$ rpki-client -vvf repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa File: 3130332e38322e362e302f32342d3234203d3e20313335343733.roa (raw, json) Hash identifier: smjXAwBZ8gC1UI5HEgA5re887jNAObd+a11KYcB/yac= Subject key identifier: B0:47:B9:49:24:F8:1A:02:70:82:20:B9:C6:9B:9A:27:06:44:9F:A5 Certificate issuer: /CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Certificate serial: 2A3A767B3AA5E480DCF708FB19D9BD98BC7B9478 Authority key identifier: 21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa Signing time: Mon 02 Jun 2025 02:02:57 +0000 ROA not before: Mon 02 Jun 2025 01:57:57 +0000 ROA not after: Mon 01 Jun 2026 02:02:57 +0000 asID: 135473 IP address blocks: 103.82.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3a:76:7b:3a:a5:e4:80:dc:f7:08:fb:19:d9:bd:98:bc:7b:94:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Validity Not Before: Jun 2 01:57:57 2025 GMT Not After : Jun 1 02:02:57 2026 GMT Subject: CN=B047B94924F81A02708220B9C69B9A2706449FA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e5:41:5b:c3:94:27:57:04:3c:23:3b:fd:4e: 8b:c8:e5:c9:25:ae:64:69:9f:75:e9:7a:ba:03:ae: 01:2e:c1:b7:9b:b8:30:64:75:08:af:89:f8:ef:51: 8b:72:b6:c0:c1:ad:07:e7:8f:a1:5d:d4:af:2b:e7: f2:57:19:68:43:d1:fe:ac:83:5f:d5:d9:f5:c6:5c: ba:a8:64:8f:08:72:44:28:a8:0d:45:87:da:21:76: 0d:00:44:61:b4:49:62:41:d5:6e:f1:88:3c:a0:61: d1:27:62:2c:14:1b:37:dc:09:60:c6:1c:d5:9b:cf: 87:0e:df:cf:03:93:d8:1f:82:37:65:b1:a4:9e:64: 79:79:10:ec:c9:5d:2c:43:71:31:06:19:76:bc:a6: 1d:98:9b:b1:9c:04:d0:6b:77:be:4a:8d:99:93:3b: 39:2e:07:d6:1c:79:bb:8a:7b:98:dc:d9:1c:d1:02: 12:56:df:33:46:1a:e4:66:20:c5:8e:63:8b:c0:41: 82:03:79:53:a0:71:ab:a2:ff:b6:36:88:bd:3c:18: 78:2a:11:67:45:39:c8:ff:64:33:59:f4:6d:f9:eb: e7:39:a2:d5:2d:a2:9e:79:3f:32:b0:96:f8:56:ea: bb:06:8f:a8:04:5d:e9:5f:01:7f:8a:2d:13:a4:67: 33:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:47:B9:49:24:F8:1A:02:70:82:20:B9:C6:9B:9A:27:06:44:9F:A5 X509v3 Authority Key Identifier: keyid:21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.6.0/24 Signature Algorithm: sha256WithRSAEncryption 37:03:0c:90:78:28:b7:97:db:eb:26:be:6c:e8:7a:10:2f:39: 31:53:69:ae:a9:d2:eb:05:00:d1:74:32:c2:cc:47:e3:6a:e7: 9f:06:ff:fe:cd:5e:0e:48:66:ce:e0:2a:13:c9:b7:bc:19:5a: 3f:51:e7:8f:ce:62:ce:96:ce:16:9c:17:98:88:7a:89:50:31: 35:57:e9:dc:c6:eb:60:ca:95:f5:a5:d2:02:f6:30:f2:b8:ba: 86:17:b4:a8:0d:de:7c:e5:c7:a1:1b:66:58:c7:30:9e:db:5a: b5:8e:05:1c:eb:04:a7:42:db:c3:31:8e:30:4e:aa:d6:b7:6a: a5:5d:a0:e9:02:a0:ec:28:72:37:41:a1:64:c2:9b:34:46:9f: 80:4d:fb:77:64:e0:eb:13:d7:61:ca:3d:d8:d2:6e:9a:a2:8d: 60:68:9c:6f:cf:a5:e9:fb:1c:64:31:e0:29:80:4e:8a:14:c5: 87:bf:0a:97:92:ad:42:b8:33:41:06:37:7c:e5:6c:ed:0b:ce: 15:94:7f:4b:dd:2d:17:c3:3b:f2:1f:d3:c5:57:12:fb:e5:c3: cc:13:34:cb:7a:5b:9d:4c:bd:7e:59:14:c3:b4:18:ef:c6:6e: d1:fd:f0:d8:80:ee:c3:01:97:0b:a7:1e:0e:57:b2:fd:18:0e: 29:c4:9a:4a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKjp2ezql5IDc9wj7Gdm9mLx7lHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZC ODhBMzJBOTAeFw0yNTA2MDIwMTU3NTdaFw0yNjA2MDEwMjAyNTdaMDMxMTAvBgNV BAMTKEIwNDdCOTQ5MjRGODFBMDI3MDgyMjBCOUM2OUI5QTI3MDY0NDlGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5UFbw5QnVwQ8Izv9TovI5ckl rmRpn3XperoDrgEuwbebuDBkdQivifjvUYtytsDBrQfnj6Fd1K8r5/JXGWhD0f6s g1/V2fXGXLqoZI8IckQoqA1Fh9ohdg0ARGG0SWJB1W7xiDygYdEnYiwUGzfcCWDG HNWbz4cO388Dk9gfgjdlsaSeZHl5EOzJXSxDcTEGGXa8ph2Ym7GcBNBrd75KjZmT OzkuB9YcebuKe5jc2RzRAhJW3zNGGuRmIMWOY4vAQYIDeVOgcaui/7Y2iL08GHgq EWdFOcj/ZDNZ9G356+c5otUtop55PzKwlvhW6rsGj6gEXelfAX+KLROkZzOHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsEe5SST4GgJwgiC5xpuaJwZEn6UwHwYDVR0j BBgwFoAUIQ/ZjrTZpNjQ/Lmy87u8f7iKMqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mjc4OGM4OC1jYTJjLTRmYTAtYTM1Zi0zZTdhMTA4ODcyMjgvMC8yMTBGRDk4RUI0 RDlBNEQ4RDBGQ0I5QjJGM0JCQkM3RkI4OEEzMkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZCODhB MzJBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNzg4Yzg4LWNhMmMtNGZhMC1h MzVmLTNlN2ExMDg4NzIyOC8wLzMxMzAzMzJlMzgzMjJlMzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnUgYwDQYJKoZIhvcN AQELBQADggEBADcDDJB4KLeX2+smvmzoehAvOTFTaa6p0usFANF0MsLMR+Nq558G //7NXg5IZs7gKhPJt7wZWj9R54/OYs6WzhacF5iIeolQMTVX6dzG62DKlfWl0gL2 MPK4uoYXtKgN3nzlx6EbZljHMJ7bWrWOBRzrBKdC28MxjjBOqta3aqVdoOkCoOwo cjdBoWTCmzRGn4BN+3dk4OsT12HKPdjSbpqijWBonG/Ppen7HGQx4CmATooUxYe/ CpeSrUK4M0EGN3zlbO0LzhWUf0vdLRfDO/If08VXEvvlw8wTNMt6W51MvX5ZFMO0 GO/GbtH98NiA7sMBlwunHg5Xsv0YDinEmko= -----END CERTIFICATE-----Generated at Sat Jun 7 14:51:11 2025 by rpki-client