$ rpki-client -vvf repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa File: 3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa (raw, json) Hash identifier: 7oh7gLosxpigXZ1B5YXMaPZ1h+t8yrojfWYMj50/Mhg= Subject key identifier: AB:84:39:D3:62:D0:84:99:A2:63:CD:FF:D2:94:CC:D9:EA:F5:75:BE Certificate issuer: /CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Certificate serial: 76D2204DECA996620A18141E418C4A222451C667 Authority key identifier: DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa Signing time: Mon 02 Jun 2025 02:04:06 +0000 ROA not before: Mon 02 Jun 2025 01:59:06 +0000 ROA not after: Mon 01 Jun 2026 02:04:06 +0000 asID: 136880 IP address blocks: 103.106.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:d2:20:4d:ec:a9:96:62:0a:18:14:1e:41:8c:4a:22:24:51:c6:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Validity Not Before: Jun 2 01:59:06 2025 GMT Not After : Jun 1 02:04:06 2026 GMT Subject: CN=AB8439D362D08499A263CDFFD294CCD9EAF575BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:95:8a:13:94:e1:e2:fa:66:64:8d:5e:35:af: 74:ba:10:f6:e7:49:5a:2b:89:f6:dc:c1:e0:0e:23: 8a:83:a4:e8:31:72:37:8b:2c:2e:ca:cc:c8:87:0e: 14:cb:27:f1:ba:39:26:38:ba:c4:c0:ab:ad:8e:ab: e7:9e:1d:02:60:ba:a1:82:f7:ea:a7:dd:f7:eb:8e: 68:ed:0d:74:22:ca:87:d7:47:e4:6f:02:51:a7:f2: d6:c9:6f:dc:c9:c5:a5:01:d6:16:f8:21:5f:cd:cd: a9:62:96:c3:58:58:28:72:08:36:0f:33:44:f6:b5: 92:66:30:ad:2f:8a:85:41:ad:51:16:92:26:2f:33: 19:ab:00:65:79:4c:42:e6:2c:1d:6f:26:1a:b7:da: 48:08:ac:39:4c:05:33:4f:eb:53:49:0b:69:37:23: c4:1e:cd:ea:6f:48:7d:bd:6c:16:2a:2d:1b:d3:b8: 46:92:d0:a0:ac:16:59:d4:09:dc:05:d5:26:b6:ba: c6:ba:3f:3f:62:dd:ea:ba:b6:80:37:82:39:e7:16: 63:d6:e0:b1:73:f8:b4:bb:fc:fe:de:fc:2a:cd:38: 3f:15:9a:29:75:38:b9:17:a0:79:d2:37:2f:16:5f: eb:03:2a:48:e4:65:19:71:f5:ee:05:e7:92:b3:f6: a5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:84:39:D3:62:D0:84:99:A2:63:CD:FF:D2:94:CC:D9:EA:F5:75:BE X509v3 Authority Key Identifier: keyid:DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.112.0/22 Signature Algorithm: sha256WithRSAEncryption 67:b6:cc:e0:1f:3b:2f:57:8e:c0:37:34:4c:66:9f:47:ae:2f: 3a:9b:e1:10:83:75:72:40:0a:e7:fa:34:1c:de:0e:8f:51:aa: 4f:08:ce:e1:7a:92:b4:a0:fc:4b:47:d5:d6:48:46:21:40:54: 45:25:99:3d:db:e4:a4:ff:44:2a:a7:65:84:a3:cc:96:87:c1: 40:53:5e:bf:1e:28:be:aa:c2:17:fe:7e:cd:d5:f2:4f:8a:0e: 00:2e:a6:fa:b9:e0:75:ed:30:ba:4e:42:56:43:57:59:1f:72: 74:2b:dc:ac:55:59:d3:68:c1:ce:0f:24:3b:7e:6b:96:8c:f7: da:ce:19:4e:33:e9:70:bf:90:ec:c9:38:f2:9e:f8:90:d1:d0: 64:82:dd:29:9a:61:a9:9e:69:58:bf:7e:bb:1c:ed:e2:7f:c5: fc:26:19:40:5b:6d:8e:43:27:be:cc:58:17:0e:94:35:82:68: a1:d1:3d:04:02:04:13:f0:88:3f:06:0f:1f:1b:2c:d2:20:2c: cb:d5:90:90:37:a5:23:9f:03:56:7c:78:d2:75:e1:8c:be:81: 91:f5:07:8b:31:61:e4:c0:4a:38:4c:ee:7c:a9:af:a7:17:92: 9a:8a:86:ae:ec:2a:5d:09:cf:75:ed:90:f1:86:d3:45:d9:ad: 39:23:22:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdtIgTeyplmIKGBQeQYxKIiRRxmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBD MUIwRjkxNTAeFw0yNTA2MDIwMTU5MDZaFw0yNjA2MDEwMjA0MDZaMDMxMTAvBgNV BAMTKEFCODQzOUQzNjJEMDg0OTlBMjYzQ0RGRkQyOTRDQ0Q5RUFGNTc1QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCslYoTlOHi+mZkjV41r3S6EPbn SVorifbcweAOI4qDpOgxcjeLLC7KzMiHDhTLJ/G6OSY4usTAq62Oq+eeHQJguqGC 9+qn3ffrjmjtDXQiyofXR+RvAlGn8tbJb9zJxaUB1hb4IV/NzalilsNYWChyCDYP M0T2tZJmMK0vioVBrVEWkiYvMxmrAGV5TELmLB1vJhq32kgIrDlMBTNP61NJC2k3 I8QezepvSH29bBYqLRvTuEaS0KCsFlnUCdwF1Sa2usa6Pz9i3eq6toA3gjnnFmPW 4LFz+LS7/P7e/CrNOD8Vmil1OLkXoHnSNy8WX+sDKkjkZRlx9e4F55Kz9qU1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUq4Q502LQhJmiY83/0pTM2er1db4wHwYDVR0j BBgwFoAU3ICGACKk1dFNt4CCuscF4MGw+RUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjA3YjM3Yy0wNTA3LTQ5MTMtODMyOS0zZjE2MWI2YWZmNTYvMC9EQzgwODYwMDIy QTRENUQxNERCNzgwODJCQUM3MDVFMEMxQjBGOTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBDMUIw RjkxNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMDdiMzdjLTA1MDctNDkxMy04 MzI5LTNmMTYxYjZhZmY1Ni8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnanAwDQYJ KoZIhvcNAQELBQADggEBAGe2zOAfOy9XjsA3NExmn0euLzqb4RCDdXJACuf6NBze Do9Rqk8IzuF6krSg/EtH1dZIRiFAVEUlmT3b5KT/RCqnZYSjzJaHwUBTXr8eKL6q whf+fs3V8k+KDgAupvq54HXtMLpOQlZDV1kfcnQr3KxVWdNowc4PJDt+a5aM99rO GU4z6XC/kOzJOPKe+JDR0GSC3SmaYameaVi/frsc7eJ/xfwmGUBbbY5DJ77MWBcO lDWCaKHRPQQCBBPwiD8GDx8bLNIgLMvVkJA3pSOfA1Z8eNJ14Yy+gZH1B4sxYeTA SjhM7nypr6cXkpqKhq7sKl0Jz3XtkPGG00XZrTkjIsk= -----END CERTIFICATE-----Generated at Mon Jun 9 05:00:25 2025 by rpki-client