$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa File: 3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: fYXLcgnYZQvFF+Sx+nAnnoQPnhu4qBL7MV7MXCijhoM= Subject key identifier: F0:4E:0E:56:BB:F4:DA:4A:0D:B0:31:80:25:FE:0D:8F:0E:83:D3:72 Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 77B40B14A9171F7500A78EDD511E80047BD06E44 Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:04:35 +0000 ROA not before: Mon 02 Jun 2025 01:59:35 +0000 ROA not after: Mon 01 Jun 2026 02:04:35 +0000 asID: 63497 IP address blocks: 103.134.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b4:0b:14:a9:17:1f:75:00:a7:8e:dd:51:1e:80:04:7b:d0:6e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jun 2 01:59:35 2025 GMT Not After : Jun 1 02:04:35 2026 GMT Subject: CN=F04E0E56BBF4DA4A0DB0318025FE0D8F0E83D372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:53:4c:25:50:7a:bf:68:58:eb:8c:6f:eb: c7:c6:98:68:0a:db:78:fe:96:89:19:4c:fa:f2:1f: e1:90:69:9b:d4:52:dc:51:90:d0:4b:90:64:66:4b: 82:d7:66:1b:ff:74:b0:c2:9c:31:b8:a9:f5:c8:29: 59:03:19:f1:12:8e:26:4c:1e:ec:1a:fc:37:a9:72: e3:d9:77:f1:4c:8f:f2:c3:fb:d9:fb:ba:15:38:a6: 1f:0b:77:fb:5e:68:2d:c8:52:59:20:4e:04:b3:81: 49:57:ca:74:d8:bf:bf:ea:cb:4c:70:28:06:2c:6f: d5:f6:e0:f3:a6:59:42:e3:91:de:cd:ab:3e:35:f5: 5d:b7:b4:b5:2e:7b:70:95:49:20:1e:de:6b:5f:42: 0b:85:0e:df:6d:cf:c3:68:eb:a7:62:db:31:11:7d: 74:a2:d6:c4:47:b7:58:0e:e0:ed:93:a7:ba:b1:3d: 4d:a0:14:73:d6:c2:ea:bb:f4:60:33:08:c4:9a:20: 37:e7:44:5a:ee:0a:ec:7b:1e:c4:f9:b1:2c:27:30: 8e:08:3b:e1:1e:bc:f8:9c:55:3d:cb:0b:4f:d6:47: f7:98:9d:2c:08:7a:dc:80:fd:bf:eb:03:a2:07:c7: b2:d3:26:c9:f0:f3:eb:9d:39:2a:18:b0:42:95:49: db:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:4E:0E:56:BB:F4:DA:4A:0D:B0:31:80:25:FE:0D:8F:0E:83:D3:72 X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.106.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:67:e1:22:27:52:a5:21:b1:16:2c:3c:fe:af:c6:77:6c:08: 25:e5:8d:26:58:b6:f8:7e:98:0d:45:34:0e:9b:70:a6:af:eb: 86:90:9c:01:76:97:1a:8c:4c:18:ef:c3:d3:14:9a:5f:22:f7: 14:e8:74:5b:fd:db:0f:bc:f9:4a:42:86:19:a7:7b:0e:b7:c9: 42:e9:03:ae:a9:c0:d0:82:64:b1:18:6b:8f:69:69:73:83:86: 0b:14:0c:53:e3:a5:f4:ce:35:65:cd:e1:46:46:65:26:2b:ca: 1e:3b:c9:13:14:9a:3d:c3:5f:07:30:a0:55:b1:59:71:e3:ee: 10:de:08:dc:b8:d4:1e:e9:15:d6:b6:70:e9:7c:90:8f:0e:57: 99:ee:67:32:40:8d:93:5b:13:88:2b:1b:7d:52:10:86:38:ff: 05:d0:77:a4:db:da:26:21:88:d7:19:d2:59:99:da:00:80:8f: 9d:3f:cd:f3:a9:bf:e5:32:2a:87:67:a4:cc:ec:37:ce:6d:2b: 26:57:ef:c7:1c:53:f5:64:71:d2:16:c0:ec:f2:09:ea:53:79: ee:c7:d8:e6:d1:85:70:9d:31:67:f8:21:97:e4:e9:22:61:48: 60:fd:74:85:9f:63:5e:d5:77:a4:74:bb:7c:42:d2:22:b3:ac: 0e:f9:cb:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd7QLFKkXH3UAp47dUR6ABHvQbkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNTA2MDIwMTU5MzVaFw0yNjA2MDEwMjA0MzVaMDMxMTAvBgNV BAMTKEYwNEUwRTU2QkJGNERBNEEwREIwMzE4MDI1RkUwRDhGMEU4M0QzNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq4lNMJVB6v2hY64xv68fGmGgK 23j+lokZTPryH+GQaZvUUtxRkNBLkGRmS4LXZhv/dLDCnDG4qfXIKVkDGfESjiZM Huwa/DepcuPZd/FMj/LD+9n7uhU4ph8Ld/teaC3IUlkgTgSzgUlXynTYv7/qy0xw KAYsb9X24POmWULjkd7Nqz419V23tLUue3CVSSAe3mtfQguFDt9tz8No66di2zER fXSi1sRHt1gO4O2Tp7qxPU2gFHPWwuq79GAzCMSaIDfnRFruCux7HsT5sSwnMI4I O+EevPicVT3LC0/WR/eYnSwIetyA/b/rA6IHx7LTJsnw8+udOSoYsEKVSdvXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8E4OVrv02koNsDGAJf4Njw6D03IwHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4ZqMA0GCSqG SIb3DQEBCwUAA4IBAQAOZ+EiJ1KlIbEWLDz+r8Z3bAgl5Y0mWLb4fpgNRTQOm3Cm r+uGkJwBdpcajEwY78PTFJpfIvcU6HRb/dsPvPlKQoYZp3sOt8lC6QOuqcDQgmSx GGuPaWlzg4YLFAxT46X0zjVlzeFGRmUmK8oeO8kTFJo9w18HMKBVsVlx4+4Q3gjc uNQe6RXWtnDpfJCPDleZ7mcyQI2TWxOIKxt9UhCGOP8F0Hek29omIYjXGdJZmdoA gI+dP83zqb/lMiqHZ6TM7DfObSsmV+/HHFP1ZHHSFsDs8gnqU3nux9jm0YVwnTFn +CGX5OkiYUhg/XSFn2Ne1XekdLt8QtIis6wO+csl -----END CERTIFICATE-----Generated at Sat Jun 7 15:02:30 2025 by rpki-client