$ rpki-client -vvf repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234342e302f32342d3234203d3e20313332363337.roa File: 3130332e3134332e3234342e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: BAHkWg5wgdiP9DS/EDI18ZNMV2WT4QoTyiafWi6I7HI= Subject key identifier: FD:C9:D9:2E:41:77:EA:7F:EC:3D:6B:9C:5D:7D:78:F7:BB:6F:B8:D0 Certificate issuer: /CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Certificate serial: 3EB644831C3A4820DD10EF6F3E357FBA4F76A9E2 Authority key identifier: 9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234342e302f32342d3234203d3e20313332363337.roa Signing time: Mon 02 Jun 2025 02:03:17 +0000 ROA not before: Mon 02 Jun 2025 01:58:17 +0000 ROA not after: Mon 01 Jun 2026 02:03:17 +0000 asID: 132637 IP address blocks: 103.143.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b6:44:83:1c:3a:48:20:dd:10:ef:6f:3e:35:7f:ba:4f:76:a9:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Validity Not Before: Jun 2 01:58:17 2025 GMT Not After : Jun 1 02:03:17 2026 GMT Subject: CN=FDC9D92E4177EA7FEC3D6B9C5D7D78F7BB6FB8D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4f:32:e9:94:56:89:b0:42:aa:fc:b2:23:6b: 01:d6:4d:e9:8f:77:08:aa:e9:09:da:28:c6:bc:24: aa:c7:52:07:c4:eb:6f:47:9f:1c:1b:d7:21:6a:64: 75:83:70:15:f9:7f:06:c9:09:30:48:ea:05:a1:93: 10:77:ac:0d:59:b2:f4:6b:8f:1c:c7:d0:9f:30:ce: c3:65:61:47:58:42:be:9d:af:60:51:7f:55:51:03: 44:ee:5c:8a:7c:fa:8b:c7:f1:8d:7a:10:11:93:73: fa:be:39:16:c0:14:55:da:65:db:01:21:e1:c6:63: 82:92:09:b6:83:b0:0a:e3:52:b7:56:2f:61:10:35: dc:cd:51:e6:ec:eb:e2:fd:7b:7e:2b:dc:a4:92:12: 30:99:6f:e6:7e:06:cf:4b:9e:b5:c3:90:bd:b2:11: 9d:0f:96:2c:19:85:55:83:42:47:bb:e4:ea:2e:83: 30:17:cf:50:ef:cf:93:e7:50:9f:b4:d0:17:12:7e: ae:ef:f0:c5:3f:b9:e4:20:13:31:bf:82:db:16:7d: 66:79:e2:fa:13:36:69:ac:d6:7a:4d:bc:99:64:ea: 83:e1:71:84:47:6d:65:84:34:b2:17:e3:90:23:6c: 58:ee:76:b9:3c:a7:63:39:64:ea:d6:ac:7a:c1:58: c7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C9:D9:2E:41:77:EA:7F:EC:3D:6B:9C:5D:7D:78:F7:BB:6F:B8:D0 X509v3 Authority Key Identifier: keyid:9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234342e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.244.0/24 Signature Algorithm: sha256WithRSAEncryption 00:9f:70:1d:81:77:27:f6:33:da:4d:3d:97:53:38:35:5e:7f: a3:f9:5b:19:8b:56:6b:b5:fb:f7:64:0b:9c:d5:cd:9c:ce:84: b9:07:e4:f8:62:ec:35:55:26:fd:a2:18:6f:56:95:28:90:5e: 1f:3d:c4:fc:73:68:8c:55:b7:66:74:cb:a6:d7:6c:03:3c:0b: 86:22:a5:45:40:ef:4d:5d:c4:13:99:67:c3:c7:da:46:92:d6: 8c:0d:e8:a4:b9:78:2d:1d:99:50:80:db:d3:4a:28:2f:08:58: 05:3a:8a:4f:4c:a4:e1:84:fe:cc:e0:44:4a:0f:e5:92:f4:03: 84:fc:6b:cd:aa:65:0f:f4:c7:f1:de:a7:cd:e5:5f:74:00:90: f0:fe:e9:00:28:81:ac:23:d7:9c:9b:33:fd:88:b1:db:88:94: b9:e5:e6:f2:fe:a0:f7:af:42:5b:cf:0f:66:8d:7b:49:ed:09: 14:28:b5:fe:d6:e6:38:fa:4c:06:44:55:81:d2:29:e5:bc:81: f6:09:00:89:83:3f:53:d8:32:bd:3b:27:16:05:9e:3b:5a:5e: 5b:b4:31:62:2f:ca:78:6f:d9:df:46:64:68:2f:f3:9a:db:6a: 7c:49:2f:eb:46:7e:b4:7f:19:f7:8b:0a:e3:a9:a6:e0:a0:c4: ef:00:0b:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPrZEgxw6SCDdEO9vPjV/uk92qeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMy MTZCMUVEMTAeFw0yNTA2MDIwMTU4MTdaFw0yNjA2MDEwMjAzMTdaMDMxMTAvBgNV BAMTKEZEQzlEOTJFNDE3N0VBN0ZFQzNENkI5QzVEN0Q3OEY3QkI2RkI4RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDATzLplFaJsEKq/LIjawHWTemP dwiq6QnaKMa8JKrHUgfE629Hnxwb1yFqZHWDcBX5fwbJCTBI6gWhkxB3rA1ZsvRr jxzH0J8wzsNlYUdYQr6dr2BRf1VRA0TuXIp8+ovH8Y16EBGTc/q+ORbAFFXaZdsB IeHGY4KSCbaDsArjUrdWL2EQNdzNUebs6+L9e34r3KSSEjCZb+Z+Bs9LnrXDkL2y EZ0PliwZhVWDQke75OougzAXz1Dvz5PnUJ+00BcSfq7v8MU/ueQgEzG/gtsWfWZ5 4voTNmms1npNvJlk6oPhcYRHbWWENLIX45AjbFjudrk8p2M5ZOrWrHrBWMehAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/cnZLkF36n/sPWucXX1497tvuNAwHwYDVR0j BBgwFoAUnqOrQi2CT92aJWIvhJJCAyFrHtEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjZkNTU4Mi05YTYzLTQxZTUtODk2OS1kYjkxOTI3N2E1ZTUvMC85RUEzQUI0MjJE ODI0RkREOUEyNTYyMkY4NDkyNDIwMzIxNkIxRUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMyMTZC MUVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNmQ1NTgyLTlhNjMtNDFlNS04 OTY5LWRiOTE5Mjc3YTVlNS8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj/QwDQYJ KoZIhvcNAQELBQADggEBAACfcB2Bdyf2M9pNPZdTODVef6P5WxmLVmu1+/dkC5zV zZzOhLkH5Phi7DVVJv2iGG9WlSiQXh89xPxzaIxVt2Z0y6bXbAM8C4YipUVA701d xBOZZ8PH2kaS1owN6KS5eC0dmVCA29NKKC8IWAU6ik9MpOGE/szgREoP5ZL0A4T8 a82qZQ/0x/Hep83lX3QAkPD+6QAogawj15ybM/2IsduIlLnl5vL+oPevQlvPD2aN e0ntCRQotf7W5jj6TAZEVYHSKeW8gfYJAImDP1PYMr07JxYFnjtaXlu0MWIvynhv 2d9GZGgv85rbanxJL+tGfrR/GfeLCuOppuCgxO8AC28= -----END CERTIFICATE-----Generated at Sun Jun 8 01:48:59 2025 by rpki-client