$ rpki-client -vvf repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/3130332e3134352e3232322e302f32332d3233203d3e20313339343533.roa File: 3130332e3134352e3232322e302f32332d3233203d3e20313339343533.roa (raw, json) Hash identifier: WfyKy7SGgw1ll4gSjGcypbLZ+xtgURJsabsZ3eqwV20= Subject key identifier: FC:8A:75:E5:8D:1A:33:D0:C2:5A:15:1B:0E:3A:BF:3B:9F:A2:55:48 Certificate issuer: /CN=36058F001B4EB8C36AC0C178096CB2C2CB5D6223 Certificate serial: 7F219049C7AB3A130ED01F54F30335107735CF35 Authority key identifier: 36:05:8F:00:1B:4E:B8:C3:6A:C0:C1:78:09:6C:B2:C2:CB:5D:62:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/3130332e3134352e3232322e302f32332d3233203d3e20313339343533.roa Signing time: Thu 19 Jun 2025 06:12:20 +0000 ROA not before: Thu 19 Jun 2025 06:07:20 +0000 ROA not after: Thu 18 Jun 2026 06:12:20 +0000 asID: 139453 IP address blocks: 103.145.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.crl rsync://repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 06:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:21:90:49:c7:ab:3a:13:0e:d0:1f:54:f3:03:35:10:77:35:cf:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36058F001B4EB8C36AC0C178096CB2C2CB5D6223 Validity Not Before: Jun 19 06:07:20 2025 GMT Not After : Jun 18 06:12:20 2026 GMT Subject: CN=FC8A75E58D1A33D0C25A151B0E3ABF3B9FA25548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e9:4b:5e:79:6e:df:a7:4a:4d:d1:a0:a6:90: 6f:8b:73:8a:36:86:25:15:cf:a7:d9:e4:58:2e:d6: f2:d1:7c:e1:60:8f:21:b4:40:44:5c:85:c7:a5:6e: 8d:e1:9f:6f:33:76:69:c5:cd:c8:3d:a2:89:02:1a: b7:b9:1d:e2:46:6d:a8:b5:ea:ed:8d:35:7e:8c:52: b6:47:8a:11:2e:47:70:d0:6c:5f:8c:84:88:b7:ac: d2:3d:25:f9:2e:9c:4e:4a:ff:89:8f:20:07:57:41: 11:0c:6e:fa:d3:54:48:b2:c2:2e:c6:82:79:50:7b: de:55:4e:72:f9:9b:b1:f8:f2:27:6c:90:d5:12:b0: 64:d1:51:e2:ca:86:76:23:97:d3:88:0c:36:0c:20: 06:28:65:cc:ea:48:99:3c:af:72:61:a0:a4:17:74: ac:59:c8:bb:ef:1d:1b:dc:f5:4b:c8:a3:69:f3:1d: e2:ce:f3:de:27:29:b9:84:1d:eb:a3:f4:52:23:05: 18:ad:0e:ee:2a:1a:cf:ec:44:f7:69:99:5f:1e:b4: 65:63:7f:72:87:37:ef:c9:e3:c2:b6:85:7f:62:d2: 4d:9f:90:b3:99:1f:68:0f:aa:38:85:24:f0:78:45: d4:8c:b6:27:8a:d3:4d:9a:c3:9d:a3:bf:ad:9e:3c: 5d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8A:75:E5:8D:1A:33:D0:C2:5A:15:1B:0E:3A:BF:3B:9F:A2:55:48 X509v3 Authority Key Identifier: keyid:36:05:8F:00:1B:4E:B8:C3:6A:C0:C1:78:09:6C:B2:C2:CB:5D:62:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36058F001B4EB8C36AC0C178096CB2C2CB5D6223.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff5dd0aa-fa7a-4da4-a1c7-1dbc88b2c169/0/3130332e3134352e3232322e302f32332d3233203d3e20313339343533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.222.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:bb:09:07:4b:60:b1:39:ad:e2:c8:45:07:2c:33:35:a6:8a: ce:6f:94:08:3d:7c:a4:bf:35:ea:1e:52:aa:8f:53:70:76:9f: 7e:63:1b:ab:6a:58:cb:81:0c:66:de:fb:b3:d4:7a:7c:f2:c0: 8a:9c:21:f4:c4:07:0e:d3:90:19:ed:74:0f:d9:91:61:8e:ce: 3a:67:49:49:ff:83:1d:bd:3d:28:a9:1c:69:14:1d:31:12:2a: a2:99:fb:02:99:4d:be:88:87:c9:b6:a3:34:ec:ff:23:42:3d: c3:42:a7:f0:39:f5:b5:04:2a:98:ec:b1:38:e9:1f:b6:45:23: 12:ab:8f:35:12:cf:4e:84:ce:0d:f2:1a:7c:f9:4d:92:ed:1a: f9:25:b9:8d:42:a3:ba:a7:6e:e7:65:b5:31:2d:43:9e:ca:63: 7c:f7:c1:05:8a:cb:56:e3:81:60:2b:4f:b8:e3:e0:63:48:ab: 74:fb:30:84:c3:cb:28:84:93:f3:c8:d1:1f:51:c7:5b:3a:1b: 4d:a0:a1:38:8e:52:8f:77:eb:fa:a2:11:f1:d2:b7:69:b3:22: 21:a0:02:14:fa:22:86:6a:f3:ba:f2:fe:0d:f3:ca:41:33:82: 26:2e:82:ab:b7:8c:a0:b1:3a:4f:ee:cd:24:1e:fe:33:e1:8a: 1b:99:22:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfyGQScerOhMO0B9U8wM1EHc1zzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzYwNThGMDAxQjRFQjhDMzZBQzBDMTc4MDk2Q0IyQzJD QjVENjIyMzAeFw0yNTA2MTkwNjA3MjBaFw0yNjA2MTgwNjEyMjBaMDMxMTAvBgNV BAMTKEZDOEE3NUU1OEQxQTMzRDBDMjVBMTUxQjBFM0FCRjNCOUZBMjU1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb6UteeW7fp0pN0aCmkG+Lc4o2 hiUVz6fZ5Fgu1vLRfOFgjyG0QERchcelbo3hn28zdmnFzcg9ookCGre5HeJGbai1 6u2NNX6MUrZHihEuR3DQbF+MhIi3rNI9JfkunE5K/4mPIAdXQREMbvrTVEiywi7G gnlQe95VTnL5m7H48idskNUSsGTRUeLKhnYjl9OIDDYMIAYoZczqSJk8r3JhoKQX dKxZyLvvHRvc9UvIo2nzHeLO894nKbmEHeuj9FIjBRitDu4qGs/sRPdpmV8etGVj f3KHN+/J48K2hX9i0k2fkLOZH2gPqjiFJPB4RdSMtieK002aw52jv62ePF3rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/Ip15Y0aM9DCWhUbDjq/O5+iVUgwHwYDVR0j BBgwFoAUNgWPABtOuMNqwMF4CWyywstdYiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjVkZDBhYS1mYTdhLTRkYTQtYTFjNy0xZGJjODhiMmMxNjkvMC8zNjA1OEYwMDFC NEVCOEMzNkFDMEMxNzgwOTZDQjJDMkNCNUQ2MjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzYwNThGMDAxQjRFQjhDMzZBQzBDMTc4MDk2Q0IyQzJDQjVE NjIyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmNWRkMGFhLWZhN2EtNGRhNC1h MWM3LTFkYmM4OGIyYzE2OS8wLzMxMzAzMzJlMzEzNDM1MmUzMjMyMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkd4wDQYJ KoZIhvcNAQELBQADggEBAD+7CQdLYLE5reLIRQcsMzWmis5vlAg9fKS/NeoeUqqP U3B2n35jG6tqWMuBDGbe+7PUenzywIqcIfTEBw7TkBntdA/ZkWGOzjpnSUn/gx29 PSipHGkUHTESKqKZ+wKZTb6Ih8m2ozTs/yNCPcNCp/A59bUEKpjssTjpH7ZFIxKr jzUSz06Ezg3yGnz5TZLtGvkluY1Co7qnbudltTEtQ57KY3z3wQWKy1bjgWArT7jj 4GNIq3T7MITDyyiEk/PI0R9Rx1s6G02goTiOUo936/qiEfHSt2mzIiGgAhT6IoZq 87ry/g3zykEzgiYugqu3jKCxOk/uzSQe/jPhihuZIko= -----END CERTIFICATE-----Generated at Tue Jul 1 15:44:03 2025 by rpki-client