$ rpki-client -vvf repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33302e302f32332d3233203d3e2039333431.roa File: 3130332e3131372e33302e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: rPKEvLXWGWoztExe4HntWPPQ3bNHicZSmrS4LoU+DGA= Subject key identifier: 39:F9:7D:B4:F3:29:6A:87:71:6F:AC:F1:F6:32:C2:19:ED:FA:15:99 Certificate issuer: /CN=3E69DE558C030D2041570E32C387F764C38BBBA9 Certificate serial: 48768505E774C7C83792DF45D55144EE1B74633D Authority key identifier: 3E:69:DE:55:8C:03:0D:20:41:57:0E:32:C3:87:F7:64:C3:8B:BB:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33302e302f32332d3233203d3e2039333431.roa Signing time: Tue 27 May 2025 06:00:21 +0000 ROA not before: Tue 27 May 2025 05:55:21 +0000 ROA not after: Tue 26 May 2026 06:00:21 +0000 asID: 9341 IP address blocks: 103.117.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.crl rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 18:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:76:85:05:e7:74:c7:c8:37:92:df:45:d5:51:44:ee:1b:74:63:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E69DE558C030D2041570E32C387F764C38BBBA9 Validity Not Before: May 27 05:55:21 2025 GMT Not After : May 26 06:00:21 2026 GMT Subject: CN=39F97DB4F3296A87716FACF1F632C219EDFA1599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:60:a4:79:56:4b:86:78:1e:29:0d:24:c5: c2:f2:0b:ec:d8:b4:73:a4:bc:96:38:6f:4f:9c:3e: 81:ca:11:bf:8a:5d:29:8c:f5:38:fd:28:1f:c2:74: 4e:13:19:65:5e:07:d0:d5:5c:3c:39:0d:32:86:42: 2a:3f:fc:01:b9:31:eb:74:ff:3a:00:41:c0:c3:2e: 7c:5e:2d:25:70:d5:f0:26:a9:2e:c0:44:93:f8:a6: dd:ac:46:f8:01:bb:47:c3:7b:fa:ec:35:53:12:66: 70:d2:bd:bb:f6:d8:f7:7b:0f:da:5b:77:5d:26:ad: 17:9b:3c:7c:40:44:02:66:ba:f7:0f:f2:4b:14:7a: 11:ed:70:16:ee:60:95:e0:eb:b4:93:2f:a6:0c:d2: 0f:3d:aa:3f:84:e5:be:85:e7:71:91:6c:08:a4:75: ec:1e:1e:ae:df:d7:aa:fa:7e:84:68:b5:fa:6e:f5: a5:18:22:56:86:6f:92:7d:d2:ff:43:f1:95:b6:9b: 0b:12:27:77:88:00:b2:89:73:a9:d9:5b:a5:42:81: 38:54:f1:9b:2b:e2:9b:4e:25:ab:a8:a0:16:18:ab: 54:ea:52:8f:ad:df:d9:9d:fc:d0:70:fa:9b:95:ea: 2a:ee:3b:4e:e0:e9:eb:b8:07:59:ce:30:fd:97:3f: 4a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F9:7D:B4:F3:29:6A:87:71:6F:AC:F1:F6:32:C2:19:ED:FA:15:99 X509v3 Authority Key Identifier: keyid:3E:69:DE:55:8C:03:0D:20:41:57:0E:32:C3:87:F7:64:C3:8B:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33302e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.30.0/23 Signature Algorithm: sha256WithRSAEncryption 55:31:e9:bc:e3:1c:e6:56:56:11:66:f0:19:14:ca:34:86:91: 21:35:43:cf:fd:3d:21:e9:60:74:4b:e0:51:c8:14:57:25:33: 2f:4b:d6:90:9d:aa:ac:5c:13:5c:54:9f:01:de:e1:aa:49:32: 1d:60:11:e9:f5:e3:6c:66:9c:21:d3:9c:c3:5d:08:fe:3f:e4: 40:ba:6d:c9:1c:72:ed:82:37:87:c9:c6:da:b7:b4:80:00:40: 89:55:cc:46:e6:32:50:60:8b:a7:e2:6a:f6:94:59:17:b9:4c: 7b:64:df:fd:49:c1:b3:43:21:0a:df:5f:31:01:c4:63:9f:df: 8e:55:e0:c1:13:7a:0f:5c:cc:44:72:02:7e:8e:2c:48:56:5c: 6a:3a:1d:79:0f:7e:9f:23:e5:a1:57:a4:79:01:6d:79:e6:01: 1a:1d:1d:91:8c:45:ec:a9:c3:70:0d:b1:34:35:d1:10:28:c1: a5:e0:e3:e5:18:9d:6e:ff:99:f1:06:fa:48:ad:69:01:c2:2b: a0:be:77:b5:0f:b5:85:ef:a4:9c:3c:09:b0:08:b3:93:f6:cc: ba:0d:a1:6b:a4:71:03:3d:f1:03:88:9d:59:2a:7c:7e:36:5e: 68:61:4c:1d:aa:25:95:de:13:dd:ef:50:e1:f9:6c:42:3c:6c: 03:97:6e:f8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSHaFBed0x8g3kt9F1VFE7ht0Yz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2OURFNTU4QzAzMEQyMDQxNTcwRTMyQzM4N0Y3NjRD MzhCQkJBOTAeFw0yNTA1MjcwNTU1MjFaFw0yNjA1MjYwNjAwMjFaMDMxMTAvBgNV BAMTKDM5Rjk3REI0RjMyOTZBODc3MTZGQUNGMUY2MzJDMjE5RURGQTE1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2WCkeVZLhngeKQ0kxcLyC+zY tHOkvJY4b0+cPoHKEb+KXSmM9Tj9KB/CdE4TGWVeB9DVXDw5DTKGQio//AG5Met0 /zoAQcDDLnxeLSVw1fAmqS7ARJP4pt2sRvgBu0fDe/rsNVMSZnDSvbv22Pd7D9pb d10mrRebPHxARAJmuvcP8ksUehHtcBbuYJXg67STL6YM0g89qj+E5b6F53GRbAik deweHq7f16r6foRotfpu9aUYIlaGb5J90v9D8ZW2mwsSJ3eIALKJc6nZW6VCgThU 8Zsr4ptOJauooBYYq1TqUo+t39md/NBw+puV6iruO07g6eu4B1nOMP2XP0rrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOfl9tPMpaodxb6zx9jLCGe36FZkwHwYDVR0j BBgwFoAUPmneVYwDDSBBVw4yw4f3ZMOLu6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWIzYmIzNC0xNWUyLTQ0ODctYjUyNy02ZTc1MTI4NmNlN2QvMC8zRTY5REU1NThD MDMwRDIwNDE1NzBFMzJDMzg3Rjc2NEMzOEJCQkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2OURFNTU4QzAzMEQyMDQxNTcwRTMyQzM4N0Y3NjRDMzhC QkJBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5YjNiYjM0LTE1ZTItNDQ4Ny1i NTI3LTZlNzUxMjg2Y2U3ZC8wLzMxMzAzMzJlMzEzMTM3MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFndR4wDQYJKoZIhvcN AQELBQADggEBAFUx6bzjHOZWVhFm8BkUyjSGkSE1Q8/9PSHpYHRL4FHIFFclMy9L 1pCdqqxcE1xUnwHe4apJMh1gEen142xmnCHTnMNdCP4/5EC6bckccu2CN4fJxtq3 tIAAQIlVzEbmMlBgi6fiavaUWRe5THtk3/1JwbNDIQrfXzEBxGOf345V4METeg9c zERyAn6OLEhWXGo6HXkPfp8j5aFXpHkBbXnmARodHZGMReypw3ANsTQ10RAowaXg 4+UYnW7/mfEG+kitaQHCK6C+d7UPtYXvpJw8CbAIs5P2zLoNoWukcQM98QOInVkq fH42XmhhTB2qJZXeE93vUOH5bEI8bAOXbvg= -----END CERTIFICATE-----Generated at Thu Jun 5 18:30:32 2025 by rpki-client