$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa File: 3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa (raw, json) Hash identifier: wXEz476nIlWr9YPVy2btympb5pWVJFYVSK12JD1WOHw= Subject key identifier: 0C:BC:A4:90:7B:2D:28:96:5E:71:6A:67:E4:AA:A5:48:0C:3D:EF:38 Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Certificate serial: 77BD1E3278F51909710ED36F928B86C736D55CC3 Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa Signing time: Mon 02 Jun 2025 01:02:30 +0000 ROA not before: Mon 02 Jun 2025 00:57:30 +0000 ROA not after: Mon 01 Jun 2026 01:02:30 +0000 asID: 59276 IP address blocks: 103.226.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:bd:1e:32:78:f5:19:09:71:0e:d3:6f:92:8b:86:c7:36:d5:5c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Validity Not Before: Jun 2 00:57:30 2025 GMT Not After : Jun 1 01:02:30 2026 GMT Subject: CN=0CBCA4907B2D28965E716A67E4AAA5480C3DEF38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:cb:0c:9a:7b:9f:08:9d:c8:95:f5:cd:de: e8:c3:09:3c:67:b6:9c:24:f2:21:c8:57:9c:9d:40: 13:6c:9c:4b:ef:de:fd:0a:51:8e:f7:1a:4a:84:80: 27:d0:ff:5f:e8:cc:41:6c:dd:c2:59:f7:4a:bc:38: 32:b9:ee:38:da:31:e2:ac:36:ec:61:c8:70:59:b2: e4:29:e7:b3:d0:5e:f7:f6:fe:fc:08:67:62:4d:8a: f7:89:f6:67:e3:81:f6:61:90:16:03:1d:33:1a:6a: 13:b0:a2:fc:bb:09:5d:f5:52:e3:96:d1:a2:ce:55: 7e:c4:96:b5:10:c4:b8:9e:2b:76:42:5c:41:74:d5: 58:c4:cb:c7:b0:a8:af:02:38:69:88:4e:8d:da:67: 90:dd:56:8f:3e:60:fd:85:54:16:97:1b:c2:86:40: 4f:10:04:36:a9:31:6a:8e:95:af:fc:af:a1:fa:a1: e2:f2:78:3f:a6:ec:2f:12:ad:98:34:10:3a:ba:4d: e7:88:6d:4b:a1:12:2d:9f:3d:9b:33:55:fb:8f:3c: 29:3f:85:d0:0c:2c:e8:02:35:70:1e:b6:5a:52:e8: cd:3d:8a:49:a1:e5:f0:45:c6:46:db:60:26:e0:ce: f9:e7:29:2d:a5:fc:3a:63:72:e2:2a:59:f4:bd:b0: 3a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BC:A4:90:7B:2D:28:96:5E:71:6A:67:E4:AA:A5:48:0C:3D:EF:38 X509v3 Authority Key Identifier: keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.226.232.0/22 Signature Algorithm: sha256WithRSAEncryption a1:e6:7e:35:5d:c6:f8:e7:45:6a:b8:27:e4:1e:c5:8e:c8:21: 10:52:fb:66:f9:74:cb:32:f0:82:7a:a0:6d:ce:70:17:43:1a: 3d:08:ca:fe:6f:0d:36:1a:79:d8:b7:78:61:52:9d:7a:ac:08: 58:97:26:43:2f:c5:46:40:3f:be:83:bf:55:10:aa:b8:f1:ad: 54:6f:cc:e1:16:57:44:5a:a1:7a:c3:90:ad:e1:c3:75:77:95: fe:24:ea:67:88:92:7d:ff:4f:7b:e4:4d:50:7f:70:ec:3d:2c: d3:5d:0f:50:23:42:62:6c:4e:1f:3f:82:2a:5b:b8:38:68:a9: 95:67:1c:ea:a1:e3:13:b7:e8:88:ad:5e:3b:e0:e8:d0:6a:de: 35:5d:46:13:91:b7:75:f6:61:69:91:fb:ab:8e:4b:3c:16:2f: 91:3b:ab:6b:c5:4e:31:c8:93:25:03:fc:b5:77:d0:77:e4:83: 7d:34:fe:c0:cc:6b:b3:ee:84:fa:e0:f1:3f:c2:69:ef:19:28: be:02:34:86:f8:49:e0:b3:c3:6a:bf:9a:03:0e:97:c1:9e:de: 68:37:2f:6e:50:1d:1f:de:ca:91:e4:e5:8e:27:f9:14:17:e3: 11:3c:0b:eb:5a:d4:45:19:80:0c:79:e2:6d:17:88:b4:58:26: 82:c1:ea:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd70eMnj1GQlxDtNvkouGxzbVXMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4 NzlBNzRFNTAeFw0yNTA2MDIwMDU3MzBaFw0yNjA2MDEwMTAyMzBaMDMxMTAvBgNV BAMTKDBDQkNBNDkwN0IyRDI4OTY1RTcxNkE2N0U0QUFBNTQ4MEMzREVGMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMicsMmnufCJ3IlfXN3ujDCTxn tpwk8iHIV5ydQBNsnEvv3v0KUY73GkqEgCfQ/1/ozEFs3cJZ90q8ODK57jjaMeKs NuxhyHBZsuQp57PQXvf2/vwIZ2JNiveJ9mfjgfZhkBYDHTMaahOwovy7CV31UuOW 0aLOVX7ElrUQxLieK3ZCXEF01VjEy8ewqK8COGmITo3aZ5DdVo8+YP2FVBaXG8KG QE8QBDapMWqOla/8r6H6oeLyeD+m7C8SrZg0EDq6TeeIbUuhEi2fPZszVfuPPCk/ hdAMLOgCNXAetlpS6M09ikmh5fBFxkbbYCbgzvnnKS2l/DpjcuIqWfS9sDpRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDLykkHstKJZecWpn5KqlSAw97zgwHwYDVR0j BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4 RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB NzRFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMxMzAzMzJlMzIzMjM2MmUzMjMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+LoMA0GCSqG SIb3DQEBCwUAA4IBAQCh5n41Xcb450VquCfkHsWOyCEQUvtm+XTLMvCCeqBtznAX Qxo9CMr+bw02GnnYt3hhUp16rAhYlyZDL8VGQD++g79VEKq48a1Ub8zhFldEWqF6 w5Ct4cN1d5X+JOpniJJ9/0975E1Qf3DsPSzTXQ9QI0JibE4fP4IqW7g4aKmVZxzq oeMTt+iIrV474OjQat41XUYTkbd19mFpkfurjks8Fi+RO6trxU4xyJMlA/y1d9B3 5IN9NP7AzGuz7oT64PE/wmnvGSi+AjSG+Engs8Nqv5oDDpfBnt5oNy9uUB0f3sqR 5OWOJ/kUF+MRPAvrWtRFGYAMeeJtF4i0WCaCweqf -----END CERTIFICATE-----Generated at Sat Jun 7 09:31:34 2025 by rpki-client