$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3234372e3234342e302f32342d3234203d3e203435323938.roa File: 3130332e3234372e3234342e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: ofYpfyIwrFc3EyGc5HbuOjiaT8PI5lzgpR6J06rc1og= Subject key identifier: EE:FB:D8:5A:3A:6A:31:B5:6B:F2:02:C6:37:A8:52:E0:B5:C1:4D:A7 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 5DA91A699828714C05EA474152B88E94C293BB4E Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3234372e3234342e302f32342d3234203d3e203435323938.roa Signing time: Tue 17 Jun 2025 18:00:01 +0000 ROA not before: Tue 17 Jun 2025 17:55:01 +0000 ROA not after: Tue 16 Jun 2026 18:00:01 +0000 asID: 45298 IP address blocks: 103.247.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a9:1a:69:98:28:71:4c:05:ea:47:41:52:b8:8e:94:c2:93:bb:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jun 17 17:55:01 2025 GMT Not After : Jun 16 18:00:01 2026 GMT Subject: CN=EEFBD85A3A6A31B56BF202C637A852E0B5C14DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1f:22:d0:9f:b9:2c:65:20:09:89:9a:01:21: 60:7f:9f:ae:bd:21:0e:35:49:dd:25:1b:de:fb:54: 4e:2d:0e:50:b8:b1:6b:cf:a3:d8:3b:bd:10:ac:3b: 48:68:ea:33:84:15:45:3d:63:4e:22:f7:b8:74:5e: 18:f2:1a:19:00:4b:58:f6:4f:7f:20:a8:c5:ba:a8: 2c:e6:43:36:05:b9:6d:7d:e0:ef:2c:9b:72:a7:63: 40:e8:5c:85:00:f2:ce:c9:1d:b1:3d:c1:49:a6:09: df:66:d4:2c:d1:90:6c:4a:1e:f4:da:34:f5:f1:ae: ee:57:2b:79:70:03:a6:6f:88:ca:2e:28:59:44:b5: 61:00:6f:c2:04:8e:b1:6b:8c:a3:55:5c:73:80:a4: ce:0a:9e:0b:a8:16:f7:84:85:7a:b8:35:3e:d9:85: 4d:a6:34:8e:0f:a9:a2:fd:0e:27:23:64:5f:cb:b4: 22:08:42:89:84:d1:9d:95:be:6e:b9:7a:fe:e4:c4: 8a:48:7e:3e:c5:a3:8d:45:65:77:f8:bb:80:48:5d: c6:c3:b4:11:41:c6:a8:7b:66:e2:4d:09:48:8e:25: 9f:06:28:9f:fb:9a:b3:78:64:a0:d6:c3:12:78:e3: 5c:1c:78:f0:67:f3:5b:93:d1:cf:09:97:ed:07:9b: 4e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FB:D8:5A:3A:6A:31:B5:6B:F2:02:C6:37:A8:52:E0:B5:C1:4D:A7 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3234372e3234342e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.244.0/24 Signature Algorithm: sha256WithRSAEncryption c3:c4:8a:51:f8:1c:e2:82:2b:93:29:0d:42:08:59:7c:97:09: 5b:8b:71:cb:5a:be:80:6e:b7:30:81:68:73:40:e1:a7:dc:f3: 8e:5c:16:5a:d1:46:ef:58:df:20:f8:64:0d:55:96:1f:02:6d: f2:16:f5:8a:08:2e:00:2c:03:38:84:09:82:1d:f2:5e:1d:0a: ac:5e:4e:f1:8d:d6:98:74:77:f1:40:d9:da:d6:ac:fa:f1:a9: 82:c3:3f:24:53:4e:04:94:35:5e:4d:c8:6e:dd:1a:e7:d8:8d: 9c:aa:3a:00:84:36:b8:4f:08:3c:4e:fb:14:a3:7d:88:4d:42: b3:d3:bc:64:6c:5d:47:60:cd:79:00:da:f7:d7:9d:8c:bb:27: 0c:ab:cd:9b:23:af:78:7d:24:c5:a7:61:f6:b7:33:46:b1:cc: f5:3c:f7:fc:b4:2d:29:b5:98:f5:59:ee:88:06:08:46:39:3f: d7:bc:aa:87:2d:62:4b:20:1d:57:0a:52:9c:77:b8:9c:e3:ce: 95:6b:70:ff:64:8d:e1:c1:ad:5c:d9:01:ef:4a:27:99:95:5e: 61:5c:ae:8a:94:bd:11:d2:b4:e8:83:3a:5e:ea:2e:0a:e9:71: 66:76:0e:b0:11:49:24:cd:ef:5c:81:38:59:8b:17:f0:0f:f6: 23:7d:37:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXakaaZgocUwF6kdBUriOlMKTu04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTA2MTcxNzU1MDFaFw0yNjA2MTYxODAwMDFaMDMxMTAvBgNV BAMTKEVFRkJEODVBM0E2QTMxQjU2QkYyMDJDNjM3QTg1MkUwQjVDMTREQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlHyLQn7ksZSAJiZoBIWB/n669 IQ41Sd0lG977VE4tDlC4sWvPo9g7vRCsO0ho6jOEFUU9Y04i97h0XhjyGhkAS1j2 T38gqMW6qCzmQzYFuW194O8sm3KnY0DoXIUA8s7JHbE9wUmmCd9m1CzRkGxKHvTa NPXxru5XK3lwA6ZviMouKFlEtWEAb8IEjrFrjKNVXHOApM4KnguoFveEhXq4NT7Z hU2mNI4PqaL9DicjZF/LtCIIQomE0Z2Vvm65ev7kxIpIfj7Fo41FZXf4u4BIXcbD tBFBxqh7ZuJNCUiOJZ8GKJ/7mrN4ZKDWwxJ441wcePBn81uT0c8Jl+0Hm05XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7vvYWjpqMbVr8gLGN6hS4LXBTacwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzAzMzJlMzIzNDM3MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/f0MA0GCSqG SIb3DQEBCwUAA4IBAQDDxIpR+BzigiuTKQ1CCFl8lwlbi3HLWr6AbrcwgWhzQOGn 3POOXBZa0UbvWN8g+GQNVZYfAm3yFvWKCC4ALAM4hAmCHfJeHQqsXk7xjdaYdHfx QNna1qz68amCwz8kU04ElDVeTchu3Rrn2I2cqjoAhDa4Twg8TvsUo32ITUKz07xk bF1HYM15ANr3152MuycMq82bI694fSTFp2H2tzNGscz1PPf8tC0ptZj1We6IBghG OT/XvKqHLWJLIB1XClKcd7ic486Va3D/ZI3hwa1c2QHvSieZlV5hXK6KlL0R0rTo gzpe6i4K6XFmdg6wEUkkze9cgThZixfwD/YjfTcX -----END CERTIFICATE-----Generated at Mon Jun 30 08:18:42 2025 by rpki-client