$ rpki-client -vvf repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32342d3234203d3e20313339343237.roa File: 3130332e33312e3234382e302f32342d3234203d3e20313339343237.roa (raw, json) Hash identifier: 9cImEVaK5OCHdSpqIXpI9zJWU7YI86G2S7wFTBzx17w= Subject key identifier: 6A:06:1D:0A:FE:AF:D7:77:B1:D3:1D:89:E0:E8:0E:F0:0B:7D:C2:A0 Certificate issuer: /CN=A17DC55845B70106CEB3A498496454BE640F44AB Certificate serial: 0FC35CCB6E5157F4E2BECE8CD47AD107E3ED8967 Authority key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32342d3234203d3e20313339343237.roa Signing time: Fri 06 Jun 2025 20:00:01 +0000 ROA not before: Fri 06 Jun 2025 19:55:01 +0000 ROA not after: Fri 05 Jun 2026 20:00:01 +0000 asID: 139427 IP address blocks: 103.31.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c3:5c:cb:6e:51:57:f4:e2:be:ce:8c:d4:7a:d1:07:e3:ed:89:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A17DC55845B70106CEB3A498496454BE640F44AB Validity Not Before: Jun 6 19:55:01 2025 GMT Not After : Jun 5 20:00:01 2026 GMT Subject: CN=6A061D0AFEAFD777B1D31D89E0E80EF00B7DC2A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:85:f2:08:9d:6f:7e:9f:e9:17:29:ff:c1: b6:fb:19:21:70:6c:81:b6:47:ba:76:76:42:2c:d0: c7:59:73:79:e8:cd:34:89:04:75:47:4a:65:30:ea: 35:0e:96:f7:af:a8:8f:d9:9e:de:5b:07:e5:92:5e: 31:3d:60:d6:7b:f8:42:9c:56:81:2d:98:85:d8:bd: f4:28:1e:7d:80:46:2e:5a:6a:7c:e6:6f:ce:c8:6e: 38:a3:3a:b7:56:4a:39:2b:7d:2e:36:fb:80:f2:7e: 3e:a3:5c:f5:b2:2f:f4:80:f4:19:61:97:12:a5:f1: 7d:f7:5b:71:d5:7e:82:46:70:56:72:b9:74:60:15: 52:c9:46:6b:e2:b1:d9:d8:37:73:9c:96:a9:e5:45: 1e:e8:89:e9:34:90:cf:d3:31:19:b6:2d:28:53:e7: 29:79:ad:a3:e9:40:36:2f:60:91:12:38:b5:18:f4: c6:d8:a1:2b:d5:00:2e:e7:57:6f:88:50:09:2a:40: 0d:c6:5b:2a:f4:ca:79:33:38:6b:09:91:ff:95:02: 3e:18:80:9e:92:0a:c1:06:2b:8d:af:c5:36:37:b0: e1:a4:f4:83:98:a3:c7:73:a7:63:1d:5f:b6:ed:59: 6a:44:78:cf:05:10:78:a2:b6:f9:32:39:c7:a7:e1: f3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:06:1D:0A:FE:AF:D7:77:B1:D3:1D:89:E0:E8:0E:F0:0B:7D:C2:A0 X509v3 Authority Key Identifier: keyid:A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32342d3234203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.248.0/24 Signature Algorithm: sha256WithRSAEncryption 78:1c:41:32:30:e1:98:a7:33:0c:eb:83:a1:87:15:00:da:c0: 2e:1b:de:b4:24:aa:da:c8:98:95:08:6c:bd:c1:cf:a0:1d:e1: 28:e5:77:f2:f0:19:5f:f2:7e:86:4f:22:d7:61:98:a1:06:39: 28:12:c8:49:9b:8a:13:95:02:08:2a:8f:ec:00:a7:ae:fe:c0: ba:57:eb:e6:58:05:dd:74:36:9a:0f:f8:bd:eb:31:c0:3e:e3: 9a:52:d8:ff:e9:e7:56:6e:ea:87:78:98:9b:5d:bc:d6:fb:eb: 62:58:7b:aa:09:66:fe:9a:b9:e3:e9:3f:d7:1d:d9:b3:1f:74: 3f:52:85:1a:21:c8:ed:fc:df:91:7d:a2:c1:e9:ad:69:3e:ed: 91:ab:f5:ba:a2:da:50:1f:7e:f7:ad:a1:89:dc:72:b7:c3:e9: b2:85:76:ed:fd:21:ba:4b:41:04:d7:fe:8f:f7:99:a5:5f:09: 74:15:ba:a9:8b:d3:92:cd:9d:32:67:bf:be:01:57:01:04:ba: 79:ba:07:dd:86:0d:d6:82:2d:29:f2:d0:8d:e1:31:37:66:9c: c7:9a:a5:18:4c:2f:4a:c3:57:fc:db:79:f4:92:b3:30:49:9a: 0b:31:30:8d:00:db:35:18:15:83:56:a0:10:cb:02:6c:6d:8b: 87:87:16:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD8Ncy25RV/Tivs6M1HrRB+PtiWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2 NDBGNDRBQjAeFw0yNTA2MDYxOTU1MDFaFw0yNjA2MDUyMDAwMDFaMDMxMTAvBgNV BAMTKDZBMDYxRDBBRkVBRkQ3NzdCMUQzMUQ4OUUwRTgwRUYwMEI3REMyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RYXyCJ1vfp/pFyn/wbb7GSFw bIG2R7p2dkIs0MdZc3nozTSJBHVHSmUw6jUOlvevqI/Znt5bB+WSXjE9YNZ7+EKc VoEtmIXYvfQoHn2ARi5aanzmb87IbjijOrdWSjkrfS42+4Dyfj6jXPWyL/SA9Blh lxKl8X33W3HVfoJGcFZyuXRgFVLJRmvisdnYN3OclqnlRR7oiek0kM/TMRm2LShT 5yl5raPpQDYvYJESOLUY9MbYoSvVAC7nV2+IUAkqQA3GWyr0ynkzOGsJkf+VAj4Y gJ6SCsEGK42vxTY3sOGk9IOYo8dzp2MdX7btWWpEeM8FEHiitvkyOcen4fMtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUagYdCv6v13ex0x2J4OgO8At9wqAwHwYDVR0j BBgwFoAUoX3FWEW3AQbOs6SYSWRUvmQPRKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMC9BMTdEQzU1ODQ1 QjcwMTA2Q0VCM0E0OTg0OTY0NTRCRTY0MEY0NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2NDBG NDRBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzMzMTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/4MA0GCSqG SIb3DQEBCwUAA4IBAQB4HEEyMOGYpzMM64OhhxUA2sAuG960JKrayJiVCGy9wc+g HeEo5Xfy8Blf8n6GTyLXYZihBjkoEshJm4oTlQIIKo/sAKeu/sC6V+vmWAXddDaa D/i96zHAPuOaUtj/6edWbuqHeJibXbzW++tiWHuqCWb+mrnj6T/XHdmzH3Q/UoUa Icjt/N+RfaLB6a1pPu2Rq/W6otpQH373raGJ3HK3w+myhXbt/SG6S0EE1/6P95ml Xwl0Fbqpi9OSzZ0yZ7++AVcBBLp5ugfdhg3Wgi0p8tCN4TE3ZpzHmqUYTC9Kw1f8 23n0krMwSZoLMTCNANs1GBWDVqAQywJsbYuHhxYs -----END CERTIFICATE-----Generated at Sun Jun 8 00:52:08 2025 by rpki-client