$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa File: 3130332e31312e39362e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: PVQdneK9Q2r+2YuMkyuS3S7JvDEOimiQ6kS5G4qY3D8= Subject key identifier: 31:B8:42:D1:4C:EE:B4:EC:62:3E:C3:39:DB:2A:C7:CA:F5:22:3B:A1 Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 3D22F8C45ADD8EC5344A7CF71D0DCE5B1F50036C Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa Signing time: Mon 02 Jun 2025 02:04:06 +0000 ROA not before: Mon 02 Jun 2025 01:59:06 +0000 ROA not after: Mon 01 Jun 2026 02:04:06 +0000 asID: 55653 IP address blocks: 103.11.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:22:f8:c4:5a:dd:8e:c5:34:4a:7c:f7:1d:0d:ce:5b:1f:50:03:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jun 2 01:59:06 2025 GMT Not After : Jun 1 02:04:06 2026 GMT Subject: CN=31B842D14CEEB4EC623EC339DB2AC7CAF5223BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:5d:5b:7e:c9:25:c9:90:64:dc:8d:b4:83: cc:6e:e5:ab:58:1c:a5:d2:00:d6:83:6b:cf:38:09: 34:b9:23:7b:32:88:ef:5a:02:db:12:2f:b9:63:a7: df:89:f2:26:06:90:17:a7:40:3d:ae:e4:24:8d:c1: 1e:4f:f6:63:a8:1b:fe:7b:23:4b:a3:2a:85:23:0c: 7d:e0:5b:63:c7:96:2b:bd:22:2a:8c:8e:86:ed:d8: bb:20:2f:c8:25:ab:52:5e:81:2e:2e:8f:c0:0d:e7: 25:89:14:11:75:83:b4:ae:e9:f1:e9:3f:19:aa:8a: b6:ba:c2:8c:4f:43:4a:e8:0a:c2:70:71:0b:3b:6e: 30:a9:58:75:fb:e0:37:a3:8e:31:c1:9b:71:73:0b: 17:75:0f:09:95:a7:6e:15:f0:9b:50:58:12:4f:f2: a5:2f:23:78:d6:13:73:bc:af:ec:4e:8d:45:9f:57: 2b:90:fa:6f:47:a9:a1:88:87:15:ec:c1:c3:f0:bb: 29:35:10:1c:f2:22:e5:76:26:8a:25:22:0c:b9:da: cf:42:c5:d4:67:11:e4:db:b5:fc:3f:cb:de:f0:67: 81:d2:47:fd:32:49:39:46:89:bb:59:d0:c1:1a:8d: 7a:fa:f3:19:10:d4:9c:8e:81:00:03:54:48:a5:22: e0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B8:42:D1:4C:EE:B4:EC:62:3E:C3:39:DB:2A:C7:CA:F5:22:3B:A1 X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:41:d6:a7:d1:ee:59:6b:cb:ba:59:d1:bd:4b:a2:af:f2:3e: 54:6b:3e:d5:92:97:db:a8:54:05:be:b4:72:b6:35:97:3d:1f: f5:85:f2:95:dc:6d:7f:f1:32:46:50:cf:63:ee:57:91:30:53: 42:ea:5f:3a:b5:6c:5d:ee:f3:0b:8f:50:db:56:fd:0e:32:52: 69:fc:d9:ac:bc:6d:fd:02:6b:4a:67:19:48:aa:ac:c6:18:8a: 60:6e:39:9f:d7:d3:ab:e4:39:54:1a:62:67:a0:82:49:52:23: 8a:0d:bd:04:08:0a:59:8a:14:53:6b:65:a1:c1:7f:25:0b:dc: cf:a7:19:ff:3e:db:72:c6:49:61:31:1f:e5:ff:4e:91:5c:10: 13:0d:41:24:53:93:41:23:e9:ca:1e:ba:eb:2d:dd:91:d6:80: b5:f3:fc:01:66:b7:05:85:3d:94:e3:ab:04:99:e2:8d:5b:02: 35:10:fe:ab:6b:7b:62:5f:ff:1d:bf:a7:30:18:7f:47:40:b4: 8b:48:7f:85:fe:8a:2c:0b:56:33:1a:4b:69:24:0a:e6:d9:7d: 4a:ce:b7:ee:26:78:db:de:ec:ef:43:48:90:08:7b:4a:51:84: 3b:29:4b:99:da:20:5d:90:b9:c6:a0:b9:f9:cb:8c:d0:05:aa: 06:23:d9:da -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPSL4xFrdjsU0Snz3HQ3OWx9QA2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTA2MDIwMTU5MDZaFw0yNjA2MDEwMjA0MDZaMDMxMTAvBgNV BAMTKDMxQjg0MkQxNENFRUI0RUM2MjNFQzMzOURCMkFDN0NBRjUyMjNCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0211bfsklyZBk3I20g8xu5atY HKXSANaDa884CTS5I3syiO9aAtsSL7ljp9+J8iYGkBenQD2u5CSNwR5P9mOoG/57 I0ujKoUjDH3gW2PHliu9IiqMjobt2LsgL8glq1JegS4uj8AN5yWJFBF1g7Su6fHp Pxmqira6woxPQ0roCsJwcQs7bjCpWHX74DejjjHBm3FzCxd1DwmVp24V8JtQWBJP 8qUvI3jWE3O8r+xOjUWfVyuQ+m9HqaGIhxXswcPwuyk1EBzyIuV2JoolIgy52s9C xdRnEeTbtfw/y97wZ4HSR/0ySTlGibtZ0MEajXr68xkQ1JyOgQADVEilIuCPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMbhC0UzutOxiPsM52yrHyvUiO6EwHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMxMzAzMzJlMzEzMTJlMzkzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnC2AwDQYJKoZIhvcN AQELBQADggEBAH1B1qfR7llry7pZ0b1Loq/yPlRrPtWSl9uoVAW+tHK2NZc9H/WF 8pXcbX/xMkZQz2PuV5EwU0LqXzq1bF3u8wuPUNtW/Q4yUmn82ay8bf0Ca0pnGUiq rMYYimBuOZ/X06vkOVQaYmeggklSI4oNvQQIClmKFFNrZaHBfyUL3M+nGf8+23LG SWExH+X/TpFcEBMNQSRTk0Ej6coeuust3ZHWgLXz/AFmtwWFPZTjqwSZ4o1bAjUQ /qtre2Jf/x2/pzAYf0dAtItIf4X+iiwLVjMaS2kkCubZfUrOt+4meNve7O9DSJAI e0pRhDspS5naIF2QucagufnLjNAFqgYj2do= -----END CERTIFICATE-----Generated at Sat Jun 7 11:54:16 2025 by rpki-client