$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa File: 3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa (raw, json) Hash identifier: u4NoFqVyyFqHI8VrRJJU5o8UKOJMJykYNFUtpxCJD/Y= Subject key identifier: 05:37:86:9E:93:D2:B2:1B:9A:C3:C6:E4:D3:A4:AF:E3:2A:E3:DD:45 Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 1C3C7618372D5F801339825E219873E0BB061C59 Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa Signing time: Sat 17 May 2025 12:00:01 +0000 ROA not before: Sat 17 May 2025 11:55:01 +0000 ROA not after: Sat 16 May 2026 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 17:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:3c:76:18:37:2d:5f:80:13:39:82:5e:21:98:73:e0:bb:06:1c:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: May 17 11:55:01 2025 GMT Not After : May 16 12:00:01 2026 GMT Subject: CN=0537869E93D2B21B9AC3C6E4D3A4AFE32AE3DD45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:34:ef:be:1c:b0:86:b7:fb:41:f7:be:0b:56: c1:19:98:cd:b4:19:54:24:1f:b5:55:0c:e7:8a:2d: 78:c3:24:4b:b5:00:5a:aa:8e:2b:1e:b1:4d:b8:dc: ac:d3:ac:ac:5a:94:b6:41:2a:b7:0c:7d:27:80:b9: f3:f2:df:2f:4b:02:e3:73:29:cd:27:67:9c:1e:d0: 1a:7e:d8:17:61:a8:09:84:bd:5c:69:b8:76:41:3b: 67:89:ec:07:2b:3c:88:ca:bd:38:78:2d:54:ef:42: 85:df:be:8b:a8:87:56:50:2a:14:75:10:99:2f:24: 3c:15:b7:3c:c7:a8:b1:83:c3:95:b9:96:58:df:9e: 8e:78:12:47:bc:86:83:8a:c7:99:04:9a:9d:5c:cd: ad:7d:4f:19:7b:f3:98:bc:26:73:e4:39:a5:72:c9: 54:ad:f1:6e:2e:53:91:8c:06:78:4e:60:77:4f:ea: 33:17:d2:8b:99:e2:75:a0:ef:58:30:cd:3d:b8:ed: 32:c5:6b:27:0d:39:a1:5d:28:bc:17:0f:26:21:3d: 07:af:df:01:8b:65:c5:08:0c:68:ba:1d:93:ed:cc: 84:4f:a2:ec:ae:02:5d:fd:7f:d6:bc:17:d3:ad:7a: f0:87:e3:eb:76:a1:33:92:ad:11:44:33:69:a3:f3: 4c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:37:86:9E:93:D2:B2:1B:9A:C3:C6:E4:D3:A4:AF:E3:2A:E3:DD:45 X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.117.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:18:5f:86:bb:ad:c2:d8:45:55:b0:65:6e:72:95:2b:74:02: 34:2b:f0:b7:38:5f:61:a6:e2:ca:b8:7c:08:0a:71:ac:9b:26: 27:c3:80:2c:e5:49:8f:3b:98:ce:93:1d:1b:9c:82:76:93:a4: 28:52:6e:fb:49:86:e7:19:32:38:0e:4d:7c:f3:7a:57:52:7f: 7c:cf:05:f8:ff:89:81:a8:cf:cf:6b:65:cb:57:68:1b:4d:68: e0:4e:e7:93:1d:8d:d7:d3:ff:69:db:91:47:0e:dd:e2:c2:82: 64:35:b1:08:e8:2a:a9:80:69:5a:f1:ef:57:52:02:4b:23:08: 72:fb:53:43:b0:8a:b8:4d:36:e3:cd:94:cb:5c:64:d4:1d:c2: c1:47:e1:de:29:42:ca:e6:b5:8b:42:3a:31:60:1e:cf:68:7a: 9c:50:fb:d7:5a:ef:d0:62:35:9b:a0:4f:f0:90:8f:90:60:19: db:53:0b:33:16:5c:2c:ef:9f:28:ef:81:eb:de:71:91:10:78: f7:2f:18:b7:92:23:1b:43:ee:d0:eb:9c:7b:6a:7c:12:2c:b4: ae:0b:72:e3:7d:30:ec:f4:80:a2:76:5c:7c:1f:cb:56:d0:8d: c4:b6:3a:65:51:b2:95:01:95:ad:50:44:40:c8:bd:02:fe:5f: bd:06:da:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHDx2GDctX4ATOYJeIZhz4LsGHFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNTA1MTcxMTU1MDFaFw0yNjA1MTYxMjAwMDFaMDMxMTAvBgNV BAMTKDA1Mzc4NjlFOTNEMkIyMUI5QUMzQzZFNEQzQTRBRkUzMkFFM0RENDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnNO++HLCGt/tB974LVsEZmM20 GVQkH7VVDOeKLXjDJEu1AFqqjisesU243KzTrKxalLZBKrcMfSeAufPy3y9LAuNz Kc0nZ5we0Bp+2BdhqAmEvVxpuHZBO2eJ7AcrPIjKvTh4LVTvQoXfvouoh1ZQKhR1 EJkvJDwVtzzHqLGDw5W5lljfno54Eke8hoOKx5kEmp1cza19Txl785i8JnPkOaVy yVSt8W4uU5GMBnhOYHdP6jMX0ouZ4nWg71gwzT247TLFaycNOaFdKLwXDyYhPQev 3wGLZcUIDGi6HZPtzIRPouyuAl39f9a8F9OtevCH4+t2oTOSrRFEM2mj80yhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBTeGnpPSshuaw8bk06Sv4yrj3UUwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J1MA0GCSqG SIb3DQEBCwUAA4IBAQAqGF+Gu63C2EVVsGVucpUrdAI0K/C3OF9hpuLKuHwICnGs myYnw4As5UmPO5jOkx0bnIJ2k6QoUm77SYbnGTI4Dk1883pXUn98zwX4/4mBqM/P a2XLV2gbTWjgTueTHY3X0/9p25FHDt3iwoJkNbEI6CqpgGla8e9XUgJLIwhy+1ND sIq4TTbjzZTLXGTUHcLBR+HeKULK5rWLQjoxYB7PaHqcUPvXWu/QYjWboE/wkI+Q YBnbUwszFlws758o74Hr3nGREHj3Lxi3kiMbQ+7Q65x7anwSLLSuC3LjfTDs9ICi dlx8H8tW0I3EtjplUbKVAZWtUERAyL0C/l+9Btq4 -----END CERTIFICATE-----Generated at Sat Jun 7 14:25:13 2025 by rpki-client