$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa File: 3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: OQ224IMvAsB57i2ZLy8k+3izRu39/RIC634GB2DVf5Y= Subject key identifier: 64:06:54:DE:EB:5D:01:3C:A0:E8:F7:A0:83:3F:0E:C9:94:84:6A:58 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 1181F95B7D2492F96F1E01EF05666AF7EFF1A1B8 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa Signing time: Tue 10 Jun 2025 18:00:01 +0000 ROA not before: Tue 10 Jun 2025 17:55:01 +0000 ROA not after: Tue 09 Jun 2026 18:00:01 +0000 asID: 23679 IP address blocks: 103.238.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 16:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:81:f9:5b:7d:24:92:f9:6f:1e:01:ef:05:66:6a:f7:ef:f1:a1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Jun 10 17:55:01 2025 GMT Not After : Jun 9 18:00:01 2026 GMT Subject: CN=640654DEEB5D013CA0E8F7A0833F0EC994846A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3a:b3:52:a1:fd:58:60:06:c1:fe:f2:68:d6: 81:48:e4:ee:08:67:69:66:4e:2e:33:51:59:83:ba: 58:cd:45:3e:0f:19:74:4e:90:69:e2:c1:cf:a1:8e: 8c:b4:22:df:00:83:bc:d4:85:9f:37:7f:e4:2f:08: 91:d6:a6:a6:5a:86:c8:0a:28:af:ce:86:05:7a:82: ce:b6:5e:70:50:2d:5e:ad:87:f0:c3:ea:37:96:21: b9:74:8e:f7:d8:c7:83:d4:d4:e2:28:eb:82:a5:c6: 38:84:aa:39:5b:7d:e5:a9:d6:c6:a0:77:50:b3:29: 47:0a:b6:26:d5:b8:5d:35:4f:75:f8:44:dd:9a:cd: 16:ce:d9:48:95:f6:ed:54:7b:af:a5:18:89:e8:c3: 09:80:ea:f5:02:95:51:c9:c3:01:7c:0c:b8:72:39: 16:0b:ae:40:bb:4c:e7:5e:6f:76:00:0b:32:fd:67: 02:0d:f1:7e:f1:e6:1a:7e:7b:11:e5:c5:cb:32:7a: a1:b8:f9:d7:09:b2:2b:02:5d:cf:31:75:07:36:f8: f6:eb:9b:7f:3c:5c:8d:fc:1b:4c:7f:fb:3f:d8:71: 2b:84:65:b9:aa:f7:e5:8f:97:36:11:0e:ad:43:8b: 54:75:b1:b0:f3:ac:16:80:7b:80:0b:1a:8f:7e:c0: 7a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:06:54:DE:EB:5D:01:3C:A0:E8:F7:A0:83:3F:0E:C9:94:84:6A:58 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.201.0/24 Signature Algorithm: sha256WithRSAEncryption cc:66:b2:0c:94:99:6d:c9:8a:5d:00:8e:06:63:d6:f0:32:63: 18:c9:44:bf:e7:03:5d:ee:43:71:06:11:8a:a6:eb:ea:b8:85: 60:ad:c0:62:c8:ae:38:f9:bf:ea:9b:5c:07:a2:e5:ad:e8:95: 55:05:5d:7d:73:46:7e:66:03:f3:65:17:03:e0:a3:18:7b:a3: f3:34:f1:44:c5:48:2a:74:0c:24:46:05:3c:42:43:af:b8:59: c3:a2:71:b4:0d:11:4a:a0:86:62:f1:a3:f1:36:56:5d:f3:f6: d1:58:37:82:02:9d:d3:73:61:a2:24:46:ba:f1:f7:4f:a6:aa: 12:6c:b6:bf:bf:5e:15:a2:93:fd:59:26:47:3e:03:bc:65:33: 42:43:86:1a:86:11:db:e8:1d:34:df:98:5e:01:e4:aa:bd:d1: 96:58:24:8e:e9:a5:cd:f1:8b:45:7d:18:92:ff:81:38:ae:b5: 42:0f:33:c9:89:06:74:1c:18:0f:d1:96:4c:ff:22:67:1e:28: 2d:26:ec:c4:68:c6:f6:63:f3:71:ab:f8:d2:56:e3:7a:82:3c: 45:7c:81:53:67:1e:04:09:a2:06:a9:c9:b4:18:bd:0b:46:e3: 90:c7:77:33:69:e1:7b:06:09:30:11:e7:6d:3d:36:f7:0f:e3: 26:67:5b:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEYH5W30kkvlvHgHvBWZq9+/xobgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNTA2MTAxNzU1MDFaFw0yNjA2MDkxODAwMDFaMDMxMTAvBgNV BAMTKDY0MDY1NERFRUI1RDAxM0NBMEU4RjdBMDgzM0YwRUM5OTQ4NDZBNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOrNSof1YYAbB/vJo1oFI5O4I Z2lmTi4zUVmDuljNRT4PGXROkGniwc+hjoy0It8Ag7zUhZ83f+QvCJHWpqZahsgK KK/OhgV6gs62XnBQLV6th/DD6jeWIbl0jvfYx4PU1OIo64KlxjiEqjlbfeWp1sag d1CzKUcKtibVuF01T3X4RN2azRbO2UiV9u1Ue6+lGInowwmA6vUClVHJwwF8DLhy ORYLrkC7TOdeb3YACzL9ZwIN8X7x5hp+exHlxcsyeqG4+dcJsisCXc8xdQc2+Pbr m388XI38G0x/+z/YcSuEZbmq9+WPlzYRDq1Di1R1sbDzrBaAe4ALGo9+wHopAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZAZU3utdATyg6Peggz8OyZSEalgwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzIzMzM4MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+7JMA0GCSqG SIb3DQEBCwUAA4IBAQDMZrIMlJltyYpdAI4GY9bwMmMYyUS/5wNd7kNxBhGKpuvq uIVgrcBiyK44+b/qm1wHouWt6JVVBV19c0Z+ZgPzZRcD4KMYe6PzNPFExUgqdAwk RgU8QkOvuFnDonG0DRFKoIZi8aPxNlZd8/bRWDeCAp3Tc2GiJEa68fdPpqoSbLa/ v14VopP9WSZHPgO8ZTNCQ4YahhHb6B0035heAeSqvdGWWCSO6aXN8YtFfRiS/4E4 rrVCDzPJiQZ0HBgP0ZZM/yJnHigtJuzEaMb2Y/Nxq/jSVuN6gjxFfIFTZx4ECaIG qcm0GL0LRuOQx3czaeF7BgkwEedtPTb3D+MmZ1vu -----END CERTIFICATE-----Generated at Fri Jun 20 01:20:03 2025 by rpki-client