$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa File: 3130332e37322e3131302e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: voekDMYuoDNmVswZr7/xsWsJnvx7lZSdUg+Aq+ToSP0= Subject key identifier: E5:32:A8:F2:BB:E5:03:2A:B5:D2:56:0A:4B:F6:C6:7C:BD:29:3B:FA Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 4FB9D823E7E50C4731D836A72139E24B78B56F0B Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:23 +0000 ROA not before: Mon 02 Jun 2025 01:59:23 +0000 ROA not after: Mon 01 Jun 2026 02:04:23 +0000 asID: 58476 IP address blocks: 103.72.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 23:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b9:d8:23:e7:e5:0c:47:31:d8:36:a7:21:39:e2:4b:78:b5:6f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:23 2025 GMT Not After : Jun 1 02:04:23 2026 GMT Subject: CN=E532A8F2BBE5032AB5D2560A4BF6C67CBD293BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:cc:87:cc:7b:96:8c:ab:e6:b5:9f:3e:31: c3:01:aa:b6:98:62:a3:24:09:96:ae:82:d1:12:7d: 07:fb:3f:da:19:e5:e1:b3:d1:80:25:bd:90:c0:d7: 05:db:2f:9b:24:b7:ff:85:5b:a9:ee:b6:14:c9:3f: c5:bc:68:d0:36:e0:24:c7:c3:38:96:9a:a2:52:e4: 07:ac:b7:6f:fa:5c:43:1f:2c:5c:ac:c2:97:2a:7b: eb:04:88:bb:93:05:be:6b:cd:cb:ee:c4:a4:6e:5a: de:30:a5:89:a1:e8:2c:6e:e2:be:59:99:de:a1:cf: 9b:bd:de:5e:f9:19:5a:1a:70:8f:4d:62:59:3d:c5: 73:d3:67:51:4e:49:2d:ed:35:2d:bc:19:f0:16:60: f2:6f:11:66:18:49:10:50:ed:0d:7e:dd:cb:96:fc: 35:56:f8:56:36:a6:9d:99:a2:e2:4a:b7:b2:33:59: 86:04:09:56:a9:cc:09:4a:ce:2a:44:49:9c:2c:0a: 4c:5b:8b:76:fe:22:b4:c9:cf:72:3a:1f:a0:c2:db: a6:f1:cf:a1:2e:bf:a5:56:63:07:f0:cc:46:1d:8f: 90:c2:66:58:2d:21:8e:63:78:79:28:b1:0d:e9:80: b6:14:eb:eb:10:45:fc:8d:c5:fe:03:31:da:f3:8b: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:32:A8:F2:BB:E5:03:2A:B5:D2:56:0A:4B:F6:C6:7C:BD:29:3B:FA X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.72.110.0/24 Signature Algorithm: sha256WithRSAEncryption 42:2a:cc:fb:5d:14:0c:cc:2b:b1:fe:9f:85:85:b2:0f:e7:9d: 98:96:80:33:20:c1:bc:5f:30:a5:9e:86:74:d6:e8:b5:4f:67: 3d:58:91:10:d6:af:a0:87:86:4f:9a:45:f9:5a:b4:c7:85:5d: 09:48:1c:23:02:1e:4f:f3:1b:3c:bf:ca:77:e1:3b:75:f9:2a: 07:cc:24:a8:bf:85:b2:9e:8d:5e:41:19:f0:0f:20:22:0a:b4: 26:fd:55:0a:02:cc:57:5a:86:9b:a0:db:e0:79:ba:8d:45:a7: f2:48:08:2e:63:9d:89:3b:5a:e3:4d:81:36:fd:fe:18:f4:cf: 62:53:4c:a1:41:5a:e0:20:a3:92:09:cd:8a:02:a9:2c:16:f8: fb:ab:6f:8e:f1:50:ee:f6:ec:5c:b6:d3:e6:c4:34:80:28:c6: 57:29:56:60:95:30:5b:77:9a:ec:86:2f:c7:02:0b:26:77:9c: 93:37:48:a7:76:53:cd:26:dd:f3:f9:f9:62:98:a7:d9:33:bc: 9f:32:95:4a:e3:7c:22:9f:dd:17:1a:96:87:2e:4e:7a:0b:2f: 05:b0:79:ec:1c:4d:2b:17:43:7a:3d:23:73:0b:a8:5f:6d:db: 1d:97:f0:f8:bc:16:91:45:6c:d4:37:aa:fc:fc:b7:15:77:25: 8a:f0:1a:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT7nYI+flDEcx2DanITniS3i1bwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjNaFw0yNjA2MDEwMjA0MjNaMDMxMTAvBgNV BAMTKEU1MzJBOEYyQkJFNTAzMkFCNUQyNTYwQTRCRjZDNjdDQkQyOTNCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0NMyHzHuWjKvmtZ8+McMBqraY YqMkCZaugtESfQf7P9oZ5eGz0YAlvZDA1wXbL5skt/+FW6nuthTJP8W8aNA24CTH wziWmqJS5Aest2/6XEMfLFyswpcqe+sEiLuTBb5rzcvuxKRuWt4wpYmh6Cxu4r5Z md6hz5u93l75GVoacI9NYlk9xXPTZ1FOSS3tNS28GfAWYPJvEWYYSRBQ7Q1+3cuW /DVW+FY2pp2ZouJKt7IzWYYECVapzAlKzipESZwsCkxbi3b+IrTJz3I6H6DC26bx z6Euv6VWYwfwzEYdj5DCZlgtIY5jeHkosQ3pgLYU6+sQRfyNxf4DMdrzi3zBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5TKo8rvlAyq10lYKS/bGfL0pO/owHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzczMjJlMzEzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdIbjANBgkqhkiG 9w0BAQsFAAOCAQEAQirM+10UDMwrsf6fhYWyD+edmJaAMyDBvF8wpZ6GdNbotU9n PViRENavoIeGT5pF+Vq0x4VdCUgcIwIeT/MbPL/Kd+E7dfkqB8wkqL+Fsp6NXkEZ 8A8gIgq0Jv1VCgLMV1qGm6Db4Hm6jUWn8kgILmOdiTta402BNv3+GPTPYlNMoUFa 4CCjkgnNigKpLBb4+6tvjvFQ7vbsXLbT5sQ0gCjGVylWYJUwW3ea7IYvxwILJnec kzdIp3ZTzSbd8/n5Ypin2TO8nzKVSuN8Ip/dFxqWhy5OegsvBbB57BxNKxdDej0j cwuoX23bHZfw+LwWkUVs1Deq/Py3FXclivAanA== -----END CERTIFICATE-----Generated at Tue Jul 1 00:28:48 2025 by rpki-client