$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134322e302f32342d3234203d3e203338313635.roa File: 3130332e38332e3134322e302f32342d3234203d3e203338313635.roa (raw, json) Hash identifier: JlWs2xEKR0TFpZYWDhkhGfuQHDUwUEgYmp6SL8mMzvI= Subject key identifier: 98:4C:AC:66:1A:B4:B7:29:40:0B:71:76:36:0F:88:FE:42:5A:2E:57 Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Certificate serial: 0843D20A49E76DC7CC07AC77F6B2F0653A93216E Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134322e302f32342d3234203d3e203338313635.roa Signing time: Mon 02 Jun 2025 01:03:26 +0000 ROA not before: Mon 02 Jun 2025 00:58:26 +0000 ROA not after: Mon 01 Jun 2026 01:03:26 +0000 asID: 38165 IP address blocks: 103.83.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:43:d2:0a:49:e7:6d:c7:cc:07:ac:77:f6:b2:f0:65:3a:93:21:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053 Validity Not Before: Jun 2 00:58:26 2025 GMT Not After : Jun 1 01:03:26 2026 GMT Subject: CN=984CAC661AB4B729400B7176360F88FE425A2E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:f6:1c:d0:c6:b4:3a:2f:f8:48:88:b7:ec: e0:b0:06:d2:44:ed:01:74:24:f9:35:5a:c5:c1:8f: 5a:d3:45:9c:47:9c:cb:f1:3a:5c:47:6c:89:51:d8: 8a:04:4e:cb:e9:e1:35:1e:1a:78:e1:09:0a:8b:e1: 4b:1c:77:0c:47:77:dd:60:ac:61:0b:bd:bc:cf:53: 9d:2f:d2:b6:6e:47:a6:fa:c4:86:dc:3c:d1:c1:7e: 49:ff:07:ec:86:0d:20:23:20:d2:61:9b:5c:00:21: a2:4f:5c:e6:d8:a9:60:0d:d6:e1:84:c6:ca:16:eb: be:4a:45:b6:94:8f:57:0b:14:7a:57:be:aa:ea:e7: 58:c8:cb:00:e3:62:78:7e:58:86:0b:11:d4:2b:05: f0:76:a9:25:45:16:d1:7e:f2:0f:ae:9b:30:3c:d8: 20:f0:e3:93:6b:41:78:8a:ff:4c:4e:a4:73:ef:40: 82:f6:83:c7:21:46:8e:4f:0a:6c:8b:2c:39:9d:8f: bd:3c:32:00:26:79:91:89:8f:8c:77:48:2b:7c:1f: 06:73:6c:28:7f:70:ef:e6:d1:18:a9:ec:e3:e8:a0: 92:65:75:4d:de:49:e9:75:ee:9b:94:eb:e6:9a:b4: 0a:96:35:29:1e:cb:c3:68:58:82:f7:21:62:1b:61: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4C:AC:66:1A:B4:B7:29:40:0B:71:76:36:0F:88:FE:42:5A:2E:57 X509v3 Authority Key Identifier: keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e38332e3134322e302f32342d3234203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.142.0/24 Signature Algorithm: sha256WithRSAEncryption 96:bb:8d:56:51:ff:61:16:2d:b1:ec:a2:e6:10:a7:25:1c:4b: 0b:a6:56:be:da:ab:e6:46:c9:41:ca:2a:a4:df:1d:9b:49:07: be:52:ad:c3:81:1c:db:11:a8:ea:80:ab:81:11:9d:86:8f:32: 45:4f:4e:f8:26:c0:ac:ec:76:2a:66:7d:30:64:79:b5:68:20: b4:b7:cd:aa:cf:ec:00:7c:94:01:1f:20:fe:14:fe:07:d4:8d: dd:3f:20:44:61:8b:c8:ab:b4:c4:d2:81:11:f9:fd:86:f4:70: 7a:91:2c:34:ed:e0:3d:72:68:de:91:68:8f:cc:b3:48:b2:b3: 4e:59:a2:67:b1:26:f4:ef:ef:91:8b:6f:79:d9:6e:a0:fc:a2: df:50:2d:9b:a6:8a:df:1c:f7:2d:65:62:9f:ee:8d:18:c1:75: 9d:9e:de:59:08:8f:03:11:f0:0a:5e:77:7a:21:93:8b:08:af: 67:e9:e6:eb:dc:33:db:a5:87:22:97:f3:82:24:07:6a:d9:f6: e7:18:d7:3f:e7:0e:ef:73:d8:5c:7f:c5:7f:bd:e2:ed:b6:90: b6:86:54:1f:47:4a:76:df:1c:ec:03:78:a6:86:4d:27:15:bb: c0:fe:2f:2e:5d:64:cd:19:47:00:65:e8:10:5a:7a:be:1e:00: b0:7b:06:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCEPSCknnbcfMB6x39rLwZTqTIW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5 NzlEMTA1MzAeFw0yNTA2MDIwMDU4MjZaFw0yNjA2MDEwMTAzMjZaMDMxMTAvBgNV BAMTKDk4NENBQzY2MUFCNEI3Mjk0MDBCNzE3NjM2MEY4OEZFNDI1QTJFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6zPYc0Ma0Oi/4SIi37OCwBtJE 7QF0JPk1WsXBj1rTRZxHnMvxOlxHbIlR2IoETsvp4TUeGnjhCQqL4UscdwxHd91g rGELvbzPU50v0rZuR6b6xIbcPNHBfkn/B+yGDSAjINJhm1wAIaJPXObYqWAN1uGE xsoW675KRbaUj1cLFHpXvqrq51jIywDjYnh+WIYLEdQrBfB2qSVFFtF+8g+umzA8 2CDw45NrQXiK/0xOpHPvQIL2g8chRo5PCmyLLDmdj708MgAmeZGJj4x3SCt8HwZz bCh/cO/m0Rip7OPooJJldU3eSel17puU6+aatAqWNSkey8NoWIL3IWIbYcOVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmEysZhq0tylAC3F2Ng+I/kJaLlcwHwYDVR0j BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE MTA1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzAzMzJlMzgzMzJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdTjjANBgkqhkiG 9w0BAQsFAAOCAQEAlruNVlH/YRYtseyi5hCnJRxLC6ZWvtqr5kbJQcoqpN8dm0kH vlKtw4Ec2xGo6oCrgRGdho8yRU9O+CbArOx2KmZ9MGR5tWggtLfNqs/sAHyUAR8g /hT+B9SN3T8gRGGLyKu0xNKBEfn9hvRwepEsNO3gPXJo3pFoj8yzSLKzTlmiZ7Em 9O/vkYtvedluoPyi31Atm6aK3xz3LWVin+6NGMF1nZ7eWQiPAxHwCl53eiGTiwiv Z+nm69wz26WHIpfzgiQHatn25xjXP+cO73PYXH/Ff73i7baQtoZUH0dKdt8c7AN4 poZNJxW7wP4vLl1kzRlHAGXoEFp6vh4AsHsGqg== -----END CERTIFICATE-----Generated at Sun Jun 8 05:45:57 2025 by rpki-client