$ rpki-client -vvf repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/3130332e32352e3230382e302f32322d3234203d3e20313332363533.roa File: 3130332e32352e3230382e302f32322d3234203d3e20313332363533.roa (raw, json) Hash identifier: 7MRblACKzVlLmDvNl3fN+c0aidnB5bJjx48vVv4G66g= Subject key identifier: 1A:09:E4:41:98:84:CE:9D:91:55:D2:CB:FC:3D:1F:6B:42:19:E0:C4 Certificate issuer: /CN=A75550C54400A670523A712A4C8782FA740B4F07 Certificate serial: 03A87E492E4B57703F724156DF9F2C20F4588D2B Authority key identifier: A7:55:50:C5:44:00:A6:70:52:3A:71:2A:4C:87:82:FA:74:0B:4F:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A75550C54400A670523A712A4C8782FA740B4F07.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/3130332e32352e3230382e302f32322d3234203d3e20313332363533.roa Signing time: Mon 02 Jun 2025 02:03:32 +0000 ROA not before: Mon 02 Jun 2025 01:58:32 +0000 ROA not after: Mon 01 Jun 2026 02:03:32 +0000 asID: 132653 IP address blocks: 103.25.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/A75550C54400A670523A712A4C8782FA740B4F07.crl rsync://repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/A75550C54400A670523A712A4C8782FA740B4F07.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A75550C54400A670523A712A4C8782FA740B4F07.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a8:7e:49:2e:4b:57:70:3f:72:41:56:df:9f:2c:20:f4:58:8d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A75550C54400A670523A712A4C8782FA740B4F07 Validity Not Before: Jun 2 01:58:32 2025 GMT Not After : Jun 1 02:03:32 2026 GMT Subject: CN=1A09E4419884CE9D9155D2CBFC3D1F6B4219E0C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:22:76:12:b2:45:9b:61:3d:19:f2:e4:6a:7f: d6:5a:3c:0e:73:f7:a5:f0:bd:f1:09:09:71:83:12: 7f:e2:8f:61:62:77:c2:48:7c:f4:75:c1:f8:ba:d6: 85:94:e8:53:45:38:46:bb:86:e3:54:6f:db:fa:db: 16:a4:1b:46:3b:f5:ea:2a:0a:5b:88:17:ad:1a:11: ca:35:e6:97:65:ae:f1:44:89:65:98:f1:37:c3:b5: d8:e6:f4:94:00:97:60:8a:01:89:8c:21:b1:53:dd: 55:ed:13:36:56:48:e3:2b:ad:0d:c8:e2:56:bf:b4: a6:68:b6:00:86:ec:80:1b:fa:25:3b:ca:80:7a:9d: 2a:53:e0:64:09:08:e3:1d:62:c1:90:8e:37:18:24: b5:ec:27:39:b1:ae:d4:0f:67:a0:f8:0f:51:56:2a: 40:e8:25:e7:f7:87:28:8f:2d:43:88:a8:eb:6c:6c: 94:36:29:96:47:49:46:45:2a:91:2b:b8:af:4e:97: 98:56:58:02:b0:53:cf:ce:bb:49:0d:aa:67:47:18: 30:7c:27:cc:97:c5:f8:cf:86:e4:56:cc:13:40:ef: 43:08:d6:7b:ea:8a:f8:79:01:cd:ee:55:54:79:ca: 21:28:e1:6c:9f:09:fb:fd:f3:55:49:c3:22:20:54: e0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:09:E4:41:98:84:CE:9D:91:55:D2:CB:FC:3D:1F:6B:42:19:E0:C4 X509v3 Authority Key Identifier: keyid:A7:55:50:C5:44:00:A6:70:52:3A:71:2A:4C:87:82:FA:74:0B:4F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/A75550C54400A670523A712A4C8782FA740B4F07.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A75550C54400A670523A712A4C8782FA740B4F07.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cbd27c0a-9792-4cbc-9a96-e71050a1dde0/0/3130332e32352e3230382e302f32322d3234203d3e20313332363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.208.0/22 Signature Algorithm: sha256WithRSAEncryption a0:37:0c:49:2b:a8:0a:83:c7:d4:b3:c3:45:35:ad:2b:ba:88: d9:4b:97:2b:ef:99:59:ea:c2:f7:2a:90:e9:e7:e1:a9:80:1c: 66:1d:73:25:f3:2c:89:d7:66:fe:61:54:02:48:74:a6:c9:85: b6:bc:90:9f:5f:1e:f8:ab:25:74:79:9d:45:3e:0b:3c:91:27: d1:8c:14:76:96:e6:f7:af:c6:e3:d8:15:5a:c2:6d:9b:da:2a: c4:0e:8e:07:40:14:45:f4:87:1b:4c:82:d1:47:62:31:da:32: 88:4f:29:c0:96:a0:cc:38:c3:89:92:a2:46:81:b1:93:fd:88: d9:ec:8a:81:06:5e:b5:4f:d0:bd:c9:ee:e5:3b:01:eb:38:c3: eb:a4:30:d5:2d:8a:7b:f3:2c:b7:1b:b5:8f:81:e8:ab:a4:30: c9:60:2e:84:2e:e9:22:f9:bd:08:bb:c7:a1:4b:7a:0d:92:3c: 66:3b:49:39:57:45:83:62:0e:2a:81:a3:94:c9:f0:23:bf:75: 71:0a:77:d0:7f:9a:48:43:8b:1e:4e:fe:06:71:56:b1:6f:d4: f4:d4:cf:7c:56:9e:d8:91:5d:a9:a5:46:8d:b7:ee:92:ca:ab: d9:3e:bb:fd:d0:9b:6b:70:94:34:f6:63:30:51:18:f0:c8:96: ed:a7:5d:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA6h+SS5LV3A/ckFW358sIPRYjSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc1NTUwQzU0NDAwQTY3MDUyM0E3MTJBNEM4NzgyRkE3 NDBCNEYwNzAeFw0yNTA2MDIwMTU4MzJaFw0yNjA2MDEwMjAzMzJaMDMxMTAvBgNV BAMTKDFBMDlFNDQxOTg4NENFOUQ5MTU1RDJDQkZDM0QxRjZCNDIxOUUwQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJInYSskWbYT0Z8uRqf9ZaPA5z 96XwvfEJCXGDEn/ij2Fid8JIfPR1wfi61oWU6FNFOEa7huNUb9v62xakG0Y79eoq CluIF60aEco15pdlrvFEiWWY8TfDtdjm9JQAl2CKAYmMIbFT3VXtEzZWSOMrrQ3I 4la/tKZotgCG7IAb+iU7yoB6nSpT4GQJCOMdYsGQjjcYJLXsJzmxrtQPZ6D4D1FW KkDoJef3hyiPLUOIqOtsbJQ2KZZHSUZFKpEruK9Ol5hWWAKwU8/Ou0kNqmdHGDB8 J8yXxfjPhuRWzBNA70MI1nvqivh5Ac3uVVR5yiEo4WyfCfv981VJwyIgVOAZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGgnkQZiEzp2RVdLL/D0fa0IZ4MQwHwYDVR0j BBgwFoAUp1VQxUQApnBSOnEqTIeC+nQLTwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YmQyN2MwYS05NzkyLTRjYmMtOWE5Ni1lNzEwNTBhMWRkZTAvMC9BNzU1NTBDNTQ0 MDBBNjcwNTIzQTcxMkE0Qzg3ODJGQTc0MEI0RjA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc1NTUwQzU0NDAwQTY3MDUyM0E3MTJBNEM4NzgyRkE3NDBC NEYwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiZDI3YzBhLTk3OTItNGNiYy05 YTk2LWU3MTA1MGExZGRlMC8wLzMxMzAzMzJlMzIzNTJlMzIzMDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxnQMA0GCSqG SIb3DQEBCwUAA4IBAQCgNwxJK6gKg8fUs8NFNa0ruojZS5cr75lZ6sL3KpDp5+Gp gBxmHXMl8yyJ12b+YVQCSHSmyYW2vJCfXx74qyV0eZ1FPgs8kSfRjBR2lub3r8bj 2BVawm2b2irEDo4HQBRF9IcbTILRR2Ix2jKITynAlqDMOMOJkqJGgbGT/YjZ7IqB Bl61T9C9ye7lOwHrOMPrpDDVLYp78yy3G7WPgeirpDDJYC6ELuki+b0Iu8ehS3oN kjxmO0k5V0WDYg4qgaOUyfAjv3VxCnfQf5pIQ4seTv4GcVaxb9T01M98Vp7YkV2p pUaNt+6SyqvZPrv90JtrcJQ09mMwURjwyJbtp13q -----END CERTIFICATE-----Generated at Thu Jun 5 19:15:27 2025 by rpki-client