$ rpki-client -vvf repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa File: 3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa (raw, json) Hash identifier: XIFOVvwjJ/s65US6Rpd5t4HWg3Q6vfbVPqm9v9PqOGU= Subject key identifier: 9F:EF:FB:0A:88:E2:6C:61:93:5A:1D:76:9E:12:55:06:23:87:87:A4 Certificate issuer: /CN=A17DC55845B70106CEB3A498496454BE640F44AB Certificate serial: 60B8B87CB3B53C8A6E3A64289AF2A01D1D6598A0 Authority key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa Signing time: Fri 06 Jun 2025 20:00:01 +0000 ROA not before: Fri 06 Jun 2025 19:55:01 +0000 ROA not after: Fri 05 Jun 2026 20:00:01 +0000 asID: 139427 IP address blocks: 103.31.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b8:b8:7c:b3:b5:3c:8a:6e:3a:64:28:9a:f2:a0:1d:1d:65:98:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A17DC55845B70106CEB3A498496454BE640F44AB Validity Not Before: Jun 6 19:55:01 2025 GMT Not After : Jun 5 20:00:01 2026 GMT Subject: CN=9FEFFB0A88E26C61935A1D769E125506238787A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:90:ba:ef:2d:db:0c:e5:a4:21:ef:f2:19:22: b6:c9:73:ab:a7:87:2f:fe:01:b2:14:dc:18:ed:93: cd:83:90:e5:f3:c4:c7:c1:f1:e4:47:31:6d:93:be: 1c:59:aa:83:1d:f9:c0:a3:9d:db:33:db:f6:50:a4: 64:65:4d:55:82:6e:c8:2f:2d:45:c9:23:76:66:78: 85:61:31:71:3d:66:9e:a9:6e:ea:dc:db:36:5b:ca: 3f:60:6f:e1:fa:7b:94:0d:3b:3a:04:ac:70:eb:1c: bb:a5:4f:a4:11:8f:35:57:ed:a7:c5:1c:ba:6f:ad: a5:40:f4:7a:89:db:73:fa:ba:93:51:55:ef:99:6e: 4b:19:7a:44:44:85:85:70:16:33:b2:00:d6:03:69: bc:a8:4c:51:67:f3:8b:58:1d:71:1d:92:8a:f7:12: 30:e2:12:c9:66:45:1c:57:bd:3d:60:65:9d:a6:4a: 73:b5:8f:81:7c:a2:dd:98:05:cd:56:fb:2f:66:82: 39:b8:b2:83:37:7f:44:a3:8f:e9:6e:8b:4b:a6:36: 33:67:c3:f9:31:d0:09:a5:2a:45:7c:b4:4a:e9:99: 4f:21:03:4f:64:e3:2a:11:72:e5:33:3e:00:3e:71: bb:7c:0f:22:ad:68:36:67:c6:5e:7b:e6:1b:5e:c9: 2d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:EF:FB:0A:88:E2:6C:61:93:5A:1D:76:9E:12:55:06:23:87:87:A4 X509v3 Authority Key Identifier: keyid:A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.248.0/23 Signature Algorithm: sha256WithRSAEncryption a1:d6:14:81:e1:b9:a1:e0:ca:b6:27:97:52:3b:89:da:5c:19: 2c:52:e3:ec:82:66:8f:37:53:78:61:a2:37:20:4a:66:d0:21: eb:7e:af:7b:55:f8:4e:06:5e:45:b6:d0:cb:d1:10:d9:67:b3: 86:32:fd:d2:62:97:8c:a6:fc:04:08:90:80:a8:d3:55:46:b3: ea:73:50:fc:91:1a:0c:39:52:f2:e4:5f:84:72:75:6e:77:c0: 83:35:e7:9c:1d:04:39:9f:08:3e:76:4f:89:38:cb:3f:38:a0: f6:17:b4:b8:c0:ef:6f:fe:1c:f5:2b:7a:68:2a:43:c0:2b:b4: af:38:dd:de:57:8c:4f:9d:c4:c4:3e:f6:c1:87:39:45:8b:d6: e3:1a:12:b4:63:01:f8:3a:68:d9:97:41:f0:bf:41:32:e5:91: 48:39:f0:ad:1c:16:36:0c:e7:6e:46:20:f7:53:ae:8c:d3:32: 64:5f:31:f8:98:21:c5:88:70:01:34:e9:9c:4b:64:55:12:04: ba:dd:8d:29:54:3d:a2:1a:2f:76:98:96:e4:f7:d8:ff:b1:e2: e1:bd:84:9b:2d:b3:7c:9e:b1:21:d0:92:ef:e7:92:99:e9:b0: ad:5b:dd:c6:a9:63:c3:5e:a5:b2:e0:63:35:6c:9a:79:02:e8: 1a:03:11:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYLi4fLO1PIpuOmQomvKgHR1lmKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2 NDBGNDRBQjAeFw0yNTA2MDYxOTU1MDFaFw0yNjA2MDUyMDAwMDFaMDMxMTAvBgNV BAMTKDlGRUZGQjBBODhFMjZDNjE5MzVBMUQ3NjlFMTI1NTA2MjM4Nzg3QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhkLrvLdsM5aQh7/IZIrbJc6un hy/+AbIU3Bjtk82DkOXzxMfB8eRHMW2TvhxZqoMd+cCjndsz2/ZQpGRlTVWCbsgv LUXJI3ZmeIVhMXE9Zp6pburc2zZbyj9gb+H6e5QNOzoErHDrHLulT6QRjzVX7afF HLpvraVA9HqJ23P6upNRVe+ZbksZekREhYVwFjOyANYDabyoTFFn84tYHXEdkor3 EjDiEslmRRxXvT1gZZ2mSnO1j4F8ot2YBc1W+y9mgjm4soM3f0Sjj+lui0umNjNn w/kx0AmlKkV8tErpmU8hA09k4yoRcuUzPgA+cbt8DyKtaDZnxl575hteyS15AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn+/7CojibGGTWh12nhJVBiOHh6QwHwYDVR0j BBgwFoAUoX3FWEW3AQbOs6SYSWRUvmQPRKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMC9BMTdEQzU1ODQ1 QjcwMTA2Q0VCM0E0OTg0OTY0NTRCRTY0MEY0NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2NDBG NDRBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzMzMTJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZx/4MA0GCSqG SIb3DQEBCwUAA4IBAQCh1hSB4bmh4Mq2J5dSO4naXBksUuPsgmaPN1N4YaI3IEpm 0CHrfq97VfhOBl5FttDL0RDZZ7OGMv3SYpeMpvwECJCAqNNVRrPqc1D8kRoMOVLy 5F+EcnVud8CDNeecHQQ5nwg+dk+JOMs/OKD2F7S4wO9v/hz1K3poKkPAK7SvON3e V4xPncTEPvbBhzlFi9bjGhK0YwH4OmjZl0Hwv0Ey5ZFIOfCtHBY2DOduRiD3U66M 0zJkXzH4mCHFiHABNOmcS2RVEgS63Y0pVD2iGi92mJbk99j/seLhvYSbLbN8nrEh 0JLv55KZ6bCtW93GqWPDXqWy4GM1bJp5AugaAxHn -----END CERTIFICATE-----Generated at Sun Jun 8 00:24:17 2025 by rpki-client