$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136372e302f32342d3234203d3e20313331373137.roa File: 3130332e32352e3136372e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: ILfqmoxfXPHlh8GmZbUT7jZa6GPfE6TlAFjcXTufWHY= Subject key identifier: 13:E4:EF:34:CF:F5:94:1C:55:C0:C2:30:DD:2E:D3:C4:51:E2:AB:AB Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 3E129AC6B7D5FF6D38F495F67A632BBE209DA068 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136372e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:51 +0000 ROA not before: Mon 02 Jun 2025 00:57:51 +0000 ROA not after: Mon 01 Jun 2026 01:02:51 +0000 asID: 131717 IP address blocks: 103.25.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:12:9a:c6:b7:d5:ff:6d:38:f4:95:f6:7a:63:2b:be:20:9d:a0:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:51 2025 GMT Not After : Jun 1 01:02:51 2026 GMT Subject: CN=13E4EF34CFF5941C55C0C230DD2ED3C451E2ABAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fa:29:17:5a:72:26:05:0e:e6:fc:f2:75:b5: a5:2f:ae:d7:93:19:04:bf:11:ce:d8:cb:27:17:1a: 02:5a:87:e0:45:a3:aa:8d:dd:ea:63:28:ef:74:92: a0:36:04:1b:94:d3:22:25:4f:b3:f4:ba:4f:42:03: d9:bb:c0:a2:46:ef:a1:6c:9e:dd:19:e6:05:74:c0: 6c:98:c6:fb:bf:cd:1b:4c:9b:01:d8:3a:a5:dd:65: f8:8e:d0:51:14:74:6c:46:3c:48:4b:27:b3:17:eb: 75:61:f1:cf:27:e9:a1:82:ad:f3:de:a4:dc:09:e1: d6:2b:63:4b:1a:e4:8a:9b:ab:d5:ab:1d:d8:f9:f5: 6f:14:50:d4:df:e1:78:96:32:4b:d7:e8:81:51:1d: 2f:85:cf:48:3e:91:9e:19:bb:f0:4e:46:e9:72:85: dd:1f:7a:2d:0b:72:f8:ef:ba:3c:ae:7b:ad:be:77: 1f:c6:c4:37:54:2c:4a:c9:bd:f8:85:3d:d3:37:f6: 03:49:32:90:bf:5a:a8:4f:2c:71:ba:46:58:aa:f5: 51:db:ed:01:65:b3:ad:be:f9:b8:49:3c:d3:29:22: a4:12:7c:5e:e3:e1:58:71:a5:0d:9e:14:fd:9c:b8: bc:ca:03:1f:27:98:cd:b1:84:77:19:c3:17:80:e4: 0c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E4:EF:34:CF:F5:94:1C:55:C0:C2:30:DD:2E:D3:C4:51:E2:AB:AB X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136372e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.167.0/24 Signature Algorithm: sha256WithRSAEncryption 10:94:68:4a:3a:1b:26:ed:64:50:7d:97:78:8b:e2:ec:69:7d: 19:19:c5:86:84:de:32:dd:c9:b2:07:6b:3b:24:41:e4:a4:79: 7b:a4:aa:01:9c:fd:3f:0e:a9:b4:05:0e:0b:ef:e6:c3:4b:fc: 5f:0b:27:f8:60:6b:2f:19:41:59:bb:13:fc:77:ed:0c:8b:27: d3:52:b6:82:f0:fd:e4:cc:eb:aa:15:4d:5d:e1:d3:f6:bb:8a: 35:cf:18:fc:d7:7f:c3:39:dd:83:2d:b9:22:28:e0:ad:98:4e: 9f:22:b3:9a:54:5e:24:b5:e1:ca:29:70:eb:95:18:f4:ec:3d: bd:87:e5:0c:a2:7a:5b:ec:6b:73:44:af:5a:8d:84:fe:1e:f6: b1:ce:d8:58:33:a5:0e:83:29:38:da:7d:4a:e7:5c:0c:89:7b: 85:c4:8f:69:81:6c:5a:73:12:35:ee:07:20:43:0f:6d:77:ec: 71:0f:a6:e2:b0:8d:d8:c7:cf:29:63:46:c6:c8:e1:ed:a8:f2: d7:17:86:9a:b2:63:d5:56:27:74:a0:39:ca:aa:ed:03:1e:fd: 1b:b7:60:e1:68:dd:59:ef:1c:34:8a:73:d1:ef:bb:53:6a:71: 7d:b4:e4:b2:eb:27:99:d8:e8:c2:3e:a9:0a:83:bb:ed:69:6e: 27:ed:36:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPhKaxrfV/2049JX2emMrviCdoGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTFaFw0yNjA2MDEwMTAyNTFaMDMxMTAvBgNV BAMTKDEzRTRFRjM0Q0ZGNTk0MUM1NUMwQzIzMEREMkVEM0M0NTFFMkFCQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk+ikXWnImBQ7m/PJ1taUvrteT GQS/Ec7YyycXGgJah+BFo6qN3epjKO90kqA2BBuU0yIlT7P0uk9CA9m7wKJG76Fs nt0Z5gV0wGyYxvu/zRtMmwHYOqXdZfiO0FEUdGxGPEhLJ7MX63Vh8c8n6aGCrfPe pNwJ4dYrY0sa5Iqbq9WrHdj59W8UUNTf4XiWMkvX6IFRHS+Fz0g+kZ4Zu/BORuly hd0fei0Lcvjvujyue62+dx/GxDdULErJvfiFPdM39gNJMpC/WqhPLHG6Rliq9VHb 7QFls62++bhJPNMpIqQSfF7j4VhxpQ2eFP2cuLzKAx8nmM2xhHcZwxeA5AwbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUE+TvNM/1lBxVwMIw3S7TxFHiq6swHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxmnMA0GCSqG SIb3DQEBCwUAA4IBAQAQlGhKOhsm7WRQfZd4i+LsaX0ZGcWGhN4y3cmyB2s7JEHk pHl7pKoBnP0/Dqm0BQ4L7+bDS/xfCyf4YGsvGUFZuxP8d+0MiyfTUraC8P3kzOuq FU1d4dP2u4o1zxj813/DOd2DLbkiKOCtmE6fIrOaVF4kteHKKXDrlRj07D29h+UM onpb7GtzRK9ajYT+HvaxzthYM6UOgyk42n1K51wMiXuFxI9pgWxacxI17gcgQw9t d+xxD6bisI3Yx88pY0bGyOHtqPLXF4aasmPVVid0oDnKqu0DHv0bt2DhaN1Z7xw0 inPR77tTanF9tOSy6yeZ2OjCPqkKg7vtaW4n7TaG -----END CERTIFICATE-----Generated at Sat Jun 7 13:34:25 2025 by rpki-client