$ rpki-client -vvf repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa File: 3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa (raw, json) Hash identifier: JNjDlAZZhJPbXz9QnoPN2kXEdVorueRNiZ3y4BzRO+s= Subject key identifier: F2:B5:92:CA:D8:28:A7:38:A5:08:C9:68:B0:1D:97:26:7C:33:F5:60 Certificate issuer: /CN=90508FF980097E19CEF65ED72A856616A6F690AB Certificate serial: 740C5207CE5B0250FB6F4C0F6DA4016DF9528414 Authority key identifier: 90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa Signing time: Mon 02 Jun 2025 02:05:10 +0000 ROA not before: Mon 02 Jun 2025 02:00:10 +0000 ROA not after: Mon 01 Jun 2026 02:05:10 +0000 asID: 64315 IP address blocks: 103.119.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:0c:52:07:ce:5b:02:50:fb:6f:4c:0f:6d:a4:01:6d:f9:52:84:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90508FF980097E19CEF65ED72A856616A6F690AB Validity Not Before: Jun 2 02:00:10 2025 GMT Not After : Jun 1 02:05:10 2026 GMT Subject: CN=F2B592CAD828A738A508C968B01D97267C33F560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:37:1f:a2:84:8b:51:3c:70:60:c9:4c:20: 7b:6f:ce:56:bd:66:d3:1b:b0:2a:0f:11:8c:77:cd: cb:8b:5d:9f:32:96:9a:6b:d1:ea:df:10:71:6a:3e: 31:3e:dc:0b:ad:04:8c:17:b4:0a:4a:78:98:54:86: cb:48:98:a7:17:f3:7c:af:cf:42:6a:51:69:b9:8e: ad:a4:bc:bf:9c:2f:3b:20:70:ca:5c:22:e8:7c:05: c1:00:cd:98:f5:0a:cf:48:76:6c:88:75:3d:f6:66: d8:e8:54:87:56:4e:ce:09:68:c3:04:5b:78:34:8e: 7e:0e:8e:23:97:c8:ff:8d:33:06:3b:1f:25:30:89: 74:78:77:16:71:a7:13:8b:ae:f8:3b:04:4f:e9:00: 2e:09:0d:33:94:bd:e6:71:ec:e5:b7:13:3a:4b:02: 82:9e:bc:5e:b9:0b:e5:b3:ca:51:b5:3c:16:c7:47: cf:10:92:86:06:b7:1a:23:a2:c8:fa:92:22:84:3a: 4e:d7:43:40:41:a0:6b:f4:80:db:63:78:8b:5f:b1: 58:f2:5d:b6:60:02:7b:72:89:d6:d6:b6:62:ce:0f: eb:15:41:13:a2:81:f0:de:e1:3b:e2:55:bd:92:76: b6:60:bc:a5:09:ed:0d:3e:d3:e5:07:ec:77:3e:b9: 2e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B5:92:CA:D8:28:A7:38:A5:08:C9:68:B0:1D:97:26:7C:33:F5:60 X509v3 Authority Key Identifier: keyid:90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.228.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:7b:37:5a:62:3f:17:ba:01:9e:63:da:ed:91:51:ac:5f:f1: ad:06:d3:06:b3:05:87:cf:53:73:5c:a5:77:e0:b9:09:83:40: f1:f6:6a:de:01:7a:28:f5:b3:c9:2f:d0:a3:d3:c4:94:97:50: 15:70:69:9a:de:82:de:3f:0c:70:8c:99:2c:d2:42:01:84:a8: 71:c6:76:1a:06:aa:dd:da:05:b6:a5:ca:c8:f8:3d:87:45:ca: 80:b2:6e:74:db:3f:a6:ed:bb:44:4b:31:47:ed:d0:c6:5c:92: 97:00:ae:33:3b:a1:14:50:ca:e9:ba:a9:e5:39:65:bc:8c:5b: f0:bc:8e:ab:ed:1e:90:0a:ba:8b:16:9c:93:b8:10:8a:b6:2c: ba:e4:7f:bc:2c:54:24:3f:ff:e4:d1:7d:76:4c:f5:78:a6:d3: be:10:96:38:11:1f:c5:75:3b:df:cf:a4:fd:8e:44:a3:09:ca: 02:ed:e0:d0:78:f6:f7:73:47:8e:b5:b4:21:0d:45:9c:3c:a0: 56:2a:3e:9e:3d:93:af:5d:73:27:76:f7:90:96:b9:97:1c:d9: 1f:29:11:a6:3a:26:a4:7a:0f:50:49:66:fa:ef:d7:79:eb:b5: 1b:b0:d7:6d:98:f8:c0:b2:25:f3:f4:41:9f:9d:dd:d2:05:5e: e3:cf:35:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdAxSB85bAlD7b0wPbaQBbflShBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZB NkY2OTBBQjAeFw0yNTA2MDIwMjAwMTBaFw0yNjA2MDEwMjA1MTBaMDMxMTAvBgNV BAMTKEYyQjU5MkNBRDgyOEE3MzhBNTA4Qzk2OEIwMUQ5NzI2N0MzM0Y1NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4zcfooSLUTxwYMlMIHtvzla9 ZtMbsCoPEYx3zcuLXZ8ylppr0erfEHFqPjE+3AutBIwXtApKeJhUhstImKcX83yv z0JqUWm5jq2kvL+cLzsgcMpcIuh8BcEAzZj1Cs9IdmyIdT32ZtjoVIdWTs4JaMME W3g0jn4OjiOXyP+NMwY7HyUwiXR4dxZxpxOLrvg7BE/pAC4JDTOUveZx7OW3EzpL AoKevF65C+WzylG1PBbHR88QkoYGtxojosj6kiKEOk7XQ0BBoGv0gNtjeItfsVjy XbZgAntyidbWtmLOD+sVQROigfDe4TviVb2SdrZgvKUJ7Q0+0+UH7Hc+uS4RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8rWSytgopzilCMlosB2XJnwz9WAwHwYDVR0j BBgwFoAUkFCP+YAJfhnO9l7XKoVmFqb2kKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODgzZTNiZS01N2UyLTQxMjUtYTBjNS05YTllYTUwMWJmMDUvMC85MDUwOEZGOTgw MDk3RTE5Q0VGNjVFRDcyQTg1NjYxNkE2RjY5MEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZBNkY2 OTBBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ODNlM2JlLTU3ZTItNDEyNS1h MGM1LTlhOWVhNTAxYmYwNS8wLzMxMzAzMzJlMzEzMTM5MmUzMjMyMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNjM0MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3fkMA0GCSqG SIb3DQEBCwUAA4IBAQAfezdaYj8XugGeY9rtkVGsX/GtBtMGswWHz1NzXKV34LkJ g0Dx9mreAXoo9bPJL9Cj08SUl1AVcGma3oLePwxwjJks0kIBhKhxxnYaBqrd2gW2 pcrI+D2HRcqAsm502z+m7btESzFH7dDGXJKXAK4zO6EUUMrpuqnlOWW8jFvwvI6r 7R6QCrqLFpyTuBCKtiy65H+8LFQkP//k0X12TPV4ptO+EJY4ER/FdTvfz6T9jkSj CcoC7eDQePb3c0eOtbQhDUWcPKBWKj6ePZOvXXMndveQlrmXHNkfKRGmOiakeg9Q SWb679d567UbsNdtmPjAsiXz9EGfnd3SBV7jzzXy -----END CERTIFICATE-----Generated at Sat Jun 7 14:43:34 2025 by rpki-client