$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa File: 3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: GuM7P7x/u39aCvmJkxVuMlpYCmbP89xnoCs5WogcWI4= Subject key identifier: AA:A7:95:E3:57:7A:06:F7:FF:F9:3B:B7:0E:92:C1:87:E6:E8:E5:AC Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 0E95BC483D6DEA9ABCF2DB65CAEAF6B8000CD0FB Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:51 +0000 ROA not before: Mon 02 Jun 2025 00:57:51 +0000 ROA not after: Mon 01 Jun 2026 01:02:51 +0000 asID: 131717 IP address blocks: 103.25.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:95:bc:48:3d:6d:ea:9a:bc:f2:db:65:ca:ea:f6:b8:00:0c:d0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:51 2025 GMT Not After : Jun 1 01:02:51 2026 GMT Subject: CN=AAA795E3577A06F7FFF93BB70E92C187E6E8E5AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:28:ba:74:64:4d:5a:b5:4c:69:06:74:21: 09:5b:54:d1:02:09:8c:be:c0:9b:f4:2a:89:bf:3e: 3d:39:68:19:69:6d:53:e6:b3:12:c3:4d:14:0e:2a: 7c:e4:6a:f4:bd:60:35:cd:dd:ee:af:9d:77:59:7b: 54:7b:0d:fa:9a:58:d2:2f:63:4b:a9:1d:f2:4b:7e: 0f:9e:a9:76:5d:bc:30:7d:d0:0f:84:c9:d0:d7:0e: 4a:f6:fd:7b:d4:e6:64:9f:8e:01:16:e6:64:71:ff: 52:ab:29:51:4a:79:2d:37:3c:db:4c:7c:0a:b6:51: 6b:cc:a4:17:c9:47:d1:98:41:98:00:0d:f3:4a:a1: 13:57:6a:a5:c5:76:ed:50:e2:5b:06:6a:bc:b6:ce: cf:16:68:d2:40:e7:b2:71:a1:3f:75:a2:a3:6b:d1: 0a:88:3f:14:5d:70:bb:91:69:90:6b:a5:10:be:02: db:11:d8:e7:6e:1a:13:76:97:b7:3e:db:94:97:c5: f4:81:f8:a5:ff:8e:d3:83:51:ce:2c:49:2b:31:23: 1d:e2:77:c9:42:5d:1b:98:e2:1f:ee:1b:1e:58:2d: 54:70:d9:61:cb:1c:ca:c3:df:c9:c5:81:5e:b0:af: 1d:4c:0b:1d:d1:6b:c1:a7:bf:b0:0c:20:8a:a1:a3: f4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A7:95:E3:57:7A:06:F7:FF:F9:3B:B7:0E:92:C1:87:E6:E8:E5:AC X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/23 Signature Algorithm: sha256WithRSAEncryption a9:01:37:08:ba:69:39:b6:f2:fb:f8:ee:17:84:f9:3a:b6:ec: 4c:b4:d3:bb:ce:0a:46:93:10:d7:59:b2:57:a4:17:8f:14:06: fd:a8:0f:f8:13:b6:84:b0:34:02:bf:a5:b6:44:26:53:99:ba: ea:e5:a1:27:51:31:5f:c0:79:85:19:a6:93:f8:64:11:41:79: b0:c9:5c:8d:d6:6b:2a:48:8c:f5:99:73:ce:bb:fe:e0:29:e3: 21:c8:d6:ea:ac:4c:2c:4a:e9:85:fa:64:45:5f:fc:6f:a7:2b: 52:5f:96:0a:27:9f:fa:01:e1:14:9f:4e:03:b5:42:c1:ec:f7: 3d:dd:85:81:0a:45:94:05:c9:7e:25:81:0b:56:43:80:3b:2c: c5:9b:16:e8:8c:f9:cd:49:15:da:16:24:6e:b7:3e:8f:4c:85: 85:34:21:db:0b:f7:50:4b:3a:f7:a9:59:dc:7a:0b:24:61:63: 8d:ee:8e:2e:12:d4:07:37:1b:1f:fb:38:44:b9:16:b7:4f:7c: 34:e6:e8:c3:7c:53:19:e3:b8:85:17:7d:49:da:41:a7:f7:dd: d3:f5:d6:79:92:72:41:fc:9e:dc:e4:3f:14:8b:4e:62:c8:5f: 80:f9:92:76:b8:50:fa:73:31:bf:84:f1:2c:d7:62:5f:a5:07: a7:dc:5d:b6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDpW8SD1t6pq88ttlyur2uAAM0PswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTFaFw0yNjA2MDEwMTAyNTFaMDMxMTAvBgNV BAMTKEFBQTc5NUUzNTc3QTA2RjdGRkY5M0JCNzBFOTJDMTg3RTZFOEU1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8qii6dGRNWrVMaQZ0IQlbVNEC CYy+wJv0Kom/Pj05aBlpbVPmsxLDTRQOKnzkavS9YDXN3e6vnXdZe1R7DfqaWNIv Y0upHfJLfg+eqXZdvDB90A+EydDXDkr2/XvU5mSfjgEW5mRx/1KrKVFKeS03PNtM fAq2UWvMpBfJR9GYQZgADfNKoRNXaqXFdu1Q4lsGary2zs8WaNJA57JxoT91oqNr 0QqIPxRdcLuRaZBrpRC+AtsR2OduGhN2l7c+25SXxfSB+KX/jtODUc4sSSsxIx3i d8lCXRuY4h/uGx5YLVRw2WHLHMrD38nFgV6wrx1MCx3Ra8Gnv7AMIIqho/SnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqqeV41d6Bvf/+Tu3DpLBh+bo5awwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQCpATcIumk5tvL7+O4XhPk6tuxMtNO7zgpGkxDXWbJXpBeP FAb9qA/4E7aEsDQCv6W2RCZTmbrq5aEnUTFfwHmFGaaT+GQRQXmwyVyN1msqSIz1 mXPOu/7gKeMhyNbqrEwsSumF+mRFX/xvpytSX5YKJ5/6AeEUn04DtULB7Pc93YWB CkWUBcl+JYELVkOAOyzFmxbojPnNSRXaFiRutz6PTIWFNCHbC/dQSzr3qVncegsk YWON7o4uEtQHNxsf+zhEuRa3T3w05ujDfFMZ47iFF31J2kGn993T9dZ5knJB/J7c 5D8Ui05iyF+A+ZJ2uFD6czG/hPEs12JfpQen3F22 -----END CERTIFICATE-----Generated at Sat Jun 7 05:47:07 2025 by rpki-client