$ rpki-client -vvf repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35302e302f32342d3234203d3e203539313334.roa File: 3130332e3235322e35302e302f32342d3234203d3e203539313334.roa (raw, json) Hash identifier: tg5kgcB+/SuzaicgIITC9CS9oqxnux/xS4/nsX+npzw= Subject key identifier: 6B:B0:DB:AC:F6:DE:CF:5D:AC:68:19:32:2A:6C:DF:5C:7A:EA:E6:83 Certificate issuer: /CN=095AAB2FD179056DA8846FA0E90F79F7D901792C Certificate serial: 2A53B00996A665735B6722DD38654F548D6A76BB Authority key identifier: 09:5A:AB:2F:D1:79:05:6D:A8:84:6F:A0:E9:0F:79:F7:D9:01:79:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35302e302f32342d3234203d3e203539313334.roa Signing time: Tue 24 Jun 2025 12:00:01 +0000 ROA not before: Tue 24 Jun 2025 11:55:01 +0000 ROA not after: Tue 23 Jun 2026 12:00:01 +0000 asID: 59134 IP address blocks: 103.252.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.crl rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 06:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:53:b0:09:96:a6:65:73:5b:67:22:dd:38:65:4f:54:8d:6a:76:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095AAB2FD179056DA8846FA0E90F79F7D901792C Validity Not Before: Jun 24 11:55:01 2025 GMT Not After : Jun 23 12:00:01 2026 GMT Subject: CN=6BB0DBACF6DECF5DAC6819322A6CDF5C7AEAE683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ed:ca:31:80:1e:df:0d:8e:f9:0f:3c:85:ab: 6b:cc:75:c1:84:71:f9:cb:68:30:96:a8:2d:e5:f9: f7:88:f1:0d:64:78:3a:cf:17:0e:fe:43:3d:d7:fc: de:36:62:a6:24:4f:31:54:a1:20:c3:24:87:24:ea: bc:9a:1a:41:12:18:43:72:26:de:4c:fb:e9:aa:3b: 6a:89:74:24:7f:12:f0:e2:30:3f:95:b7:a4:06:6b: 40:57:43:4a:80:33:77:f7:7a:78:03:49:67:7d:d4: 63:89:db:9b:39:1d:bb:a5:44:55:e1:34:11:b8:a9: 2a:59:e3:88:5d:4e:27:c4:1a:8f:12:10:7d:e3:25: 8c:1a:10:73:bc:4c:2e:52:6d:4b:c4:29:c6:86:86: 6e:7e:2d:44:9f:6b:fa:d0:3f:37:46:18:77:b6:17: 97:f7:99:4a:e9:96:16:41:ec:f1:18:8c:65:a0:b4: ff:57:66:50:ed:fc:ef:d1:d5:81:81:05:29:b8:0e: e8:f4:c5:4e:6e:7f:37:9c:c0:a1:5d:5c:33:57:28: 84:a3:76:3c:6b:d4:60:4f:58:9a:a9:17:f9:d3:53: c5:e5:3a:07:eb:fa:4c:2b:d4:53:12:f2:ba:ab:9e: 7d:eb:e7:57:d4:fa:3b:53:c4:45:7d:f9:e7:7b:3c: d8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B0:DB:AC:F6:DE:CF:5D:AC:68:19:32:2A:6C:DF:5C:7A:EA:E6:83 X509v3 Authority Key Identifier: keyid:09:5A:AB:2F:D1:79:05:6D:A8:84:6F:A0:E9:0F:79:F7:D9:01:79:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/095AAB2FD179056DA8846FA0E90F79F7D901792C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/095AAB2FD179056DA8846FA0E90F79F7D901792C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a788b4a-d451-49fb-b7cd-719810870f1a/0/3130332e3235322e35302e302f32342d3234203d3e203539313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.50.0/24 Signature Algorithm: sha256WithRSAEncryption 43:88:7b:18:52:b1:cb:9e:e6:2c:08:1f:3c:74:7e:52:7d:d6: 79:c7:14:f3:7a:25:c5:d0:7c:ed:50:f9:ae:ec:83:b0:ee:40: 97:dd:56:85:29:fd:27:c0:b4:79:73:ed:4e:92:16:15:e1:5a: c2:33:82:75:b4:22:27:45:27:8d:46:24:8d:4c:a1:3e:f1:01: 58:e0:f3:be:e9:1c:82:78:e8:66:50:fa:34:09:c8:e8:f9:8b: 02:b6:b4:80:23:a2:81:ff:c5:ea:32:0a:72:45:ff:09:d5:07: 0f:27:c5:f2:4c:34:da:0a:71:65:52:98:82:37:d2:1e:b3:6e: 6d:32:0d:69:a3:f4:f0:98:8c:33:2b:4d:23:4d:78:3f:40:5a: f2:3d:9d:13:f3:41:ff:49:0a:a7:ae:e2:d2:6b:a6:b3:4d:42: 7f:4f:e0:82:a4:cf:a4:44:b7:b0:ea:4e:f2:15:ba:3b:78:bd: 09:06:d8:dc:bb:06:5b:4d:92:06:91:dc:6e:ec:29:c7:a4:ee: e4:6a:08:c9:55:d4:a0:c2:62:bd:29:7c:cb:b5:75:00:1c:85: 88:b6:2a:ad:c7:e0:d4:d0:cf:e9:3d:0f:8b:19:0d:78:f5:ff: 0d:0b:7b:03:9d:39:f7:11:b5:2d:1f:72:71:ef:02:5f:af:92: bd:76:b6:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKlOwCZamZXNbZyLdOGVPVI1qdrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk1QUFCMkZEMTc5MDU2REE4ODQ2RkEwRTkwRjc5RjdE OTAxNzkyQzAeFw0yNTA2MjQxMTU1MDFaFw0yNjA2MjMxMjAwMDFaMDMxMTAvBgNV BAMTKDZCQjBEQkFDRjZERUNGNURBQzY4MTkzMjJBNkNERjVDN0FFQUU2ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz7coxgB7fDY75DzyFq2vMdcGE cfnLaDCWqC3l+feI8Q1keDrPFw7+Qz3X/N42YqYkTzFUoSDDJIck6ryaGkESGENy Jt5M++mqO2qJdCR/EvDiMD+Vt6QGa0BXQ0qAM3f3engDSWd91GOJ25s5HbulRFXh NBG4qSpZ44hdTifEGo8SEH3jJYwaEHO8TC5SbUvEKcaGhm5+LUSfa/rQPzdGGHe2 F5f3mUrplhZB7PEYjGWgtP9XZlDt/O/R1YGBBSm4Duj0xU5ufzecwKFdXDNXKISj djxr1GBPWJqpF/nTU8XlOgfr+kwr1FMS8rqrnn3r51fU+jtTxEV9+ed7PNhBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa7DbrPbez12saBkyKmzfXHrq5oMwHwYDVR0j BBgwFoAUCVqrL9F5BW2ohG+g6Q9599kBeSwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTc4OGI0YS1kNDUxLTQ5ZmItYjdjZC03MTk4MTA4NzBmMWEvMC8wOTVBQUIyRkQx NzkwNTZEQTg4NDZGQTBFOTBGNzlGN0Q5MDE3OTJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDk1QUFCMkZEMTc5MDU2REE4ODQ2RkEwRTkwRjc5RjdEOTAx NzkyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzg4YjRhLWQ0NTEtNDlmYi1i N2NkLTcxOTgxMDg3MGYxYS8wLzMxMzAzMzJlMzIzNTMyMmUzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzOTMxMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf8MjANBgkqhkiG 9w0BAQsFAAOCAQEAQ4h7GFKxy57mLAgfPHR+Un3WeccU83olxdB87VD5ruyDsO5A l91WhSn9J8C0eXPtTpIWFeFawjOCdbQiJ0UnjUYkjUyhPvEBWODzvukcgnjoZlD6 NAnI6PmLAra0gCOigf/F6jIKckX/CdUHDyfF8kw02gpxZVKYgjfSHrNubTINaaP0 8JiMMytNI014P0Ba8j2dE/NB/0kKp67i0mums01Cf0/ggqTPpES3sOpO8hW6O3i9 CQbY3LsGW02SBpHcbuwpx6Tu5GoIyVXUoMJivSl8y7V1AByFiLYqrcfg1NDP6T0P ixkNePX/DQt7A5059xG1LR9yce8CX6+SvXa2tA== -----END CERTIFICATE-----Generated at Mon Jun 30 01:25:19 2025 by rpki-client