$ rpki-client -vvf repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa File: 3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa (raw, json) Hash identifier: XKkTGgDl7AJdyrktq8gvl18OiQMp7I8a2RgU5SEEXyk= Subject key identifier: D8:9E:34:C0:34:90:EF:AD:0C:9B:C7:8D:23:19:30:AA:93:56:55:0E Certificate issuer: /CN=91982855FD8C4C119B32F9D536B640804091001C Certificate serial: 607A59A0D97110A2026960168D11B35C9E04FB30 Authority key identifier: 91:98:28:55:FD:8C:4C:11:9B:32:F9:D5:36:B6:40:80:40:91:00:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91982855FD8C4C119B32F9D536B640804091001C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa Signing time: Mon 02 Jun 2025 02:03:29 +0000 ROA not before: Mon 02 Jun 2025 01:58:29 +0000 ROA not after: Mon 01 Jun 2026 02:03:29 +0000 asID: 131735 IP address blocks: 103.15.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/91982855FD8C4C119B32F9D536B640804091001C.crl rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/91982855FD8C4C119B32F9D536B640804091001C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91982855FD8C4C119B32F9D536B640804091001C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 22:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:7a:59:a0:d9:71:10:a2:02:69:60:16:8d:11:b3:5c:9e:04:fb:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91982855FD8C4C119B32F9D536B640804091001C Validity Not Before: Jun 2 01:58:29 2025 GMT Not After : Jun 1 02:03:29 2026 GMT Subject: CN=D89E34C03490EFAD0C9BC78D231930AA9356550E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5b:85:3c:95:b2:6b:99:97:25:5e:fd:a1:56: ad:39:ae:33:e3:0d:6a:9a:79:8a:9f:cd:45:c0:fe: 75:fa:4a:49:33:9f:9f:fc:db:9d:ef:2c:28:00:b3: 07:cd:61:0b:11:47:b6:f1:95:b0:fe:59:a6:81:a5: 96:df:d9:1f:86:ba:75:db:cb:92:73:a2:e9:2c:e6: d3:93:42:db:c2:24:43:9b:c3:a0:50:a9:f4:47:97: 2e:53:66:b4:b3:06:0b:20:d1:1b:3d:27:6e:a8:b0: 47:4f:71:7f:b6:86:e6:fd:fa:92:a6:0a:ee:50:1c: 1f:0f:0d:b4:b7:4e:36:67:6f:64:95:17:42:2d:59: f0:9d:66:d1:10:cc:c5:31:8e:52:fe:59:42:d0:c9: 2b:1b:c6:e1:67:1f:f2:a2:c4:04:25:fa:9d:a7:51: 56:2f:ea:21:83:02:b5:d2:47:17:3a:c7:16:a4:97: e3:65:5e:07:7f:8d:cc:29:db:b3:df:33:45:85:cf: 00:d9:64:c0:24:3b:3e:f6:e5:de:9b:6c:57:9f:0a: 82:aa:16:26:bf:a7:1e:2f:20:d0:f7:fd:bc:10:17: 5f:bb:3c:5c:19:37:87:c7:28:83:65:e4:e3:81:52: 11:c4:9b:b3:c1:8d:6c:ed:bc:6f:b1:9b:cf:78:13: b8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9E:34:C0:34:90:EF:AD:0C:9B:C7:8D:23:19:30:AA:93:56:55:0E X509v3 Authority Key Identifier: keyid:91:98:28:55:FD:8C:4C:11:9B:32:F9:D5:36:B6:40:80:40:91:00:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/91982855FD8C4C119B32F9D536B640804091001C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91982855FD8C4C119B32F9D536B640804091001C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.240.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:3c:7c:74:6b:ea:e5:66:27:62:bc:e9:29:90:4c:a0:63:e0: 51:76:83:d9:5d:8a:41:b3:db:6d:cb:19:a5:a3:cc:8b:72:0f: 54:2f:1c:1c:34:1c:95:a6:36:01:fc:64:82:a7:f8:f2:c2:8b: 61:62:68:f8:49:a0:08:ca:ca:43:73:ce:df:30:bb:52:2e:14: 60:68:36:b7:03:88:3d:35:00:9a:ac:8d:01:76:e5:a4:93:15: de:e0:3c:85:00:6e:72:c2:59:12:27:de:31:24:93:e5:36:3d: 57:98:95:75:03:2e:da:98:36:25:7c:f6:1a:64:73:e4:73:fb: 0e:d9:d8:50:f0:ea:36:ae:2c:c0:08:dc:3e:90:f2:a9:36:d6: 69:c2:27:b8:aa:1b:78:66:03:6e:6b:10:47:b6:0b:5b:24:40: 1c:30:a2:ee:3c:ec:38:6f:93:42:f3:68:ae:28:d9:f7:a6:2d: 75:47:e9:e3:97:1b:2d:79:91:62:42:35:7f:13:4a:4a:03:8a: 2b:d3:bd:3c:de:63:b8:70:5f:dd:5b:95:31:ae:c3:e9:a3:28: b9:02:94:0a:c0:93:fd:8f:d3:ac:b6:b2:a6:64:5c:56:ac:bb: e7:72:04:99:86:07:1b:00:1e:cd:34:d0:ca:24:0e:c5:73:05: 60:a0:20:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYHpZoNlxEKICaWAWjRGzXJ4E+zAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE5ODI4NTVGRDhDNEMxMTlCMzJGOUQ1MzZCNjQwODA0 MDkxMDAxQzAeFw0yNTA2MDIwMTU4MjlaFw0yNjA2MDEwMjAzMjlaMDMxMTAvBgNV BAMTKEQ4OUUzNEMwMzQ5MEVGQUQwQzlCQzc4RDIzMTkzMEFBOTM1NjU1MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUW4U8lbJrmZclXv2hVq05rjPj DWqaeYqfzUXA/nX6Skkzn5/8253vLCgAswfNYQsRR7bxlbD+WaaBpZbf2R+GunXb y5Jzouks5tOTQtvCJEObw6BQqfRHly5TZrSzBgsg0Rs9J26osEdPcX+2hub9+pKm Cu5QHB8PDbS3TjZnb2SVF0ItWfCdZtEQzMUxjlL+WULQySsbxuFnH/KixAQl+p2n UVYv6iGDArXSRxc6xxakl+NlXgd/jcwp27PfM0WFzwDZZMAkOz725d6bbFefCoKq Fia/px4vIND3/bwQF1+7PFwZN4fHKINl5OOBUhHEm7PBjWztvG+xm894E7iTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2J40wDSQ760Mm8eNIxkwqpNWVQ4wHwYDVR0j BBgwFoAUkZgoVf2MTBGbMvnVNrZAgECRABwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzJjNDk0OC02ODdiLTQwMjAtODdmNC0yOGVlNGI2M2FhNDcvMC85MTk4Mjg1NUZE OEM0QzExOUIzMkY5RDUzNkI2NDA4MDQwOTEwMDFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE5ODI4NTVGRDhDNEMxMTlCMzJGOUQ1MzZCNjQwODA0MDkx MDAxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMmM0OTQ4LTY4N2ItNDAyMC04 N2Y0LTI4ZWU0YjYzYWE0Ny8wLzMxMzAzMzJlMzEzNTJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZw/wMA0GCSqG SIb3DQEBCwUAA4IBAQBOPHx0a+rlZidivOkpkEygY+BRdoPZXYpBs9ttyxmlo8yL cg9ULxwcNByVpjYB/GSCp/jywothYmj4SaAIyspDc87fMLtSLhRgaDa3A4g9NQCa rI0BduWkkxXe4DyFAG5ywlkSJ94xJJPlNj1XmJV1Ay7amDYlfPYaZHPkc/sO2dhQ 8Oo2rizACNw+kPKpNtZpwie4qht4ZgNuaxBHtgtbJEAcMKLuPOw4b5NC82iuKNn3 pi11R+njlxsteZFiQjV/E0pKA4or07083mO4cF/dW5UxrsPpoyi5ApQKwJP9j9Os trKmZFxWrLvncgSZhgcbAB7NNNDKJA7FcwVgoCCI -----END CERTIFICATE-----Generated at Tue Jul 1 20:40:10 2025 by rpki-client