$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa File: 3130332e37322e3131312e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: lw8CjbCa9nau6CgaK9qo3W7fJOYahpzK8W9j4IBI5bo= Subject key identifier: B1:26:B0:FB:D5:74:FC:4B:13:24:44:D3:1F:56:CC:8B:7C:F6:CD:C4 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 0444527D8E2A4EF448BBFC38703EF167E8DB3849 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:23 +0000 ROA not before: Mon 02 Jun 2025 01:59:23 +0000 ROA not after: Mon 01 Jun 2026 02:04:23 +0000 asID: 58476 IP address blocks: 103.72.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:44:52:7d:8e:2a:4e:f4:48:bb:fc:38:70:3e:f1:67:e8:db:38:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:23 2025 GMT Not After : Jun 1 02:04:23 2026 GMT Subject: CN=B126B0FBD574FC4B132444D31F56CC8B7CF6CDC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:c4:9d:8b:03:c8:e3:ff:33:90:64:16:5a: e3:51:59:9c:56:18:70:85:62:6d:34:6d:0c:56:12: ad:ae:3b:f8:32:7b:bd:bb:6d:9f:43:2a:3d:54:e5: 17:20:88:00:76:5d:ad:dc:55:c6:47:c4:bd:14:96: 6c:7e:de:4f:ee:d5:48:da:7f:3a:08:e1:23:21:0e: cf:59:77:ad:53:27:55:57:62:d8:e6:9d:54:53:e1: cc:e0:44:b1:f0:8b:93:6a:5b:de:81:68:8e:50:dd: cd:5f:ec:81:b4:4b:70:4d:dc:6b:e9:00:7a:04:18: 58:5c:7e:31:0d:46:96:97:01:8e:3d:bc:e9:49:2d: 51:79:58:66:d5:55:51:fd:7c:b7:e0:83:c7:96:3b: e5:36:36:87:f5:d4:5e:14:ab:3f:48:24:a4:72:fe: 17:fa:31:69:60:0a:21:ab:29:b2:b2:38:05:ef:b8: d7:b4:1e:2f:fd:ef:b9:9d:ee:db:7e:23:c7:63:9d: 39:7c:6d:b3:91:83:c1:7b:f1:68:06:de:5c:a9:e3: 9c:0e:89:3c:f0:32:22:9e:ae:da:b3:55:15:6a:2a: 16:32:08:13:c2:76:66:1c:94:40:2d:7e:b2:1f:c5: 46:d4:74:e4:cf:3f:8d:fb:05:45:d1:d6:80:e5:bc: cc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:26:B0:FB:D5:74:FC:4B:13:24:44:D3:1F:56:CC:8B:7C:F6:CD:C4 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.72.111.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a0:bf:3b:9a:77:44:43:74:36:36:24:03:60:ec:12:43:9b: ec:e0:40:62:a6:61:2c:04:38:ee:8b:ca:c6:7d:6e:68:e2:fd: 52:ed:11:80:2e:2d:3d:ca:22:e9:9e:33:4b:ab:a8:16:94:c5: b1:41:0e:a3:4e:61:ed:4b:a0:0a:cb:93:08:c2:c3:96:72:7e: 2a:4b:3b:6f:0d:17:74:1a:78:70:c4:5e:5f:ee:d7:16:5c:9d: bb:67:fd:98:e3:4f:71:29:50:ce:1a:9c:80:ea:4d:bc:05:76: fb:5f:67:33:eb:02:b4:a2:4f:1f:1e:65:72:76:48:80:cc:cc: 6d:fd:89:b3:c2:8b:69:f6:cb:68:ef:d1:55:f0:b4:de:74:82: ee:28:36:a0:dc:97:01:e3:6a:b9:f4:cd:8f:8d:ae:c5:07:d9: fb:67:c3:21:fe:64:35:61:7d:70:40:9f:e9:52:41:85:cf:b5: 24:d0:a7:fd:c6:40:d0:08:c6:fe:18:84:58:52:49:b3:9e:aa: 68:76:a2:87:e8:01:55:7e:15:d8:d9:e4:46:65:c0:85:c1:a7: 3d:82:ec:f0:ce:d5:dc:01:d0:19:40:e7:03:6e:78:c8:58:0d: 38:d8:d2:13:43:00:26:4f:0a:7c:5a:55:8b:78:2a:99:94:79: 19:92:9f:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBERSfY4qTvRIu/w4cD7xZ+jbOEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjNaFw0yNjA2MDEwMjA0MjNaMDMxMTAvBgNV BAMTKEIxMjZCMEZCRDU3NEZDNEIxMzI0NDREMzFGNTZDQzhCN0NGNkNEQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4jMSdiwPI4/8zkGQWWuNRWZxW GHCFYm00bQxWEq2uO/gye727bZ9DKj1U5RcgiAB2Xa3cVcZHxL0Ulmx+3k/u1Uja fzoI4SMhDs9Zd61TJ1VXYtjmnVRT4czgRLHwi5NqW96BaI5Q3c1f7IG0S3BN3Gvp AHoEGFhcfjENRpaXAY49vOlJLVF5WGbVVVH9fLfgg8eWO+U2Nof11F4Uqz9IJKRy /hf6MWlgCiGrKbKyOAXvuNe0Hi/977md7tt+I8djnTl8bbORg8F78WgG3lyp45wO iTzwMiKertqzVRVqKhYyCBPCdmYclEAtfrIfxUbUdOTPP437BUXR1oDlvMztAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsSaw+9V0/EsTJETTH1bMi3z2zcQwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzczMjJlMzEzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdIbzANBgkqhkiG 9w0BAQsFAAOCAQEAkaC/O5p3REN0NjYkA2DsEkOb7OBAYqZhLAQ47ovKxn1uaOL9 Uu0RgC4tPcoi6Z4zS6uoFpTFsUEOo05h7UugCsuTCMLDlnJ+Kks7bw0XdBp4cMRe X+7XFlydu2f9mONPcSlQzhqcgOpNvAV2+19nM+sCtKJPHx5lcnZIgMzMbf2Js8KL afbLaO/RVfC03nSC7ig2oNyXAeNqufTNj42uxQfZ+2fDIf5kNWF9cECf6VJBhc+1 JNCn/cZA0AjG/hiEWFJJs56qaHaih+gBVX4V2NnkRmXAhcGnPYLs8M7V3AHQGUDn A254yFgNONjSE0MAJk8KfFpVi3gqmZR5GZKfWA== -----END CERTIFICATE-----Generated at Sun Jun 8 08:02:03 2025 by rpki-client