$ rpki-client -vvf repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa File: 3130332e34342e31392e302f32342d3234203d3e20313530313931.roa (raw, json) Hash identifier: xRSXhth5RPLQDUpDjvFyriqelwPeLnjETcyxKSf1xt8= Subject key identifier: DA:C1:F2:28:43:A9:C3:28:C2:0F:55:4E:96:8F:2A:3F:FC:2D:0C:F5 Certificate issuer: /CN=B956E5764D9917A7389654D67836D02779ED9E22 Certificate serial: 09D721E4D6B9AB76BE516EA27FFB1625ED3C2ED1 Authority key identifier: B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa Signing time: Thu 26 Jun 2025 18:00:00 +0000 ROA not before: Thu 26 Jun 2025 17:55:00 +0000 ROA not after: Thu 25 Jun 2026 18:00:00 +0000 asID: 150191 IP address blocks: 103.44.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.crl rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 19:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d7:21:e4:d6:b9:ab:76:be:51:6e:a2:7f:fb:16:25:ed:3c:2e:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B956E5764D9917A7389654D67836D02779ED9E22 Validity Not Before: Jun 26 17:55:00 2025 GMT Not After : Jun 25 18:00:00 2026 GMT Subject: CN=DAC1F22843A9C328C20F554E968F2A3FFC2D0CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:4d:17:7b:e7:be:fd:93:14:ae:aa:c6:68: c3:c9:16:b4:d8:72:7e:49:60:a2:38:6b:e8:68:2e: 6d:67:b3:15:03:a6:5f:58:a4:7b:df:33:98:92:99: 88:48:9b:1c:10:d2:17:b0:9b:f7:c2:a9:ce:7e:65: 20:fd:56:9c:85:a2:1c:45:4d:72:cd:11:d2:e3:e8: ad:c8:d2:71:49:77:54:37:3e:ae:45:51:a8:ac:07: 42:5b:e4:ed:1d:84:83:b2:04:56:48:92:ad:8b:11: e9:3c:ca:c6:c4:1e:e4:08:90:52:46:c2:68:de:b5: 64:9a:0b:49:bb:0c:bb:a3:15:72:fe:37:c5:de:f1: ef:fd:be:d7:06:15:c0:75:75:f1:38:3b:c9:78:52: ba:fb:a4:c5:bf:b1:7d:9d:94:b1:51:b6:a5:d9:6b: 95:85:5c:de:f0:e7:eb:1d:01:99:4b:10:f8:5b:e3: 18:1f:4e:88:1a:a3:7f:b8:24:92:98:eb:43:2f:3a: 0b:f6:a6:38:bf:9c:bd:a8:68:8a:0c:c5:2d:e5:4b: 0b:c0:2e:f8:ae:59:b8:02:7e:46:84:62:41:b6:9c: c9:75:db:e6:7c:ec:58:30:f3:73:e0:a7:65:dc:1b: 4e:31:4c:fa:c2:1f:94:92:be:d6:c1:89:d9:03:b5: a0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C1:F2:28:43:A9:C3:28:C2:0F:55:4E:96:8F:2A:3F:FC:2D:0C:F5 X509v3 Authority Key Identifier: keyid:B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.19.0/24 Signature Algorithm: sha256WithRSAEncryption 92:30:57:4a:03:1f:3e:95:5f:15:27:e1:1d:47:ea:f8:dd:9a: d4:81:e3:6e:35:20:a0:a6:9e:d8:36:fa:b2:97:7c:65:1c:4c: b2:92:96:33:c0:8c:e6:0d:b5:dd:75:05:cd:fe:50:ec:ea:f2: 7c:0a:86:4e:ee:0c:fa:d8:4a:6d:c6:e2:0f:c1:28:4e:2e:9b: b9:9f:dd:1e:a0:f4:3e:ba:a1:0a:81:98:c0:7e:4b:3b:bb:6f: 81:de:96:ff:82:03:8b:fe:45:77:49:dd:f8:96:88:65:81:2f: ea:44:d8:b7:e6:a4:64:61:ed:c1:57:39:d5:aa:48:87:2b:3a: df:ec:72:c6:14:05:d9:02:ab:31:e0:2c:5f:dc:a1:18:55:90: 68:c0:09:d3:46:d5:3b:67:ed:ae:e8:7d:72:38:05:42:f2:86: 1d:f1:79:fa:7e:19:4c:50:39:83:32:a3:41:8e:00:52:7d:29: e8:50:3b:a8:a5:56:b6:aa:8e:4d:d7:f5:a9:34:6e:be:70:59: 23:53:63:77:db:c6:fc:0c:4e:df:84:e1:3c:4c:d3:3f:74:69: ac:6a:b6:10:15:32:1c:c5:d6:a6:a3:34:94:de:c7:73:ea:01: 5e:77:9d:68:97:ca:75:7a:7b:6c:44:f7:35:c1:37:16:ba:4d: 62:d1:ab:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCdch5Na5q3a+UW6if/sWJe08LtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NkU1NzY0RDk5MTdBNzM4OTY1NEQ2NzgzNkQwMjc3 OUVEOUUyMjAeFw0yNTA2MjYxNzU1MDBaFw0yNjA2MjUxODAwMDBaMDMxMTAvBgNV BAMTKERBQzFGMjI4NDNBOUMzMjhDMjBGNTU0RTk2OEYyQTNGRkMyRDBDRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBr00Xe+e+/ZMUrqrGaMPJFrTY cn5JYKI4a+hoLm1nsxUDpl9YpHvfM5iSmYhImxwQ0hewm/fCqc5+ZSD9VpyFohxF TXLNEdLj6K3I0nFJd1Q3Pq5FUaisB0Jb5O0dhIOyBFZIkq2LEek8ysbEHuQIkFJG wmjetWSaC0m7DLujFXL+N8Xe8e/9vtcGFcB1dfE4O8l4Urr7pMW/sX2dlLFRtqXZ a5WFXN7w5+sdAZlLEPhb4xgfTogao3+4JJKY60MvOgv2pji/nL2oaIoMxS3lSwvA LviuWbgCfkaEYkG2nMl12+Z87Fgw83Pgp2XcG04xTPrCH5SSvtbBidkDtaCNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2sHyKEOpwyjCD1VOlo8qP/wtDPUwHwYDVR0j BBgwFoAUuVbldk2ZF6c4llTWeDbQJ3ntniIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODExN2NhOC1iNGU1LTQ2N2EtODhhOC1hNGI2M2U0MGMzZWQvMC9COTU2RTU3NjRE OTkxN0E3Mzg5NjU0RDY3ODM2RDAyNzc5RUQ5RTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk1NkU1NzY0RDk5MTdBNzM4OTY1NEQ2NzgzNkQwMjc3OUVE OUUyMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4MTE3Y2E4LWI0ZTUtNDY3YS04 OGE4LWE0YjYzZTQwYzNlZC8wLzMxMzAzMzJlMzQzNDJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMxMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsEzANBgkqhkiG 9w0BAQsFAAOCAQEAkjBXSgMfPpVfFSfhHUfq+N2a1IHjbjUgoKae2Db6spd8ZRxM spKWM8CM5g213XUFzf5Q7OryfAqGTu4M+thKbcbiD8EoTi6buZ/dHqD0PrqhCoGY wH5LO7tvgd6W/4IDi/5Fd0nd+JaIZYEv6kTYt+akZGHtwVc51apIhys63+xyxhQF 2QKrMeAsX9yhGFWQaMAJ00bVO2ftruh9cjgFQvKGHfF5+n4ZTFA5gzKjQY4AUn0p 6FA7qKVWtqqOTdf1qTRuvnBZI1Njd9vG/AxO34ThPEzTP3RprGq2EBUyHMXWpqM0 lN7Hc+oBXnedaJfKdXp7bET3NcE3FrpNYtGrXA== -----END CERTIFICATE-----Generated at Mon Jun 30 01:16:40 2025 by rpki-client