$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa File: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (raw, json) Hash identifier: XeC/h72IOu7dA+NCUWie+KTWNqBhpQyXbuk3uFJs7XQ= Subject key identifier: E9:73:AE:9E:4F:BA:FD:CE:C3:1F:BB:5B:4C:6F:31:B7:FB:76:A7:ED Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 658C8AD59E1CD744AE57C66CAE0E998D209B143C Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa Signing time: Sat 21 Jun 2025 00:00:01 +0000 ROA not before: Fri 20 Jun 2025 23:55:01 +0000 ROA not after: Sat 20 Jun 2026 00:00:01 +0000 asID: 58819 IP address blocks: 103.240.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 13:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:8c:8a:d5:9e:1c:d7:44:ae:57:c6:6c:ae:0e:99:8d:20:9b:14:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Jun 20 23:55:01 2025 GMT Not After : Jun 20 00:00:01 2026 GMT Subject: CN=E973AE9E4FBAFDCEC31FBB5B4C6F31B7FB76A7ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:de:6c:ac:61:bb:05:d5:d0:99:25:85:9c:ac: 68:65:ad:63:36:a5:4d:15:61:eb:ed:d7:6f:7d:1d: 33:90:2e:76:74:73:06:5c:82:ac:fb:31:ef:42:84: 89:5a:a7:d4:2f:a7:be:64:55:96:24:e2:66:ff:9f: c6:2f:07:d4:7e:de:57:8b:de:ca:c3:eb:dc:04:7f: 4b:6e:b7:c9:22:10:50:a4:13:cd:cc:34:1b:68:4d: ee:b5:aa:b9:bf:1f:74:9f:28:82:43:25:f1:29:80: 9c:a8:a6:ad:7e:07:71:75:27:36:70:02:ba:52:1e: 76:81:f1:9b:59:3d:47:42:f5:3f:62:19:a9:a9:0f: 37:a9:09:9e:78:25:9e:eb:2e:c3:da:83:a9:5e:54: 38:17:0e:d8:c0:4c:2c:2d:62:b7:2e:da:d7:88:2b: 37:de:87:3a:a6:8e:1e:46:51:35:97:5c:81:7a:01: d0:e1:1f:68:d4:82:9c:58:2f:02:d6:dd:1a:86:ce: db:93:b1:96:63:a9:1f:f3:00:1f:2b:5a:3f:d3:7a: d4:24:f7:b5:72:2e:f6:0c:0d:17:15:1b:8f:52:03: cd:9f:6b:05:51:72:80:08:b4:7c:4d:31:b2:53:6e: 92:0c:36:02:ac:41:14:39:52:a1:c3:41:fd:3b:d8: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:73:AE:9E:4F:BA:FD:CE:C3:1F:BB:5B:4C:6F:31:B7:FB:76:A7:ED X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.108.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:2f:c1:2d:09:9b:8b:5a:7e:cb:af:37:83:84:ef:6d:9d:e9: cb:e8:90:67:a8:03:37:17:e4:8a:5e:36:8e:2a:fb:c2:23:c0: 1b:0c:64:5a:42:6a:50:95:80:bf:98:0d:5a:cd:64:6b:0f:7c: 7d:fd:6f:c2:47:54:fa:ed:7e:37:18:2e:27:28:32:c9:3a:00: d0:8e:61:ba:ce:f1:0b:da:8d:34:78:21:67:1c:50:af:95:e4: f1:1a:8e:6b:5f:52:e0:5e:be:a0:be:43:a2:ce:d7:51:bc:c7: e7:0f:ca:e3:6e:79:c1:8f:3e:0e:10:04:80:f4:45:76:b7:5f: f6:10:bf:0b:7e:7c:0d:9c:05:93:cb:40:0c:44:d8:fb:3c:45: 9f:f0:35:33:b7:7d:6e:c2:76:44:7d:d7:c1:3c:16:5c:f6:d5: 64:8f:06:42:b1:8b:51:63:cb:b7:25:c3:b3:87:47:f3:82:0d: fd:fc:7b:44:66:6e:83:ad:99:7f:0f:59:01:45:30:b1:d6:e1: 49:4b:ab:42:12:84:ae:4b:d0:76:e1:e6:e0:dd:a0:da:d7:1a: 81:70:b3:53:fc:b0:c1:8f:1c:47:87:e0:59:ad:ec:35:b0:50: 67:de:1b:f6:f2:b9:54:8a:3a:38:22:e5:98:34:ea:be:82:78: f8:cb:7f:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZYyK1Z4c10SuV8Zsrg6ZjSCbFDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTA2MjAyMzU1MDFaFw0yNjA2MjAwMDAwMDFaMDMxMTAvBgNV BAMTKEU5NzNBRTlFNEZCQUZEQ0VDMzFGQkI1QjRDNkYzMUI3RkI3NkE3RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV3mysYbsF1dCZJYWcrGhlrWM2 pU0VYevt1299HTOQLnZ0cwZcgqz7Me9ChIlap9Qvp75kVZYk4mb/n8YvB9R+3leL 3srD69wEf0tut8kiEFCkE83MNBtoTe61qrm/H3SfKIJDJfEpgJyopq1+B3F1JzZw ArpSHnaB8ZtZPUdC9T9iGampDzepCZ54JZ7rLsPag6leVDgXDtjATCwtYrcu2teI Kzfehzqmjh5GUTWXXIF6AdDhH2jUgpxYLwLW3RqGztuTsZZjqR/zAB8rWj/TetQk 97VyLvYMDRcVG49SA82fawVRcoAItHxNMbJTbpIMNgKsQRQ5UqHDQf072M5DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6XOunk+6/c7DH7tbTG8xt/t2p+0wHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/BsMA0GCSqG SIb3DQEBCwUAA4IBAQAfL8EtCZuLWn7LrzeDhO9tnenL6JBnqAM3F+SKXjaOKvvC I8AbDGRaQmpQlYC/mA1azWRrD3x9/W/CR1T67X43GC4nKDLJOgDQjmG6zvEL2o00 eCFnHFCvleTxGo5rX1LgXr6gvkOiztdRvMfnD8rjbnnBjz4OEASA9EV2t1/2EL8L fnwNnAWTy0AMRNj7PEWf8DUzt31uwnZEfdfBPBZc9tVkjwZCsYtRY8u3JcOzh0fz gg39/HtEZm6DrZl/D1kBRTCx1uFJS6tCEoSuS9B24ebg3aDa1xqBcLNT/LDBjxxH h+BZrew1sFBn3hv28rlUijo4IuWYNOq+gnj4y380 -----END CERTIFICATE-----Generated at Tue Jul 1 18:17:56 2025 by rpki-client