$ rpki-client -vvf repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/3130332e3231392e37322e302f32322d3234203d3e20313335343635.roa File: 3130332e3231392e37322e302f32322d3234203d3e20313335343635.roa (raw, json) Hash identifier: cwL/Wm98vbTxoyJQfTlH4ycMGF6EbITvKpTsxzWifEM= Subject key identifier: 09:49:5D:70:E0:91:FD:31:A8:55:77:82:60:1F:1C:82:BB:C7:96:0C Certificate issuer: /CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Certificate serial: 43E968010D82026C4F05253D756385302E80D2C4 Authority key identifier: 45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/3130332e3231392e37322e302f32322d3234203d3e20313335343635.roa Signing time: Mon 02 Jun 2025 02:04:17 +0000 ROA not before: Mon 02 Jun 2025 01:59:17 +0000 ROA not after: Mon 01 Jun 2026 02:04:17 +0000 asID: 135465 IP address blocks: 103.219.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e9:68:01:0d:82:02:6c:4f:05:25:3d:75:63:85:30:2e:80:d2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Validity Not Before: Jun 2 01:59:17 2025 GMT Not After : Jun 1 02:04:17 2026 GMT Subject: CN=09495D70E091FD31A8557782601F1C82BBC7960C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fd:69:76:35:74:50:8d:f8:52:de:83:93:c3: 26:6d:4e:8d:4e:a7:95:1c:86:b4:78:c9:4d:72:9a: 66:b7:aa:ae:fd:e2:ed:ea:98:28:0a:7d:46:6d:f0: 7c:1c:0a:47:0c:4a:70:97:0a:a6:e3:3b:7f:18:bb: 36:a7:34:ea:c9:16:8e:32:04:48:9c:68:72:39:cb: 1c:ab:ae:52:8d:be:8d:3c:9b:86:5e:4a:1f:7a:4d: a6:d8:ec:03:cf:42:66:60:e9:41:71:db:29:6d:b9: 1a:03:5c:c2:aa:40:d5:2b:c1:12:d7:fb:b2:17:92: c0:9d:2b:55:bc:21:58:21:90:9d:24:40:b0:8a:6d: 0a:4d:94:b3:f1:51:c8:c4:79:09:5f:65:30:23:0c: c7:f1:fc:76:14:bf:7a:fb:92:a0:f8:3a:98:f1:3d: 74:08:e5:5b:83:df:c8:82:7e:e8:de:33:60:5b:11: 8b:a7:86:05:9a:f0:31:10:e1:42:19:b4:e5:f4:15: 79:10:72:6b:45:55:0c:3e:2d:f3:4b:e9:a1:c5:b3: 80:b2:4a:15:7b:37:9a:4b:90:61:a4:18:6f:e2:73: b4:21:58:7e:ae:69:f1:8e:4b:2b:a7:9a:ce:2e:46: a1:a1:ef:b6:87:5f:8e:bf:8a:20:18:bf:af:b6:74: 6c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:49:5D:70:E0:91:FD:31:A8:55:77:82:60:1F:1C:82:BB:C7:96:0C X509v3 Authority Key Identifier: keyid:45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/3130332e3231392e37322e302f32322d3234203d3e20313335343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.72.0/22 Signature Algorithm: sha256WithRSAEncryption bd:84:97:07:95:1a:67:97:b0:2b:47:87:68:a5:4d:dc:5b:c8: e2:e0:0c:1b:6d:22:0c:0f:65:55:44:1b:16:8b:f9:0f:8b:4d: 7a:46:76:42:47:72:b2:07:f1:c4:d7:9e:f7:e7:7b:13:37:37: b2:59:eb:ae:9f:8f:76:f2:d5:61:75:06:b1:0b:22:c6:8a:ba: 30:2b:82:98:d1:51:9e:21:94:cd:93:e6:30:af:1c:bd:6f:51: e7:4b:85:95:25:e7:20:a6:03:71:eb:4c:f4:e7:2a:a8:a2:4e: 5d:94:6d:a1:45:2f:e7:30:7a:2a:e8:a3:89:4e:2e:42:7c:ba: c5:b0:6b:eb:67:e0:f0:78:5a:38:3e:75:18:bd:3e:bc:b9:68: 70:c5:c4:6b:88:11:28:0f:37:1b:ae:3f:da:ef:55:45:cf:47: 22:cc:bc:92:b5:10:b4:ea:55:18:0e:c2:a9:f3:af:26:36:62: 8a:d1:14:a7:c4:8c:2f:f4:a8:9e:2d:36:e4:0a:81:a7:c1:7e: c1:1d:27:3d:38:9d:f6:c8:d7:d0:f4:ba:c6:1f:d3:8e:3d:c4: a2:8a:77:db:e2:47:48:78:af:6c:8b:e9:e0:cd:74:79:d8:ab: 09:71:e3:87:ea:f2:d0:fc:50:6e:f0:a4:3c:14:d1:3b:d2:3f: 6d:6c:d2:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ+loAQ2CAmxPBSU9dWOFMC6A0sQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNF MzVCNEM0NjAeFw0yNTA2MDIwMTU5MTdaFw0yNjA2MDEwMjA0MTdaMDMxMTAvBgNV BAMTKDA5NDk1RDcwRTA5MUZEMzFBODU1Nzc4MjYwMUYxQzgyQkJDNzk2MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx/Wl2NXRQjfhS3oOTwyZtTo1O p5UchrR4yU1ymma3qq794u3qmCgKfUZt8HwcCkcMSnCXCqbjO38YuzanNOrJFo4y BEicaHI5yxyrrlKNvo08m4ZeSh96TabY7APPQmZg6UFx2yltuRoDXMKqQNUrwRLX +7IXksCdK1W8IVghkJ0kQLCKbQpNlLPxUcjEeQlfZTAjDMfx/HYUv3r7kqD4Opjx PXQI5VuD38iCfujeM2BbEYunhgWa8DEQ4UIZtOX0FXkQcmtFVQw+LfNL6aHFs4Cy ShV7N5pLkGGkGG/ic7QhWH6uafGOSyunms4uRqGh77aHX46/iiAYv6+2dGxHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCUldcOCR/TGoVXeCYB8cgrvHlgwwHwYDVR0j BBgwFoAURVGgMsREhf9lk+BDUn4+HONbTEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2E2MmM5YS1kNGYwLTQ1NGItODA3Zi04NGY5YjNjMjAyYjMvMC80NTUxQTAzMkM0 NDQ4NUZGNjU5M0UwNDM1MjdFM0UxQ0UzNUI0QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNFMzVC NEM0Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYTYyYzlhLWQ0ZjAtNDU0Yi04 MDdmLTg0ZjliM2MyMDJiMy8wLzMxMzAzMzJlMzIzMTM5MmUzNzMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ9tIMA0GCSqG SIb3DQEBCwUAA4IBAQC9hJcHlRpnl7ArR4dopU3cW8ji4AwbbSIMD2VVRBsWi/kP i016RnZCR3KyB/HE157353sTNzeyWeuun4928tVhdQaxCyLGirowK4KY0VGeIZTN k+Ywrxy9b1HnS4WVJecgpgNx60z05yqook5dlG2hRS/nMHoq6KOJTi5CfLrFsGvr Z+DweFo4PnUYvT68uWhwxcRriBEoDzcbrj/a71VFz0cizLyStRC06lUYDsKp868m NmKK0RSnxIwv9KieLTbkCoGnwX7BHSc9OJ32yNfQ9LrGH9OOPcSiinfb4kdIeK9s i+ngzXR52KsJceOH6vLQ/FBu8KQ8FNE70j9tbNLz -----END CERTIFICATE-----Generated at Fri Jun 6 16:45:20 2025 by rpki-client