$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133372e302f32342d3234203d3e203137363731.roa File: 3130332e31302e3133372e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: UceqEmsycGgmOvI4VAQQDo+Wd935j4iJaijnxaXgEkU= Subject key identifier: BF:6A:73:52:07:F7:99:2C:A8:6D:F2:2F:0D:FA:55:EC:84:4E:FB:79 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4DB205F62AFFCBC5DD227A97D96724E261A32AD4 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133372e302f32342d3234203d3e203137363731.roa Signing time: Thu 15 May 2025 11:00:02 +0000 ROA not before: Thu 15 May 2025 10:55:02 +0000 ROA not after: Thu 14 May 2026 11:00:02 +0000 asID: 17671 IP address blocks: 103.10.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 16:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b2:05:f6:2a:ff:cb:c5:dd:22:7a:97:d9:67:24:e2:61:a3:2a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 15 10:55:02 2025 GMT Not After : May 14 11:00:02 2026 GMT Subject: CN=BF6A735207F7992CA86DF22F0DFA55EC844EFB79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3f:e9:93:30:a9:37:08:cd:2a:63:d7:bb:9e: 7d:38:e5:90:fc:ad:27:6d:d8:15:6e:b2:ce:e7:93: e4:78:5e:40:59:50:7e:33:84:d1:e2:68:b5:24:b1: 11:7b:ef:a5:01:96:c4:e1:14:b8:75:50:b2:1f:c4: a5:ac:7b:2e:e0:e6:97:c5:8e:14:17:86:8e:6c:92: b8:d9:f6:f6:3c:2a:b3:d1:f5:71:a3:a4:11:9c:e8: 6d:12:f3:ad:4c:67:0a:09:d5:91:38:17:73:eb:f8: 3b:b3:57:7d:da:e3:3a:84:54:c6:87:a6:9c:62:0a: 93:85:87:98:ef:17:45:84:a1:b0:01:2c:90:54:ff: ee:62:aa:b8:f9:8b:15:9c:63:b6:90:31:2a:d0:d7: 59:5d:54:96:ef:f9:f6:74:87:71:87:5f:27:2b:69: 0c:3f:46:36:47:61:eb:46:53:e5:31:d2:e3:64:22: 24:46:88:ae:7a:2d:a6:70:15:0e:7c:37:49:4b:87: 89:68:0f:b5:13:35:75:44:2b:93:8d:93:d5:4c:59: 7d:41:94:ea:7e:d8:35:42:af:a1:4e:d6:9a:4d:72: 51:f1:16:21:f1:03:52:e0:d1:45:c6:24:58:8c:c9: 5c:5f:11:b7:2f:ec:ed:b7:af:09:47:e7:6d:81:1e: d1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6A:73:52:07:F7:99:2C:A8:6D:F2:2F:0D:FA:55:EC:84:4E:FB:79 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133372e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.137.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:20:b0:67:dd:b5:75:78:79:79:db:15:a9:f0:3e:bd:66:58: 3f:43:e1:47:c2:a0:49:b4:b9:ff:45:ee:89:2b:ca:98:f4:5d: 4f:77:e9:2d:13:65:7a:0e:a9:e5:83:95:f7:2a:16:9c:90:cc: 73:0b:82:99:42:38:30:7a:e0:26:df:a4:3f:93:d1:c7:e1:fb: ea:fd:58:55:e3:cf:58:9b:84:8a:cc:b6:17:60:6e:3a:f4:98: 09:72:88:a9:d2:b1:2e:5a:d1:cd:de:1e:11:16:91:66:d1:9c: c7:71:0b:e9:6a:67:fe:4c:6f:78:cf:07:9a:d9:df:3a:f8:82: 4f:01:94:aa:30:3c:a3:3e:1d:00:07:23:7f:9c:14:eb:7e:7f: ac:07:0d:93:3c:10:87:7d:fe:85:ce:2e:f9:41:e0:43:a8:9a: 59:56:ed:16:7c:82:bd:6a:57:e1:15:7a:25:4f:fe:51:0d:22: dc:f7:80:a2:9f:2f:05:0c:dd:da:c1:24:d4:38:11:93:69:7d: a6:92:7b:b7:a4:fb:a5:0e:53:d7:21:18:96:84:54:a7:b7:cc: fc:c5:86:51:b6:2f:bb:dd:58:69:21:7c:5b:f8:ca:b0:f2:6b: 91:a6:97:bb:93:5c:47:0d:ad:55:a0:64:d5:55:34:31:5c:ed: 23:96:ce:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTbIF9ir/y8XdInqX2Wck4mGjKtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTUxMDU1MDJaFw0yNjA1MTQxMTAwMDJaMDMxMTAvBgNV BAMTKEJGNkE3MzUyMDdGNzk5MkNBODZERjIyRjBERkE1NUVDODQ0RUZCNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXP+mTMKk3CM0qY9e7nn045ZD8 rSdt2BVuss7nk+R4XkBZUH4zhNHiaLUksRF776UBlsThFLh1ULIfxKWsey7g5pfF jhQXho5skrjZ9vY8KrPR9XGjpBGc6G0S861MZwoJ1ZE4F3Pr+DuzV33a4zqEVMaH ppxiCpOFh5jvF0WEobABLJBU/+5iqrj5ixWcY7aQMSrQ11ldVJbv+fZ0h3GHXycr aQw/RjZHYetGU+Ux0uNkIiRGiK56LaZwFQ58N0lLh4loD7UTNXVEK5ONk9VMWX1B lOp+2DVCr6FO1ppNclHxFiHxA1Lg0UXGJFiMyVxfEbcv7O23rwlH522BHtHbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUv2pzUgf3mSyobfIvDfpV7IRO+3kwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKiTANBgkqhkiG 9w0BAQsFAAOCAQEAGyCwZ921dXh5edsVqfA+vWZYP0PhR8KgSbS5/0XuiSvKmPRd T3fpLRNleg6p5YOV9yoWnJDMcwuCmUI4MHrgJt+kP5PRx+H76v1YVePPWJuEisy2 F2BuOvSYCXKIqdKxLlrRzd4eERaRZtGcx3EL6Wpn/kxveM8HmtnfOviCTwGUqjA8 oz4dAAcjf5wU635/rAcNkzwQh33+hc4u+UHgQ6iaWVbtFnyCvWpX4RV6JU/+UQ0i 3PeAop8vBQzd2sEk1DgRk2l9ppJ7t6T7pQ5T1yEYloRUp7fM/MWGUbYvu91YaSF8 W/jKsPJrkaaXu5NcRw2tVaBk1VU0MVztI5bOiA== -----END CERTIFICATE-----Generated at Mon Jun 30 22:33:16 2025 by rpki-client