$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31382e302f32342d3234203d3e20313333383131.roa File: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (raw, json) Hash identifier: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw= Subject key identifier: 13:E2:3A:11:53:64:63:27:84:C1:1A:E6:1D:EC:E0:E7:89:57:A1:15 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 5C49A3998927383DA3C5BBB01A580BA2315659DD Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31382e302f32342d3234203d3e20313333383131.roa Signing time: Mon 02 Jun 2025 01:02:38 +0000 ROA not before: Mon 02 Jun 2025 00:57:38 +0000 ROA not after: Mon 01 Jun 2026 01:02:38 +0000 asID: 133811 IP address blocks: 103.52.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:49:a3:99:89:27:38:3d:a3:c5:bb:b0:1a:58:0b:a2:31:56:59:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Jun 2 00:57:38 2025 GMT Not After : Jun 1 01:02:38 2026 GMT Subject: CN=13E23A115364632784C11AE61DECE0E78957A115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9c:89:c7:45:eb:50:58:dd:d7:ff:59:4e:24: 2b:66:db:27:ce:65:f9:87:1a:26:5e:30:bf:89:e6: 29:b6:82:8d:17:50:c3:a6:4c:f7:b2:ec:d6:0b:93: f6:bd:99:b4:73:83:17:07:00:30:3c:0f:3a:41:d6: 93:79:f3:d4:fc:7b:1b:b7:84:c1:3e:e2:bf:5e:d7: b4:6d:0e:8f:78:50:5e:24:8e:a3:a3:77:db:60:47: 6f:38:d6:4e:34:d8:e0:ae:13:39:bf:cf:e6:7b:b6: 7d:a6:a1:ec:49:6d:b4:e4:b5:44:b6:0a:ca:9c:4d: 00:58:f3:1e:b9:85:92:54:8e:a4:3f:04:35:41:aa: 4d:73:be:18:1d:fe:22:9c:2a:23:e0:60:fe:b4:db: e2:84:b9:7b:7c:cd:35:bd:08:34:1a:de:46:4a:f9: 4e:0c:9e:91:e6:3d:0b:31:82:99:da:98:76:d6:5c: 86:73:7e:10:3f:34:81:d6:f3:a5:11:79:3a:e6:9d: 2f:74:52:dd:28:57:46:19:25:84:01:da:38:30:0f: 87:6b:96:4e:87:31:21:08:1f:ab:0e:96:1c:51:b1: 22:b9:ac:ff:d3:9b:50:cb:bb:25:42:45:d3:34:cb: 19:de:06:35:d3:de:61:1f:50:ce:ea:ea:9f:a2:ea: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E2:3A:11:53:64:63:27:84:C1:1A:E6:1D:EC:E0:E7:89:57:A1:15 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31382e302f32342d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.18.0/24 Signature Algorithm: sha256WithRSAEncryption a2:b8:d5:4b:48:2e:67:cd:46:b5:a9:b7:19:fb:99:55:b5:36: 07:31:f6:1f:91:9f:ad:28:81:da:f9:bd:c6:a7:51:f4:b2:9f: c4:54:32:0a:1f:20:6b:8c:ed:5d:a9:02:a3:c4:c3:60:b1:5b: 6e:22:66:e9:72:64:17:bb:49:e1:70:fe:a1:96:c0:70:fe:50: 1b:5b:f9:64:11:91:20:a8:75:db:96:f3:58:a7:59:87:fb:5a: 1a:16:fd:ff:63:b1:ef:7d:0c:d1:a6:65:dc:30:94:e3:9a:b4: 96:d1:2a:96:19:b4:9c:94:d6:91:8d:4c:57:de:03:db:72:10: 32:3b:80:42:3e:eb:e4:d3:fa:21:73:8c:de:04:62:e3:0d:ee: df:ca:fe:23:c4:0f:66:74:95:51:fb:1e:26:44:80:ee:59:cd: 71:e6:15:44:49:73:19:ff:d1:bf:82:87:55:32:70:ae:43:cc: 4e:eb:ba:b4:55:3d:e6:67:b2:71:67:34:20:58:1f:27:0a:7e: 73:fb:d8:5c:c5:e7:31:23:90:62:81:38:96:7b:c4:48:07:4b: f3:17:e4:9e:59:7a:7b:f7:05:d1:90:4b:14:45:dc:bd:38:84: 7b:97:92:85:23:49:c8:46:80:ea:22:68:55:d9:1f:f8:6f:7b: e3:8b:7a:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXEmjmYknOD2jxbuwGlgLojFWWd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA2MDIwMDU3MzhaFw0yNjA2MDEwMTAyMzhaMDMxMTAvBgNV BAMTKDEzRTIzQTExNTM2NDYzMjc4NEMxMUFFNjFERUNFMEU3ODk1N0ExMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCanInHRetQWN3X/1lOJCtm2yfO ZfmHGiZeML+J5im2go0XUMOmTPey7NYLk/a9mbRzgxcHADA8DzpB1pN589T8exu3 hME+4r9e17RtDo94UF4kjqOjd9tgR2841k402OCuEzm/z+Z7tn2moexJbbTktUS2 CsqcTQBY8x65hZJUjqQ/BDVBqk1zvhgd/iKcKiPgYP602+KEuXt8zTW9CDQa3kZK +U4MnpHmPQsxgpnamHbWXIZzfhA/NIHW86UReTrmnS90Ut0oV0YZJYQB2jgwD4dr lk6HMSEIH6sOlhxRsSK5rP/Tm1DLuyVCRdM0yxneBjXT3mEfUM7q6p+i6nVZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUE+I6EVNkYyeEwRrmHezg54lXoRUwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0EjANBgkqhkiG 9w0BAQsFAAOCAQEAorjVS0guZ81Gtam3GfuZVbU2BzH2H5GfrSiB2vm9xqdR9LKf xFQyCh8ga4ztXakCo8TDYLFbbiJm6XJkF7tJ4XD+oZbAcP5QG1v5ZBGRIKh125bz WKdZh/taGhb9/2Ox730M0aZl3DCU45q0ltEqlhm0nJTWkY1MV94D23IQMjuAQj7r 5NP6IXOM3gRi4w3u38r+I8QPZnSVUfseJkSA7lnNceYVRElzGf/Rv4KHVTJwrkPM Tuu6tFU95meycWc0IFgfJwp+c/vYXMXnMSOQYoE4lnvESAdL8xfknll6e/cF0ZBL FEXcvTiEe5eShSNJyEaA6iJoVdkf+G9744t6Iw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:48 2025 by rpki-client