$ rpki-client -vvf repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa File: 3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa (raw, json) Hash identifier: B3IC/AW+40oETvGKZUM7eObcGOyNmLTwTu+s/VISsCU= Subject key identifier: 44:36:37:90:FF:1D:9B:1C:2E:12:B2:1E:C3:51:33:C2:16:26:27:45 Certificate issuer: /CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Certificate serial: 7D73DEE3D2E5C933C2EB313C76CED4697B794C17 Authority key identifier: 37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa Signing time: Sat 24 May 2025 10:00:00 +0000 ROA not before: Sat 24 May 2025 09:55:00 +0000 ROA not after: Sat 23 May 2026 10:00:00 +0000 asID: 45724 IP address blocks: 103.231.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:73:de:e3:d2:e5:c9:33:c2:eb:31:3c:76:ce:d4:69:7b:79:4c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Validity Not Before: May 24 09:55:00 2025 GMT Not After : May 23 10:00:00 2026 GMT Subject: CN=44363790FF1D9B1C2E12B21EC35133C216262745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e1:8e:73:3c:23:01:7c:a1:20:05:b5:83:ea: ef:0c:ad:9b:10:30:34:db:2b:a9:a9:67:12:35:60: ee:a6:e2:78:07:1c:ba:53:c1:0c:db:c7:fc:1d:65: c0:74:03:e2:3d:4c:40:30:ec:14:f2:29:b5:81:dd: 4c:fa:df:7d:16:b1:eb:55:62:a2:32:4d:11:da:e2: d5:dd:50:db:1c:43:32:8d:83:9b:24:b1:49:1b:b8: 54:8b:f5:be:c6:1f:78:d4:26:5a:38:b3:c2:79:4f: 4b:a5:01:42:ec:cd:50:13:7a:35:0d:c8:81:73:66: e1:5b:5c:d8:48:5b:2b:25:9b:a3:e4:89:9a:44:75: e5:d4:ae:c9:4c:60:2e:d6:23:74:2d:56:c9:6b:84: b0:a0:86:40:73:7c:0b:df:a9:dc:bb:2e:77:a9:14: 30:86:09:db:b1:97:80:0f:a0:7f:62:0d:c6:77:f5: 28:51:41:be:7a:b7:cf:78:af:ce:ed:b3:7a:97:45: 8b:43:c3:ca:e8:9e:e6:ee:cb:b0:5c:72:cd:04:8a: 64:bf:6f:fa:00:a9:67:aa:e7:96:cf:17:cc:d6:ac: 47:68:f8:d2:ab:da:28:a8:f4:98:d7:e8:e1:b7:c3: de:4a:c4:af:55:ae:88:b1:40:ce:3c:a1:5f:7a:10: 7e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:36:37:90:FF:1D:9B:1C:2E:12:B2:1E:C3:51:33:C2:16:26:27:45 X509v3 Authority Key Identifier: keyid:37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.112.0/22 Signature Algorithm: sha256WithRSAEncryption 70:26:14:c4:ce:c6:ec:be:56:f6:9b:dc:79:98:1f:0e:cd:a6: f0:1a:a0:0d:99:d0:48:f6:7b:44:21:61:3f:62:4b:d2:84:57: 77:d3:96:5c:dc:11:ee:3d:a3:e6:ab:5b:ed:75:a2:08:99:45: 22:fd:2b:1b:3a:6c:4f:f3:e6:52:ff:9a:68:a9:c5:0c:57:5e: a3:df:97:a8:e0:c1:8b:a3:81:42:14:dd:1b:88:0f:7d:47:44: 1d:a2:6a:ae:80:1c:13:01:a7:68:b2:80:fa:47:b9:a4:9b:dc: ee:52:dd:08:7f:0f:75:ad:16:bb:6d:98:36:00:6d:64:71:e8: ad:ad:96:7a:1e:98:78:9e:83:c8:eb:1d:d8:98:99:81:14:93: 21:6a:e6:54:02:c2:54:55:c5:63:c6:bd:9d:4d:39:f6:ae:bd: 39:7f:bc:f1:0e:01:08:82:87:62:46:e6:ea:3b:98:b5:42:d9: 52:9b:b9:94:b0:0a:7e:77:96:ad:d5:0a:6b:e6:7a:b2:5d:a5: 82:0d:46:28:18:4e:de:f9:dd:85:8e:6f:4b:89:90:18:4f:ac: c1:c5:a0:52:fb:08:6d:83:5c:4b:23:02:5b:6b:a0:09:ca:c4: dd:20:be:35:e3:07:2b:a5:cf:1e:15:cf:41:73:c9:84:72:65: a7:fe:11:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfXPe49LlyTPC6zE8ds7UaXt5TBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBD ODhFNEJBOTAeFw0yNTA1MjQwOTU1MDBaFw0yNjA1MjMxMDAwMDBaMDMxMTAvBgNV BAMTKDQ0MzYzNzkwRkYxRDlCMUMyRTEyQjIxRUMzNTEzM0MyMTYyNjI3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq4Y5zPCMBfKEgBbWD6u8MrZsQ MDTbK6mpZxI1YO6m4ngHHLpTwQzbx/wdZcB0A+I9TEAw7BTyKbWB3Uz6330WsetV YqIyTRHa4tXdUNscQzKNg5sksUkbuFSL9b7GH3jUJlo4s8J5T0ulAULszVATejUN yIFzZuFbXNhIWyslm6PkiZpEdeXUrslMYC7WI3QtVslrhLCghkBzfAvfqdy7Lnep FDCGCduxl4APoH9iDcZ39ShRQb56t894r87ts3qXRYtDw8ronubuy7Bccs0EimS/ b/oAqWeq55bPF8zWrEdo+NKr2iio9JjX6OG3w95KxK9VroixQM48oV96EH6hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURDY3kP8dmxwuErIew1EzwhYmJ0UwHwYDVR0j BBgwFoAUNxln370gOi/UToj3htnw8MiOS6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWI4Yjg4OS0zYjNkLTRlZjUtYWQ3MC01YjEwNDVlZmYzOTMvMC8zNzE5NjdERkJE MjAzQTJGRDQ0RTg4Rjc4NkQ5RjBGMEM4OEU0QkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBDODhF NEJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYjhiODg5LTNiM2QtNGVmNS1h ZDcwLTViMTA0NWVmZjM5My8wLzMxMzAzMzJlMzIzMzMxMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dwMA0GCSqG SIb3DQEBCwUAA4IBAQBwJhTEzsbsvlb2m9x5mB8OzabwGqANmdBI9ntEIWE/YkvS hFd305Zc3BHuPaPmq1vtdaIImUUi/SsbOmxP8+ZS/5poqcUMV16j35eo4MGLo4FC FN0biA99R0QdomqugBwTAadosoD6R7mkm9zuUt0Ifw91rRa7bZg2AG1kceitrZZ6 Hph4noPI6x3YmJmBFJMhauZUAsJUVcVjxr2dTTn2rr05f7zxDgEIgodiRubqO5i1 QtlSm7mUsAp+d5at1Qpr5nqyXaWCDUYoGE7e+d2Fjm9LiZAYT6zBxaBS+whtg1xL IwJba6AJysTdIL414wcrpc8eFc9Bc8mEcmWn/hHP -----END CERTIFICATE-----Generated at Sat Jun 7 14:04:00 2025 by rpki-client