$ rpki-client -vvf repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138352e302f32342d3234203d3e20313531303132.roa File: 3130332e3232372e3138352e302f32342d3234203d3e20313531303132.roa (raw, json) Hash identifier: 5p8DeVWE4ixdVzTUD+2z3ALmeQQXrFM+ymQAz8yvg9Q= Subject key identifier: 7B:2C:09:FD:F7:CC:C1:86:2B:BF:58:FD:24:0E:2B:DC:9C:04:2E:D0 Certificate issuer: /CN=B30FDBDE70FBE70CC44F3C710B467069B1194DD8 Certificate serial: 343C39C7BDB29306AC5DD6003D9042FC4B33E313 Authority key identifier: B3:0F:DB:DE:70:FB:E7:0C:C4:4F:3C:71:0B:46:70:69:B1:19:4D:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138352e302f32342d3234203d3e20313531303132.roa Signing time: Tue 24 Jun 2025 09:00:01 +0000 ROA not before: Tue 24 Jun 2025 08:55:01 +0000 ROA not after: Tue 23 Jun 2026 09:00:01 +0000 asID: 151012 IP address blocks: 103.227.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.crl rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 12:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:3c:39:c7:bd:b2:93:06:ac:5d:d6:00:3d:90:42:fc:4b:33:e3:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B30FDBDE70FBE70CC44F3C710B467069B1194DD8 Validity Not Before: Jun 24 08:55:01 2025 GMT Not After : Jun 23 09:00:01 2026 GMT Subject: CN=7B2C09FDF7CCC1862BBF58FD240E2BDC9C042ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:80:0f:dd:af:9d:dd:a5:97:7a:f4:19:2a:96: 3d:f2:31:80:f4:b0:9a:c2:6d:a9:ef:0f:a2:28:48: 79:3f:46:9a:46:49:09:c5:f1:8b:61:1f:e4:3b:d7: df:ec:f1:05:f8:c3:f7:cd:f3:36:fc:b1:74:ba:42: cb:80:18:83:04:d8:fd:b9:d5:b9:5f:75:ea:ba:b3: e9:e2:e8:29:be:5c:3f:f8:c9:82:66:1d:76:bc:e3: 42:e9:82:b5:f5:e5:3c:98:07:9e:92:03:ff:df:b1: 5d:1d:34:2d:92:c1:d6:96:2a:27:b3:a5:66:5d:73: 4d:0a:66:a0:b0:17:4a:25:7b:50:05:a3:46:e1:b7: ec:5d:97:cb:f5:03:67:4a:07:92:fd:6b:ed:2c:24: af:1b:f5:00:47:62:ce:f1:f6:f3:04:5f:9e:ab:9d: 3d:bf:fb:27:c0:0a:9f:98:b8:63:cf:3a:93:5a:46: 41:5f:44:9c:65:aa:d8:a4:ce:41:30:b1:0a:03:57: fb:19:20:dc:3c:4c:7c:d9:15:23:ec:02:b3:c1:ef: a9:6c:65:95:a7:d9:5f:cd:38:e6:91:5b:5b:40:5a: b9:8b:0d:e1:03:fc:45:23:25:64:c4:fd:dc:cb:64: fa:05:08:0c:13:8d:e8:db:43:5a:b1:11:5c:a0:2a: 89:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:2C:09:FD:F7:CC:C1:86:2B:BF:58:FD:24:0E:2B:DC:9C:04:2E:D0 X509v3 Authority Key Identifier: keyid:B3:0F:DB:DE:70:FB:E7:0C:C4:4F:3C:71:0B:46:70:69:B1:19:4D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B30FDBDE70FBE70CC44F3C710B467069B1194DD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d75088e-49af-472b-9b62-81e73daaf1d6/0/3130332e3232372e3138352e302f32342d3234203d3e20313531303132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.185.0/24 Signature Algorithm: sha256WithRSAEncryption c7:21:b1:b4:c8:1a:5c:fd:a4:94:80:71:7b:5d:c5:f6:72:33: d3:d5:2d:e5:4b:c4:d2:c8:31:7c:10:66:8f:c5:5f:ee:4b:51: 74:09:0b:ad:33:cf:28:4e:66:31:0f:5b:55:e9:e3:68:c0:72: 44:24:3e:74:77:69:91:b6:c5:fd:7f:bb:9e:c5:da:ac:34:c6: b6:76:87:28:ca:03:f5:45:68:5a:dc:cf:0f:93:fc:47:77:ef: a9:c3:5d:25:7f:97:89:e5:21:d1:f1:f1:8c:26:41:bb:bb:9e: f7:50:e4:19:31:19:51:95:7d:be:1f:5a:0f:70:4a:00:07:fd: c2:cd:30:b2:09:32:3b:b4:e4:39:7a:25:d7:89:54:f4:01:a2: 5b:75:5e:51:57:d2:20:9a:a0:02:1e:b8:8a:c6:d8:20:c2:d6: b0:14:bf:6a:d1:26:bf:df:28:9d:09:e7:dd:66:f6:1e:02:f6: e2:45:f1:cc:ab:59:14:35:7b:03:84:1f:75:48:6d:9e:11:4e: c3:e3:f1:e1:17:86:93:10:dd:8f:25:19:b2:64:88:95:c3:8b: a4:d7:0f:81:27:1e:01:69:9d:14:e5:00:63:8a:dc:8f:59:df: c9:40:28:ef:67:82:72:07:3d:70:b2:03:d9:ff:86:01:60:2e: 8e:2b:0e:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNDw5x72ykwasXdYAPZBC/Esz4xMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMwRkRCREU3MEZCRTcwQ0M0NEYzQzcxMEI0NjcwNjlC MTE5NEREODAeFw0yNTA2MjQwODU1MDFaFw0yNjA2MjMwOTAwMDFaMDMxMTAvBgNV BAMTKDdCMkMwOUZERjdDQ0MxODYyQkJGNThGRDI0MEUyQkRDOUMwNDJFRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBgA/dr53dpZd69Bkqlj3yMYD0 sJrCbanvD6IoSHk/RppGSQnF8YthH+Q719/s8QX4w/fN8zb8sXS6QsuAGIME2P25 1blfdeq6s+ni6Cm+XD/4yYJmHXa840LpgrX15TyYB56SA//fsV0dNC2SwdaWKiez pWZdc00KZqCwF0ole1AFo0bht+xdl8v1A2dKB5L9a+0sJK8b9QBHYs7x9vMEX56r nT2/+yfACp+YuGPPOpNaRkFfRJxlqtikzkEwsQoDV/sZINw8THzZFSPsArPB76ls ZZWn2V/NOOaRW1tAWrmLDeED/EUjJWTE/dzLZPoFCAwTjejbQ1qxEVygKol1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeywJ/ffMwYYrv1j9JA4r3JwELtAwHwYDVR0j BBgwFoAUsw/b3nD75wzETzxxC0ZwabEZTdgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDc1MDg4ZS00OWFmLTQ3MmItOWI2Mi04MWU3M2RhYWYxZDYvMC9CMzBGREJERTcw RkJFNzBDQzQ0RjNDNzEwQjQ2NzA2OUIxMTk0REQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMwRkRCREU3MEZCRTcwQ0M0NEYzQzcxMEI0NjcwNjlCMTE5 NEREOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkNzUwODhlLTQ5YWYtNDcyYi05 YjYyLTgxZTczZGFhZjFkNi8wLzMxMzAzMzJlMzIzMjM3MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn47kwDQYJ KoZIhvcNAQELBQADggEBAMchsbTIGlz9pJSAcXtdxfZyM9PVLeVLxNLIMXwQZo/F X+5LUXQJC60zzyhOZjEPW1Xp42jAckQkPnR3aZG2xf1/u57F2qw0xrZ2hyjKA/VF aFrczw+T/Ed376nDXSV/l4nlIdHx8YwmQbu7nvdQ5BkxGVGVfb4fWg9wSgAH/cLN MLIJMju05Dl6JdeJVPQBolt1XlFX0iCaoAIeuIrG2CDC1rAUv2rRJr/fKJ0J591m 9h4C9uJF8cyrWRQ1ewOEH3VIbZ4RTsPj8eEXhpMQ3Y8lGbJkiJXDi6TXD4EnHgFp nRTlAGOK3I9Z38lAKO9ngnIHPXCyA9n/hgFgLo4rDo4= -----END CERTIFICATE-----Generated at Tue Jul 1 20:15:49 2025 by rpki-client