIjynUnaDp7nAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCSzvzxbKiR8HI6ZcRZU0AeNw+CMwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzAzMzJlMzIzMzJlMzMzMjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzUzNjM5Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFyAwDQYJKoZIhvcN AQELBQADggEBAAILMmlZUWtZAxohU+et3p4IzifaNh8iXogsHN+kERfvOiACe1Wc dTJQUzlKKZ8DP6VkAYtOKRNlaHHCF4fDGmFTuiHOMLfC+IPLDIdZC6y3Gk7hP1sf GI0dC+09sCohbrCaAMndrwH9Z6qXbXXPWPHbxXHYYdEI6uWlI5UYYnhyUOxQWoxs M2/GA+/BIOhLJy3UxRXeBD14bzxNNqTcqvKZKBIeh91SlGou8ou+tdxaJ3jejiiz hFpBPrDIQYDI5FvQuqb2orgTVp4YKz5v++KpnKIUSI5/J+kWpiXyzQwTGyf1X1tV IBqE0EbfLGU5s7f8kZIGqwmASUxrvk1F0sU= -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:46 2025 by rpki-client