$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: iReeweCReiVdyDxdcHaFTjeSzHc3cSR3SFaF6DPJP8s= Subject key identifier: 5B:65:11:0A:5D:42:29:CF:48:99:93:1C:48:AE:E0:20:D6:54:62:C3 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 594F390BC9A5FD777BC3C0C8074026F166A6DECB Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa Signing time: Mon 02 Jun 2025 02:03:55 +0000 ROA not before: Mon 02 Jun 2025 01:58:55 +0000 ROA not after: Mon 01 Jun 2026 02:03:55 +0000 asID: 136869 IP address blocks: 103.104.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4f:39:0b:c9:a5:fd:77:7b:c3:c0:c8:07:40:26:f1:66:a6:de:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jun 2 01:58:55 2025 GMT Not After : Jun 1 02:03:55 2026 GMT Subject: CN=5B65110A5D4229CF4899931C48AEE020D65462C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b7:27:2c:73:61:a5:f4:19:3f:b1:2d:51:5e: 57:df:bc:c6:fe:10:9a:d2:15:d9:a8:32:48:81:f4: f1:47:23:5b:ab:1e:bd:a0:70:3d:52:56:ed:89:e1: 7b:83:ad:43:e3:b3:fa:11:90:4d:71:42:b8:09:c8: 9f:15:ff:9b:99:ce:c7:d2:e3:98:36:35:01:80:e7: 7c:4d:23:34:e2:e9:e0:b9:98:ed:1a:5d:08:fa:84: 37:2a:d4:99:60:79:64:39:0b:61:92:83:e3:3c:65: e8:7c:45:40:51:7c:23:40:09:0e:50:26:ec:12:f7: 24:d8:da:47:3f:ef:f5:eb:12:20:0e:06:c2:d7:25: ad:21:49:84:30:ce:b2:ae:a4:ea:f4:b8:3a:a2:57: da:c4:c3:46:d7:59:0d:53:85:67:97:9a:08:80:1d: 70:d9:1e:4a:58:2c:eb:11:d9:e9:8d:44:92:e3:eb: a8:1f:46:5d:e1:45:30:17:7a:c3:1d:c9:4f:4e:75: da:c9:52:c3:bb:d0:d2:55:69:10:2a:7b:45:ad:f1: 65:10:57:94:4c:9f:90:e8:00:7d:88:fa:63:ef:b7: 69:41:33:18:43:3f:2a:8e:ff:59:1b:af:c5:7f:f3: e2:f1:78:2e:2c:2c:65:94:42:03:b5:9b:07:76:0b: 55:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:65:11:0A:5D:42:29:CF:48:99:93:1C:48:AE:E0:20:D6:54:62:C3 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.205.0/24 Signature Algorithm: sha256WithRSAEncryption 04:43:90:de:d5:94:34:d2:de:1c:a3:86:5a:51:4d:b9:c1:bb: 91:66:8e:bb:00:35:c5:fd:21:b0:db:06:06:2f:4b:6d:08:48: b9:72:46:b3:9b:50:8f:54:48:f1:b5:0b:bb:54:74:a1:10:5a: ff:29:41:e2:13:21:b4:f3:bf:9d:f4:42:38:a9:77:a3:b0:75: 1b:64:e6:29:4f:c6:d8:0f:92:52:04:25:55:1c:fa:0c:36:6d: c4:ca:58:a3:94:81:b5:b1:0e:04:c3:b0:75:5d:08:4c:3c:f4: 58:29:2f:c7:c8:8c:fe:74:78:e2:69:d6:05:93:a9:f0:e7:b3: 34:ad:1e:e0:51:8c:a1:23:f2:04:28:9c:23:7f:58:5f:33:ed: fa:5c:1d:df:32:dc:58:8f:51:d2:96:ac:36:bc:68:f3:71:77: 3f:de:ae:55:ee:3e:d4:35:99:2d:61:b7:4a:b2:66:13:c9:e4: af:c5:c9:4d:f2:74:9a:d6:f3:1e:91:f1:81:7c:4d:11:9e:15: ba:a5:01:3f:1d:87:04:73:90:d8:06:72:3e:41:c0:cd:67:6b: ad:c5:27:8b:43:4b:df:a1:4b:98:c9:a7:48:7d:1f:4c:d0:c5: 54:b9:26:78:b2:52:ea:69:4a:03:43:ef:a4:fd:36:65:c7:8b: d6:c0:6c:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWU85C8ml/Xd7w8DIB0Am8Wam3sswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA2MDIwMTU4NTVaFw0yNjA2MDEwMjAzNTVaMDMxMTAvBgNV BAMTKDVCNjUxMTBBNUQ0MjI5Q0Y0ODk5OTMxQzQ4QUVFMDIwRDY1NDYyQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwtycsc2Gl9Bk/sS1RXlffvMb+ EJrSFdmoMkiB9PFHI1urHr2gcD1SVu2J4XuDrUPjs/oRkE1xQrgJyJ8V/5uZzsfS 45g2NQGA53xNIzTi6eC5mO0aXQj6hDcq1JlgeWQ5C2GSg+M8Zeh8RUBRfCNACQ5Q JuwS9yTY2kc/7/XrEiAOBsLXJa0hSYQwzrKupOr0uDqiV9rEw0bXWQ1ThWeXmgiA HXDZHkpYLOsR2emNRJLj66gfRl3hRTAXesMdyU9OddrJUsO70NJVaRAqe0Wt8WUQ V5RMn5DoAH2I+mPvt2lBMxhDPyqO/1kbr8V/8+LxeC4sLGWUQgO1mwd2C1WtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUW2URCl1CKc9ImZMcSK7gINZUYsMwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM0wDQYJ KoZIhvcNAQELBQADggEBAARDkN7VlDTS3hyjhlpRTbnBu5FmjrsANcX9IbDbBgYv S20ISLlyRrObUI9USPG1C7tUdKEQWv8pQeITIbTzv530Qjipd6OwdRtk5ilPxtgP klIEJVUc+gw2bcTKWKOUgbWxDgTDsHVdCEw89FgpL8fIjP50eOJp1gWTqfDnszSt HuBRjKEj8gQonCN/WF8z7fpcHd8y3FiPUdKWrDa8aPNxdz/erlXuPtQ1mS1ht0qy ZhPJ5K/FyU3ydJrW8x6R8YF8TRGeFbqlAT8dhwRzkNgGcj5BwM1na63FJ4tDS9+h S5jJp0h9H0zQxVS5JniyUuppSgND76T9NmXHi9bAbCc= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:30 2025 by rpki-client