$ rpki-client -vvf repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33312e302f32342d3234203d3e2039333431.roa File: 3130332e3131372e33312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: +aYgV7p1X1TAw32sJQDFPZ5QXQcUqf2Pg9Wsy7Iew4g= Subject key identifier: FA:D8:AE:87:F4:BA:20:8F:8F:C1:7F:C1:17:BC:8B:7A:64:00:A5:23 Certificate issuer: /CN=3E69DE558C030D2041570E32C387F764C38BBBA9 Certificate serial: 2428943426C13DE431FBEE11B010413841F8AF08 Authority key identifier: 3E:69:DE:55:8C:03:0D:20:41:57:0E:32:C3:87:F7:64:C3:8B:BB:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33312e302f32342d3234203d3e2039333431.roa Signing time: Tue 27 May 2025 06:00:21 +0000 ROA not before: Tue 27 May 2025 05:55:21 +0000 ROA not after: Tue 26 May 2026 06:00:21 +0000 asID: 9341 IP address blocks: 103.117.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.crl rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 18:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:28:94:34:26:c1:3d:e4:31:fb:ee:11:b0:10:41:38:41:f8:af:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E69DE558C030D2041570E32C387F764C38BBBA9 Validity Not Before: May 27 05:55:21 2025 GMT Not After : May 26 06:00:21 2026 GMT Subject: CN=FAD8AE87F4BA208F8FC17FC117BC8B7A6400A523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:16:e8:cf:38:59:e2:9c:f8:9b:84:51:52: 85:af:1e:5f:e2:e4:6b:ff:d8:66:ed:e4:cc:c0:08: 1e:63:41:e8:0e:41:6a:61:9e:41:79:1a:68:43:93: 83:f9:6b:c1:59:2d:63:e7:74:78:78:59:96:83:84: 74:b8:f5:f8:bf:8c:d4:77:a8:d9:2a:7b:fb:28:f8: 94:58:40:1b:58:96:80:e9:9d:a6:fd:e8:5e:46:64: bb:73:1a:78:c3:37:80:c6:dc:d0:4e:ed:06:80:49: 42:17:2a:ba:d9:33:d6:83:33:20:50:ca:27:d4:f2: 47:8f:59:d1:ad:9e:ee:ab:fa:57:9f:4c:f9:dd:f1: f1:74:49:b8:5f:37:9b:1e:dd:c4:b7:5e:17:fe:69: e4:dd:06:fe:76:7f:9b:a2:53:73:c8:43:38:6f:55: d2:30:de:bc:02:de:9d:aa:0f:34:bd:dc:d6:ca:26: 84:fa:c4:da:6b:e3:e2:6f:33:46:a4:69:7f:f3:59: bc:4c:82:cf:5d:39:bc:f2:ac:5c:e3:2e:33:4b:ec: 53:5e:d4:00:17:87:6b:a4:59:3f:51:fe:40:3b:55: 8b:bc:fe:36:3b:82:8e:11:b4:cd:a9:28:12:f0:bc: 8c:f6:cf:0b:14:6e:44:bf:2e:29:3b:91:15:72:4d: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D8:AE:87:F4:BA:20:8F:8F:C1:7F:C1:17:BC:8B:7A:64:00:A5:23 X509v3 Authority Key Identifier: keyid:3E:69:DE:55:8C:03:0D:20:41:57:0E:32:C3:87:F7:64:C3:8B:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3E69DE558C030D2041570E32C387F764C38BBBA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E69DE558C030D2041570E32C387F764C38BBBA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9b3bb34-15e2-4487-b527-6e751286ce7d/0/3130332e3131372e33312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.31.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:3f:50:ce:96:5a:35:0a:f4:8f:8c:72:a4:e7:27:a7:fd:70: 0c:e7:0f:1e:fb:c2:31:ba:a0:81:32:0b:5a:f9:e2:ba:89:13: c7:19:5b:1b:8e:3c:a7:66:c4:ec:3b:45:46:28:a3:c1:cf:6f: c1:af:47:0f:18:e8:b5:ca:66:13:bd:11:30:c6:22:98:dd:01: 76:8f:22:96:d6:b9:98:ad:bb:14:0b:bc:8d:8f:6c:69:34:f8: 8d:d1:70:f8:39:f6:c0:0d:f5:de:f5:f4:f8:15:c3:78:f2:fe: ca:6e:e7:9a:99:38:a1:bc:ed:99:d4:94:85:78:38:e8:93:ce: fd:d9:4c:cd:30:ea:d5:82:d4:e2:86:25:bf:b5:40:0b:06:95: 64:a5:ef:44:ac:b4:40:48:fd:72:84:ad:19:b5:67:f0:02:26: 18:4c:6d:07:d8:7e:65:66:f3:d2:ed:2e:f8:6b:b9:4d:d3:3f: 7f:9e:8c:0e:3b:3f:a2:2e:57:6d:8e:9c:59:e1:b4:9c:e8:5f: d7:68:64:7f:17:4c:8c:4e:74:82:80:df:28:49:7b:22:59:61: e5:d4:1a:3e:e9:98:59:7f:9b:8a:1b:4f:39:fa:8a:9b:9c:56: 30:2e:ec:f3:cb:7b:10:50:fd:17:76:ec:d9:98:69:d7:67:30: d8:46:4e:11 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJCiUNCbBPeQx++4RsBBBOEH4rwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2OURFNTU4QzAzMEQyMDQxNTcwRTMyQzM4N0Y3NjRD MzhCQkJBOTAeFw0yNTA1MjcwNTU1MjFaFw0yNjA1MjYwNjAwMjFaMDMxMTAvBgNV BAMTKEZBRDhBRTg3RjRCQTIwOEY4RkMxN0ZDMTE3QkM4QjdBNjQwMEE1MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+nRbozzhZ4pz4m4RRUoWvHl/i 5Gv/2Gbt5MzACB5jQegOQWphnkF5GmhDk4P5a8FZLWPndHh4WZaDhHS49fi/jNR3 qNkqe/so+JRYQBtYloDpnab96F5GZLtzGnjDN4DG3NBO7QaASUIXKrrZM9aDMyBQ yifU8kePWdGtnu6r+lefTPnd8fF0SbhfN5se3cS3Xhf+aeTdBv52f5uiU3PIQzhv VdIw3rwC3p2qDzS93NbKJoT6xNpr4+JvM0akaX/zWbxMgs9dObzyrFzjLjNL7FNe 1AAXh2ukWT9R/kA7VYu8/jY7go4RtM2pKBLwvIz2zwsUbkS/Lik7kRVyTfzlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+tiuh/S6II+PwX/BF7yLemQApSMwHwYDVR0j BBgwFoAUPmneVYwDDSBBVw4yw4f3ZMOLu6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWIzYmIzNC0xNWUyLTQ0ODctYjUyNy02ZTc1MTI4NmNlN2QvMC8zRTY5REU1NThD MDMwRDIwNDE1NzBFMzJDMzg3Rjc2NEMzOEJCQkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2OURFNTU4QzAzMEQyMDQxNTcwRTMyQzM4N0Y3NjRDMzhC QkJBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5YjNiYjM0LTE1ZTItNDQ4Ny1i NTI3LTZlNzUxMjg2Y2U3ZC8wLzMxMzAzMzJlMzEzMTM3MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndR8wDQYJKoZIhvcN AQELBQADggEBACw/UM6WWjUK9I+McqTnJ6f9cAznDx77wjG6oIEyC1r54rqJE8cZ WxuOPKdmxOw7RUYoo8HPb8GvRw8Y6LXKZhO9ETDGIpjdAXaPIpbWuZituxQLvI2P bGk0+I3RcPg59sAN9d719PgVw3jy/spu55qZOKG87ZnUlIV4OOiTzv3ZTM0w6tWC 1OKGJb+1QAsGlWSl70SstEBI/XKErRm1Z/ACJhhMbQfYfmVm89LtLvhruU3TP3+e jA47P6IuV22OnFnhtJzoX9doZH8XTIxOdIKA3yhJeyJZYeXUGj7pmFl/m4obTzn6 ipucVjAu7PPLexBQ/Rd27NmYaddnMNhGThE= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:24 2025 by rpki-client