$ rpki-client -vvf repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa File: 3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa (raw, json) Hash identifier: i2RCXQ2h/tijX2X+SFP27I82J2d7eFOatLRW4qkSUTs= Subject key identifier: 7E:3A:6C:EA:93:F4:88:F6:61:BD:28:C9:A9:3E:EE:82:E3:38:F4:B5 Certificate issuer: /CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Certificate serial: 5F7260B0EFB9FC76E196A064A35583AE47E24438 Authority key identifier: 8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa Signing time: Tue 17 Jun 2025 10:00:00 +0000 ROA not before: Tue 17 Jun 2025 09:55:00 +0000 ROA not after: Tue 16 Jun 2026 10:00:00 +0000 asID: 139427 IP address blocks: 103.144.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 14:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:72:60:b0:ef:b9:fc:76:e1:96:a0:64:a3:55:83:ae:47:e2:44:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Validity Not Before: Jun 17 09:55:00 2025 GMT Not After : Jun 16 10:00:00 2026 GMT Subject: CN=7E3A6CEA93F488F661BD28C9A93EEE82E338F4B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:00:c3:88:17:a7:1a:af:75:f5:ca:3d:36: 75:5e:2e:31:90:cf:cb:85:ea:b2:e9:2f:44:f2:f4: 8d:9a:72:28:78:91:5d:58:4f:ef:94:8a:34:c3:ad: 73:f4:f0:36:bc:41:59:a5:0b:52:4f:17:00:62:90: 91:7f:7d:3f:20:b6:10:14:ae:1a:89:d0:09:9c:e2: 16:c5:23:71:f4:7f:56:f5:d3:54:b0:dc:8b:f2:72: 10:10:8f:01:04:57:ff:06:dc:7c:cc:15:5f:a1:05: df:96:e2:08:d9:0a:c6:04:50:c7:9a:ed:d8:17:b9: d7:7b:b6:e9:8b:5e:f1:f5:c4:e3:67:67:ae:a0:97: b1:dc:ca:67:f1:b5:8b:9e:a0:e4:b6:af:78:63:79: de:5f:aa:27:73:1e:cb:69:a8:cd:ef:ce:7d:36:aa: 18:66:d4:97:02:5a:00:4d:b7:85:b8:95:d8:a7:54: 59:8d:77:c2:ba:b4:bd:d9:bd:d9:99:99:38:f7:9c: 1e:f3:a9:8f:b8:c6:5a:4a:1a:a6:26:e5:f7:51:0c: c7:48:d1:c3:e4:81:50:94:7d:c2:84:31:eb:9c:0a: e3:28:c1:da:56:8b:16:26:b1:3c:82:1c:d1:5d:f7: ec:ba:6a:17:94:5e:c8:5b:34:f6:fd:6e:2b:9c:14: ef:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:6C:EA:93:F4:88:F6:61:BD:28:C9:A9:3E:EE:82:E3:38:F4:B5 X509v3 Authority Key Identifier: keyid:8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133342e302f32342d3234203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.134.0/24 Signature Algorithm: sha256WithRSAEncryption 59:c6:74:51:70:ce:4a:3c:5f:71:2d:39:18:ab:6b:2e:10:3c: 17:45:d6:f7:28:7b:82:64:4b:d3:fa:82:90:b1:3d:28:91:b4: ce:e5:99:75:86:8f:b5:5a:a5:78:b5:08:f0:be:cc:cc:0b:52: 8a:9a:1e:b1:bb:7f:e2:b1:19:a3:25:4c:32:45:88:79:2d:b2: 3e:75:93:8f:cc:4f:40:15:55:b8:81:bf:9f:20:a1:27:83:12: 31:52:3b:93:1e:cc:14:5b:b1:6b:9c:1b:39:73:88:f4:20:db: 08:51:3d:f8:b2:8f:3e:75:4a:17:d4:b8:93:83:4e:f6:15:38: f8:87:2b:a2:18:89:5b:14:6f:5a:e4:49:71:a3:3f:c9:8a:90: 93:ea:7c:7f:53:6d:4c:35:4d:4e:ae:99:85:06:ba:f9:f1:28: c0:47:4b:80:cc:20:b4:22:4f:9b:d2:90:e0:ea:32:fa:23:74: 26:39:f7:2e:17:c2:fb:bd:b1:9c:e7:d1:6a:06:38:14:1a:ee: bf:ac:ac:6b:0f:38:95:4c:95:34:0e:d7:77:d3:ba:be:c8:31: bb:c5:49:2f:7c:36:d2:26:1c:d5:d4:5c:7f:ba:65:b2:00:5c: 6e:c8:01:cb:89:ef:a8:ab:3b:d1:f9:3c:4a:86:44:5b:30:a5: 05:63:fc:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX3JgsO+5/HbhlqBko1WDrkfiRDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3 MTIwMkQyRDAeFw0yNTA2MTcwOTU1MDBaFw0yNjA2MTYxMDAwMDBaMDMxMTAvBgNV BAMTKDdFM0E2Q0VBOTNGNDg4RjY2MUJEMjhDOUE5M0VFRTgyRTMzOEY0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl9wDDiBenGq919co9NnVeLjGQ z8uF6rLpL0Ty9I2acih4kV1YT++UijTDrXP08Da8QVmlC1JPFwBikJF/fT8gthAU rhqJ0Amc4hbFI3H0f1b101Sw3IvychAQjwEEV/8G3HzMFV+hBd+W4gjZCsYEUMea 7dgXudd7tumLXvH1xONnZ66gl7HcymfxtYueoOS2r3hjed5fqidzHstpqM3vzn02 qhhm1JcCWgBNt4W4ldinVFmNd8K6tL3ZvdmZmTj3nB7zqY+4xlpKGqYm5fdRDMdI 0cPkgVCUfcKEMeucCuMowdpWixYmsTyCHNFd9+y6aheUXshbNPb9biucFO8fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfjps6pP0iPZhvSjJqT7uguM49LUwHwYDVR0j BBgwFoAUjj90QUA7nN8v1gPMuvE9FnEgLS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTkxNGFkYS1hOWFhLTRkN2YtOWU0Ny01OTRiY2I3YTcwYWIvMC84RTNGNzQ0MTQw M0I5Q0RGMkZENjAzQ0NCQUYxM0QxNjcxMjAyRDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3MTIw MkQyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIYwDQYJ KoZIhvcNAQELBQADggEBAFnGdFFwzko8X3EtORiray4QPBdF1vcoe4JkS9P6gpCx PSiRtM7lmXWGj7VapXi1CPC+zMwLUoqaHrG7f+KxGaMlTDJFiHktsj51k4/MT0AV VbiBv58goSeDEjFSO5MezBRbsWucGzlziPQg2whRPfiyjz51ShfUuJODTvYVOPiH K6IYiVsUb1rkSXGjP8mKkJPqfH9TbUw1TU6umYUGuvnxKMBHS4DMILQiT5vSkODq MvojdCY59y4Xwvu9sZzn0WoGOBQa7r+srGsPOJVMlTQO13fTur7IMbvFSS98NtIm HNXUXH+6ZbIAXG7IAcuJ76irO9H5PEqGRFswpQVj/Fg= -----END CERTIFICATE-----Generated at Mon Jun 30 02:43:14 2025 by rpki-client