$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa File: 3130332e32382e3130372e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: 1UalLxKn41/lSLgzHwYn+86cGRYM0p3PY4M21eZtrAo= Subject key identifier: 8D:F8:9F:B4:01:01:66:14:7C:FD:CE:D1:8B:FB:71:9C:8F:78:E8:19 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 0EFCDB9CA0819472AE19228599A356AC64CFDA2B Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:22 +0000 ROA not before: Mon 02 Jun 2025 01:59:22 +0000 ROA not after: Mon 01 Jun 2026 02:04:22 +0000 asID: 58476 IP address blocks: 103.28.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fc:db:9c:a0:81:94:72:ae:19:22:85:99:a3:56:ac:64:cf:da:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:22 2025 GMT Not After : Jun 1 02:04:22 2026 GMT Subject: CN=8DF89FB4010166147CFDCED18BFB719C8F78E819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:45:88:cc:0f:1a:63:f1:37:b8:50:48:d9:31: e2:77:c5:6e:8d:bf:08:a6:e4:29:46:73:17:24:e8: 1c:4f:44:77:d1:39:fa:8a:f7:69:d6:7c:88:25:5f: 4a:a7:e9:51:c1:2e:43:2d:bd:4c:62:bf:bc:2e:07: 2b:8b:e6:94:a0:63:8d:ef:6e:07:a7:0d:fb:46:96: ea:3f:3b:45:52:b6:09:8a:3f:1b:e2:01:5c:8a:10: 10:f6:4a:af:d6:8a:07:83:d7:9e:ee:a6:91:e5:b8: 75:81:fc:3d:6e:1d:55:82:af:42:0a:aa:65:68:13: 29:7e:93:d8:50:e5:ba:e2:65:8a:a7:68:14:6e:59: 47:3b:b0:0d:48:aa:db:40:6c:a0:18:08:c3:54:73: 1d:18:05:79:ff:d9:86:83:b1:cc:c3:90:18:10:66: 70:82:98:ea:63:e3:2a:1f:83:47:8a:1e:03:1b:fc: 33:15:2d:1f:54:32:c3:e0:ec:e2:e6:30:50:64:4c: 16:78:d1:fe:4a:e6:0f:3c:48:c1:5e:24:67:ef:5a: 88:00:0b:9a:a9:1f:a8:b4:79:fa:1e:96:f2:b4:e2: e8:c7:b2:ef:25:6c:e3:34:a6:26:29:41:41:f4:f0: bd:1e:48:d0:f8:56:7e:18:b9:3d:83:09:35:b1:eb: 92:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F8:9F:B4:01:01:66:14:7C:FD:CE:D1:8B:FB:71:9C:8F:78:E8:19 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.107.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:11:91:83:31:78:c0:59:3d:a4:f4:2f:04:f6:a9:9b:2b:a9: 50:18:22:94:a4:77:2e:cc:d9:7c:6a:71:e7:72:5a:ca:b8:1a: fe:17:79:81:e4:e2:a1:4e:11:52:41:0e:f2:66:3f:63:3a:c2: 5a:c5:c1:74:37:c2:95:59:d6:92:71:1a:de:88:5d:f5:d2:f2: a6:f4:e1:77:ed:e3:ef:05:a7:03:a0:8f:2c:33:aa:3b:c6:08: a6:04:95:2d:3c:ac:42:60:4f:f6:bc:a5:ed:24:1e:1f:aa:a3: 0c:b9:1b:73:ef:59:42:30:0d:5a:77:4f:37:e3:57:dd:76:58: 2e:c0:3c:bf:53:28:95:34:f4:89:c1:4e:98:af:2d:bc:a3:7d: 04:d4:1a:62:92:0a:5a:7b:0a:88:2e:60:2c:f0:de:ce:54:ac: 7d:ec:04:51:e7:0d:0d:32:2b:35:bf:2b:3a:95:ca:18:c6:1a: 96:3a:ef:f9:7c:cd:95:76:a0:95:f9:2b:c9:a1:47:37:cf:7c: 9c:51:29:b0:04:8a:2e:0c:d9:5d:77:a9:68:5f:24:ff:d0:1f: 0d:88:94:22:82:dd:13:86:40:14:94:0a:50:1f:9c:7c:d3:2f: eb:af:8a:fc:5b:71:96:77:5a:cb:76:66:d2:5f:96:0d:29:25: 80:26:0b:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDvzbnKCBlHKuGSKFmaNWrGTP2iswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjJaFw0yNjA2MDEwMjA0MjJaMDMxMTAvBgNV BAMTKDhERjg5RkI0MDEwMTY2MTQ3Q0ZEQ0VEMThCRkI3MTlDOEY3OEU4MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuRYjMDxpj8Te4UEjZMeJ3xW6N vwim5ClGcxck6BxPRHfROfqK92nWfIglX0qn6VHBLkMtvUxiv7wuByuL5pSgY43v bgenDftGluo/O0VStgmKPxviAVyKEBD2Sq/WigeD157uppHluHWB/D1uHVWCr0IK qmVoEyl+k9hQ5briZYqnaBRuWUc7sA1IqttAbKAYCMNUcx0YBXn/2YaDsczDkBgQ ZnCCmOpj4yofg0eKHgMb/DMVLR9UMsPg7OLmMFBkTBZ40f5K5g88SMFeJGfvWogA C5qpH6i0efoelvK04ujHsu8lbOM0piYpQUH08L0eSND4Vn4YuT2DCTWx65L1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjfiftAEBZhR8/c7Ri/txnI946BkwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzIzODJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGccazANBgkqhkiG 9w0BAQsFAAOCAQEAnBGRgzF4wFk9pPQvBPapmyupUBgilKR3LszZfGpx53Jayrga /hd5geTioU4RUkEO8mY/YzrCWsXBdDfClVnWknEa3ohd9dLypvThd+3j7wWnA6CP LDOqO8YIpgSVLTysQmBP9ryl7SQeH6qjDLkbc+9ZQjANWndPN+NX3XZYLsA8v1Mo lTT0icFOmK8tvKN9BNQaYpIKWnsKiC5gLPDezlSsfewEUecNDTIrNb8rOpXKGMYa ljrv+XzNlXaglfkryaFHN898nFEpsASKLgzZXXepaF8k/9AfDYiUIoLdE4ZAFJQK UB+cfNMv66+K/Ftxlnday3Zm0l+WDSklgCYL6Q== -----END CERTIFICATE-----Generated at Sun Jun 8 06:28:26 2025 by rpki-client