$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa File: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (raw, json) Hash identifier: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8= Subject key identifier: 29:84:D6:02:FD:D0:D8:25:F9:34:EE:32:99:6D:02:A1:AF:99:AA:A8 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 02A384136A65B49D7D427A87DD4D7290AD544181 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa Signing time: Sat 28 Jun 2025 10:00:01 +0000 ROA not before: Sat 28 Jun 2025 09:55:01 +0000 ROA not after: Sat 27 Jun 2026 10:00:01 +0000 asID: 138886 IP address blocks: 103.73.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 04:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a3:84:13:6a:65:b4:9d:7d:42:7a:87:dd:4d:72:90:ad:54:41:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Jun 28 09:55:01 2025 GMT Not After : Jun 27 10:00:01 2026 GMT Subject: CN=2984D602FDD0D825F934EE32996D02A1AF99AAA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c6:04:f4:0c:50:1d:8b:bc:13:b8:76:dd:76: c7:99:43:46:e8:ee:8b:16:42:3d:cc:f0:ce:34:b8: f9:51:9e:b4:c4:9f:e5:6b:c4:9f:ce:4d:be:cb:74: c3:44:6f:bc:7e:d6:e4:fd:d7:53:03:3a:9e:99:d3: 0f:a0:5d:89:b1:a4:7b:1b:40:23:80:84:0f:b3:e8: 10:73:bd:78:4a:c6:5e:40:a6:98:f5:66:70:d8:cd: c6:d0:d0:04:86:40:37:2b:f4:3d:99:a2:c9:19:44: a4:56:de:33:f7:2b:a9:cb:18:e2:cd:9d:df:1d:5c: 61:cd:34:ce:c6:b3:fc:1f:d6:35:1e:17:81:bb:56: 37:fe:92:64:39:e3:98:94:47:6f:06:94:9f:d9:c1: e0:b5:63:0c:6e:76:1c:2c:c6:81:6e:df:9e:d3:13: 20:5a:da:01:9f:29:cc:a6:13:5d:45:02:e3:fa:db: cb:ca:07:2e:d9:4b:44:0e:03:80:6c:09:06:f0:9b: 6b:27:e5:6c:12:b6:cb:34:7a:7a:25:8a:0c:8a:35: f7:9a:1b:b2:aa:b5:a5:40:02:cb:1f:2e:39:f2:75: d5:22:c3:e9:91:cb:24:0e:03:81:cd:ff:f1:8f:26: b9:42:50:bc:a5:8b:f6:d1:9f:65:8e:cc:c2:64:da: aa:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:84:D6:02:FD:D0:D8:25:F9:34:EE:32:99:6D:02:A1:AF:99:AA:A8 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.159.0/24 Signature Algorithm: sha256WithRSAEncryption 62:cb:54:68:4c:95:5f:c3:ac:f4:34:f6:59:67:4e:71:5c:2d: 31:91:9b:52:ae:62:45:80:ef:1d:ff:b5:b5:cc:c4:31:93:08: c6:20:6b:9f:dd:4e:d3:e8:42:51:9f:b6:8d:a2:35:c5:f5:cb: cd:3d:7b:50:f4:34:dc:c7:db:f2:4a:ab:ef:d0:83:e5:eb:13: a9:26:5b:c2:bd:e0:61:5b:a9:68:00:08:72:b5:c1:8f:22:ed: a4:37:5e:c8:f8:fb:4c:89:0b:e5:f6:ce:bd:42:9e:6a:b8:8d: 09:04:09:b6:84:09:cf:5b:51:51:23:18:a8:c2:d3:31:b3:91: 12:23:b4:62:60:91:94:cc:03:34:c1:b5:bc:22:30:3f:1b:5c: ca:20:88:0f:c4:20:7f:f9:56:23:7f:77:19:d0:79:fc:d0:38: 75:13:19:6d:58:2d:03:53:12:20:42:5b:90:30:3e:77:62:94: 56:4d:68:96:85:3d:5f:4e:6d:9b:40:93:21:37:a1:67:ec:23: d6:9a:05:4d:51:1b:c0:27:c9:21:37:75:72:a7:31:74:d1:13: b4:ad:ca:aa:79:1b:f3:79:d9:66:44:c5:bc:35:4d:61:c3:b6: 58:f5:d3:e8:15:34:10:93:d7:fe:09:d5:b4:af:2d:19:72:47: cd:1f:7a:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAqOEE2pltJ19QnqH3U1ykK1UQYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA2MjgwOTU1MDFaFw0yNjA2MjcxMDAwMDFaMDMxMTAvBgNV BAMTKDI5ODRENjAyRkREMEQ4MjVGOTM0RUUzMjk5NkQwMkExQUY5OUFBQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1xgT0DFAdi7wTuHbddseZQ0bo 7osWQj3M8M40uPlRnrTEn+VrxJ/OTb7LdMNEb7x+1uT911MDOp6Z0w+gXYmxpHsb QCOAhA+z6BBzvXhKxl5Appj1ZnDYzcbQ0ASGQDcr9D2ZoskZRKRW3jP3K6nLGOLN nd8dXGHNNM7Gs/wf1jUeF4G7Vjf+kmQ545iUR28GlJ/ZweC1YwxudhwsxoFu357T EyBa2gGfKcymE11FAuP628vKBy7ZS0QOA4BsCQbwm2sn5WwStss0enoligyKNfea G7KqtaVAAssfLjnyddUiw+mRyyQOA4HN//GPJrlCULyli/bRn2WOzMJk2qr5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKYTWAv3Q2CX5NO4ymW0Coa+ZqqgwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDA2Y2RiLTE3OTEtNDc4ZC05 ZDI4LTllMzdhNmY4MDljYy8wLzMxMzAzMzJlMzczMzJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0mfMA0GCSqG SIb3DQEBCwUAA4IBAQBiy1RoTJVfw6z0NPZZZ05xXC0xkZtSrmJFgO8d/7W1zMQx kwjGIGuf3U7T6EJRn7aNojXF9cvNPXtQ9DTcx9vySqvv0IPl6xOpJlvCveBhW6lo AAhytcGPIu2kN17I+PtMiQvl9s69Qp5quI0JBAm2hAnPW1FRIxiowtMxs5ESI7Ri YJGUzAM0wbW8IjA/G1zKIIgPxCB/+VYjf3cZ0Hn80Dh1ExltWC0DUxIgQluQMD53 YpRWTWiWhT1fTm2bQJMhN6Fn7CPWmgVNURvAJ8khN3VypzF00RO0rcqqeRvzedlm RMW8NU1hw7ZY9dPoFTQQk9f+CdW0ry0ZckfNH3o/ -----END CERTIFICATE-----Generated at Tue Jul 1 21:11:18 2025 by rpki-client