$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa File: 3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: ae/dG+5qLBYT7KzQliS37oy8tODqNSMPLH4vHatbgLA= Subject key identifier: 24:2F:79:65:32:7F:48:B9:AD:F4:10:E8:4C:D0:3A:FF:1C:F3:84:88 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 5E0EDF307324C2473BA7ECA7CB798F9CD72E6CCC Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 103.25.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:0e:df:30:73:24:c2:47:3b:a7:ec:a7:cb:79:8f:9c:d7:2e:6c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=242F7965327F48B9ADF410E84CD03AFF1CF38488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:59:82:7d:8a:0d:6f:2e:8d:35:4a:19:95:87: 33:b5:b2:3a:62:30:09:88:0e:c9:e6:ff:d5:72:5a: 09:49:2b:78:36:88:be:b8:f1:e9:3a:81:65:35:78: 58:b2:1e:42:e8:85:27:57:35:a6:f3:61:c1:95:77: 84:4c:ac:32:ff:ea:50:4a:3e:19:84:1e:98:a8:4f: 4c:59:73:e6:1f:dc:ee:33:49:86:ef:18:83:be:7c: e7:63:57:94:38:a1:ef:ad:19:c5:28:96:8f:21:b7: d5:4e:5d:59:3b:14:fa:31:76:d8:01:d4:e1:58:09: b3:dc:ac:86:cd:c8:4c:ec:38:8e:f1:9e:8f:5d:09: f1:65:f0:32:4f:46:ca:2f:5c:c6:bc:2d:c5:65:b6: bb:33:3d:6c:62:29:55:1b:16:02:8d:cb:fe:31:58: c9:c0:6c:f2:5f:76:21:b6:c7:4e:7f:2a:3f:ec:81: fc:d9:af:01:4c:1c:63:06:95:be:3b:ff:3b:6f:88: d2:39:ba:dd:b6:48:ad:4b:c4:1d:92:68:73:32:d7: 49:15:f2:f6:16:24:0c:dc:70:af:60:33:1f:16:6d: 3c:3c:48:76:41:2b:e7:3e:4b:c8:7a:22:c5:f1:7d: f1:da:9b:bb:dc:fa:40:32:23:ba:58:28:72:59:bd: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2F:79:65:32:7F:48:B9:AD:F4:10:E8:4C:D0:3A:FF:1C:F3:84:88 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/24 Signature Algorithm: sha256WithRSAEncryption 90:ad:36:cd:11:80:6d:f8:37:c0:61:ad:a1:c3:66:fb:3f:2b: 99:e8:a4:62:0e:af:55:b7:82:04:22:89:1f:c8:3d:ac:65:14: 7d:0e:60:92:6c:a5:41:9c:b6:53:0f:52:fa:06:aa:d2:fa:ae: ff:a5:c7:44:9f:dc:fb:fd:67:7f:02:a5:c8:6e:ae:6b:47:6d: d1:d1:6a:2c:7d:94:5e:3b:ae:91:1d:7e:18:f1:64:a0:ef:42: aa:b2:cd:ed:9e:88:1a:12:8e:e2:9c:63:db:ea:10:c9:84:9e: e0:0a:41:05:d8:cf:da:b1:e5:ef:cf:87:dc:74:b8:49:61:1c: 51:e5:0a:9c:2b:d6:ee:bc:e0:61:45:83:cf:da:52:a3:ac:4c: 83:63:3e:3e:4f:2d:17:21:59:14:43:c4:11:56:e9:09:6f:f8: 00:46:fe:2b:df:66:e9:a6:01:27:1e:10:b3:48:c1:f8:09:5b: b0:c4:84:65:50:85:fc:1b:cd:16:52:c7:9b:c5:40:e2:db:e7: 4e:2d:5c:b0:66:eb:66:5e:03:b0:37:6a:11:b3:64:df:ac:59: bb:63:9f:0d:da:af:c5:3d:f7:d5:18:04:15:78:09:dd:70:8f: 22:00:e5:a7:07:d5:6d:34:76:6e:88:5d:35:2a:7f:73:a2:d3: ae:ad:fc:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXg7fMHMkwkc7p+yny3mPnNcubMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKDI0MkY3OTY1MzI3RjQ4QjlBREY0MTBFODRDRDAzQUZGMUNGMzg0ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtWYJ9ig1vLo01ShmVhzO1sjpi MAmIDsnm/9VyWglJK3g2iL648ek6gWU1eFiyHkLohSdXNabzYcGVd4RMrDL/6lBK PhmEHpioT0xZc+Yf3O4zSYbvGIO+fOdjV5Q4oe+tGcUolo8ht9VOXVk7FPoxdtgB 1OFYCbPcrIbNyEzsOI7xno9dCfFl8DJPRsovXMa8LcVltrszPWxiKVUbFgKNy/4x WMnAbPJfdiG2x05/Kj/sgfzZrwFMHGMGlb47/ztviNI5ut22SK1LxB2SaHMy10kV 8vYWJAzccK9gMx8WbTw8SHZBK+c+S8h6IsXxffHam7vc+kAyI7pYKHJZvYUBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJC95ZTJ/SLmt9BDoTNA6/xzzhIgwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQCQrTbNEYBt+DfAYa2hw2b7PyuZ6KRiDq9Vt4IEIokfyD2s ZRR9DmCSbKVBnLZTD1L6BqrS+q7/pcdEn9z7/Wd/AqXIbq5rR23R0WosfZReO66R HX4Y8WSg70Kqss3tnogaEo7inGPb6hDJhJ7gCkEF2M/aseXvz4fcdLhJYRxR5Qqc K9buvOBhRYPP2lKjrEyDYz4+Ty0XIVkUQ8QRVukJb/gARv4r32bppgEnHhCzSMH4 CVuwxIRlUIX8G80WUsebxUDi2+dOLVywZutmXgOwN2oRs2TfrFm7Y58N2q/FPffV GAQVeAndcI8iAOWnB9VtNHZuiF01Kn9zotOurfwz -----END CERTIFICATE-----Generated at Sat Jun 7 18:42:46 2025 by rpki-client