$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3130332e3233332e3134322e302f32332d3234203d3e203338353035.roa File: 3130332e3233332e3134322e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: hmU/fFbEB5MHfxnUZwzr2O0p+/FFdJYTbJLKljW/yfY= Subject key identifier: 2A:03:8C:9C:98:28:0B:D8:30:05:FD:C0:50:C1:1B:03:CF:D2:65:52 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 233EA3EFF0634DBEF49EE61776F59443E2BE631C Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3130332e3233332e3134322e302f32332d3234203d3e203338353035.roa Signing time: Wed 25 Jun 2025 14:00:00 +0000 ROA not before: Wed 25 Jun 2025 13:55:00 +0000 ROA not after: Wed 24 Jun 2026 14:00:00 +0000 asID: 38505 IP address blocks: 103.233.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 13:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:3e:a3:ef:f0:63:4d:be:f4:9e:e6:17:76:f5:94:43:e2:be:63:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 25 13:55:00 2025 GMT Not After : Jun 24 14:00:00 2026 GMT Subject: CN=2A038C9C98280BD83005FDC050C11B03CFD26552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:e7:88:ed:f2:d6:4b:9e:c8:6a:99:a9:8e: 41:95:d4:0a:79:91:73:a3:bf:7a:44:40:bd:30:c8: 26:97:a7:76:a2:e2:9a:63:fc:2c:2f:2f:05:a1:f5: a1:bb:aa:90:4f:48:3a:a1:89:c0:7e:7e:2c:0d:03: 64:de:03:4b:f9:b0:c3:a2:86:24:99:5d:73:3f:af: 13:2e:db:16:ae:11:05:30:e0:ab:c4:6c:26:a2:61: 7c:1f:77:d7:a4:e2:58:8a:0b:c5:07:13:bb:85:33: 4c:d7:46:e3:43:c5:ab:d4:3c:b5:ef:92:65:23:2a: d2:c6:22:08:1a:a4:b7:38:5b:f6:70:6f:8f:df:83: 6a:fe:f6:d0:0d:87:14:76:43:d5:f1:55:db:f2:60: 68:77:29:8b:70:eb:80:f4:bd:45:e0:4c:47:e0:bd: 56:70:2a:f4:62:b0:84:79:ea:69:d5:e6:da:15:f5: c5:88:ff:a0:25:98:ad:52:13:df:2d:49:b5:08:15: 89:d9:80:c0:13:77:e3:ed:46:dc:a2:95:2f:c5:fc: ef:2c:b8:92:59:01:e8:ce:28:c4:38:7e:ba:af:88: 8a:09:e2:4c:51:c0:bf:8c:22:18:f6:b2:63:c6:6d: c1:2b:f8:29:70:17:3a:b7:04:7a:0c:22:e9:39:c0: 28:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:03:8C:9C:98:28:0B:D8:30:05:FD:C0:50:C1:1B:03:CF:D2:65:52 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3130332e3233332e3134322e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.142.0/23 Signature Algorithm: sha256WithRSAEncryption 43:44:67:62:83:d8:04:22:ec:99:96:e5:1a:93:f5:cb:4e:32: 02:37:3f:c1:69:55:93:21:54:84:0b:3d:cd:05:68:b5:7c:ad: 73:94:e3:38:0d:3e:4a:16:07:e8:d6:4b:ce:36:75:9a:a9:d5: 57:1f:54:16:b2:d9:31:6d:12:02:df:1e:7b:83:fa:a7:03:3e: bb:df:b3:9e:1a:1d:c4:82:3b:c6:93:af:1e:33:c2:ba:92:a2: 35:36:01:c0:ab:f1:8f:16:59:36:db:91:0b:8a:96:9c:fb:4a: 4d:0f:0d:93:9e:ee:74:1e:86:36:3b:5c:74:ab:2b:5c:a6:4a: d2:25:5a:21:f2:a2:2c:d1:18:3f:d2:b3:e4:a2:09:8a:09:aa: e4:64:4f:77:52:b9:ee:86:c5:f4:b0:24:37:8f:db:d1:32:cb: 59:cd:f2:a1:e0:db:2a:14:26:22:db:58:05:a2:ee:57:67:fe: 57:9f:63:08:f0:5b:79:8d:17:2b:99:bb:6e:6c:79:59:98:5b: 0b:93:d0:84:7d:d8:df:4d:f6:9b:e5:2a:61:86:74:f9:8f:24: 8a:cf:b8:e0:a5:13:3f:24:07:55:0f:a1:1c:2a:23:1c:fd:c0: 50:da:cb:98:6d:1e:74:87:d2:ba:ff:fb:6d:f0:9e:62:99:fa: 91:1f:99:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIz6j7/BjTb70nuYXdvWUQ+K+YxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MjUxMzU1MDBaFw0yNjA2MjQxNDAwMDBaMDMxMTAvBgNV BAMTKDJBMDM4QzlDOTgyODBCRDgzMDA1RkRDMDUwQzExQjAzQ0ZEMjY1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKbueI7fLWS57IapmpjkGV1Ap5 kXOjv3pEQL0wyCaXp3ai4ppj/CwvLwWh9aG7qpBPSDqhicB+fiwNA2TeA0v5sMOi hiSZXXM/rxMu2xauEQUw4KvEbCaiYXwfd9ek4liKC8UHE7uFM0zXRuNDxavUPLXv kmUjKtLGIggapLc4W/Zwb4/fg2r+9tANhxR2Q9XxVdvyYGh3KYtw64D0vUXgTEfg vVZwKvRisIR56mnV5toV9cWI/6AlmK1SE98tSbUIFYnZgMATd+PtRtyilS/F/O8s uJJZAejOKMQ4frqviIoJ4kxRwL+MIhj2smPGbcEr+ClwFzq3BHoMIuk5wChpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKgOMnJgoC9gwBf3AUMEbA8/SZVIwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMxMzAzMzJlMzIzMzMzMmUzMTM0MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+mOMA0GCSqG SIb3DQEBCwUAA4IBAQBDRGdig9gEIuyZluUak/XLTjICNz/BaVWTIVSECz3NBWi1 fK1zlOM4DT5KFgfo1kvONnWaqdVXH1QWstkxbRIC3x57g/qnAz6737OeGh3EgjvG k68eM8K6kqI1NgHAq/GPFlk225ELipac+0pNDw2Tnu50HoY2O1x0qytcpkrSJVoh 8qIs0Rg/0rPkogmKCarkZE93UrnuhsX0sCQ3j9vRMstZzfKh4NsqFCYi21gFou5X Z/5Xn2MI8Ft5jRcrmbtubHlZmFsLk9CEfdjfTfab5SphhnT5jySKz7jgpRM/JAdV D6EcKiMc/cBQ2suYbR50h9K6//tt8J5imfqRH5mH -----END CERTIFICATE-----Generated at Mon Jun 30 11:45:32 2025 by rpki-client