$ rpki-client -vvf repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa File: 3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa (raw, json) Hash identifier: rU6CTRCIbPGkygtk9vCtJAvLoojM7auukeL4M4/e+W4= Subject key identifier: 56:68:C0:21:84:5D:F0:5B:5C:F7:E8:BC:97:E8:F3:19:AC:C6:E8:D4 Certificate issuer: /CN=4ACFA054E26D225A10C6B0FD316D21263924491E Certificate serial: 43A525F1BB8B6543DD637707D73F9AFEFBB58EFC Authority key identifier: 4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa Signing time: Mon 02 Jun 2025 01:02:45 +0000 ROA not before: Mon 02 Jun 2025 00:57:45 +0000 ROA not after: Mon 01 Jun 2026 01:02:45 +0000 asID: 132649 IP address blocks: 103.24.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 08:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a5:25:f1:bb:8b:65:43:dd:63:77:07:d7:3f:9a:fe:fb:b5:8e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACFA054E26D225A10C6B0FD316D21263924491E Validity Not Before: Jun 2 00:57:45 2025 GMT Not After : Jun 1 01:02:45 2026 GMT Subject: CN=5668C021845DF05B5CF7E8BC97E8F319ACC6E8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5f:93:8a:db:48:e6:fa:a9:4e:98:17:75:b7: 0e:57:68:08:d1:59:fc:fa:03:0c:45:2a:07:69:d0: 73:fb:14:f6:fb:f3:17:d4:6f:9c:50:b5:aa:d1:9a: 73:1f:d9:f6:e7:49:fc:74:73:bc:6c:2f:2e:a8:27: d8:3a:9f:5a:9f:18:a5:00:1e:01:1e:cf:9b:4d:d5: 06:88:bb:9f:af:8d:7e:ae:8d:84:6b:ef:34:ef:f6: 89:fd:4f:2d:cc:17:92:8c:ac:7a:a5:d0:df:56:b8: 4c:ab:74:a6:b3:47:02:65:cf:ee:df:e2:37:19:ce: 35:37:23:e1:b6:02:44:d4:bd:1c:f5:c1:00:c4:7a: 9e:1a:f8:92:b6:7e:74:a3:87:02:f9:89:83:c8:b3: 61:7a:67:72:03:da:27:6c:e3:f8:4c:72:00:40:99: bf:9f:df:23:fb:00:30:c3:20:34:3f:15:82:bb:23: 08:73:6c:0c:65:cd:64:ad:d2:0e:fa:50:45:15:b5: fe:c0:9c:b8:1a:cd:e5:10:3e:f9:67:ce:12:c4:39: d0:79:3c:0c:34:d4:08:8b:80:40:59:51:6c:f9:82: e5:16:95:5e:72:d7:2c:bc:ae:18:30:72:f5:e9:2b: 5c:14:36:79:c9:5e:29:05:36:37:55:cf:de:9b:fe: 54:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:68:C0:21:84:5D:F0:5B:5C:F7:E8:BC:97:E8:F3:19:AC:C6:E8:D4 X509v3 Authority Key Identifier: keyid:4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.213.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:d3:93:a6:3d:c1:71:b6:ac:b2:08:fb:85:7b:fb:05:c0:4d: 46:c4:af:f6:f8:46:ed:57:06:1b:7b:23:07:52:6e:89:49:3c: 2e:b6:d7:a8:c2:18:f9:05:3e:36:9c:ba:09:f2:89:b1:23:80: ad:84:21:18:cd:e5:5f:91:21:eb:eb:fe:30:44:d0:1e:95:04: 36:99:88:9a:30:75:6e:95:a6:d0:80:fe:2a:02:f9:37:06:3f: 71:96:18:62:c9:00:96:8d:79:23:3a:95:1e:c6:17:79:25:2e: 2f:5b:49:5f:d5:4f:13:d7:53:fa:99:ae:ce:56:38:94:51:6b: e8:5e:3a:15:39:2f:73:ad:d1:67:6d:45:b1:e9:05:d2:d7:ad: 5e:7d:8f:97:69:86:11:3f:ca:6b:f3:9b:e0:66:17:a6:bc:a2: 75:9b:2e:a2:81:5d:5f:e2:04:00:5e:45:fd:be:ba:31:36:3c: 84:a7:81:72:29:70:79:09:d0:8b:43:75:1c:e3:94:37:0b:e2: d8:df:d6:94:c0:27:55:a2:66:11:d7:86:f4:bb:fb:fe:72:74: 9b:14:35:59:72:46:75:09:d1:d2:ca:45:ed:46:9e:e2:3f:7d: fb:ea:49:7e:97:7e:af:b0:37:d8:58:92:9c:78:92:da:82:38: d2:a2:e2:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ6Ul8buLZUPdY3cH1z+a/vu1jvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYz OTI0NDkxRTAeFw0yNTA2MDIwMDU3NDVaFw0yNjA2MDEwMTAyNDVaMDMxMTAvBgNV BAMTKDU2NjhDMDIxODQ1REYwNUI1Q0Y3RThCQzk3RThGMzE5QUNDNkU4RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFX5OK20jm+qlOmBd1tw5XaAjR Wfz6AwxFKgdp0HP7FPb78xfUb5xQtarRmnMf2fbnSfx0c7xsLy6oJ9g6n1qfGKUA HgEez5tN1QaIu5+vjX6ujYRr7zTv9on9Ty3MF5KMrHql0N9WuEyrdKazRwJlz+7f 4jcZzjU3I+G2AkTUvRz1wQDEep4a+JK2fnSjhwL5iYPIs2F6Z3ID2ids4/hMcgBA mb+f3yP7ADDDIDQ/FYK7IwhzbAxlzWSt0g76UEUVtf7AnLgazeUQPvlnzhLEOdB5 PAw01AiLgEBZUWz5guUWlV5y1yy8rhgwcvXpK1wUNnnJXikFNjdVz96b/lSBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVmjAIYRd8Ftc9+i8l+jzGazG6NQwHwYDVR0j BBgwFoAUSs+gVOJtIloQxrD9MW0hJjkkSR4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTQ2YTMwNS1kZjc3LTQ1ODctODcwMy1hOTA1YzUzNzc5YWMvMC80QUNGQTA1NEUy NkQyMjVBMTBDNkIwRkQzMTZEMjEyNjM5MjQ0OTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYzOTI0 NDkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxjVMA0GCSqG SIb3DQEBCwUAA4IBAQAd05OmPcFxtqyyCPuFe/sFwE1GxK/2+EbtVwYbeyMHUm6J STwutteowhj5BT42nLoJ8omxI4CthCEYzeVfkSHr6/4wRNAelQQ2mYiaMHVulabQ gP4qAvk3Bj9xlhhiyQCWjXkjOpUexhd5JS4vW0lf1U8T11P6ma7OVjiUUWvoXjoV OS9zrdFnbUWx6QXS161efY+XaYYRP8pr85vgZhemvKJ1my6igV1f4gQAXkX9vrox NjyEp4FyKXB5CdCLQ3Uc45Q3C+LY39aUwCdVomYR14b0u/v+cnSbFDVZckZ1CdHS ykXtRp7iP3376kl+l36vsDfYWJKceJLagjjSouJ6 -----END CERTIFICATE-----Generated at Fri Jul 4 21:53:19 2025 by rpki-client