$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: 2COjLCJ4YEuRoqvYvSrj9dQC5huF+G+dAbpMe2HpJLo= Subject key identifier: 7D:3F:5E:E9:79:61:91:92:DB:D7:A7:34:E7:83:60:C6:77:9E:C7:69 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 74B5BF2CFE9683414F523653495B47FC91085535 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa Signing time: Mon 02 Jun 2025 02:03:55 +0000 ROA not before: Mon 02 Jun 2025 01:58:55 +0000 ROA not after: Mon 01 Jun 2026 02:03:55 +0000 asID: 136869 IP address blocks: 103.104.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b5:bf:2c:fe:96:83:41:4f:52:36:53:49:5b:47:fc:91:08:55:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jun 2 01:58:55 2025 GMT Not After : Jun 1 02:03:55 2026 GMT Subject: CN=7D3F5EE979619192DBD7A734E78360C6779EC769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:68:29:87:69:62:66:07:0d:6c:61:e4:d5:ac: 39:f5:60:6e:3c:4d:a2:2a:34:0f:4b:83:ab:b2:19: e1:98:21:e1:cc:42:6f:ef:70:29:7b:ed:af:6d:6d: 6f:c2:35:d2:20:29:ba:58:72:7f:20:64:0d:32:88: 14:aa:9f:48:a5:d3:62:67:9e:5f:4b:ce:7d:15:56: e8:b4:f8:8a:25:78:bd:93:dd:d3:6e:da:7b:5d:2b: 2d:a9:ad:ee:ca:76:20:38:db:12:25:6d:5a:fa:bb: 3e:53:a8:5c:81:84:ed:43:c2:1e:ee:ab:49:9a:7b: 03:e9:99:e2:84:ef:53:1c:93:c5:56:23:c7:98:da: 95:5e:c8:12:57:1f:d3:6f:9f:95:66:1e:37:32:f6: 83:32:c3:d3:9a:d9:b8:43:9c:d9:66:04:ad:bd:33: f7:3c:c8:ac:d4:03:90:05:bd:10:86:7a:89:e1:bc: 4c:13:9f:8d:fb:4f:d5:13:48:ea:6c:73:60:ff:06: 81:da:ed:94:44:57:5f:25:1d:de:0d:6d:7f:71:0d: 09:82:6e:99:36:8a:65:47:9a:10:35:ff:34:e0:31: e2:04:1e:76:da:f6:57:50:c9:ab:30:a4:91:51:34: 16:66:f3:28:c3:c5:d8:d9:6f:e6:73:e3:08:a3:87: c2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3F:5E:E9:79:61:91:92:DB:D7:A7:34:E7:83:60:C6:77:9E:C7:69 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.207.0/24 Signature Algorithm: sha256WithRSAEncryption 12:01:51:77:4f:ae:bb:60:86:f6:9d:a7:de:9b:ef:e5:f8:8c: 10:c6:f3:4d:df:fc:ff:cd:0c:58:60:b2:8f:54:61:ed:6c:5f: 32:64:db:80:e7:29:7a:61:50:05:83:35:7e:62:a4:7f:0e:f0: ed:ef:95:24:0d:7a:99:7a:2c:3a:21:45:08:d2:8c:9a:04:87: 62:25:52:79:80:c1:b7:57:4e:25:ec:7a:14:46:b8:7a:6e:02: 22:d0:1e:3a:09:af:d9:c3:c1:c1:f0:61:58:f7:35:72:01:72: 7c:a5:8c:e9:56:62:c7:f6:89:e7:d4:20:8a:3e:e7:33:1c:1e: 91:24:94:af:d1:b7:89:6e:4d:81:58:d6:56:a2:74:de:5d:0b: f7:d0:48:44:54:d5:34:c8:68:c3:b6:63:b7:e9:a8:72:fc:25: d7:02:99:89:6a:12:5c:f0:1f:10:8e:42:73:36:10:18:17:1a: a5:c1:5a:34:12:d4:5e:73:ba:60:14:98:18:5b:e5:ac:cc:42: 78:0c:1e:70:4e:c4:bf:c3:13:96:29:13:5d:0f:1b:a1:f2:07: a0:3c:9b:78:32:b4:45:5a:76:df:49:e7:5e:85:b0:c0:5f:64: d2:5f:8c:88:43:79:98:5c:b3:17:55:28:59:93:f4:fa:de:fb: df:a2:c3:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdLW/LP6Wg0FPUjZTSVtH/JEIVTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA2MDIwMTU4NTVaFw0yNjA2MDEwMjAzNTVaMDMxMTAvBgNV BAMTKDdEM0Y1RUU5Nzk2MTkxOTJEQkQ3QTczNEU3ODM2MEM2Nzc5RUM3NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgaCmHaWJmBw1sYeTVrDn1YG48 TaIqNA9Lg6uyGeGYIeHMQm/vcCl77a9tbW/CNdIgKbpYcn8gZA0yiBSqn0il02Jn nl9Lzn0VVui0+IoleL2T3dNu2ntdKy2pre7KdiA42xIlbVr6uz5TqFyBhO1Dwh7u q0maewPpmeKE71Mck8VWI8eY2pVeyBJXH9Nvn5VmHjcy9oMyw9Oa2bhDnNlmBK29 M/c8yKzUA5AFvRCGeonhvEwTn437T9UTSOpsc2D/BoHa7ZREV18lHd4NbX9xDQmC bpk2imVHmhA1/zTgMeIEHnba9ldQyaswpJFRNBZm8yjDxdjZb+Zz4wijh8KpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfT9e6XlhkZLb16c054Ngxneex2kwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM8wDQYJ KoZIhvcNAQELBQADggEBABIBUXdPrrtghvadp96b7+X4jBDG803f/P/NDFhgso9U Ye1sXzJk24DnKXphUAWDNX5ipH8O8O3vlSQNepl6LDohRQjSjJoEh2IlUnmAwbdX TiXsehRGuHpuAiLQHjoJr9nDwcHwYVj3NXIBcnyljOlWYsf2iefUIIo+5zMcHpEk lK/Rt4luTYFY1laidN5dC/fQSERU1TTIaMO2Y7fpqHL8JdcCmYlqElzwHxCOQnM2 EBgXGqXBWjQS1F5zumAUmBhb5azMQngMHnBOxL/DE5YpE10PG6HyB6A8m3gytEVa dt9J516FsMBfZNJfjIhDeZhcsxdVKFmT9Pre+9+iw0o= -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:14 2025 by rpki-client