$ rpki-client -vvf repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa File: 3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa (raw, json) Hash identifier: ky6kqewG2CLcXwQoFuB0Gbkz5WHCCY7RgpoJqEc0cVU= Subject key identifier: 75:53:58:3F:DB:45:F6:4E:70:1E:59:9C:FB:F7:3F:80:F6:43:29:9F Certificate issuer: /CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Certificate serial: 7DD4ACFD20988469B8604274A235406A2DB1C34A Authority key identifier: 73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa Signing time: Mon 30 Jun 2025 09:02:50 +0000 ROA not before: Mon 30 Jun 2025 08:57:50 +0000 ROA not after: Mon 29 Jun 2026 09:02:50 +0000 asID: 150196 IP address blocks: 103.229.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 14:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d4:ac:fd:20:98:84:69:b8:60:42:74:a2:35:40:6a:2d:b1:c3:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Validity Not Before: Jun 30 08:57:50 2025 GMT Not After : Jun 29 09:02:50 2026 GMT Subject: CN=7553583FDB45F64E701E599CFBF73F80F643299F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:2a:eb:89:ba:f8:44:f9:fe:c0:4e:9f:9a: 0c:ab:db:72:92:84:92:ef:ad:5d:35:dc:76:ef:d1: 1e:eb:ce:b7:68:35:c5:48:67:5e:a6:c2:6b:5e:4f: e7:ab:6c:24:2c:0d:e4:e6:4f:9b:04:5d:87:70:e5: c9:03:bc:7d:4b:53:93:32:5f:1d:8f:46:68:a0:67: 37:b7:20:3e:6e:ea:33:fb:5d:85:fc:e7:04:0c:55: 04:5e:39:0c:17:f0:31:5b:f5:67:1d:29:ca:85:53: 5c:b7:e6:15:e7:da:86:86:91:71:b1:f0:bd:61:68: 93:71:1a:bc:d4:40:80:7e:c4:60:e3:a3:63:15:83: 42:03:f2:73:62:aa:0b:62:ae:d3:fa:aa:3e:3e:af: d6:b7:da:8e:38:36:ae:e4:04:b2:58:17:3a:24:61: b9:a5:0e:6a:4c:0d:2d:43:52:59:d3:70:07:e0:11: 12:a9:e6:bd:05:b9:1e:4c:2d:b7:db:4b:f8:35:7b: ae:88:32:a8:96:19:3e:6f:7b:18:d8:1d:9d:5c:09: 62:12:ff:a6:c2:fe:73:77:c1:6f:10:6c:84:65:67: c7:9d:6a:38:9b:48:f9:0a:3a:cc:c1:de:81:ec:7b: 77:1b:8c:af:86:19:69:66:11:13:a9:f2:1a:05:a9: fe:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:53:58:3F:DB:45:F6:4E:70:1E:59:9C:FB:F7:3F:80:F6:43:29:9F X509v3 Authority Key Identifier: keyid:73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32342d3234203d3e20313530313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.14.0/24 Signature Algorithm: sha256WithRSAEncryption 31:8e:7e:65:ff:3b:d1:6d:b4:3b:0f:44:cd:74:17:de:10:1a: 7b:7d:bb:0f:47:8a:10:83:6d:2f:ec:cf:44:47:09:0b:fb:29: 5e:e8:cd:42:f1:49:e0:a2:c5:92:db:c1:1f:69:ff:0c:0c:91: 0c:74:29:0e:a0:7b:f8:bf:9e:85:b0:b6:05:ae:68:57:a6:26: 3a:ee:28:d4:fb:73:81:f6:bc:9d:74:59:8d:e9:fe:89:6f:8f: 19:73:67:ff:59:bd:c9:45:61:f2:3b:58:d0:ad:fb:74:7f:07: fc:52:8d:e0:14:12:d5:45:3e:90:a5:b1:db:9e:4b:e9:94:45: 22:54:8b:e1:cd:71:8b:f5:5f:54:6b:a2:a7:eb:ad:2d:b9:45: 67:32:c1:0e:65:c4:86:4f:0f:dd:14:79:a3:99:22:2d:d9:9c: 14:99:34:86:c4:53:1c:da:c5:4a:dd:21:02:33:9a:a1:69:45: ee:18:2f:c5:d2:1b:3a:ad:ab:9e:4d:52:55:31:bc:ef:93:04: bf:8e:7e:ea:24:a7:04:92:13:bc:16:eb:84:78:70:df:22:29: ba:fa:89:40:65:30:ec:83:59:09:84:cf:15:fe:f9:fc:c4:04: cb:d9:1a:6f:2e:33:1d:ed:fa:ce:ec:87:1e:99:6e:6a:e1:5d: 7b:a9:b1:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfdSs/SCYhGm4YEJ0ojVAai2xw0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3 REZDNkE4RTAeFw0yNTA2MzAwODU3NTBaFw0yNjA2MjkwOTAyNTBaMDMxMTAvBgNV BAMTKDc1NTM1ODNGREI0NUY2NEU3MDFFNTk5Q0ZCRjczRjgwRjY0MzI5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHrirribr4RPn+wE6fmgyr23KS hJLvrV013Hbv0R7rzrdoNcVIZ16mwmteT+erbCQsDeTmT5sEXYdw5ckDvH1LU5My Xx2PRmigZze3ID5u6jP7XYX85wQMVQReOQwX8DFb9WcdKcqFU1y35hXn2oaGkXGx 8L1haJNxGrzUQIB+xGDjo2MVg0ID8nNiqgtirtP6qj4+r9a32o44Nq7kBLJYFzok YbmlDmpMDS1DUlnTcAfgERKp5r0FuR5MLbfbS/g1e66IMqiWGT5vexjYHZ1cCWIS /6bC/nN3wW8QbIRlZ8edajibSPkKOszB3oHse3cbjK+GGWlmEROp8hoFqf5dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdVNYP9tF9k5wHlmc+/c/gPZDKZ8wHwYDVR0j BBgwFoAUcx22dXK0ijqG8EdaDiHhon38ao4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yjc1YmZkMC1hODZjLTRiZWItOWY5OS1hYWMzM2ZiNWU0OWYvMC83MzFEQjY3NTcy QjQ4QTNBODZGMDQ3NUEwRTIxRTFBMjdERkM2QThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3REZD NkE4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNzViZmQwLWE4NmMtNGJlYi05 Zjk5LWFhYzMzZmI1ZTQ5Zi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+UOMA0GCSqG SIb3DQEBCwUAA4IBAQAxjn5l/zvRbbQ7D0TNdBfeEBp7fbsPR4oQg20v7M9ERwkL +yle6M1C8UngosWS28Efaf8MDJEMdCkOoHv4v56FsLYFrmhXpiY67ijU+3OB9ryd dFmN6f6Jb48Zc2f/Wb3JRWHyO1jQrft0fwf8Uo3gFBLVRT6QpbHbnkvplEUiVIvh zXGL9V9Ua6Kn660tuUVnMsEOZcSGTw/dFHmjmSIt2ZwUmTSGxFMc2sVK3SECM5qh aUXuGC/F0hs6raueTVJVMbzvkwS/jn7qJKcEkhO8FuuEeHDfIim6+olAZTDsg1kJ hM8V/vn8xATL2RpvLjMd7frO7IcemW5q4V17qbEd -----END CERTIFICATE-----Generated at Thu Jul 3 12:52:34 2025 by rpki-client