$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa File: 3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: uOHSfLHhwtMNN67gMjbV4MGpzJVsSG8o/ohHKk2WQIg= Subject key identifier: EB:34:1D:9E:84:B6:A7:BD:7A:3E:11:7E:DE:C6:47:F7:1C:D4:A7:A6 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 5BB989FF6479D9BA4CCEC9604D973DB4BF8BE40D Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa Signing time: Mon 07 Jul 2025 05:02:52 +0000 ROA not before: Mon 07 Jul 2025 04:57:52 +0000 ROA not after: Mon 06 Jul 2026 05:02:52 +0000 asID: 131706 IP address blocks: 103.102.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b9:89:ff:64:79:d9:ba:4c:ce:c9:60:4d:97:3d:b4:bf:8b:e4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jul 7 04:57:52 2025 GMT Not After : Jul 6 05:02:52 2026 GMT Subject: CN=EB341D9E84B6A7BD7A3E117EDEC647F71CD4A7A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:63:62:a0:2e:ae:af:d5:e9:65:20:5c:1a:6b: b1:03:a5:5d:19:68:7d:fd:c8:fa:fc:24:e1:38:44: d4:50:29:2a:32:50:1a:d1:fa:d5:c6:e3:3d:e2:62: ce:95:04:0d:39:67:4f:0a:6c:62:d9:07:6b:a0:02: f0:c4:52:db:d6:f5:be:6b:41:59:4b:d3:78:96:30: b9:94:48:db:68:6c:35:56:83:f9:29:a5:05:b9:77: 74:43:d8:2a:86:18:91:ce:57:39:af:c8:dc:d3:b2: 8e:6f:65:c5:47:db:83:0b:d4:e4:8d:91:5f:c6:4b: 45:a7:f3:d0:89:cc:4f:99:a2:3c:d2:99:dc:e9:93: d3:d5:e7:36:d7:39:94:77:a6:74:77:88:d6:3e:a6: bc:ad:48:95:65:98:45:4b:ec:1c:1b:33:15:27:a4: f2:a8:35:fb:be:55:da:c0:90:67:74:55:3a:34:04: 64:4f:8e:d7:57:53:4d:a3:7f:e0:13:86:b4:36:09: 1d:a2:83:35:8a:c6:60:d0:29:9d:63:67:52:1a:6c: 58:53:97:8a:92:0c:f9:a1:97:cd:04:20:bb:5d:bf: 93:8a:17:b0:1a:35:29:b5:6d:04:94:d1:6e:6e:4a: b9:57:53:af:25:b0:b4:97:13:e8:a1:95:b2:bc:30: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:34:1D:9E:84:B6:A7:BD:7A:3E:11:7E:DE:C6:47:F7:1C:D4:A7:A6 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.151.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f3:bd:e8:1e:57:69:74:93:9a:cd:76:9a:7d:9b:7e:41:14: 18:77:d2:8b:27:8c:6e:47:b7:20:16:b7:5e:49:5b:84:89:b1: 15:8c:13:f2:20:38:7d:d6:49:4b:30:d0:d7:7b:d5:2a:b7:79: af:20:5d:3f:6a:95:f1:28:fe:3a:8e:4c:36:31:f9:73:59:6e: 5b:86:9f:26:6c:30:6f:7c:53:ba:60:74:86:d0:83:68:d2:72: 1b:b6:e2:f8:6e:28:70:0a:33:ff:52:5a:f2:51:6d:2f:bc:8a: 07:78:c6:d6:12:d8:dd:26:ca:27:45:ff:b2:f1:79:2d:19:e7: 57:1e:a9:57:e4:57:f3:63:31:13:1b:ef:8e:11:d6:eb:0f:e4: fd:77:d2:be:ce:71:a7:ce:3d:fc:b4:d2:c3:4b:00:7d:6e:e3: ba:72:07:41:63:60:08:46:35:70:2d:b8:46:d1:ca:80:32:af: 15:07:ad:c9:c8:8e:13:63:3d:92:d5:fc:22:92:b0:a5:0c:38: 50:74:75:47:4c:e3:2a:1d:76:c4:4c:c3:73:99:dd:65:39:33: ea:12:24:1b:8f:64:7a:d7:df:8e:69:39:95:29:ce:34:4d:da: 5d:bf:9b:50:1e:5b:7a:1e:52:67:2b:97:c3:24:ba:aa:9d:3e: 9f:d2:6b:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW7mJ/2R52bpMzslgTZc9tL+L5A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNTA3MDcwNDU3NTJaFw0yNjA3MDYwNTAyNTJaMDMxMTAvBgNV BAMTKEVCMzQxRDlFODRCNkE3QkQ3QTNFMTE3RURFQzY0N0Y3MUNENEE3QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsY2KgLq6v1ellIFwaa7EDpV0Z aH39yPr8JOE4RNRQKSoyUBrR+tXG4z3iYs6VBA05Z08KbGLZB2ugAvDEUtvW9b5r QVlL03iWMLmUSNtobDVWg/kppQW5d3RD2CqGGJHOVzmvyNzTso5vZcVH24ML1OSN kV/GS0Wn89CJzE+ZojzSmdzpk9PV5zbXOZR3pnR3iNY+prytSJVlmEVL7BwbMxUn pPKoNfu+VdrAkGd0VTo0BGRPjtdXU02jf+AThrQ2CR2igzWKxmDQKZ1jZ1IabFhT l4qSDPmhl80EILtdv5OKF7AaNSm1bQSU0W5uSrlXU68lsLSXE+ihlbK8MKK/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6zQdnoS2p716PhF+3sZH9xzUp6YwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpcwDQYJ KoZIhvcNAQELBQADggEBAG3zvegeV2l0k5rNdpp9m35BFBh30osnjG5HtyAWt15J W4SJsRWME/IgOH3WSUsw0Nd71Sq3ea8gXT9qlfEo/jqOTDYx+XNZbluGnyZsMG98 U7pgdIbQg2jSchu24vhuKHAKM/9SWvJRbS+8igd4xtYS2N0myidF/7LxeS0Z51ce qVfkV/NjMRMb744R1usP5P130r7OcafOPfy00sNLAH1u47pyB0FjYAhGNXAtuEbR yoAyrxUHrcnIjhNjPZLV/CKSsKUMOFB0dUdM4yoddsRMw3OZ3WU5M+oSJBuPZHrX 345pOZUpzjRN2l2/m1AeW3oeUmcrl8MkuqqdPp/Sa50= -----END CERTIFICATE-----Generated at Wed Jul 23 12:00:16 2025 by rpki-client