$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa File: 3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa (raw, json) Hash identifier: 8V1al14v0fXTXIGlVH1c93VdIS9Ve5+tbHSMrRhqr58= Subject key identifier: 4C:04:2A:16:99:96:FA:77:AE:D6:EC:2E:5C:4C:B2:12:D4:D1:89:C1 Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 244218CB72F85D27B63414401CBB0763E7EDED43 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa Signing time: Mon 02 Jun 2025 02:04:02 +0000 ROA not before: Mon 02 Jun 2025 01:59:02 +0000 ROA not after: Mon 01 Jun 2026 02:04:02 +0000 asID: 133802 IP address blocks: 103.41.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:42:18:cb:72:f8:5d:27:b6:34:14:40:1c:bb:07:63:e7:ed:ed:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Jun 2 01:59:02 2025 GMT Not After : Jun 1 02:04:02 2026 GMT Subject: CN=4C042A169996FA77AED6EC2E5C4CB212D4D189C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:2a:ec:b2:d5:4b:74:d0:58:95:ed:0e:09: 01:f8:8c:2d:28:7a:8b:80:5c:9b:a8:f2:4a:9b:96: 31:8e:47:69:75:ff:8f:64:e9:d2:f6:8b:5f:eb:00: 97:65:23:85:e1:33:5f:6a:04:4f:f7:86:99:bd:96: e6:d2:e6:68:17:fc:a0:00:2b:38:e7:af:6c:8c:e2: c9:e3:da:cb:fa:26:4e:31:cc:5c:0b:59:6b:08:0f: f8:d8:59:4a:80:7e:2f:da:95:7c:25:02:e8:99:19: 41:5a:11:93:77:9d:de:2a:68:10:0f:3b:da:9b:20: 6c:f7:5b:e9:03:0a:cb:cb:1e:f8:8f:05:0f:04:ef: ee:4e:6e:83:bb:db:d6:15:4d:7e:be:e8:f5:b9:c1: f5:de:83:5f:e1:a9:8e:a4:89:a4:c3:10:b3:60:89: 1a:64:32:a7:16:45:25:6c:52:ef:e1:fe:ae:bc:93: b4:51:9f:d5:06:14:73:51:81:9d:5c:48:09:0d:82: c7:14:39:d8:32:41:ff:e0:01:d0:38:c1:45:a2:4e: 21:0a:6b:9a:56:10:9f:43:88:c7:5d:e5:8d:50:5f: 98:29:fe:63:2e:d6:35:10:72:1c:88:6a:03:73:27: df:62:2c:16:dc:d6:a7:16:fa:fe:c8:ce:95:98:c5: e7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:04:2A:16:99:96:FA:77:AE:D6:EC:2E:5C:4C:B2:12:D4:D1:89:C1 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.247.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:22:2c:bf:33:56:dd:e5:f4:b7:8d:81:e6:28:0e:0e:b0:97: 0d:2b:e3:3c:11:72:81:85:20:6e:41:d3:41:22:d8:17:3f:e5: d4:25:d7:fe:c9:35:20:36:a6:dd:01:a0:f6:62:4e:e2:c5:4f: 47:11:7e:f2:25:51:c5:35:67:0a:5a:d0:99:0d:bb:95:77:39: 1b:98:11:36:dd:cb:97:ef:84:2c:a9:0a:18:5e:7b:e7:0a:44: da:1b:66:11:60:c8:04:1c:3b:a0:07:38:9f:87:02:e8:0e:e7: e0:b5:82:b5:96:af:6b:8c:9f:7e:33:fe:cc:2c:7b:6f:f3:e0: 05:90:32:30:f8:a2:de:12:f3:cb:ec:96:78:f2:c1:c4:0d:79: a1:6d:2b:cb:40:9f:ee:5a:61:b4:99:ed:be:21:46:dc:f3:06: 89:06:f5:1a:c6:c8:21:bf:44:76:3c:5d:43:34:b4:86:5d:01: 6f:58:74:01:14:a0:0f:41:ce:b6:7b:28:0a:fe:9a:8c:ec:73: e6:7a:20:09:09:ae:2e:4e:54:9f:a8:2f:be:6b:23:56:45:62: 8c:57:82:0e:e2:9c:e0:c5:09:02:26:1a:91:9c:c3:b4:b3:71: e3:55:86:ea:d5:54:20:87:4d:76:2e:2d:a7:38:6b:b4:ec:b2: e5:b2:f1:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJEIYy3L4XSe2NBRAHLsHY+ft7UMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNTA2MDIwMTU5MDJaFw0yNjA2MDEwMjA0MDJaMDMxMTAvBgNV BAMTKDRDMDQyQTE2OTk5NkZBNzdBRUQ2RUMyRTVDNENCMjEyRDREMTg5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOIyrsstVLdNBYle0OCQH4jC0o eouAXJuo8kqbljGOR2l1/49k6dL2i1/rAJdlI4XhM19qBE/3hpm9lubS5mgX/KAA Kzjnr2yM4snj2sv6Jk4xzFwLWWsID/jYWUqAfi/alXwlAuiZGUFaEZN3nd4qaBAP O9qbIGz3W+kDCsvLHviPBQ8E7+5OboO729YVTX6+6PW5wfXeg1/hqY6kiaTDELNg iRpkMqcWRSVsUu/h/q68k7RRn9UGFHNRgZ1cSAkNgscUOdgyQf/gAdA4wUWiTiEK a5pWEJ9DiMdd5Y1QX5gp/mMu1jUQchyIagNzJ99iLBbc1qcW+v7IzpWYxecrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTAQqFpmW+neu1uwuXEyyEtTRicEwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OWNmZDA0LTY5ZDAtNGQ0Yy04 ZDA5LTJkMjIxMzg0MmMyYy8wLzMxMzAzMzJlMzQzMTJlMzIzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyn3MA0GCSqG SIb3DQEBCwUAA4IBAQAqIiy/M1bd5fS3jYHmKA4OsJcNK+M8EXKBhSBuQdNBItgX P+XUJdf+yTUgNqbdAaD2Yk7ixU9HEX7yJVHFNWcKWtCZDbuVdzkbmBE23cuX74Qs qQoYXnvnCkTaG2YRYMgEHDugBzifhwLoDufgtYK1lq9rjJ9+M/7MLHtv8+AFkDIw +KLeEvPL7JZ48sHEDXmhbSvLQJ/uWmG0me2+IUbc8waJBvUaxsghv0R2PF1DNLSG XQFvWHQBFKAPQc62eygK/pqM7HPmeiAJCa4uTlSfqC++ayNWRWKMV4IO4pzgxQkC JhqRnMO0s3HjVYbq1VQgh012Li2nOGu07LLlsvE4 -----END CERTIFICATE-----Generated at Sat Jun 7 14:08:35 2025 by rpki-client