$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: W2IYXy+JkbGpp85/sS2UKLUazxQpNz2N8iZifbHeJpI= Subject key identifier: 1E:08:69:FA:67:E1:65:95:3D:9B:99:3F:73:1B:B0:A3:7F:35:C8:A3 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 5C78585F55483D183D3A2E1A0050207AA12A0996 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa Signing time: Mon 02 Jun 2025 02:03:55 +0000 ROA not before: Mon 02 Jun 2025 01:58:55 +0000 ROA not after: Mon 01 Jun 2026 02:03:55 +0000 asID: 136869 IP address blocks: 103.104.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:78:58:5f:55:48:3d:18:3d:3a:2e:1a:00:50:20:7a:a1:2a:09:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jun 2 01:58:55 2025 GMT Not After : Jun 1 02:03:55 2026 GMT Subject: CN=1E0869FA67E165953D9B993F731BB0A37F35C8A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:53:6e:7a:2d:e8:b1:bd:ad:a8:6a:ea:68: d3:3f:a3:0d:58:f2:ab:dd:38:a6:ca:d4:4e:95:56: a2:4d:28:ad:ef:9e:da:dc:e8:74:be:61:aa:b9:88: 7f:c0:00:b7:d8:a0:59:a3:7a:92:8c:80:18:21:54: 0b:63:bc:40:1b:ba:d8:85:c3:81:9e:30:9c:81:8a: bf:e1:7e:f9:11:8d:f2:e2:74:f8:41:ff:b1:81:ec: 3e:88:92:10:54:08:70:4e:45:2e:cd:c1:7c:db:d7: bc:f4:37:40:1c:d4:5a:24:b4:3d:5e:34:0e:0e:71: 83:85:60:18:4e:82:86:72:09:2f:f1:6d:c9:9a:54: b1:d9:28:6d:9a:6e:28:07:f9:7b:eb:85:8b:4d:fb: d8:45:c0:70:ae:d9:0f:83:18:cb:24:eb:27:90:4a: e4:45:d4:0b:64:da:ba:fd:bf:b7:eb:f2:d3:ae:de: 32:bb:ae:79:9a:c7:e7:21:46:10:b6:93:d0:f0:81: 81:74:7c:fd:0d:a4:26:ab:c6:69:63:45:88:d8:3b: 6b:d6:62:75:0d:cb:4f:8d:8c:41:15:28:a5:1a:b0: 1b:bc:49:24:d0:8e:52:01:65:fe:fa:91:9d:d5:dd: 16:38:9a:83:67:85:b5:fb:75:b3:77:49:69:d0:85: 9c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:08:69:FA:67:E1:65:95:3D:9B:99:3F:73:1B:B0:A3:7F:35:C8:A3 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.206.0/24 Signature Algorithm: sha256WithRSAEncryption ca:05:56:4d:d0:27:7a:e8:ee:8d:0e:8f:67:32:13:e4:3d:03: bb:d5:53:ab:ba:66:f7:86:c2:b3:30:9b:c1:70:82:26:44:4d: d1:57:80:b8:b0:42:ec:1a:4f:7b:63:e9:ba:ba:8a:7a:f0:35: c2:51:34:e3:28:23:66:4a:d7:f2:ae:50:bd:f8:cc:74:10:92: c4:a8:11:66:98:f9:57:5a:4f:16:f8:1f:8b:b2:bf:06:0e:3a: 10:6f:f5:e1:b2:51:8f:e9:54:f5:d1:e0:5d:fd:38:ee:3f:20: 33:4c:4f:f3:fe:c0:0f:bb:ee:ba:22:8c:48:36:5b:10:6b:b9: 82:a6:43:30:8e:b0:3e:aa:ff:38:52:7c:cf:74:58:89:5a:c8: b2:98:00:aa:6e:2a:9e:c7:1d:cd:bd:f7:cb:d2:5c:f4:15:a2: a4:b1:e6:cf:eb:e9:0e:64:cb:a0:0d:98:13:22:cc:e0:82:0b: 94:ec:36:75:59:20:bb:6d:13:1d:34:aa:b4:de:94:bb:c5:8f: d9:c9:7d:54:7e:9a:1c:a7:81:ac:c5:ca:66:7b:25:fe:b6:fb: 50:8c:bc:f2:12:ff:20:2e:11:ea:94:f6:92:30:a0:02:fa:3e: 70:98:39:8e:bc:dc:93:2f:35:6b:83:b8:31:f7:93:92:fc:50: e8:2b:00:bb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXHhYX1VIPRg9Oi4aAFAgeqEqCZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA2MDIwMTU4NTVaFw0yNjA2MDEwMjAzNTVaMDMxMTAvBgNV BAMTKDFFMDg2OUZBNjdFMTY1OTUzRDlCOTkzRjczMUJCMEEzN0YzNUM4QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/QFNuei3osb2tqGrqaNM/ow1Y 8qvdOKbK1E6VVqJNKK3vntrc6HS+Yaq5iH/AALfYoFmjepKMgBghVAtjvEAbutiF w4GeMJyBir/hfvkRjfLidPhB/7GB7D6IkhBUCHBORS7NwXzb17z0N0Ac1FoktD1e NA4OcYOFYBhOgoZyCS/xbcmaVLHZKG2abigH+XvrhYtN+9hFwHCu2Q+DGMsk6yeQ SuRF1Atk2rr9v7fr8tOu3jK7rnmax+chRhC2k9DwgYF0fP0NpCarxmljRYjYO2vW YnUNy0+NjEEVKKUasBu8SSTQjlIBZf76kZ3V3RY4moNnhbX7dbN3SWnQhZy9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHghp+mfhZZU9m5k/cxuwo381yKMwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM4wDQYJ KoZIhvcNAQELBQADggEBAMoFVk3QJ3ro7o0Oj2cyE+Q9A7vVU6u6ZveGwrMwm8Fw giZETdFXgLiwQuwaT3tj6bq6inrwNcJRNOMoI2ZK1/KuUL34zHQQksSoEWaY+Vda Txb4H4uyvwYOOhBv9eGyUY/pVPXR4F39OO4/IDNMT/P+wA+77roijEg2WxBruYKm QzCOsD6q/zhSfM90WIlayLKYAKpuKp7HHc2998vSXPQVoqSx5s/r6Q5ky6ANmBMi zOCCC5TsNnVZILttEx00qrTelLvFj9nJfVR+mhyngazFymZ7Jf62+1CMvPIS/yAu EeqU9pIwoAL6PnCYOY683JMvNWuDuDH3k5L8UOgrALs= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:17 2025 by rpki-client