$ rpki-client -vvf repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa File: 3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa (raw, json) Hash identifier: eQQaS2GcAKMZzr99CGlwXp93+osvzucp3Pb6cXhQDAo= Subject key identifier: 2B:36:00:CD:73:10:75:17:D5:64:FB:CE:79:F2:E3:9A:50:9B:93:E7 Certificate issuer: /CN=510BADD365AB1A82795AF2361991094E4847999C Certificate serial: 7A6828DC39DC1D2EB6277040730C6C1E22091516 Authority key identifier: 51:0B:AD:D3:65:AB:1A:82:79:5A:F2:36:19:91:09:4E:48:47:99:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa Signing time: Tue 01 Jul 2025 03:01:10 +0000 ROA not before: Tue 01 Jul 2025 02:56:10 +0000 ROA not after: Tue 30 Jun 2026 03:01:10 +0000 asID: 133337 IP address blocks: 103.225.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.crl rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 12:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:68:28:dc:39:dc:1d:2e:b6:27:70:40:73:0c:6c:1e:22:09:15:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=510BADD365AB1A82795AF2361991094E4847999C Validity Not Before: Jul 1 02:56:10 2025 GMT Not After : Jun 30 03:01:10 2026 GMT Subject: CN=2B3600CD73107517D564FBCE79F2E39A509B93E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:84:41:b4:57:9c:a6:56:8e:b5:9b:a8:cc: 2e:83:80:a1:e5:43:ad:a5:d0:b6:34:48:41:f1:b0: 52:65:6b:0d:c1:c8:a3:f0:9a:8a:0e:67:e7:f2:50: b3:15:5b:5c:66:5b:fc:7f:fd:03:9a:12:17:73:d5: 97:d2:a8:1c:2a:a2:2f:60:2f:66:f0:47:5d:2a:81: 49:99:ec:e8:1c:a1:28:8f:e7:4a:bc:c7:9a:7f:72: d1:94:e5:9d:0d:5e:ec:09:0c:c0:57:b8:21:f2:a2: 5e:10:4b:25:34:79:03:d4:fe:79:df:8d:8d:7d:d5: 27:9e:b6:45:e6:ef:fe:e0:85:10:30:5a:c8:a7:6d: d9:ab:8b:38:a0:92:a4:e1:8f:86:ca:14:9d:32:05: 9b:79:23:9e:9f:31:03:bc:e2:7d:c4:cb:85:32:83: e6:87:b6:6f:d4:47:c0:e9:bb:85:82:1c:db:3a:9b: c2:9e:8f:f1:77:48:58:b4:76:81:69:95:76:7a:23: 14:e5:a9:44:e8:13:2a:fb:86:43:57:59:23:cc:a7: 1a:b4:0a:79:c6:52:a3:aa:0a:25:46:2a:e0:64:ee: 9f:d9:50:e3:53:10:ce:cb:d3:fa:62:12:ee:fe:53: a6:fb:e6:db:25:94:b5:d1:75:da:23:84:9e:b1:9f: b1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:36:00:CD:73:10:75:17:D5:64:FB:CE:79:F2:E3:9A:50:9B:93:E7 X509v3 Authority Key Identifier: keyid:51:0B:AD:D3:65:AB:1A:82:79:5A:F2:36:19:91:09:4E:48:47:99:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.209.0/24 Signature Algorithm: sha256WithRSAEncryption c0:4b:d0:19:c5:1e:5a:6b:4d:c3:bf:6f:7e:dc:18:60:ce:55: 3d:11:c9:cb:1b:0e:7f:2f:12:f1:dd:f4:fe:d3:c7:a1:33:e7: 48:7a:a1:b2:ca:d1:d2:a3:54:49:d6:61:1d:7e:09:88:54:ed: 6c:0e:c0:fb:ba:bc:5e:42:3e:ce:58:0a:f6:44:61:89:50:e4: 3b:3c:b2:98:f6:ce:05:56:40:c3:34:60:15:f8:f2:3a:8b:ed: 6a:b4:38:89:d0:ac:a0:cb:c8:fa:b4:33:07:9f:52:05:76:24: 41:fe:b4:94:b3:c1:da:f7:72:ad:1e:9c:18:79:84:e4:24:62: 07:43:9c:35:e1:64:12:3b:8a:ad:ae:79:cf:44:b0:cf:46:32: 4c:f5:0c:b1:8c:23:4c:ed:ab:f1:2a:3c:22:df:01:c9:d9:20: 37:60:86:75:01:4c:24:a5:13:89:67:91:05:4c:21:10:ec:d8: af:de:e7:5f:48:a5:2f:7a:51:81:69:b4:f2:f8:e4:ad:dc:b9: 9a:fc:c1:b8:0a:d6:e7:5e:5f:8d:97:87:a3:ee:e2:87:62:77: fd:47:c9:30:77:0d:05:46:e7:a7:a5:0e:66:32:8b:df:a1:23: d6:70:cc:0b:f0:78:96:0f:7e:ed:79:30:79:a4:0e:21:91:03: 80:53:41:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUemgo3DncHS62J3BAcwxsHiIJFRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEwQkFERDM2NUFCMUE4Mjc5NUFGMjM2MTk5MTA5NEU0 ODQ3OTk5QzAeFw0yNTA3MDEwMjU2MTBaFw0yNjA2MzAwMzAxMTBaMDMxMTAvBgNV BAMTKDJCMzYwMENENzMxMDc1MTdENTY0RkJDRTc5RjJFMzlBNTA5QjkzRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkVIRBtFecplaOtZuozC6DgKHl Q62l0LY0SEHxsFJlaw3ByKPwmooOZ+fyULMVW1xmW/x//QOaEhdz1ZfSqBwqoi9g L2bwR10qgUmZ7OgcoSiP50q8x5p/ctGU5Z0NXuwJDMBXuCHyol4QSyU0eQPU/nnf jY191SeetkXm7/7ghRAwWsinbdmrizigkqThj4bKFJ0yBZt5I56fMQO84n3Ey4Uy g+aHtm/UR8Dpu4WCHNs6m8Kej/F3SFi0doFplXZ6IxTlqUToEyr7hkNXWSPMpxq0 CnnGUqOqCiVGKuBk7p/ZUONTEM7L0/piEu7+U6b75tsllLXRddojhJ6xn7FTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKzYAzXMQdRfVZPvOefLjmlCbk+cwHwYDVR0j BBgwFoAUUQut02WrGoJ5WvI2GZEJTkhHmZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTRiYWE3Mi02NTRmLTRiODAtOGZjNy1mM2YyN2JjZGQzNDAvMC81MTBCQUREMzY1 QUIxQTgyNzk1QUYyMzYxOTkxMDk0RTQ4NDc5OTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTEwQkFERDM2NUFCMUE4Mjc5NUFGMjM2MTk5MTA5NEU0ODQ3 OTk5Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNGJhYTcyLTY1NGYtNGI4MC04 ZmM3LWYzZjI3YmNkZDM0MC8wLzMxMzAzMzJlMzIzMjM1MmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4dEwDQYJ KoZIhvcNAQELBQADggEBAMBL0BnFHlprTcO/b37cGGDOVT0RycsbDn8vEvHd9P7T x6Ez50h6obLK0dKjVEnWYR1+CYhU7WwOwPu6vF5CPs5YCvZEYYlQ5Ds8spj2zgVW QMM0YBX48jqL7Wq0OInQrKDLyPq0MwefUgV2JEH+tJSzwdr3cq0enBh5hOQkYgdD nDXhZBI7iq2uec9EsM9GMkz1DLGMI0ztq/EqPCLfAcnZIDdghnUBTCSlE4lnkQVM IRDs2K/e519IpS96UYFptPL45K3cuZr8wbgK1udeX42Xh6Pu4odid/1HyTB3DQVG 56elDmYyi9+hI9ZwzAvweJYPfu15MHmkDiGRA4BTQX8= -----END CERTIFICATE-----Generated at Tue Jul 1 06:52:04 2025 by rpki-client