$ rpki-client -vvf repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa File: 3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa (raw, json) Hash identifier: h9EnCBlEcC94GebgUJlWGKNfIlqkrzmaOBhnTq8r/5A= Subject key identifier: 6D:9A:F4:E7:FD:8A:58:03:AA:B0:48:D8:83:96:17:83:75:FE:EB:4B Certificate issuer: /CN=C509602E8492E1EF2F7A2B99A4C6BF4FF306945D Certificate serial: 411F3B82978BF2A2F735C0E734B924C34525AD70 Authority key identifier: C5:09:60:2E:84:92:E1:EF:2F:7A:2B:99:A4:C6:BF:4F:F3:06:94:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa Signing time: Sat 07 Jun 2025 07:02:23 +0000 ROA not before: Sat 07 Jun 2025 06:57:23 +0000 ROA not after: Sat 06 Jun 2026 07:02:23 +0000 asID: 137338 IP address blocks: 103.112.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.crl rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1f:3b:82:97:8b:f2:a2:f7:35:c0:e7:34:b9:24:c3:45:25:ad:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C509602E8492E1EF2F7A2B99A4C6BF4FF306945D Validity Not Before: Jun 7 06:57:23 2025 GMT Not After : Jun 6 07:02:23 2026 GMT Subject: CN=6D9AF4E7FD8A5803AAB048D88396178375FEEB4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:47:2f:ac:50:7b:a2:b7:94:ea:63:86:ba:e8: 56:c8:77:78:31:b5:2a:3d:53:7e:a5:4a:6f:56:a8: ec:8b:b8:12:e8:f0:b0:e6:7f:0e:5b:09:8a:81:93: 42:57:b1:0d:c0:10:44:d1:0b:a2:5a:92:97:77:cf: ce:bb:8f:97:98:70:53:7c:02:4a:8b:5b:94:6b:7b: 80:28:fb:b0:ce:0e:bc:fa:7e:7e:85:b2:d1:1e:7e: d7:8e:b4:7b:a8:59:ad:10:c3:a8:83:51:a9:56:08: 5c:55:f3:a9:c6:38:d7:88:b8:f4:11:f4:49:75:f2: 9d:32:76:bd:10:77:e3:3e:60:07:65:00:53:55:e3: 53:13:f1:9b:76:31:07:e3:0f:1f:79:ab:cc:c6:da: 97:f3:2a:46:42:23:22:a3:21:f5:37:4f:9c:2a:5b: 44:a1:d7:91:9e:cf:18:e6:16:91:43:8a:05:cb:d2: e2:89:da:fe:b8:08:f3:83:8d:27:21:1f:5e:4c:10: 9b:49:4d:6f:33:96:e0:96:90:3e:98:59:3c:f8:32: 16:99:7b:44:33:a8:1a:51:a8:c1:36:ec:d4:10:86: 08:a3:a7:4d:55:2f:78:86:81:45:36:91:8b:8b:27: d7:bf:4f:e6:7a:ce:23:e7:64:ec:37:d5:02:6e:cb: ef:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9A:F4:E7:FD:8A:58:03:AA:B0:48:D8:83:96:17:83:75:FE:EB:4B X509v3 Authority Key Identifier: keyid:C5:09:60:2E:84:92:E1:EF:2F:7A:2B:99:A4:C6:BF:4F:F3:06:94:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C509602E8492E1EF2F7A2B99A4C6BF4FF306945D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/3130332e3131322e3232332e302f32342d3234203d3e20313337333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.223.0/24 Signature Algorithm: sha256WithRSAEncryption cf:1c:fe:3e:0f:85:cd:ec:cc:b9:3e:43:4c:8b:df:b8:e1:af: 41:51:b7:6b:44:ca:49:f2:70:ea:e3:61:5a:af:63:db:f6:bb: 74:46:71:75:dc:eb:68:6c:e1:3b:28:b0:a4:27:95:fc:90:7f: 45:03:c1:2b:17:a9:0f:84:66:a1:53:1d:01:3f:20:37:81:ba: 6c:91:84:2a:f9:6b:e3:01:23:61:44:55:23:9f:ef:cd:e0:71: 53:b8:79:19:4b:53:84:f6:28:58:f3:b3:9b:bc:90:9b:93:17: cf:67:4a:db:57:fb:0a:6b:09:84:a6:65:16:66:32:4f:b1:77: 6c:97:b8:7d:c9:05:ae:69:a7:d8:fc:79:38:5b:0b:9e:d9:2c: e4:87:78:f4:16:03:7b:11:6e:5d:02:94:33:74:35:b5:c5:05: ea:c7:43:bc:3e:02:cc:a3:32:5e:66:ef:f4:c9:aa:34:d6:bf: 31:27:aa:77:3e:25:36:f5:60:2b:c1:f8:10:1f:07:e3:19:e7: d9:96:69:72:fd:5b:08:06:f0:59:15:96:4c:8b:6c:bf:d5:a7: 72:c3:cf:a2:f5:60:72:2e:98:c4:26:74:67:5e:b2:e2:a9:76: 97:a5:e4:7b:9c:ac:86:01:2c:6d:03:59:3d:84:58:4a:71:29: c1:91:46:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQR87gpeL8qL3NcDnNLkkw0UlrXAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUwOTYwMkU4NDkyRTFFRjJGN0EyQjk5QTRDNkJGNEZG MzA2OTQ1RDAeFw0yNTA2MDcwNjU3MjNaFw0yNjA2MDYwNzAyMjNaMDMxMTAvBgNV BAMTKDZEOUFGNEU3RkQ4QTU4MDNBQUIwNDhEODgzOTYxNzgzNzVGRUVCNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmRy+sUHuit5TqY4a66FbId3gx tSo9U36lSm9WqOyLuBLo8LDmfw5bCYqBk0JXsQ3AEETRC6Jakpd3z867j5eYcFN8 AkqLW5Rre4Ao+7DODrz6fn6FstEefteOtHuoWa0Qw6iDUalWCFxV86nGONeIuPQR 9El18p0ydr0Qd+M+YAdlAFNV41MT8Zt2MQfjDx95q8zG2pfzKkZCIyKjIfU3T5wq W0Sh15GezxjmFpFDigXL0uKJ2v64CPODjSchH15MEJtJTW8zluCWkD6YWTz4MhaZ e0QzqBpRqME27NQQhgijp01VL3iGgUU2kYuLJ9e/T+Z6ziPnZOw31QJuy++TAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbZr05/2KWAOqsEjYg5YXg3X+60swHwYDVR0j BBgwFoAUxQlgLoSS4e8veiuZpMa/T/MGlF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmQ2ZDBkZi1jMjFlLTQ5MWMtYjExNi00YTFkOWEyYzc0YmUvMC9DNTA5NjAyRTg0 OTJFMUVGMkY3QTJCOTlBNEM2QkY0RkYzMDY5NDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzUwOTYwMkU4NDkyRTFFRjJGN0EyQjk5QTRDNkJGNEZGMzA2 OTQ1RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyZDZkMGRmLWMyMWUtNDkxYy1i MTE2LTRhMWQ5YTJjNzRiZS8wLzMxMzAzMzJlMzEzMTMyMmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncN8wDQYJ KoZIhvcNAQELBQADggEBAM8c/j4Phc3szLk+Q0yL37jhr0FRt2tEyknycOrjYVqv Y9v2u3RGcXXc62hs4TsosKQnlfyQf0UDwSsXqQ+EZqFTHQE/IDeBumyRhCr5a+MB I2FEVSOf783gcVO4eRlLU4T2KFjzs5u8kJuTF89nSttX+wprCYSmZRZmMk+xd2yX uH3JBa5pp9j8eThbC57ZLOSHePQWA3sRbl0ClDN0NbXFBerHQ7w+AsyjMl5m7/TJ qjTWvzEnqnc+JTb1YCvB+BAfB+MZ59mWaXL9WwgG8FkVlkyLbL/Vp3LDz6L1YHIu mMQmdGdesuKpdpel5HucrIYBLG0DWT2EWEpxKcGRRiw= -----END CERTIFICATE-----Generated at Tue Jul 1 01:46:09 2025 by rpki-client