$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa File: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c= Subject key identifier: 87:F8:87:BE:2F:65:30:19:6F:3D:29:FA:D5:EE:F3:E5:93:42:76:F3 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 0753FE3E0C3669B6152CC8A6ACD9EA413CE110CC Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa Signing time: Mon 02 Jun 2025 02:05:07 +0000 ROA not before: Mon 02 Jun 2025 02:00:07 +0000 ROA not after: Mon 01 Jun 2026 02:05:07 +0000 asID: 58477 IP address blocks: 103.56.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:53:fe:3e:0c:36:69:b6:15:2c:c8:a6:ac:d9:ea:41:3c:e1:10:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jun 2 02:00:07 2025 GMT Not After : Jun 1 02:05:07 2026 GMT Subject: CN=87F887BE2F6530196F3D29FAD5EEF3E5934276F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:9d:9e:00:54:c6:7e:d7:a0:b2:86:69:f4: b6:f7:d2:e4:db:b4:7a:68:31:8a:f5:b9:ce:c7:d2: 55:9c:94:f9:6f:4f:00:03:47:ce:71:54:01:9b:7a: a8:75:81:9d:c1:43:ad:9c:f4:61:d8:77:b0:8d:65: 17:66:f5:be:4f:b9:0b:8e:34:b5:14:e0:c8:1c:be: bf:ec:f6:d4:ea:56:df:bf:43:d0:d1:22:9e:28:48: d6:10:72:6f:74:c5:a5:76:80:c1:65:2d:7e:f5:ca: 8b:bf:4d:5a:d2:45:e8:3b:3e:2e:65:f9:a9:51:df: 57:2d:16:03:13:71:5f:1c:dd:17:a6:9f:f8:2d:19: 6d:1b:44:ab:c0:09:b6:d5:4d:ae:f7:99:cb:1d:e5: db:23:98:fe:60:ff:49:34:4a:b9:40:64:2e:f8:ca: e3:e1:b7:76:c6:d5:e0:7f:6b:ff:62:ac:54:f1:4f: 4d:81:0e:5b:d0:d5:9d:c0:21:0c:f0:2b:70:f4:9a: 69:43:04:56:1c:45:76:26:50:93:45:45:6f:50:23: 99:c2:e6:13:0e:88:d7:00:48:a5:a4:82:ba:3c:96: c0:c3:d9:e0:af:cf:a5:19:1c:32:30:10:37:08:d7: b3:a8:8e:a0:85:41:6a:6a:f3:f3:7d:b4:4c:a3:36: a6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:87:BE:2F:65:30:19:6F:3D:29:FA:D5:EE:F3:E5:93:42:76:F3 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.207.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:20:1e:64:20:79:01:41:89:51:3f:17:48:03:69:71:7b:fc: 2a:ca:f2:b9:f3:78:3d:e3:e6:40:86:75:6b:32:dd:30:c4:92: b7:96:15:29:6f:74:a6:3c:07:91:61:b4:fd:81:9b:fc:d5:7a: 89:72:66:fe:dc:58:60:65:5b:cd:55:5a:db:a2:f1:3f:23:92: f7:45:c7:61:f7:e3:fd:a9:74:1e:0c:ef:a2:3a:e0:af:25:c6: d0:91:ce:15:6f:29:29:c7:38:59:12:33:c0:17:ff:4e:b3:f7: 87:82:54:f9:f4:78:b1:cd:93:9f:8a:8a:6b:7e:51:c8:d7:89: 46:c5:43:7b:36:b5:18:9f:d1:b3:8e:00:77:e0:5e:4e:f7:78: 42:71:28:c4:30:d8:49:56:1f:99:f2:9b:a1:b1:cb:15:2f:2b: 5a:c1:cc:6e:b4:77:18:87:f6:3c:b8:4e:05:59:d3:83:f2:bb: 32:6c:de:ee:ce:c8:a1:de:be:ca:ac:30:a0:b4:09:da:23:03: c2:a7:ba:23:9b:d4:68:f6:4d:28:9c:ac:b1:aa:73:83:b3:a3: f4:5c:62:14:ae:cb:1d:54:d1:20:6b:1a:6f:4f:e7:c5:e1:ef: d3:2b:bc:2f:b6:d2:fb:1a:08:c3:20:fe:4f:7c:e3:42:52:d9: 06:cb:e6:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB1P+Pgw2abYVLMimrNnqQTzhEMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA2MDIwMjAwMDdaFw0yNjA2MDEwMjA1MDdaMDMxMTAvBgNV BAMTKDg3Rjg4N0JFMkY2NTMwMTk2RjNEMjlGQUQ1RUVGM0U1OTM0Mjc2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRp2eAFTGftegsoZp9Lb30uTb tHpoMYr1uc7H0lWclPlvTwADR85xVAGbeqh1gZ3BQ62c9GHYd7CNZRdm9b5PuQuO NLUU4Mgcvr/s9tTqVt+/Q9DRIp4oSNYQcm90xaV2gMFlLX71you/TVrSReg7Pi5l +alR31ctFgMTcV8c3Remn/gtGW0bRKvACbbVTa73mcsd5dsjmP5g/0k0SrlAZC74 yuPht3bG1eB/a/9irFTxT02BDlvQ1Z3AIQzwK3D0mmlDBFYcRXYmUJNFRW9QI5nC 5hMOiNcASKWkgro8lsDD2eCvz6UZHDIwEDcI17OojqCFQWpq8/N9tEyjNqZHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh/iHvi9lMBlvPSn61e7z5ZNCdvMwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzMxMzAzMzJlMzUzNjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc4zzANBgkqhkiG 9w0BAQsFAAOCAQEAnCAeZCB5AUGJUT8XSANpcXv8KsryufN4PePmQIZ1azLdMMSS t5YVKW90pjwHkWG0/YGb/NV6iXJm/txYYGVbzVVa26LxPyOS90XHYffj/al0Hgzv ojrgryXG0JHOFW8pKcc4WRIzwBf/TrP3h4JU+fR4sc2Tn4qKa35RyNeJRsVDeza1 GJ/Rs44Ad+BeTvd4QnEoxDDYSVYfmfKbobHLFS8rWsHMbrR3GIf2PLhOBVnTg/K7 Mmze7s7Iod6+yqwwoLQJ2iMDwqe6I5vUaPZNKJyssapzg7Oj9FxiFK7LHVTRIGsa b0/nxeHv0yu8L7bS+xoIwyD+T3zjQlLZBsvmWw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:46 2025 by rpki-client