$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa File: 3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: Tg3uHiws3586UtP8/6LlH5rBTeR3eoDlr7oeiwMOjQA= Subject key identifier: 35:2B:04:05:A6:3F:AB:29:00:5E:FF:28:F3:F2:C5:31:A9:45:AF:05 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 166B221F113A42D6ECCED67E235F5D6517138ADD Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa Signing time: Fri 27 Jun 2025 01:00:00 +0000 ROA not before: Fri 27 Jun 2025 00:55:00 +0000 ROA not after: Fri 26 Jun 2026 01:00:00 +0000 asID: 55701 IP address blocks: 103.112.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:6b:22:1f:11:3a:42:d6:ec:ce:d6:7e:23:5f:5d:65:17:13:8a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 27 00:55:00 2025 GMT Not After : Jun 26 01:00:00 2026 GMT Subject: CN=352B0405A63FAB29005EFF28F3F2C531A945AF05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:2d:d7:ea:7f:75:0c:2b:82:e8:73:7e:71: 8e:4d:80:9b:40:b7:45:53:bc:02:d7:a5:2a:18:6a: 6d:0e:40:c9:36:4f:17:2d:7b:7c:fa:34:95:dd:c0: d5:09:e7:f1:aa:00:00:1e:1c:15:3f:a7:21:1a:45: 3f:fc:f0:52:e2:21:78:b0:c2:39:dd:30:2f:e7:00: 8e:11:3e:32:34:0d:9e:50:ec:68:55:4a:eb:32:55: 01:ea:ab:60:7d:3c:dd:66:08:18:2e:dc:8f:3d:e5: c9:8c:dd:f5:16:12:39:d5:86:2d:8f:df:33:72:74: fd:51:f3:34:4a:8a:54:bc:8a:76:2d:34:1d:37:69: f6:95:b2:55:d3:54:c3:a2:9f:94:a9:37:b9:0a:d6: 01:6c:09:b8:46:79:d7:d0:89:61:e9:51:f8:b0:e6: 64:9b:20:ed:95:a7:e8:34:28:cb:18:4c:d2:ef:85: d6:6c:d6:30:12:ac:52:90:9d:2e:83:e6:09:77:d8: 23:7e:c2:40:dc:a0:1d:05:8d:5a:fe:a2:40:c8:83: 49:eb:65:b9:c6:87:4f:15:c5:6d:66:8b:98:37:5e: 04:17:1d:a5:82:d4:a4:7c:55:03:58:6e:a1:c3:d7: 8f:e1:fb:7d:63:1d:3d:a7:d1:ce:86:1b:65:9d:c7: 4d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2B:04:05:A6:3F:AB:29:00:5E:FF:28:F3:F2:C5:31:A9:45:AF:05 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.139.0/24 Signature Algorithm: sha256WithRSAEncryption 30:34:2b:a9:8c:92:49:84:82:f9:f8:09:88:9e:aa:7a:b0:3d: 3e:01:2a:c8:ba:82:f3:74:53:3a:cd:69:d9:a1:f7:ec:bb:4e: c0:64:fc:37:a0:d7:61:ba:99:6c:05:6c:70:5c:de:9a:c5:59: ee:a6:9d:6d:ba:8e:53:78:63:da:65:46:94:7d:f8:da:bc:23: d3:f5:50:5c:fc:a8:ad:4f:85:9d:25:78:c8:90:87:6a:b4:b0: 09:84:b1:5e:8e:f8:38:81:ed:ef:6e:b7:d2:d3:e4:38:0d:72: 66:48:db:25:b1:93:d4:6d:89:03:d2:cd:43:a6:b0:7a:a3:70: 8a:d6:c8:07:bd:0f:23:fe:29:b3:96:df:3f:ee:86:66:7d:59: 67:54:69:d0:90:95:c7:8b:b8:64:90:e9:87:c5:55:87:d6:24: 25:cc:97:46:03:68:0f:f7:a8:1c:f3:41:9a:d1:18:df:4a:b4: 98:f4:fb:da:55:4d:2d:fe:58:76:63:55:22:51:ca:a0:bc:a0: a8:ea:b3:80:e5:3f:de:24:88:9e:90:97:19:f1:bd:b8:69:29: af:14:78:61:62:ae:9f:a3:43:1e:09:a0:7c:cf:f3:73:b7:a4: 9a:7c:f9:c4:e7:66:9a:0c:4d:51:ae:26:fa:fc:30:85:6b:96: 07:70:3d:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFmsiHxE6QtbsztZ+I19dZRcTit0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA2MjcwMDU1MDBaFw0yNjA2MjYwMTAwMDBaMDMxMTAvBgNV BAMTKDM1MkIwNDA1QTYzRkFCMjkwMDVFRkYyOEYzRjJDNTMxQTk0NUFGMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhcC3X6n91DCuC6HN+cY5NgJtA t0VTvALXpSoYam0OQMk2Txcte3z6NJXdwNUJ5/GqAAAeHBU/pyEaRT/88FLiIXiw wjndMC/nAI4RPjI0DZ5Q7GhVSusyVQHqq2B9PN1mCBgu3I895cmM3fUWEjnVhi2P 3zNydP1R8zRKilS8inYtNB03afaVslXTVMOin5SpN7kK1gFsCbhGedfQiWHpUfiw 5mSbIO2Vp+g0KMsYTNLvhdZs1jASrFKQnS6D5gl32CN+wkDcoB0FjVr+okDIg0nr ZbnGh08VxW1mi5g3XgQXHaWC1KR8VQNYbqHD14/h+31jHT2n0c6GG2Wdx03nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNSsEBaY/qykAXv8o8/LFMalFrwUwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3CLMA0GCSqG SIb3DQEBCwUAA4IBAQAwNCupjJJJhIL5+AmInqp6sD0+ASrIuoLzdFM6zWnZoffs u07AZPw3oNdhuplsBWxwXN6axVnupp1tuo5TeGPaZUaUffjavCPT9VBc/KitT4Wd JXjIkIdqtLAJhLFejvg4ge3vbrfS0+Q4DXJmSNslsZPUbYkD0s1DprB6o3CK1sgH vQ8j/imzlt8/7oZmfVlnVGnQkJXHi7hkkOmHxVWH1iQlzJdGA2gP96gc80Ga0Rjf SrSY9PvaVU0t/lh2Y1UiUcqgvKCo6rOA5T/eJIiekJcZ8b24aSmvFHhhYq6fo0Me CaB8z/Nzt6SafPnE52aaDE1Rrib6/DCFa5YHcD0h -----END CERTIFICATE-----Generated at Mon Jun 30 00:15:25 2025 by rpki-client