$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130372e302f32342d3234203d3e203633343937.roa File: 3130332e3133342e3130372e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: tJ7W+A0ln7oQ2TKBeYCrxZXeI+2+Ch9yjit0aZIq8qs= Subject key identifier: AE:B5:2B:8C:6A:68:6B:23:B1:E1:71:ED:CF:C9:81:A0:02:0A:8B:AD Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 584D8CDAD47D3E7FC5EA12C1796F144803A54E9D Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130372e302f32342d3234203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:04:34 +0000 ROA not before: Mon 02 Jun 2025 01:59:34 +0000 ROA not after: Mon 01 Jun 2026 02:04:34 +0000 asID: 63497 IP address blocks: 103.134.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4d:8c:da:d4:7d:3e:7f:c5:ea:12:c1:79:6f:14:48:03:a5:4e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jun 2 01:59:34 2025 GMT Not After : Jun 1 02:04:34 2026 GMT Subject: CN=AEB52B8C6A686B23B1E171EDCFC981A0020A8BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:88:be:79:f8:95:3d:f9:10:07:fc:97:e1:78: f7:12:78:29:74:71:b9:12:99:0d:f8:c9:69:d4:3e: ec:f2:7b:b1:5b:46:94:a3:a7:49:02:cc:98:15:37: 33:b8:0d:1e:d4:46:08:e6:68:db:98:e8:13:78:39: a6:8d:3c:46:db:c1:0d:ef:60:10:5e:d9:75:3e:d8: e0:5d:d8:60:02:bf:81:7c:34:d8:f9:bd:8c:e9:5b: 49:d3:65:12:14:5c:cd:f8:d3:b0:44:11:ea:d6:2d: 49:80:b9:6c:68:ba:ef:a3:e6:f2:3e:6b:07:c5:35: 91:cb:a5:22:f9:31:ad:51:bc:e1:8f:93:6b:b5:cd: 11:95:52:c1:51:41:c6:a5:03:6b:8b:7d:d3:80:61: dd:22:c4:dc:5a:22:d2:4c:f4:e9:2f:85:e0:00:1c: a8:08:dc:20:40:96:a8:e0:fc:22:2c:f7:ba:07:36: 55:0e:93:31:07:d6:c9:9b:fe:7c:81:50:21:27:2e: ec:7c:2f:46:a4:89:f5:81:2f:92:bf:ce:96:51:90: 7a:57:25:d0:54:09:07:b3:e6:25:60:82:b7:45:b0: 00:85:d9:5b:0a:71:c3:7d:54:18:30:b0:8d:e8:5b: a8:26:a9:52:ee:19:70:4d:c2:4e:e6:e3:5d:74:13: d6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B5:2B:8C:6A:68:6B:23:B1:E1:71:ED:CF:C9:81:A0:02:0A:8B:AD X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130372e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.107.0/24 Signature Algorithm: sha256WithRSAEncryption 75:cc:e6:a8:16:1d:12:47:5d:6f:e5:c5:2e:29:b6:19:34:45: b5:ac:0f:e3:cd:37:0e:07:14:1e:42:7e:23:8e:74:9b:79:e8: ad:9b:bd:0f:02:38:76:e0:6e:cf:22:f0:d2:0a:c8:a0:bd:52: 5c:9f:81:06:de:21:94:25:3a:2e:a9:47:b0:81:db:d5:cc:e5: 12:e9:14:75:57:4e:53:b3:db:46:24:f2:6c:32:d2:66:a7:e7: 9f:37:2f:68:d9:59:fd:e5:ef:2b:c9:58:14:2d:37:56:51:7a: 71:11:38:81:fa:9c:b3:5a:92:23:6d:17:5a:e7:05:4c:5c:07: 45:d1:24:e0:94:cc:f4:21:35:a5:4b:45:db:e0:08:7f:f2:ea: df:21:de:d7:7b:09:c1:f7:10:2b:6f:70:cc:6c:a7:78:74:d7: 34:66:5e:40:6c:f0:ac:35:8a:f7:2c:a4:4f:25:b7:c1:1a:fe: 1e:17:3e:ae:ae:a4:58:a6:a5:8e:07:d1:17:37:77:55:cd:e9: 5f:60:fb:6a:99:d1:aa:e7:99:ae:fe:dc:84:ab:7a:04:ce:eb: 4e:e8:7c:25:af:65:9d:80:63:95:71:cf:e6:fa:27:92:7b:ac: 3e:32:96:50:a6:07:7b:b1:0e:55:61:df:13:e2:c0:f8:14:b0: 53:d2:1f:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWE2M2tR9Pn/F6hLBeW8USAOlTp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNTA2MDIwMTU5MzRaFw0yNjA2MDEwMjA0MzRaMDMxMTAvBgNV BAMTKEFFQjUyQjhDNkE2ODZCMjNCMUUxNzFFRENGQzk4MUEwMDIwQThCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWiL55+JU9+RAH/JfhePcSeCl0 cbkSmQ34yWnUPuzye7FbRpSjp0kCzJgVNzO4DR7URgjmaNuY6BN4OaaNPEbbwQ3v YBBe2XU+2OBd2GACv4F8NNj5vYzpW0nTZRIUXM3407BEEerWLUmAuWxouu+j5vI+ awfFNZHLpSL5Ma1RvOGPk2u1zRGVUsFRQcalA2uLfdOAYd0ixNxaItJM9OkvheAA HKgI3CBAlqjg/CIs97oHNlUOkzEH1smb/nyBUCEnLux8L0akifWBL5K/zpZRkHpX JdBUCQez5iVggrdFsACF2VsKccN9VBgwsI3oW6gmqVLuGXBNwk7m4110E9YBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrrUrjGpoayOx4XHtz8mBoAIKi60wHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4ZrMA0GCSqG SIb3DQEBCwUAA4IBAQB1zOaoFh0SR11v5cUuKbYZNEW1rA/jzTcOBxQeQn4jjnSb eeitm70PAjh24G7PIvDSCsigvVJcn4EG3iGUJTouqUewgdvVzOUS6RR1V05Ts9tG JPJsMtJmp+efNy9o2Vn95e8ryVgULTdWUXpxETiB+pyzWpIjbRda5wVMXAdF0STg lMz0ITWlS0Xb4Ah/8urfId7XewnB9xArb3DMbKd4dNc0Zl5AbPCsNYr3LKRPJbfB Gv4eFz6urqRYpqWOB9EXN3dVzelfYPtqmdGq55mu/tyEq3oEzutO6Hwlr2WdgGOV cc/m+ieSe6w+MpZQpgd7sQ5VYd8T4sD4FLBT0h+C -----END CERTIFICATE-----Generated at Sat Jun 7 14:52:33 2025 by rpki-client