$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: w7Chi4gZxBYt1ZeGb/YO7tH8OTI2H/0aS5PoiZEPc/Y= Subject key identifier: EB:B9:10:78:F6:C4:00:CA:46:0A:54:EF:F0:BA:2C:D8:55:B0:50:7C Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 3B037167C6ABCC267CD3EF87CE101E9E2A11F71F Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa Signing time: Mon 02 Jun 2025 02:03:55 +0000 ROA not before: Mon 02 Jun 2025 01:58:55 +0000 ROA not after: Mon 01 Jun 2026 02:03:55 +0000 asID: 136869 IP address blocks: 103.104.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:03:71:67:c6:ab:cc:26:7c:d3:ef:87:ce:10:1e:9e:2a:11:f7:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jun 2 01:58:55 2025 GMT Not After : Jun 1 02:03:55 2026 GMT Subject: CN=EBB91078F6C400CA460A54EFF0BA2CD855B0507C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c0:33:86:01:a2:96:f3:aa:53:72:45:f5:ea: 94:c5:03:d3:93:78:3d:5a:12:15:cc:c0:98:20:ae: 13:5e:ac:48:ee:dc:61:cb:32:c3:45:00:51:a1:16: 5c:1e:e3:c8:8d:2b:80:be:86:21:47:ca:0a:50:69: a3:b4:4c:fd:1f:5e:2e:ca:c5:6a:a2:aa:44:2e:9f: 82:9f:c4:b7:24:aa:bc:0d:dc:83:bf:ea:f8:03:9e: 95:1f:d8:74:77:35:58:92:a4:cf:48:10:1c:4d:5e: a7:d2:05:8b:4a:c3:fb:9b:a1:fb:7a:6d:4a:c7:23: 0b:93:f8:65:3a:bb:c7:30:3c:39:c9:66:d2:3d:45: 07:b4:b1:18:bc:de:94:34:c0:1f:72:85:f3:64:89: a3:35:cb:56:2c:ed:cd:62:25:f7:43:8c:94:d4:7e: 50:2b:e9:c8:2f:aa:8f:1d:93:5f:de:f5:cf:4f:ea: ef:f5:08:66:f5:e4:ce:89:5d:bc:d7:c4:c5:7b:72: 22:3d:c6:c6:fc:d9:38:77:80:f4:bf:f2:37:67:f3: f6:01:ef:95:12:57:02:ec:a0:3e:c8:97:96:dd:86: ab:3f:30:ef:c6:97:aa:8d:10:76:c3:ed:24:c8:0a: ee:4f:65:ab:12:c3:26:49:89:22:b6:c4:a6:f0:6a: 75:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B9:10:78:F6:C4:00:CA:46:0A:54:EF:F0:BA:2C:D8:55:B0:50:7C X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.204.0/24 Signature Algorithm: sha256WithRSAEncryption bf:ba:2d:c1:86:f7:54:44:e2:1c:8c:e4:5b:7e:1b:98:cd:20: f2:61:05:3a:4e:4c:a7:17:a2:aa:42:9c:bc:ec:5f:35:4a:e3: b9:05:89:05:68:e3:dd:53:c5:69:a8:54:80:8b:53:3d:c5:14: 4c:2b:07:c4:79:a4:e9:8d:d9:e3:9e:ee:fa:c5:9e:b6:24:03: ef:1d:d1:4c:9b:38:2f:e5:8d:be:fa:a6:9c:48:af:2d:d4:a7: 45:e7:86:bd:92:4e:3f:a8:38:dd:f6:12:2e:76:3b:ba:f9:67: 69:d7:36:42:c5:ab:f7:8d:56:0e:59:38:06:51:4f:b3:a9:bb: 70:fd:5a:df:0c:91:44:01:ed:29:01:ea:ee:a2:49:d9:53:7d: ce:66:6a:83:65:4c:ee:ef:ec:29:55:ab:81:f9:0c:c9:da:87: a6:5a:1f:19:28:3e:52:4e:2f:6f:2d:97:bd:96:ec:5d:f7:16: ba:35:e9:ad:52:83:1b:6e:f5:ae:8e:91:2e:e2:07:41:ec:ca: 30:11:ea:dc:a6:44:94:8f:0d:9e:b2:84:d8:c4:6a:78:f0:2d: 81:6d:9a:ef:8d:53:37:70:3f:64:cb:b5:b3:f2:bb:d7:80:87: 4a:ac:b8:d4:9a:87:91:ef:d4:eb:52:19:db:1f:87:37:e2:d8: 38:67:a7:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOwNxZ8arzCZ80++HzhAenioR9x8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA2MDIwMTU4NTVaFw0yNjA2MDEwMjAzNTVaMDMxMTAvBgNV BAMTKEVCQjkxMDc4RjZDNDAwQ0E0NjBBNTRFRkYwQkEyQ0Q4NTVCMDUwN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwDOGAaKW86pTckX16pTFA9OT eD1aEhXMwJggrhNerEju3GHLMsNFAFGhFlwe48iNK4C+hiFHygpQaaO0TP0fXi7K xWqiqkQun4KfxLckqrwN3IO/6vgDnpUf2HR3NViSpM9IEBxNXqfSBYtKw/uboft6 bUrHIwuT+GU6u8cwPDnJZtI9RQe0sRi83pQ0wB9yhfNkiaM1y1Ys7c1iJfdDjJTU flAr6cgvqo8dk1/e9c9P6u/1CGb15M6JXbzXxMV7ciI9xsb82Th3gPS/8jdn8/YB 75USVwLsoD7Il5bdhqs/MO/Gl6qNEHbD7STICu5PZasSwyZJiSK2xKbwanUtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU67kQePbEAMpGClTv8Los2FWwUHwwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaMwwDQYJ KoZIhvcNAQELBQADggEBAL+6LcGG91RE4hyM5Ft+G5jNIPJhBTpOTKcXoqpCnLzs XzVK47kFiQVo491TxWmoVICLUz3FFEwrB8R5pOmN2eOe7vrFnrYkA+8d0UybOC/l jb76ppxIry3Up0Xnhr2STj+oON32Ei52O7r5Z2nXNkLFq/eNVg5ZOAZRT7Opu3D9 Wt8MkUQB7SkB6u6iSdlTfc5maoNlTO7v7ClVq4H5DMnah6ZaHxkoPlJOL28tl72W 7F33Fro16a1Sgxtu9a6OkS7iB0HsyjAR6tymRJSPDZ6yhNjEanjwLYFtmu+NUzdw P2TLtbPyu9eAh0qsuNSah5Hv1OtSGdsfhzfi2DhnpyI= -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:38 2025 by rpki-client