$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa File: 3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: tZYQoJy4YnmvVxZJj+k/+JZKShXQlZB0IfTGOyNi9Mc= Subject key identifier: ED:B2:34:1C:38:11:C0:6C:66:87:A9:11:F1:A3:7E:56:B4:EC:91:BD Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 121EF66FFF54D3904A76D9670DD90A5EED0E0C1B Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa Signing time: Mon 07 Jul 2025 05:02:52 +0000 ROA not before: Mon 07 Jul 2025 04:57:52 +0000 ROA not after: Mon 06 Jul 2026 05:02:52 +0000 asID: 131706 IP address blocks: 103.102.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1e:f6:6f:ff:54:d3:90:4a:76:d9:67:0d:d9:0a:5e:ed:0e:0c:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jul 7 04:57:52 2025 GMT Not After : Jul 6 05:02:52 2026 GMT Subject: CN=EDB2341C3811C06C6687A911F1A37E56B4EC91BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:77:cd:0e:34:0d:51:bd:4d:df:8e:16:10: 9f:dc:b3:7f:79:5a:22:f5:8e:4a:7a:39:31:37:72: e4:ed:5e:2c:75:95:90:67:04:55:8f:66:69:f6:9f: 51:00:25:28:38:8b:fd:35:e8:d5:57:83:c9:aa:3b: 25:45:80:03:0f:50:75:82:fd:02:9a:b8:bf:f5:0c: 08:ed:47:3b:69:dd:16:5a:c1:ad:a1:20:7c:f3:6e: 03:21:20:ba:a8:b8:cd:ba:94:af:0a:18:b9:1d:9d: d9:e9:03:09:05:b8:2c:50:22:22:7f:53:2d:97:52: 36:10:4b:13:01:ca:01:76:ab:cd:2d:88:03:cf:07: 5d:cb:03:d7:9f:15:29:63:0d:68:47:b3:ee:b8:ee: 89:d9:4b:12:52:8e:28:1a:ce:26:f4:e4:05:48:0c: 3e:be:f5:80:78:02:6b:da:6c:22:c5:0e:64:b6:d5: fe:87:ed:e6:69:8a:39:4e:63:d1:c9:1c:1b:8e:0c: b8:d7:80:01:3c:55:9f:fc:67:e8:c3:05:18:ae:6b: 81:59:7f:ff:c5:9d:56:b1:17:ec:a7:fe:d2:4d:f6: 14:73:3a:17:17:f5:68:ec:39:08:4b:f1:71:43:fc: c8:a8:3c:33:f6:8a:e4:b1:94:c8:ef:04:59:89:8d: c4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B2:34:1C:38:11:C0:6C:66:87:A9:11:F1:A3:7E:56:B4:EC:91:BD X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.150.0/24 Signature Algorithm: sha256WithRSAEncryption 55:67:0b:6e:f8:d0:8c:12:e3:a5:35:4d:99:32:6c:58:58:70: 37:04:e9:83:a0:a4:7b:4f:47:04:04:15:89:20:35:f7:41:c3: 76:b1:99:86:62:73:67:46:96:ab:5b:12:60:e7:2f:5e:2a:e5: f2:a3:13:17:8f:76:b6:36:e9:a6:dc:c9:c7:c2:23:6f:6d:14: 5a:ab:52:b1:03:b1:fd:22:8f:23:6f:e6:c7:b0:24:a1:dc:11: 79:fe:f2:50:81:d4:27:6f:5b:14:15:d6:69:3a:ef:d0:fe:d6: 70:2d:97:26:18:8b:b8:f9:87:31:aa:25:f9:b0:4f:91:55:43: e0:5b:d9:e5:8b:e0:90:5a:12:dd:0e:f5:13:be:55:25:6b:67: 3e:96:12:c0:5d:7d:5b:d7:52:45:90:86:b5:84:4c:5d:3f:38: ff:ef:89:88:76:c6:31:95:24:7c:1c:78:bf:2f:bb:cd:99:df: d9:14:88:95:61:cd:d3:92:44:ca:65:db:67:5a:a1:97:21:95: 6e:e0:ff:c8:2f:27:46:7b:69:00:bb:98:80:f1:3f:b0:df:8f: 62:6c:f6:ef:17:87:32:63:9e:32:37:d0:25:88:4d:9c:1c:75: 7c:ce:eb:3b:25:21:9f:9c:31:1b:53:b5:19:1e:12:2c:9d:f2: fe:a4:1d:66 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEh72b/9U05BKdtlnDdkKXu0ODBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNTA3MDcwNDU3NTJaFw0yNjA3MDYwNTAyNTJaMDMxMTAvBgNV BAMTKEVEQjIzNDFDMzgxMUMwNkM2Njg3QTkxMUYxQTM3RTU2QjRFQzkxQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxu3fNDjQNUb1N344WEJ/cs395 WiL1jkp6OTE3cuTtXix1lZBnBFWPZmn2n1EAJSg4i/016NVXg8mqOyVFgAMPUHWC /QKauL/1DAjtRztp3RZawa2hIHzzbgMhILqouM26lK8KGLkdndnpAwkFuCxQIiJ/ Uy2XUjYQSxMBygF2q80tiAPPB13LA9efFSljDWhHs+647onZSxJSjigazib05AVI DD6+9YB4AmvabCLFDmS21f6H7eZpijlOY9HJHBuODLjXgAE8VZ/8Z+jDBRiua4FZ f//FnVaxF+yn/tJN9hRzOhcX9WjsOQhL8XFD/MioPDP2iuSxlMjvBFmJjcRRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7bI0HDgRwGxmh6kR8aN+VrTskb0wHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpYwDQYJ KoZIhvcNAQELBQADggEBAFVnC2740IwS46U1TZkybFhYcDcE6YOgpHtPRwQEFYkg NfdBw3axmYZic2dGlqtbEmDnL14q5fKjExePdrY26abcycfCI29tFFqrUrEDsf0i jyNv5sewJKHcEXn+8lCB1CdvWxQV1mk679D+1nAtlyYYi7j5hzGqJfmwT5FVQ+Bb 2eWL4JBaEt0O9RO+VSVrZz6WEsBdfVvXUkWQhrWETF0/OP/viYh2xjGVJHwceL8v u82Z39kUiJVhzdOSRMpl22daoZchlW7g/8gvJ0Z7aQC7mIDxP7Dfj2Js9u8XhzJj njI30CWITZwcdXzO6zslIZ+cMRtTtRkeEiyd8v6kHWY= -----END CERTIFICATE-----Generated at Wed Jul 23 12:01:00 2025 by rpki-client