$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31392e302f32342d3234203d3e20313333383131.roa File: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (raw, json) Hash identifier: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc= Subject key identifier: 6B:4A:01:A8:04:FB:1E:28:E3:A7:7F:A4:7C:37:8C:61:AA:2A:10:3C Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 2CA77C2661204D1EF1C527997D59A13ADA5AA137 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31392e302f32342d3234203d3e20313333383131.roa Signing time: Mon 02 Jun 2025 01:02:38 +0000 ROA not before: Mon 02 Jun 2025 00:57:38 +0000 ROA not after: Mon 01 Jun 2026 01:02:38 +0000 asID: 133811 IP address blocks: 103.52.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a7:7c:26:61:20:4d:1e:f1:c5:27:99:7d:59:a1:3a:da:5a:a1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Jun 2 00:57:38 2025 GMT Not After : Jun 1 01:02:38 2026 GMT Subject: CN=6B4A01A804FB1E28E3A77FA47C378C61AA2A103C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:28:4d:ae:83:4e:14:fc:bd:10:4d:a4:5c:d8: 2b:af:ea:28:75:8e:8e:3e:16:25:05:13:ad:5b:0c: f8:a1:5f:82:a4:54:dd:a5:29:84:a9:16:b0:59:04: a8:ce:e0:a2:aa:4c:d8:fd:a8:f7:ba:43:a9:2b:37: e2:94:eb:c5:27:91:2c:19:0e:5a:30:a8:f7:af:7f: 64:c7:ab:da:83:b4:b1:27:ed:f2:86:d7:78:da:2d: f3:da:3f:d9:50:33:18:31:6c:d8:5e:77:af:c8:0e: d8:0d:8e:af:c6:b5:d2:65:7d:18:91:81:35:a3:76: 94:1a:43:a7:29:f6:eb:9a:19:d1:68:c2:6d:5e:db: 90:bf:56:c6:23:ff:74:ae:8b:88:87:15:27:cd:2a: a1:5a:92:18:11:c4:b7:e4:d9:ef:0f:ae:f3:48:a9: 29:2f:17:62:a5:3e:f1:d9:84:b0:94:3a:50:a0:a1: 2c:dc:f7:1f:d6:60:3f:65:3a:77:d5:fc:8c:94:57: c7:31:ea:46:61:f8:83:1b:e5:fc:83:b5:ff:10:8d: 77:0f:35:e4:03:87:64:00:b3:f3:78:c7:24:b6:ae: 37:93:96:70:9e:fd:df:46:32:d9:6f:71:92:7d:fb: b8:36:dc:72:5c:5e:65:47:62:0e:14:3b:13:cc:a2: 24:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4A:01:A8:04:FB:1E:28:E3:A7:7F:A4:7C:37:8C:61:AA:2A:10:3C X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31392e302f32342d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.19.0/24 Signature Algorithm: sha256WithRSAEncryption 88:3a:70:9a:6c:16:56:78:be:f1:28:64:b4:14:3d:49:77:e0: 00:c5:e4:8c:29:37:90:03:ba:1d:3b:3f:42:0f:2f:48:b2:1e: b2:8f:b7:0b:f0:26:51:dd:57:26:23:c9:a3:23:ac:ba:29:14: 3b:bf:9d:cc:86:1c:7e:0d:c7:b0:28:34:11:36:e6:f2:27:96: 9c:23:a2:41:88:ac:27:0a:c6:0d:8c:3f:2b:42:48:e6:bf:b9: a8:64:c7:68:cd:e3:e3:b8:fa:5f:98:d2:31:d6:db:72:43:f6: 52:95:f3:e1:ac:82:91:ab:7d:18:8e:d3:b2:de:38:21:b4:33: ff:ff:92:39:dd:e7:32:58:68:e6:36:33:26:2d:dc:8c:86:4a: c9:c8:fe:11:cf:cd:51:7b:71:0a:1a:bb:21:89:5a:d5:0f:9c: 1e:9b:41:71:b8:26:7c:63:96:f2:be:90:b3:3d:9d:cf:d6:ba: f7:82:c8:66:e1:5f:05:58:98:68:45:7d:0a:37:c4:7e:15:f9: 2e:58:fb:cf:9e:64:70:e0:b5:52:a1:6a:de:e0:df:9c:30:d5: a9:cd:60:b2:32:c2:87:af:10:13:6a:d8:af:86:fc:d2:56:36: a9:17:be:80:b9:00:11:fc:df:e8:2c:f2:5d:68:a9:27:06:ce: 67:cb:66:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULKd8JmEgTR7xxSeZfVmhOtpaoTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA2MDIwMDU3MzhaFw0yNjA2MDEwMTAyMzhaMDMxMTAvBgNV BAMTKDZCNEEwMUE4MDRGQjFFMjhFM0E3N0ZBNDdDMzc4QzYxQUEyQTEwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaKE2ug04U/L0QTaRc2Cuv6ih1 jo4+FiUFE61bDPihX4KkVN2lKYSpFrBZBKjO4KKqTNj9qPe6Q6krN+KU68UnkSwZ DlowqPevf2THq9qDtLEn7fKG13jaLfPaP9lQMxgxbNhed6/IDtgNjq/GtdJlfRiR gTWjdpQaQ6cp9uuaGdFowm1e25C/VsYj/3Sui4iHFSfNKqFakhgRxLfk2e8PrvNI qSkvF2KlPvHZhLCUOlCgoSzc9x/WYD9lOnfV/IyUV8cx6kZh+IMb5fyDtf8QjXcP NeQDh2QAs/N4xyS2rjeTlnCe/d9GMtlvcZJ9+7g23HJcXmVHYg4UOxPMoiT7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa0oBqAT7Hijjp3+kfDeMYaoqEDwwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0EzANBgkqhkiG 9w0BAQsFAAOCAQEAiDpwmmwWVni+8ShktBQ9SXfgAMXkjCk3kAO6HTs/Qg8vSLIe so+3C/AmUd1XJiPJoyOsuikUO7+dzIYcfg3HsCg0ETbm8ieWnCOiQYisJwrGDYw/ K0JI5r+5qGTHaM3j47j6X5jSMdbbckP2UpXz4ayCkat9GI7Tst44IbQz//+SOd3n Mlho5jYzJi3cjIZKycj+Ec/NUXtxChq7IYla1Q+cHptBcbgmfGOW8r6Qsz2dz9a6 94LIZuFfBViYaEV9CjfEfhX5Llj7z55kcOC1UqFq3uDfnDDVqc1gsjLCh68QE2rY r4b80lY2qRe+gLkAEfzf6CzyXWipJwbOZ8tmCA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:45 2025 by rpki-client