$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa File: 3130332e32382e3130362e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: 3CwSzY5tw6Zm4h624sLhttPd8ZN8CiHTGKhVehN+hWE= Subject key identifier: AA:0C:5E:3E:3A:B3:05:76:5C:AC:DC:4A:91:D9:36:A0:37:9A:86:03 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 01EFE2116D5A83E17382C65E91102A420038DA29 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:23 +0000 ROA not before: Mon 02 Jun 2025 01:59:23 +0000 ROA not after: Mon 01 Jun 2026 02:04:23 +0000 asID: 58476 IP address blocks: 103.28.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ef:e2:11:6d:5a:83:e1:73:82:c6:5e:91:10:2a:42:00:38:da:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:23 2025 GMT Not After : Jun 1 02:04:23 2026 GMT Subject: CN=AA0C5E3E3AB305765CACDC4A91D936A0379A8603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1e:67:61:12:60:9b:76:a9:d2:6c:37:5f:96: f8:a0:de:26:bd:ee:30:8c:1e:17:6c:cd:cf:a1:23: 38:80:95:1b:c9:6f:80:e2:82:c8:df:34:89:e2:41: 51:50:7a:ba:03:47:95:b8:c4:06:b5:41:fa:e4:f5: 1c:b7:82:f0:84:b9:ed:53:4b:7a:52:1e:1a:cf:a0: d6:8d:e5:7f:6a:f5:ec:45:ba:3b:2d:cf:1c:3f:87: d7:4f:34:8e:bd:3b:96:15:04:f7:14:15:29:f4:a0: 9a:80:63:ae:73:ec:4c:59:af:f8:c2:1b:78:3a:ed: 15:ec:24:67:b8:dc:6c:c5:70:b6:9e:11:83:17:29: ea:a4:4d:4d:7c:0a:74:4e:25:dc:2a:ac:82:62:ea: 8c:32:dd:61:d9:39:10:1a:82:21:ff:16:1f:4d:69: a0:f0:ed:08:4e:86:08:28:3d:3d:f1:f7:35:fa:7d: 61:49:fa:e7:ce:fa:c6:89:e1:a3:06:03:f0:c1:b2: 97:bd:2c:77:60:98:4c:b0:f0:a2:fb:6a:32:58:d0: 23:75:b4:ad:74:45:f4:0d:c0:27:76:db:78:d4:cc: b8:e0:36:97:02:28:5a:16:09:b9:ef:ec:43:99:ac: 45:56:09:22:f8:d8:e4:f7:35:dd:76:f5:3b:7e:97: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0C:5E:3E:3A:B3:05:76:5C:AC:DC:4A:91:D9:36:A0:37:9A:86:03 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.106.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:f7:2d:31:d2:79:5e:72:61:3f:3a:df:26:69:1b:50:2e:bf: 2f:79:cd:8f:21:3c:27:e3:b7:d7:71:21:7f:5d:68:f5:bc:a2: b2:3a:a7:7d:09:a2:ce:2d:3a:32:aa:4b:b7:07:e5:06:0e:c5: ec:88:90:39:d1:6c:a9:47:84:21:92:5f:32:63:10:30:90:40: 7f:73:16:52:bf:87:9d:b8:3e:1e:b7:49:94:f5:0e:cf:75:13: f4:5b:32:9e:d1:4d:43:8d:ad:3a:cf:11:3b:1f:f2:63:c7:a0: 7b:79:26:bd:7c:1d:f3:1e:47:a6:b5:bc:d5:98:66:85:c2:d8: 15:c4:9f:69:56:9e:b2:12:9c:c7:f5:4e:62:81:e9:e4:e6:8d: f6:51:ae:7d:79:25:2c:b8:bb:7c:7e:5d:b4:cb:b2:59:0a:36: 57:d3:c3:fe:8b:f0:1c:8d:09:d2:3a:8f:a0:5e:af:e0:4a:d7: 74:93:19:c9:f8:5d:83:be:2c:f4:ab:83:3c:11:5b:bd:a8:ca: f7:12:e1:c4:5d:40:0e:19:cb:4e:22:41:e4:99:7d:76:0b:73: 93:63:d6:5b:2c:dd:7b:75:32:f0:11:11:fd:91:67:c7:21:e6: 8d:76:67:21:c0:9d:22:50:c5:c0:11:50:aa:4c:0c:02:76:80: cc:f9:56:30 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAe/iEW1ag+FzgsZekRAqQgA42ikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjNaFw0yNjA2MDEwMjA0MjNaMDMxMTAvBgNV BAMTKEFBMEM1RTNFM0FCMzA1NzY1Q0FDREM0QTkxRDkzNkEwMzc5QTg2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAHmdhEmCbdqnSbDdflvig3ia9 7jCMHhdszc+hIziAlRvJb4DigsjfNIniQVFQeroDR5W4xAa1Qfrk9Ry3gvCEue1T S3pSHhrPoNaN5X9q9exFujstzxw/h9dPNI69O5YVBPcUFSn0oJqAY65z7ExZr/jC G3g67RXsJGe43GzFcLaeEYMXKeqkTU18CnROJdwqrIJi6owy3WHZORAagiH/Fh9N aaDw7QhOhggoPT3x9zX6fWFJ+ufO+saJ4aMGA/DBspe9LHdgmEyw8KL7ajJY0CN1 tK10RfQNwCd223jUzLjgNpcCKFoWCbnv7EOZrEVWCSL42OT3Nd129Tt+l9uRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqgxePjqzBXZcrNxKkdk2oDeahgMwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzIzODJlMzEzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGccajANBgkqhkiG 9w0BAQsFAAOCAQEADvctMdJ5XnJhPzrfJmkbUC6/L3nNjyE8J+O313Ehf11o9byi sjqnfQmizi06MqpLtwflBg7F7IiQOdFsqUeEIZJfMmMQMJBAf3MWUr+Hnbg+HrdJ lPUOz3UT9FsyntFNQ42tOs8ROx/yY8ege3kmvXwd8x5HprW81ZhmhcLYFcSfaVae shKcx/VOYoHp5OaN9lGufXklLLi7fH5dtMuyWQo2V9PD/ovwHI0J0jqPoF6v4ErX dJMZyfhdg74s9KuDPBFbvajK9xLhxF1ADhnLTiJB5Jl9dgtzk2PWWyzde3Uy8BER /ZFnxyHmjXZnIcCdIlDFwBFQqkwMAnaAzPlWMA== -----END CERTIFICATE-----Generated at Sun Jun 8 07:43:49 2025 by rpki-client