$ rpki-client -vvf repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa File: 3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: yL0gLS/lvq9j5h+L42yAYYctUM1Kqtv5bl12En0Z8dY= Subject key identifier: FB:11:20:1C:55:19:56:97:35:48:A9:60:A6:CE:A5:61:C0:92:41:62 Certificate issuer: /CN=A708865394D992A01D1736F0AB500E24889B7F34 Certificate serial: 3DD661D5DB34E4AABDA90ABB95C124F916E2167B Authority key identifier: A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa Signing time: Fri 30 May 2025 02:02:22 +0000 ROA not before: Fri 30 May 2025 01:57:22 +0000 ROA not after: Fri 29 May 2026 02:02:22 +0000 asID: 136052 IP address blocks: 103.242.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.crl rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d6:61:d5:db:34:e4:aa:bd:a9:0a:bb:95:c1:24:f9:16:e2:16:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A708865394D992A01D1736F0AB500E24889B7F34 Validity Not Before: May 30 01:57:22 2025 GMT Not After : May 29 02:02:22 2026 GMT Subject: CN=FB11201C551956973548A960A6CEA561C0924162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:96:8d:75:de:2d:2c:9b:4a:f5:aa:de:8c:6c: ce:a2:c7:09:b9:12:fb:ae:9a:87:2c:37:81:23:d5: 97:6f:69:ff:3f:cf:a3:2a:24:7a:43:c9:3f:5a:e0: 40:fc:6b:95:29:f5:e6:89:e1:92:75:bb:95:05:c7: 0b:da:45:2a:4b:8a:ff:03:ef:05:d5:3b:8f:a5:51: 53:3e:35:24:74:2d:15:42:ab:b4:89:bb:5b:a2:7a: 19:80:0d:02:29:ee:a3:42:48:6a:48:15:79:28:7e: 50:82:b0:64:59:7e:7d:91:dd:b4:20:d1:cb:67:15: e6:20:8e:cd:91:f0:f5:5f:76:90:f7:1b:9a:11:0f: e8:68:fc:bb:2f:0d:20:48:84:80:89:a1:1a:52:71: 96:0b:d0:ad:2d:ef:f7:16:51:ea:f8:c9:66:9d:cf: 14:5f:1f:1e:a2:bb:ee:fc:2c:c2:9d:10:bb:da:e3: f1:e4:66:e1:9a:81:29:0f:34:78:38:c6:4e:82:54: 4a:5c:ce:1f:2d:8e:43:30:00:83:da:b7:45:a3:b9: a2:65:8f:a6:74:2e:22:50:67:e5:1d:4e:ba:5d:a8: 6f:b1:8b:f9:2c:d3:57:4a:03:d5:e1:1a:67:3c:29: bc:53:9e:32:31:e0:f6:c1:4a:39:94:31:22:45:45: b5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:11:20:1C:55:19:56:97:35:48:A9:60:A6:CE:A5:61:C0:92:41:62 X509v3 Authority Key Identifier: keyid:A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.10.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:eb:77:16:78:a8:b6:81:29:11:28:dc:30:c7:1e:bb:66:12: cf:4a:d1:4a:1d:2d:01:2e:28:95:1f:a8:96:ce:bf:89:46:aa: 24:96:77:fb:bd:10:59:67:ff:5e:f0:2f:cd:a4:0f:af:86:e6: f8:58:64:ad:5a:5a:93:1a:b3:8f:6d:e6:66:69:e0:8d:5f:52: dc:e1:b0:ee:ca:4c:5e:34:3c:e5:42:27:f1:cd:b4:ce:ef:26: cc:39:51:01:60:bc:bd:63:4f:de:a7:70:ad:5a:8d:1b:78:77: 8a:ca:85:7f:38:dc:ab:ce:74:1e:a7:ca:b9:61:3e:66:1e:13: a6:a0:87:6f:a2:d6:50:50:f9:d7:b1:f1:04:d8:9a:18:5b:d4: da:1d:b3:71:32:e1:5a:40:cb:76:b6:fa:68:b7:3b:5f:c2:03: c9:68:9d:c0:34:07:80:fe:1e:53:58:e0:e4:09:c3:34:92:25: 14:74:b0:dc:f7:3b:9f:bc:5e:11:e9:56:92:eb:1d:ec:8e:2e: fe:84:8b:88:9a:e9:af:69:af:f0:06:bf:90:07:c2:4b:75:e3: 74:33:36:df:df:ca:be:62:dc:44:35:a5:75:8b:ff:65:d4:7a: 37:0d:c5:f9:9a:45:39:d9:0f:57:51:17:f5:ca:f5:fa:e7:be: 47:d6:a6:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPdZh1ds05Kq9qQq7lcEk+RbiFnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcwODg2NTM5NEQ5OTJBMDFEMTczNkYwQUI1MDBFMjQ4 ODlCN0YzNDAeFw0yNTA1MzAwMTU3MjJaFw0yNjA1MjkwMjAyMjJaMDMxMTAvBgNV BAMTKEZCMTEyMDFDNTUxOTU2OTczNTQ4QTk2MEE2Q0VBNTYxQzA5MjQxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCklo113i0sm0r1qt6MbM6ixwm5 EvuumocsN4Ej1Zdvaf8/z6MqJHpDyT9a4ED8a5Up9eaJ4ZJ1u5UFxwvaRSpLiv8D 7wXVO4+lUVM+NSR0LRVCq7SJu1uiehmADQIp7qNCSGpIFXkoflCCsGRZfn2R3bQg 0ctnFeYgjs2R8PVfdpD3G5oRD+ho/LsvDSBIhICJoRpScZYL0K0t7/cWUer4yWad zxRfHx6iu+78LMKdELva4/HkZuGagSkPNHg4xk6CVEpczh8tjkMwAIPat0WjuaJl j6Z0LiJQZ+UdTrpdqG+xi/ks01dKA9XhGmc8KbxTnjIx4PbBSjmUMSJFRbURAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+xEgHFUZVpc1SKlgps6lYcCSQWIwHwYDVR0j BBgwFoAUpwiGU5TZkqAdFzbwq1AOJIibfzQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjBjN2EzNy01ZDE5LTRjNWMtOTMwMS1hMTRhN2YxODVjOTIvMC9BNzA4ODY1Mzk0 RDk5MkEwMUQxNzM2RjBBQjUwMEUyNDg4OUI3RjM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTcwODg2NTM5NEQ5OTJBMDFEMTczNkYwQUI1MDBFMjQ4ODlC N0YzNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMGM3YTM3LTVkMTktNGM1Yy05 MzAxLWExNGE3ZjE4NWM5Mi8wLzMxMzAzMzJlMzIzNDMyMmUzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/IKMA0GCSqG SIb3DQEBCwUAA4IBAQBe63cWeKi2gSkRKNwwxx67ZhLPStFKHS0BLiiVH6iWzr+J Rqoklnf7vRBZZ/9e8C/NpA+vhub4WGStWlqTGrOPbeZmaeCNX1Lc4bDuykxeNDzl QifxzbTO7ybMOVEBYLy9Y0/ep3CtWo0beHeKyoV/ONyrznQep8q5YT5mHhOmoIdv otZQUPnXsfEE2JoYW9TaHbNxMuFaQMt2tvpotztfwgPJaJ3ANAeA/h5TWODkCcM0 kiUUdLDc9zufvF4R6VaS6x3sji7+hIuImumvaa/wBr+QB8JLdeN0Mzbf38q+YtxE NaV1i/9l1Ho3DcX5mkU52Q9XURf1yvX6575H1qY7 -----END CERTIFICATE-----Generated at Thu Jun 5 18:23:41 2025 by rpki-client