$ rpki-client -vvf repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3130332e31382e3133322e302f32322d3234203d3e203535363933.roa File: 3130332e31382e3133322e302f32322d3234203d3e203535363933.roa (raw, json) Hash identifier: n2P3Yp+pRtsLYzAJB7+7TGk1BY1SpgPoZfiLyMV51xc= Subject key identifier: 32:4A:9A:6B:93:F6:F3:D2:EB:F6:74:03:45:AF:22:31:CA:0F:A2:6D Certificate issuer: /CN=C6F736EFBEBD1A0143DB0A57A143545915A18B33 Certificate serial: 550DABD525F0FFE00174AD5D3296DDFB49EB4CF2 Authority key identifier: C6:F7:36:EF:BE:BD:1A:01:43:DB:0A:57:A1:43:54:59:15:A1:8B:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3130332e31382e3133322e302f32322d3234203d3e203535363933.roa Signing time: Mon 02 Jun 2025 01:02:44 +0000 ROA not before: Mon 02 Jun 2025 00:57:44 +0000 ROA not after: Mon 01 Jun 2026 01:02:44 +0000 asID: 55693 IP address blocks: 103.18.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.crl rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0d:ab:d5:25:f0:ff:e0:01:74:ad:5d:32:96:dd:fb:49:eb:4c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F736EFBEBD1A0143DB0A57A143545915A18B33 Validity Not Before: Jun 2 00:57:44 2025 GMT Not After : Jun 1 01:02:44 2026 GMT Subject: CN=324A9A6B93F6F3D2EBF6740345AF2231CA0FA26D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3f:aa:49:e8:d5:58:7a:58:93:94:25:53:5c: 3c:be:11:e6:42:5a:96:af:82:44:db:87:e6:af:54: fa:c7:42:a8:27:cc:ae:96:25:06:ff:bc:80:8a:d3: 53:46:4f:de:58:50:5a:42:79:bd:67:f3:e2:af:92: 49:f1:6e:5a:29:2d:06:7d:61:41:1b:94:8f:2d:f2: 95:28:e2:a0:50:b5:22:3b:e8:43:2c:56:bd:3d:d3: 4a:dc:26:05:4c:ee:5e:44:c6:b3:da:e3:4d:f5:cf: 2e:b7:87:d1:ca:75:c6:c0:f4:38:84:3d:a2:09:4f: e6:87:c1:90:91:c7:e8:fb:5e:70:15:2a:6c:76:49: 09:f9:67:30:1d:71:7b:5b:b6:5f:94:80:76:f8:83: 8b:9a:fa:88:86:87:59:21:b8:ac:b2:9e:25:91:17: 08:e9:68:1e:fe:15:ac:f6:c7:0e:49:0c:bb:62:fe: c4:cf:09:ca:4b:d5:57:a0:e7:13:d0:61:cf:46:06: 46:fb:5b:85:bc:86:91:4f:32:2a:64:26:02:36:7b: c2:c1:a0:09:d9:3c:0f:58:86:c2:3d:e3:ca:46:70: a1:88:34:4a:74:83:c6:16:f3:b5:a6:c6:99:da:bf: 95:f9:02:dc:86:b8:7a:58:d1:78:83:96:f0:1a:7c: d2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4A:9A:6B:93:F6:F3:D2:EB:F6:74:03:45:AF:22:31:CA:0F:A2:6D X509v3 Authority Key Identifier: keyid:C6:F7:36:EF:BE:BD:1A:01:43:DB:0A:57:A1:43:54:59:15:A1:8B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/C6F736EFBEBD1A0143DB0A57A143545915A18B33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6F736EFBEBD1A0143DB0A57A143545915A18B33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd54b4e2-2e58-465b-afaa-1c9465c882e6/0/3130332e31382e3133322e302f32322d3234203d3e203535363933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.132.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:1f:33:fa:7f:e6:ef:7d:1e:b7:cb:bc:2c:a9:7c:3f:66:77: 72:af:4a:60:43:39:0a:6c:c4:5a:8f:21:03:3f:c5:4e:e7:67: 8f:82:93:83:c6:d0:a9:ff:18:32:25:40:5c:ae:28:2d:29:81: 2d:48:eb:ad:83:9b:b0:e7:ec:13:5f:b2:b7:45:15:cc:17:d6: 00:8c:43:e4:f4:6a:c1:f9:05:af:8c:59:2e:40:52:3d:3f:90: 0f:17:eb:bd:b0:8b:55:03:75:b9:b7:dd:d9:1e:8a:ac:27:df: 64:78:4e:db:8f:46:36:a2:7a:b3:d2:c1:f2:e0:f8:fa:a4:24: 2f:6e:47:cd:ca:f8:a8:1d:72:20:a2:90:39:fe:05:47:e9:7a: 93:10:95:43:dc:9a:b8:61:61:ab:ec:e1:9e:92:2e:c1:7f:a9: 5d:cd:42:74:50:89:0d:6c:b1:25:2f:1b:72:87:3c:19:cb:db: 9c:fb:3c:15:b4:af:b9:bf:c6:35:a1:eb:36:30:24:b1:df:a4: 5d:c4:93:b2:40:ac:af:f3:17:8b:11:86:43:a7:cd:09:46:f5: d3:e4:89:9a:89:12:2e:ad:56:a9:03:cc:11:57:60:5e:d0:a4: 83:5f:c4:25:4c:0b:eb:10:52:e7:3c:a4:e9:64:8c:44:18:5f: f4:7a:a8:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVQ2r1SXw/+ABdK1dMpbd+0nrTPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGNzM2RUZCRUJEMUEwMTQzREIwQTU3QTE0MzU0NTkx NUExOEIzMzAeFw0yNTA2MDIwMDU3NDRaFw0yNjA2MDEwMTAyNDRaMDMxMTAvBgNV BAMTKDMyNEE5QTZCOTNGNkYzRDJFQkY2NzQwMzQ1QUYyMjMxQ0EwRkEyNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpP6pJ6NVYeliTlCVTXDy+EeZC WpavgkTbh+avVPrHQqgnzK6WJQb/vICK01NGT95YUFpCeb1n8+KvkknxblopLQZ9 YUEblI8t8pUo4qBQtSI76EMsVr0900rcJgVM7l5ExrPa4031zy63h9HKdcbA9DiE PaIJT+aHwZCRx+j7XnAVKmx2SQn5ZzAdcXtbtl+UgHb4g4ua+oiGh1khuKyyniWR FwjpaB7+Faz2xw5JDLti/sTPCcpL1Veg5xPQYc9GBkb7W4W8hpFPMipkJgI2e8LB oAnZPA9YhsI948pGcKGINEp0g8YW87Wmxpnav5X5AtyGuHpY0XiDlvAafNL3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMkqaa5P289Lr9nQDRa8iMcoPom0wHwYDVR0j BBgwFoAUxvc27769GgFD2wpXoUNUWRWhizMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDU0YjRlMi0yZTU4LTQ2NWItYWZhYS0xYzk0NjVjODgyZTYvMC9DNkY3MzZFRkJF QkQxQTAxNDNEQjBBNTdBMTQzNTQ1OTE1QTE4QjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzZGNzM2RUZCRUJEMUEwMTQzREIwQTU3QTE0MzU0NTkxNUEx OEIzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNTRiNGUyLTJlNTgtNDY1Yi1h ZmFhLTFjOTQ2NWM4ODJlNi8wLzMxMzAzMzJlMzEzODJlMzEzMzMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcShDANBgkqhkiG 9w0BAQsFAAOCAQEAax8z+n/m730et8u8LKl8P2Z3cq9KYEM5CmzEWo8hAz/FTudn j4KTg8bQqf8YMiVAXK4oLSmBLUjrrYObsOfsE1+yt0UVzBfWAIxD5PRqwfkFr4xZ LkBSPT+QDxfrvbCLVQN1ubfd2R6KrCffZHhO249GNqJ6s9LB8uD4+qQkL25Hzcr4 qB1yIKKQOf4FR+l6kxCVQ9yauGFhq+zhnpIuwX+pXc1CdFCJDWyxJS8bcoc8Gcvb nPs8FbSvub/GNaHrNjAksd+kXcSTskCsr/MXixGGQ6fNCUb10+SJmokSLq1WqQPM EVdgXtCkg1/EJUwL6xBS5zyk6WSMRBhf9HqoEw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:33 2025 by rpki-client