$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa File: 3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa (raw, json) Hash identifier: C8WKEDh35WX/j3rJi1+NJXVLBziYbBALI4qujCiFsgQ= Subject key identifier: 6F:E5:60:C8:45:B6:CD:36:E9:76:5F:9C:EF:74:BF:1E:E0:91:F4:64 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 44EDF95BD9DE302DC86E9F84A39A33CEB0940AA6 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:40 +0000 ROA not before: Mon 02 Jun 2025 00:57:40 +0000 ROA not after: Mon 01 Jun 2026 01:02:40 +0000 asID: 131749 IP address blocks: 103.31.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ed:f9:5b:d9:de:30:2d:c8:6e:9f:84:a3:9a:33:ce:b0:94:0a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:40 2025 GMT Not After : Jun 1 01:02:40 2026 GMT Subject: CN=6FE560C845B6CD36E9765F9CEF74BF1EE091F464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:98:17:f1:13:80:02:dc:98:79:c7:59:30: 98:c0:91:c3:83:36:60:c2:bd:78:e2:ab:0d:82:72: e0:59:5a:8e:0a:57:7b:21:15:98:ae:a9:cc:f1:e7: 0f:f5:65:32:b7:a8:c6:b0:3f:fc:00:52:4c:fa:7b: cc:fb:47:5e:17:f7:a2:15:a0:43:bb:3f:75:5d:45: 5d:f4:fc:35:c2:60:f6:51:35:e4:2f:ab:db:9b:d3: 34:e8:c2:26:a3:13:02:53:17:ba:46:d8:c9:c3:81: d8:08:83:e5:d7:55:6b:c9:b7:bd:d8:4d:d9:94:49: 27:68:75:b1:f6:2d:e8:65:41:a6:05:11:9c:74:18: f0:cf:6c:16:3b:dd:98:bd:07:48:70:9d:b2:75:fe: 91:8e:a6:22:0a:23:6b:14:5a:df:98:6a:f9:7b:51: 0e:e8:cb:f1:59:77:3a:ae:32:f7:ad:8b:48:94:f2: 86:03:91:4d:3b:7f:eb:e3:eb:47:84:0a:8c:68:cd: 02:33:85:ed:2a:2a:96:b3:94:b6:67:b3:df:75:3b: 8c:e1:3c:c1:3b:e6:8f:d0:f6:c6:7a:58:48:cc:f1: a6:4d:87:2f:60:b6:f1:6d:0a:7a:a0:f2:4a:f7:4b: d6:77:a0:59:1f:1e:54:92:70:2d:91:e3:71:80:94: fa:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E5:60:C8:45:B6:CD:36:E9:76:5F:9C:EF:74:BF:1E:E0:91:F4:64 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.133.0/24 Signature Algorithm: sha256WithRSAEncryption 57:28:c7:d8:48:82:9c:c6:5d:c0:14:ef:b3:b0:46:8f:ff:4f: b7:94:2b:ae:a0:35:61:46:44:99:39:43:de:df:0b:9a:a2:74: a3:8e:07:9a:75:5a:a8:59:08:92:9f:3f:60:a0:28:c4:59:12: d0:15:13:35:e3:2e:da:e7:08:89:44:e2:9a:70:60:3c:f6:f2: 36:39:c5:39:9c:13:21:0d:fd:7a:aa:c4:b6:f4:13:40:42:6c: ed:c7:54:a9:7e:57:83:35:31:63:39:88:ac:19:6a:d2:74:d0: 7b:0e:0c:69:8a:e0:1b:57:f4:c9:50:8a:08:fd:1e:61:8c:c9: 33:7c:0a:49:c2:24:f5:11:fd:11:c5:7a:30:8f:9d:75:7e:3a: 5b:03:a9:a2:41:41:21:6b:3b:74:3f:4b:09:e1:e1:35:5a:35: e0:4d:cb:ff:8e:86:7a:e4:26:63:6d:06:cc:c5:55:33:24:cf: 9c:49:bf:f5:a1:2f:7b:7e:1e:76:33:22:52:39:af:92:cf:b8: 17:1e:ca:94:8d:dc:dc:84:1d:bd:31:f7:3f:6d:f0:7f:1d:ed: 0f:73:f8:c5:fe:b1:36:f6:39:96:c2:18:44:32:39:9f:e9:72: 4f:3d:eb:c6:0d:80:97:10:98:8d:2a:9f:97:61:fc:3e:f5:80: 0a:df:42:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURO35W9neMC3Ibp+Eo5ozzrCUCqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDBaFw0yNjA2MDEwMTAyNDBaMDMxMTAvBgNV BAMTKDZGRTU2MEM4NDVCNkNEMzZFOTc2NUY5Q0VGNzRCRjFFRTA5MUY0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRMpgX8ROAAtyYecdZMJjAkcOD NmDCvXjiqw2CcuBZWo4KV3shFZiuqczx5w/1ZTK3qMawP/wAUkz6e8z7R14X96IV oEO7P3VdRV30/DXCYPZRNeQvq9ub0zTowiajEwJTF7pG2MnDgdgIg+XXVWvJt73Y TdmUSSdodbH2LehlQaYFEZx0GPDPbBY73Zi9B0hwnbJ1/pGOpiIKI2sUWt+Yavl7 UQ7oy/FZdzquMveti0iU8oYDkU07f+vj60eECoxozQIzhe0qKpazlLZns991O4zh PME75o/Q9sZ6WEjM8aZNhy9gtvFtCnqg8kr3S9Z3oFkfHlSScC2R43GAlPrfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb+VgyEW2zTbpdl+c73S/HuCR9GQwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx+FMA0GCSqG SIb3DQEBCwUAA4IBAQBXKMfYSIKcxl3AFO+zsEaP/0+3lCuuoDVhRkSZOUPe3wua onSjjgeadVqoWQiSnz9goCjEWRLQFRM14y7a5wiJROKacGA89vI2OcU5nBMhDf16 qsS29BNAQmztx1SpfleDNTFjOYisGWrSdNB7DgxpiuAbV/TJUIoI/R5hjMkzfApJ wiT1Ef0RxXowj511fjpbA6miQUEhazt0P0sJ4eE1WjXgTcv/joZ65CZjbQbMxVUz JM+cSb/1oS97fh52MyJSOa+Sz7gXHsqUjdzchB29Mfc/bfB/He0Pc/jF/rE29jmW whhEMjmf6XJPPevGDYCXEJiNKp+XYfw+9YAK30JN -----END CERTIFICATE-----Generated at Tue Jun 17 05:22:20 2025 by rpki-client