$ rpki-client -vvf repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa File: 3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: 6PlxgJw3wczfPI3pJqCBYAaWPhz8cJ8ggi4impe+Zc0= Subject key identifier: 9A:79:52:EC:EB:89:DD:47:86:C7:2C:9D:A6:9B:24:F5:6C:25:D6:D0 Certificate issuer: /CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Certificate serial: 6E6D6D46F8326DBDB39CBCE2470D2B33BB73D6FF Authority key identifier: 9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa Signing time: Mon 02 Jun 2025 02:03:17 +0000 ROA not before: Mon 02 Jun 2025 01:58:17 +0000 ROA not after: Mon 01 Jun 2026 02:03:17 +0000 asID: 132637 IP address blocks: 103.143.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6d:6d:46:f8:32:6d:bd:b3:9c:bc:e2:47:0d:2b:33:bb:73:d6:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Validity Not Before: Jun 2 01:58:17 2025 GMT Not After : Jun 1 02:03:17 2026 GMT Subject: CN=9A7952ECEB89DD4786C72C9DA69B24F56C25D6D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d4:31:b9:55:a6:53:87:b2:ad:83:14:9a:8d: 94:bb:86:c6:1f:d2:f9:66:53:50:2e:19:1c:d6:fc: e3:ed:cc:d8:6b:df:2f:e7:1d:90:f4:25:0f:35:60: 72:37:7c:de:22:cc:a3:8b:d5:77:49:ef:9c:e1:89: 6e:eb:d9:9e:56:2c:1c:e7:29:cb:4f:7d:d1:d6:18: 12:5e:d4:8a:47:1e:80:35:4e:bd:07:f5:7b:08:78: 7b:b1:2a:f3:a8:22:bd:43:1a:e7:d3:b3:99:61:1d: 2a:bd:9a:e2:f0:1e:35:e6:6d:a4:fd:7e:9e:ce:21: b0:45:91:41:1d:f6:b5:e7:c2:ec:36:1c:59:e6:b5: 39:23:4e:47:20:0d:1b:01:36:25:2b:ae:d3:44:64: 67:55:f2:0b:d1:18:7e:5b:87:a5:aa:bc:9d:2b:c0: 46:6c:96:ba:ac:3f:3a:42:15:0d:63:da:c5:df:b5: b9:fe:fb:78:d4:c3:9f:3e:ec:74:43:d6:d9:93:47: f9:89:36:7e:14:fc:83:1e:42:92:9e:e7:50:27:a8: 11:68:d9:09:a8:26:f1:45:5c:a4:c2:0e:11:c5:e3: 8a:1c:e8:60:d4:96:58:4c:af:c4:99:76:63:38:36: 92:51:ce:30:f8:27:ec:aa:2e:9b:fe:69:4c:0c:47: a3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:79:52:EC:EB:89:DD:47:86:C7:2C:9D:A6:9B:24:F5:6C:25:D6:D0 X509v3 Authority Key Identifier: keyid:9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.245.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c6:20:e5:1a:79:2f:2b:d8:0d:ca:d2:71:bb:a1:fc:f2:c7: 39:62:6b:66:84:c7:f5:f4:94:d3:aa:0e:c1:af:2d:b4:e8:24: ee:24:0d:40:80:c9:45:3e:24:ec:91:5f:85:05:4e:5d:52:0f: a8:cf:83:a2:dd:d4:9c:58:0b:7c:f8:50:86:82:e1:25:98:a9: d5:ba:ec:1c:f3:62:af:78:51:26:9b:02:ea:0b:3e:9c:66:33: 21:93:6a:52:a7:07:d5:84:c8:54:c6:8e:df:7f:1c:6c:be:5c: 89:08:01:81:94:90:21:b9:d2:43:e6:f6:38:b2:63:cb:e8:55: 35:87:b4:e1:d4:e2:14:02:6c:2f:b1:7a:44:8c:96:83:cc:53: db:9e:d9:d2:7f:99:ba:5c:2c:23:e0:53:5b:df:92:62:ec:58: f2:20:fa:e5:8a:ff:50:5b:fb:4c:e3:f6:06:0b:f0:7d:b2:84: 01:92:60:e0:da:9d:38:4e:f8:1b:5d:f3:4b:b4:dd:67:b0:bd: 25:59:d9:d0:e9:64:a9:97:f0:d2:f5:09:bf:47:68:f0:36:8b: 07:0d:a0:02:8b:54:61:10:d7:85:04:1e:05:d1:29:13:db:44: 7a:d2:d4:c0:c4:1e:35:7d:7b:1c:73:b2:c4:9d:b3:09:cf:ee: ee:a2:24:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbm1tRvgybb2znLziRw0rM7tz1v8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMy MTZCMUVEMTAeFw0yNTA2MDIwMTU4MTdaFw0yNjA2MDEwMjAzMTdaMDMxMTAvBgNV BAMTKDlBNzk1MkVDRUI4OURENDc4NkM3MkM5REE2OUIyNEY1NkMyNUQ2RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW1DG5VaZTh7KtgxSajZS7hsYf 0vlmU1AuGRzW/OPtzNhr3y/nHZD0JQ81YHI3fN4izKOL1XdJ75zhiW7r2Z5WLBzn KctPfdHWGBJe1IpHHoA1Tr0H9XsIeHuxKvOoIr1DGufTs5lhHSq9muLwHjXmbaT9 fp7OIbBFkUEd9rXnwuw2HFnmtTkjTkcgDRsBNiUrrtNEZGdV8gvRGH5bh6WqvJ0r wEZslrqsPzpCFQ1j2sXftbn++3jUw58+7HRD1tmTR/mJNn4U/IMeQpKe51AnqBFo 2QmoJvFFXKTCDhHF44oc6GDUllhMr8SZdmM4NpJRzjD4J+yqLpv+aUwMR6MZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmnlS7OuJ3UeGxyydppsk9Wwl1tAwHwYDVR0j BBgwFoAUnqOrQi2CT92aJWIvhJJCAyFrHtEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjZkNTU4Mi05YTYzLTQxZTUtODk2OS1kYjkxOTI3N2E1ZTUvMC85RUEzQUI0MjJE ODI0RkREOUEyNTYyMkY4NDkyNDIwMzIxNkIxRUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMyMTZC MUVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNmQ1NTgyLTlhNjMtNDFlNS04 OTY5LWRiOTE5Mjc3YTVlNS8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj/UwDQYJ KoZIhvcNAQELBQADggEBAIvGIOUaeS8r2A3K0nG7ofzyxzlia2aEx/X0lNOqDsGv LbToJO4kDUCAyUU+JOyRX4UFTl1SD6jPg6Ld1JxYC3z4UIaC4SWYqdW67BzzYq94 USabAuoLPpxmMyGTalKnB9WEyFTGjt9/HGy+XIkIAYGUkCG50kPm9jiyY8voVTWH tOHU4hQCbC+xekSMloPMU9ue2dJ/mbpcLCPgU1vfkmLsWPIg+uWK/1Bb+0zj9gYL 8H2yhAGSYODanThO+Btd80u03WewvSVZ2dDpZKmX8NL1Cb9HaPA2iwcNoAKLVGEQ 14UEHgXRKRPbRHrS1MDEHjV9exxzssSdswnP7u6iJAg= -----END CERTIFICATE-----Generated at Sun Jun 8 01:53:40 2025 by rpki-client