$ rpki-client -vvf repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/3130332e3231322e3137382e302f32332d3233203d3e2039333431.roa File: 3130332e3231322e3137382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: QJX8gN5qCZ248XxYcOkj9y8Yy9OG8gAXiFIbOeNfS/4= Subject key identifier: 46:42:B4:BC:52:B8:3C:47:AD:7E:89:B3:A5:A1:A7:63:99:16:51:80 Certificate issuer: /CN=385CADA9D59B15B5F48DCBA1C80B7EDAC282D804 Certificate serial: 360579579298B9BE5797EB5AF7EBF769CFF67FAD Authority key identifier: 38:5C:AD:A9:D5:9B:15:B5:F4:8D:CB:A1:C8:0B:7E:DA:C2:82:D8:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/3130332e3231322e3137382e302f32332d3233203d3e2039333431.roa Signing time: Fri 13 Jun 2025 16:00:00 +0000 ROA not before: Fri 13 Jun 2025 15:55:00 +0000 ROA not after: Fri 12 Jun 2026 16:00:00 +0000 asID: 9341 IP address blocks: 103.212.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.crl rsync://repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:05:79:57:92:98:b9:be:57:97:eb:5a:f7:eb:f7:69:cf:f6:7f:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385CADA9D59B15B5F48DCBA1C80B7EDAC282D804 Validity Not Before: Jun 13 15:55:00 2025 GMT Not After : Jun 12 16:00:00 2026 GMT Subject: CN=4642B4BC52B83C47AD7E89B3A5A1A76399165180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:20:02:9c:e2:e0:dd:75:1e:46:97:94:74: 11:2e:0c:62:33:06:8e:fc:e3:01:ec:10:e2:7f:63: ed:af:f7:c4:04:7f:37:66:23:a1:a0:c2:8d:73:2c: 49:b5:b3:7a:ed:82:b8:e2:34:e4:56:53:80:17:ff: fc:e2:c7:50:a6:ad:64:bf:f4:95:32:6e:a7:46:df: c0:29:07:21:db:14:ca:7a:30:46:9c:ea:7c:56:b0: b3:18:8b:99:30:11:78:7e:47:21:ab:58:4b:b2:35: f3:f8:c7:b8:88:eb:9e:28:96:3e:68:17:eb:84:04: aa:d9:7b:5f:59:4b:90:15:b9:29:61:a0:cf:3a:26: 04:e7:24:c9:04:ab:63:ee:2f:0f:c0:55:d7:11:1a: c1:5c:b2:ff:71:ff:0b:52:88:dc:89:51:b1:7e:75: 09:11:f3:f3:7f:32:07:e0:eb:c6:f4:c0:b9:be:3a: 13:c8:44:4f:d5:f5:07:8a:de:c4:ee:55:a6:33:f0: 5d:57:f7:54:a6:ce:4f:00:09:00:7d:ea:52:fb:5a: d9:42:c5:94:0a:97:eb:df:34:63:a1:13:bb:fd:3c: 83:0d:85:c4:44:e3:f1:27:bc:c7:79:96:03:0f:0b: 7e:8f:10:b5:64:9d:69:7e:ff:be:34:1e:89:e6:ed: 10:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:42:B4:BC:52:B8:3C:47:AD:7E:89:B3:A5:A1:A7:63:99:16:51:80 X509v3 Authority Key Identifier: keyid:38:5C:AD:A9:D5:9B:15:B5:F4:8D:CB:A1:C8:0B:7E:DA:C2:82:D8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/385CADA9D59B15B5F48DCBA1C80B7EDAC282D804.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b64a78c-dd4c-4c9d-bcf0-6de6cdb925b0/0/3130332e3231322e3137382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.178.0/23 Signature Algorithm: sha256WithRSAEncryption 35:a5:6f:b8:7c:eb:ba:90:2c:30:26:ca:9d:3b:08:f0:1f:16: c8:d6:50:71:18:8e:15:79:e9:ab:57:9c:08:15:be:d7:68:7e: 5e:e9:7f:f0:7e:9c:1e:ad:e0:31:56:af:de:ce:5c:8e:7f:c1: 3c:80:8f:e2:c5:99:ed:95:3b:5b:df:78:33:5a:0e:13:d6:c2: 6b:f2:22:4e:00:1b:ca:75:12:e1:98:25:ea:85:e4:b7:be:c6: 36:c5:21:1c:05:ca:39:ed:c6:1c:cb:53:60:23:2f:77:ab:44: 12:b2:18:83:d3:5e:2f:40:24:52:6f:5c:14:7a:c0:5d:c4:c5: f1:df:81:bc:06:a0:82:8e:3c:68:30:9a:6b:e8:9f:3f:98:6e: a9:74:27:79:41:aa:52:ea:bc:1f:06:9c:4a:eb:fb:cf:4a:b0: cd:ca:1f:cb:f7:c4:ed:f0:20:c8:a0:76:81:a4:f0:c7:26:23: 0a:9a:bb:a3:14:c7:1d:67:55:4a:83:bb:e1:0c:35:64:dd:48: 15:b7:78:82:dc:d2:f2:b0:ef:9e:1a:da:f9:8c:45:d2:f6:ff: 5b:cb:93:f1:7e:b6:54:ac:63:b1:f6:96:db:4f:53:61:60:12: 65:4f:5a:77:29:59:5d:a8:4e:01:6d:7c:85:ca:9a:3a:ce:50: bb:bd:75:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNgV5V5KYub5Xl+ta9+v3ac/2f60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg1Q0FEQTlENTlCMTVCNUY0OERDQkExQzgwQjdFREFD MjgyRDgwNDAeFw0yNTA2MTMxNTU1MDBaFw0yNjA2MTIxNjAwMDBaMDMxMTAvBgNV BAMTKDQ2NDJCNEJDNTJCODNDNDdBRDdFODlCM0E1QTFBNzYzOTkxNjUxODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6iACnOLg3XUeRpeUdBEuDGIz Bo784wHsEOJ/Y+2v98QEfzdmI6Ggwo1zLEm1s3rtgrjiNORWU4AX//zix1CmrWS/ 9JUybqdG38ApByHbFMp6MEac6nxWsLMYi5kwEXh+RyGrWEuyNfP4x7iI654olj5o F+uEBKrZe19ZS5AVuSlhoM86JgTnJMkEq2PuLw/AVdcRGsFcsv9x/wtSiNyJUbF+ dQkR8/N/Mgfg68b0wLm+OhPIRE/V9QeK3sTuVaYz8F1X91Smzk8ACQB96lL7WtlC xZQKl+vfNGOhE7v9PIMNhcRE4/EnvMd5lgMPC36PELVknWl+/740Honm7RCVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURkK0vFK4PEetfomzpaGnY5kWUYAwHwYDVR0j BBgwFoAUOFytqdWbFbX0jcuhyAt+2sKC2AQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YjY0YTc4Yy1kZDRjLTRjOWQtYmNmMC02ZGU2Y2RiOTI1YjAvMC8zODVDQURBOUQ1 OUIxNUI1RjQ4RENCQTFDODBCN0VEQUMyODJEODA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg1Q0FEQTlENTlCMTVCNUY0OERDQkExQzgwQjdFREFDMjgy RDgwNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNjRhNzhjLWRkNGMtNGM5ZC1i Y2YwLTZkZTZjZGI5MjViMC8wLzMxMzAzMzJlMzIzMTMyMmUzMTM3MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfUsjANBgkqhkiG 9w0BAQsFAAOCAQEANaVvuHzrupAsMCbKnTsI8B8WyNZQcRiOFXnpq1ecCBW+12h+ Xul/8H6cHq3gMVav3s5cjn/BPICP4sWZ7ZU7W994M1oOE9bCa/IiTgAbynUS4Zgl 6oXkt77GNsUhHAXKOe3GHMtTYCMvd6tEErIYg9NeL0AkUm9cFHrAXcTF8d+BvAag go48aDCaa+ifP5huqXQneUGqUuq8HwacSuv7z0qwzcofy/fE7fAgyKB2gaTwxyYj Cpq7oxTHHWdVSoO74Qw1ZN1IFbd4gtzS8rDvnhra+YxF0vb/W8uT8X62VKxjsfaW 209TYWASZU9adylZXahOAW18hcqaOs5Qu711ww== -----END CERTIFICATE-----Generated at Mon Jun 30 00:34:07 2025 by rpki-client