$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32342d3234203d3e20313331373735.roa File: 3130332e3235312e34342e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: Ha3WoHQ/zP70el2yWIeTgLkGHqYuIOHL7pH96V5JFfw= Subject key identifier: C7:90:03:E3:FC:37:A9:15:5E:7C:6E:20:46:BF:96:5E:5F:B9:02:30 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 04774A733A81B5896C3BBEB2C804F21D4920C09B Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:49 +0000 ROA not before: Mon 02 Jun 2025 01:57:49 +0000 ROA not after: Mon 01 Jun 2026 02:02:49 +0000 asID: 131775 IP address blocks: 103.251.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:77:4a:73:3a:81:b5:89:6c:3b:be:b2:c8:04:f2:1d:49:20:c0:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:49 2025 GMT Not After : Jun 1 02:02:49 2026 GMT Subject: CN=C79003E3FC37A9155E7C6E2046BF965E5FB90230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:75:c8:9f:06:d2:4c:a5:de:ea:69:b3:c0: a3:6a:44:ad:21:75:15:6d:12:70:5a:34:6c:63:d4: ab:7b:b2:f0:3c:66:4a:1e:d7:3b:cc:dc:2d:21:e7: 18:3b:68:58:6e:47:78:4e:89:bc:41:6a:c1:36:1a: 6e:30:ee:f4:97:a2:08:e5:28:e4:28:4e:b0:52:a0: c3:fb:a9:5e:d6:4c:d8:44:3b:9d:2f:ac:e3:a1:14: 35:6d:f3:85:38:3b:3a:df:cb:20:6c:23:9a:9c:b9: e4:46:3e:7b:8d:f1:04:69:7e:ec:a1:30:f7:4a:1b: ab:17:07:96:7d:2c:76:79:84:bb:9e:66:69:c7:19: cb:29:3c:41:cd:a8:42:2f:8a:99:38:33:af:ef:d7: a8:3e:74:9a:55:f1:61:09:5b:cb:b3:bb:07:23:a4: da:e4:8a:99:d2:59:99:ac:b3:0a:bd:d0:f1:2d:46: 32:4c:e0:fd:eb:78:e5:2d:b8:a0:a2:0d:ef:48:7f: 21:14:30:0f:26:33:bc:50:00:ed:05:1c:06:15:f6: 39:72:51:f4:54:88:1d:2c:38:d4:2c:5e:b4:11:71: 7e:5e:73:4f:f3:ca:49:e7:3a:98:b4:e5:ee:de:4c: cc:04:08:ec:32:57:25:3c:a2:98:c2:58:87:1d:c9: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:90:03:E3:FC:37:A9:15:5E:7C:6E:20:46:BF:96:5E:5F:B9:02:30 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e3235312e34342e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.251.44.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:ff:f1:1e:a3:c5:fc:06:14:44:e8:08:b2:82:29:8b:77:3b: 8d:01:ca:ca:de:74:8f:29:9f:26:d6:17:e6:fe:77:89:20:df: 77:8b:db:98:16:c4:29:6d:20:65:94:f7:75:ad:f1:17:3c:b0: 98:9c:bc:a4:3b:1c:23:cc:ed:3c:db:02:3c:42:dd:61:fd:ac: 94:80:d4:68:1d:39:38:da:14:17:be:e5:e2:cc:23:a7:ba:01: 78:03:dd:e2:7f:c1:59:82:53:d8:6a:39:22:18:31:60:10:44: ae:b1:e4:09:cc:4c:29:56:c9:8a:9b:3f:8f:f9:6e:9f:5e:56: d1:fa:9f:27:97:f1:92:18:b1:23:61:12:49:b4:fc:ad:7e:96: 4e:8e:55:ea:58:c6:11:92:3e:e5:1e:57:df:b9:95:3a:56:db: 51:3f:99:c0:c1:6f:f4:da:6e:64:a3:42:c2:24:34:1e:8f:39: 95:9d:f7:21:f9:6c:b4:a1:87:f7:6d:57:88:bd:73:f2:60:59: 6b:4e:63:bc:ca:f2:fc:1a:e4:e2:19:f1:77:c9:22:0a:2d:25: 25:51:a8:13:16:a2:b7:cd:7d:42:7e:d5:ce:cf:0d:96:1d:b1: 08:32:09:b1:55:d2:f0:fb:d1:b2:af:b5:de:74:6f:20:2c:c2: 10:70:89:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBHdKczqBtYlsO76yyATyHUkgwJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDlaFw0yNjA2MDEwMjAyNDlaMDMxMTAvBgNV BAMTKEM3OTAwM0UzRkMzN0E5MTU1RTdDNkUyMDQ2QkY5NjVFNUZCOTAyMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCySHXInwbSTKXe6mmzwKNqRK0h dRVtEnBaNGxj1Kt7svA8Zkoe1zvM3C0h5xg7aFhuR3hOibxBasE2Gm4w7vSXogjl KOQoTrBSoMP7qV7WTNhEO50vrOOhFDVt84U4OzrfyyBsI5qcueRGPnuN8QRpfuyh MPdKG6sXB5Z9LHZ5hLueZmnHGcspPEHNqEIvipk4M6/v16g+dJpV8WEJW8uzuwcj pNrkipnSWZmsswq90PEtRjJM4P3reOUtuKCiDe9IfyEUMA8mM7xQAO0FHAYV9jly UfRUiB0sONQsXrQRcX5ec0/zyknnOpi05e7eTMwECOwyVyU8opjCWIcdyfBDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx5AD4/w3qRVefG4gRr+WXl+5AjAwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzIzNTMxMmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/ssMA0GCSqG SIb3DQEBCwUAA4IBAQAc//Eeo8X8BhRE6AiygimLdzuNAcrK3nSPKZ8m1hfm/neJ IN93i9uYFsQpbSBllPd1rfEXPLCYnLykOxwjzO082wI8Qt1h/ayUgNRoHTk42hQX vuXizCOnugF4A93if8FZglPYajkiGDFgEESuseQJzEwpVsmKmz+P+W6fXlbR+p8n l/GSGLEjYRJJtPytfpZOjlXqWMYRkj7lHlffuZU6VttRP5nAwW/02m5ko0LCJDQe jzmVnfch+Wy0oYf3bVeIvXPyYFlrTmO8yvL8GuTiGfF3ySIKLSUlUagTFqK3zX1C ftXOzw2WHbEIMgmxVdLw+9Gyr7XedG8gLMIQcIl3 -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:02 2025 by rpki-client