$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa File: 3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa (raw, json) Hash identifier: Ynfng1Lfq3pWIuf4W3EiHa7RUB04RaxJZyHC4wkM2pw= Subject key identifier: 66:86:A3:9E:72:B2:44:DE:72:25:E5:45:1C:74:A7:1A:36:FB:05:12 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 64CAEDE532FD30C58D9DD3AB62B52039577A697D Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa Signing time: Fri 27 Jun 2025 01:00:00 +0000 ROA not before: Fri 27 Jun 2025 00:55:00 +0000 ROA not after: Fri 26 Jun 2026 01:00:00 +0000 asID: 137330 IP address blocks: 103.112.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ca:ed:e5:32:fd:30:c5:8d:9d:d3:ab:62:b5:20:39:57:7a:69:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 27 00:55:00 2025 GMT Not After : Jun 26 01:00:00 2026 GMT Subject: CN=6686A39E72B244DE7225E5451C74A71A36FB0512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:e5:87:3a:f1:d1:1f:0e:36:18:53:e1:92: 2f:8e:df:27:bd:58:50:35:da:e6:7c:83:56:ac:f9: 9c:ac:70:1a:73:c9:a5:2c:7c:49:58:b7:0e:88:85: eb:b0:d2:cf:2f:ad:2e:bd:03:d0:b1:8f:98:90:ed: 14:ca:10:9d:79:5a:14:45:fa:69:43:12:5a:fb:dc: 07:05:63:4b:7e:1d:cd:2d:36:ab:7e:db:39:4f:cd: 0c:37:3d:63:47:00:79:55:83:2c:00:b2:35:42:9d: ed:43:17:07:36:92:8f:39:0f:9c:17:31:f5:79:ff: d6:f8:fe:6a:3f:9c:77:7d:f3:e6:0f:5f:6c:a2:9d: 40:fb:16:db:25:d6:2b:db:46:9f:19:1c:4b:4a:2a: bb:72:63:92:73:a2:7a:07:ea:a8:9a:78:3b:b2:2b: f7:44:f1:f2:88:16:ad:14:dc:b6:32:6b:5e:12:9d: b8:07:6a:92:2b:54:31:ab:4a:57:60:bb:82:6a:e8: 6b:60:bb:38:be:70:ca:93:51:70:54:3c:4c:bd:5e: 6c:7c:63:d0:1c:2b:b1:8f:93:d4:51:0a:fa:12:4a: 0f:87:52:29:62:1c:32:84:1d:20:a5:e8:c1:cd:15: 3f:bb:de:fe:82:0f:b0:d2:1f:4e:54:c2:10:87:c1: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:86:A3:9E:72:B2:44:DE:72:25:E5:45:1C:74:A7:1A:36:FB:05:12 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133372e302f32342d3234203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.137.0/24 Signature Algorithm: sha256WithRSAEncryption 63:39:c7:59:54:72:17:0f:60:85:c6:c5:c8:63:cc:21:73:df: 18:00:b5:b3:0c:f0:1a:1d:fe:6c:5f:53:04:6b:ed:33:c7:43: f9:e3:58:dd:e7:aa:88:25:a0:b9:53:03:e4:9f:b9:ef:11:84: 5c:d2:83:3e:c8:85:14:cb:35:b8:fc:96:6c:34:c9:df:48:e8: 14:1c:9e:5c:d3:5f:5a:e0:d1:ab:ea:01:dc:4f:1a:84:10:3c: c7:3e:d0:7a:78:1f:01:cc:49:82:9b:98:c6:9c:95:77:e5:e7: e3:8d:f6:ed:53:f3:a3:fe:06:3c:96:27:18:46:0e:fc:03:5e: 72:5e:82:e4:6f:fe:a2:b7:5b:2b:e2:52:c3:d9:b0:c2:97:84: 9f:b4:40:f3:b1:a5:2c:ea:67:40:ed:54:fb:52:c1:06:cd:8b: fd:da:36:a0:ce:b3:78:c4:88:79:c4:c0:e3:4c:36:8c:a4:db: 9a:7f:2f:ff:f3:c0:e5:d2:32:98:57:9e:62:20:16:5b:1f:55: 4d:44:2c:67:4f:69:0d:4b:f4:9b:85:bf:7e:ed:50:c6:8e:fa: c6:dc:c9:a6:3f:c5:77:7c:b1:bd:92:37:08:39:69:07:44:7a: cc:e3:a9:3a:ff:a4:21:60:8b:93:b4:50:82:ac:36:30:22:c5: 40:82:60:6b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZMrt5TL9MMWNndOrYrUgOVd6aX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA2MjcwMDU1MDBaFw0yNjA2MjYwMTAwMDBaMDMxMTAvBgNV BAMTKDY2ODZBMzlFNzJCMjQ0REU3MjI1RTU0NTFDNzRBNzFBMzZGQjA1MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoxeWHOvHRHw42GFPhki+O3ye9 WFA12uZ8g1as+ZyscBpzyaUsfElYtw6Iheuw0s8vrS69A9Cxj5iQ7RTKEJ15WhRF +mlDElr73AcFY0t+Hc0tNqt+2zlPzQw3PWNHAHlVgywAsjVCne1DFwc2ko85D5wX MfV5/9b4/mo/nHd98+YPX2yinUD7Ftsl1ivbRp8ZHEtKKrtyY5JzonoH6qiaeDuy K/dE8fKIFq0U3LYya14SnbgHapIrVDGrSldgu4Jq6Gtguzi+cMqTUXBUPEy9Xmx8 Y9AcK7GPk9RRCvoSSg+HUiliHDKEHSCl6MHNFT+73v6CD7DSH05UwhCHwYItAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZoajnnKyRN5yJeVFHHSnGjb7BRIwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIkwDQYJ KoZIhvcNAQELBQADggEBAGM5x1lUchcPYIXGxchjzCFz3xgAtbMM8Bod/mxfUwRr 7TPHQ/njWN3nqogloLlTA+Sfue8RhFzSgz7IhRTLNbj8lmw0yd9I6BQcnlzTX1rg 0avqAdxPGoQQPMc+0Hp4HwHMSYKbmMaclXfl5+ON9u1T86P+BjyWJxhGDvwDXnJe guRv/qK3WyviUsPZsMKXhJ+0QPOxpSzqZ0DtVPtSwQbNi/3aNqDOs3jEiHnEwONM Noyk25p/L//zwOXSMphXnmIgFlsfVU1ELGdPaQ1L9JuFv37tUMaO+sbcyaY/xXd8 sb2SNwg5aQdEeszjqTr/pCFgi5O0UIKsNjAixUCCYGs= -----END CERTIFICATE-----Generated at Mon Jun 30 19:08:55 2025 by rpki-client