$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32342d3234203d3e20313333383131.roa File: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (raw, json) Hash identifier: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0= Subject key identifier: 64:9E:C7:AE:A2:76:08:8A:19:D8:28:2A:99:6D:BC:CD:8F:5C:AF:88 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 0888DCF25B3DC2614FBBB23B776760882E1B1B21 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32342d3234203d3e20313333383131.roa Signing time: Mon 02 Jun 2025 01:02:38 +0000 ROA not before: Mon 02 Jun 2025 00:57:38 +0000 ROA not after: Mon 01 Jun 2026 01:02:38 +0000 asID: 133811 IP address blocks: 103.52.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:88:dc:f2:5b:3d:c2:61:4f:bb:b2:3b:77:67:60:88:2e:1b:1b:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Jun 2 00:57:38 2025 GMT Not After : Jun 1 01:02:38 2026 GMT Subject: CN=649EC7AEA276088A19D8282A996DBCCD8F5CAF88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fe:6d:ca:13:0d:d6:f6:ee:f1:e5:14:84:fb: 76:c6:a0:87:7a:c8:03:9b:dc:36:59:83:33:11:61: bb:c6:6c:82:d4:3a:4d:2b:83:14:ba:de:ef:0c:0a: 3e:e4:af:8a:1f:15:43:53:81:bd:89:c1:74:aa:83: b2:4e:4f:36:63:b3:35:3f:8d:4d:85:6a:fe:b4:3e: 5e:2a:32:e6:2c:1f:32:31:c3:7b:7e:c6:71:c7:d4: c5:5b:ab:3c:d0:d7:f1:51:a1:05:2f:0a:9a:e7:5c: 07:44:89:9e:47:ad:8d:f3:7d:1f:83:93:4c:b0:19: f4:ce:76:c2:52:43:7c:1a:8f:05:c4:85:e0:cc:7d: f7:8a:d6:ee:6f:60:9b:1f:c9:fc:a8:70:93:14:ea: f3:44:2b:3d:0e:aa:c1:e4:90:da:40:ac:e4:79:c2: b3:82:5e:14:ec:8c:0f:f6:c2:b6:53:b5:0d:ec:a7: 90:ac:d6:9e:c4:4b:99:78:fd:1a:73:4f:cc:88:15: 12:d0:cf:16:70:a9:b4:d4:7e:12:04:02:85:ff:9c: 82:d1:02:17:9a:62:6f:e9:cb:94:8b:cd:b2:7a:62: 52:06:9b:c7:99:f1:82:89:f3:51:30:b8:df:66:b8: 01:b5:c3:d7:d1:1f:c5:a8:e8:d5:95:da:0b:dd:83: ef:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9E:C7:AE:A2:76:08:8A:19:D8:28:2A:99:6D:BC:CD:8F:5C:AF:88 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32342d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.16.0/24 Signature Algorithm: sha256WithRSAEncryption 42:89:d4:74:4c:9c:ac:c5:ab:6a:d2:76:8b:db:61:27:e4:13: bc:8c:ff:28:7a:39:e8:f6:a4:e0:cc:17:1b:bd:ca:bb:2a:71: 90:e4:16:3a:fb:87:c6:30:7a:52:6c:64:e5:e8:35:fd:61:58: 7c:fe:76:27:85:ef:d6:12:98:8a:89:41:7e:a4:f4:dd:8f:f7: e6:26:56:ef:f5:3f:27:01:fb:1f:12:c5:bc:46:2d:40:f6:04: 36:b9:e7:6d:6d:80:e1:fa:15:76:cf:cc:e9:95:11:ca:cf:ea: 6d:10:8b:f7:d6:9a:54:19:f4:b4:92:05:a2:73:b1:8b:b1:8f: 33:f9:cc:31:42:1a:de:18:b8:55:4a:1a:dd:77:76:9c:93:e5: 7f:a9:b3:b8:c4:81:ff:15:e8:5b:b4:9a:47:93:8b:11:2a:cf: c6:59:58:e7:8d:b2:92:7e:4f:e6:70:be:7c:86:b1:f7:7c:99: a3:77:33:a8:04:6c:f6:d6:7c:15:5d:9b:76:9c:42:42:c6:74: ca:e8:3b:31:07:60:f1:64:b4:c1:10:10:fb:df:52:bf:e6:c9: ea:20:9e:8a:30:d1:e2:17:9d:aa:91:5a:77:68:54:df:fa:91: b0:f9:4f:27:8c:46:23:c4:0d:c9:ff:88:5e:7d:f0:42:38:e2: 51:a1:d5:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCIjc8ls9wmFPu7I7d2dgiC4bGyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA2MDIwMDU3MzhaFw0yNjA2MDEwMTAyMzhaMDMxMTAvBgNV BAMTKDY0OUVDN0FFQTI3NjA4OEExOUQ4MjgyQTk5NkRCQ0NEOEY1Q0FGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm/m3KEw3W9u7x5RSE+3bGoId6 yAOb3DZZgzMRYbvGbILUOk0rgxS63u8MCj7kr4ofFUNTgb2JwXSqg7JOTzZjszU/ jU2Fav60Pl4qMuYsHzIxw3t+xnHH1MVbqzzQ1/FRoQUvCprnXAdEiZ5HrY3zfR+D k0ywGfTOdsJSQ3wajwXEheDMffeK1u5vYJsfyfyocJMU6vNEKz0OqsHkkNpArOR5 wrOCXhTsjA/2wrZTtQ3sp5Cs1p7ES5l4/RpzT8yIFRLQzxZwqbTUfhIEAoX/nILR AheaYm/py5SLzbJ6YlIGm8eZ8YKJ81EwuN9muAG1w9fRH8Wo6NWV2gvdg++HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZJ7HrqJ2CIoZ2CgqmW28zY9cr4gwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0EDANBgkqhkiG 9w0BAQsFAAOCAQEAQonUdEycrMWratJ2i9thJ+QTvIz/KHo56Pak4MwXG73Kuypx kOQWOvuHxjB6Umxk5eg1/WFYfP52J4Xv1hKYiolBfqT03Y/35iZW7/U/JwH7HxLF vEYtQPYENrnnbW2A4foVds/M6ZURys/qbRCL99aaVBn0tJIFonOxi7GPM/nMMUIa 3hi4VUoa3Xd2nJPlf6mzuMSB/xXoW7SaR5OLESrPxllY542ykn5P5nC+fIax93yZ o3czqARs9tZ8FV2bdpxCQsZ0yug7MQdg8WS0wRAQ+99Sv+bJ6iCeijDR4hedqpFa d2hU3/qRsPlPJ4xGI8QNyf+IXn3wQjjiUaHVkg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:20 2025 by rpki-client