$ rpki-client -vvf repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa File: 3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa (raw, json) Hash identifier: IbilM14Tghq0s15Jun72yk+UFwN4B/MVdRN8dmwioxY= Subject key identifier: 00:19:4F:EA:2B:9D:1F:98:50:7F:07:23:C9:51:14:AF:67:29:C5:4B Certificate issuer: /CN=52F21143C125B54D950A82C78B375D1FEFC27145 Certificate serial: 510CB9EC89CB6DF7FA0D667E72F30DFF73A3AE6B Authority key identifier: 52:F2:11:43:C1:25:B5:4D:95:0A:82:C7:8B:37:5D:1F:EF:C2:71:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa Signing time: Mon 07 Jul 2025 04:02:26 +0000 ROA not before: Mon 07 Jul 2025 03:57:26 +0000 ROA not after: Mon 06 Jul 2026 04:02:26 +0000 asID: 151006 IP address blocks: 103.217.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.crl rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0c:b9:ec:89:cb:6d:f7:fa:0d:66:7e:72:f3:0d:ff:73:a3:ae:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52F21143C125B54D950A82C78B375D1FEFC27145 Validity Not Before: Jul 7 03:57:26 2025 GMT Not After : Jul 6 04:02:26 2026 GMT Subject: CN=00194FEA2B9D1F98507F0723C95114AF6729C54B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:92:56:96:49:6e:94:c6:59:41:b0:e6:80:56: 75:3b:22:ee:0f:58:3f:23:f0:b2:8e:bd:71:9a:a9: 87:f3:1a:81:08:16:e2:5b:e8:a9:c3:0a:52:73:3f: 77:3f:d2:9e:97:36:cf:34:60:0e:3a:6f:78:9a:21: 69:ed:49:bb:d7:09:1e:84:7a:12:a2:ec:c2:67:73: a8:a4:64:8a:7e:c2:8f:d4:82:d1:9e:e7:f9:eb:cb: 43:d9:16:9b:7d:b3:1c:93:15:43:97:99:27:b4:22: ad:d1:10:70:7d:c1:97:de:81:35:5c:cd:9c:da:69: 16:62:c7:85:fa:f8:62:b7:d7:2c:ca:f2:cc:bf:eb: 1d:40:39:f0:fd:e0:d2:55:7a:f9:cc:2b:b3:74:b8: 78:b3:86:e1:0e:ce:20:76:47:d6:f8:9b:56:46:3e: fa:16:17:10:36:27:a7:25:7b:52:d9:e1:fc:b6:d2: b2:1d:12:97:43:38:4f:96:65:d9:a9:66:76:25:fb: b6:b5:e3:a0:2d:15:4f:42:15:e2:c0:0e:21:58:c5: 18:8b:ba:91:81:5a:b1:54:55:85:c2:86:0d:bc:e3: fd:a2:19:43:28:c5:3d:cf:ff:49:01:aa:8f:4f:3f: 72:1f:0d:18:65:98:be:fd:45:8c:44:75:2e:49:96: 17:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:19:4F:EA:2B:9D:1F:98:50:7F:07:23:C9:51:14:AF:67:29:C5:4B X509v3 Authority Key Identifier: keyid:52:F2:11:43:C1:25:B5:4D:95:0A:82:C7:8B:37:5D:1F:EF:C2:71:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.224.0/24 Signature Algorithm: sha256WithRSAEncryption 39:53:0b:f3:aa:ae:92:94:7a:2f:fd:15:c9:33:d4:69:36:55: 70:93:f2:d0:38:a3:ce:75:20:f8:e9:8b:ee:d8:78:93:b9:a8: df:e4:e5:b6:31:ec:8b:f4:4b:10:ef:f9:99:19:58:5c:a4:aa: 6d:1d:27:f7:80:e2:fa:f5:fe:48:20:aa:39:2a:1e:27:b2:2a: a7:9c:5a:6b:49:a4:91:d3:97:57:0a:04:65:32:c4:e6:d2:a2: 9b:d2:43:67:86:54:58:6b:4b:e0:8c:01:c6:da:50:34:36:3b: a5:b0:ed:48:35:e8:70:e1:c2:4d:99:75:a3:d6:06:f6:77:49: 53:f5:b5:39:17:fe:bc:b7:e1:37:60:6e:e7:66:a5:98:f3:44: b9:7f:19:31:48:e7:b4:44:4d:3e:12:c2:3a:3a:c9:34:43:25: c7:fc:c3:89:78:d7:35:b2:0a:67:3d:f5:11:79:b3:a6:b0:20: 1a:ab:e3:71:b3:e6:af:ab:f3:22:9a:cb:ba:83:d8:cd:5c:79: c6:d7:87:fe:17:b4:68:5b:a5:63:c8:d6:74:17:33:f1:f5:c5: 89:41:72:68:e7:0c:b3:4a:49:60:2f:d6:3d:39:54:6a:f4:fa: 3e:72:d2:01:a2:d6:32:71:11:c5:4a:43:59:4d:03:84:b2:08: 5f:6b:6c:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUQy57InLbff6DWZ+cvMN/3OjrmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJGMjExNDNDMTI1QjU0RDk1MEE4MkM3OEIzNzVEMUZF RkMyNzE0NTAeFw0yNTA3MDcwMzU3MjZaFw0yNjA3MDYwNDAyMjZaMDMxMTAvBgNV BAMTKDAwMTk0RkVBMkI5RDFGOTg1MDdGMDcyM0M5NTExNEFGNjcyOUM1NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+klaWSW6UxllBsOaAVnU7Iu4P WD8j8LKOvXGaqYfzGoEIFuJb6KnDClJzP3c/0p6XNs80YA46b3iaIWntSbvXCR6E ehKi7MJnc6ikZIp+wo/UgtGe5/nry0PZFpt9sxyTFUOXmSe0Iq3REHB9wZfegTVc zZzaaRZix4X6+GK31yzK8sy/6x1AOfD94NJVevnMK7N0uHizhuEOziB2R9b4m1ZG PvoWFxA2J6cle1LZ4fy20rIdEpdDOE+WZdmpZnYl+7a146AtFU9CFeLADiFYxRiL upGBWrFUVYXChg284/2iGUMoxT3P/0kBqo9PP3IfDRhlmL79RYxEdS5Jlhe/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUABlP6iudH5hQfwcjyVEUr2cpxUswHwYDVR0j BBgwFoAUUvIRQ8EltU2VCoLHizddH+/CcUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZWM1NTNiNi05ZTU3LTQwYmQtOGQ5Ni1hOWZkYWRhZGQ3YmUvMC81MkYyMTE0M0Mx MjVCNTREOTUwQTgyQzc4QjM3NUQxRkVGQzI3MTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJGMjExNDNDMTI1QjU0RDk1MEE4MkM3OEIzNzVEMUZFRkMy NzE0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlYzU1M2I2LTllNTctNDBiZC04 ZDk2LWE5ZmRhZGFkZDdiZS8wLzMxMzAzMzJlMzIzMTM3MmUzMjMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2eAwDQYJ KoZIhvcNAQELBQADggEBADlTC/OqrpKUei/9Fckz1Gk2VXCT8tA4o851IPjpi+7Y eJO5qN/k5bYx7Iv0SxDv+ZkZWFykqm0dJ/eA4vr1/kggqjkqHieyKqecWmtJpJHT l1cKBGUyxObSopvSQ2eGVFhrS+CMAcbaUDQ2O6Ww7Ug16HDhwk2ZdaPWBvZ3SVP1 tTkX/ry34TdgbudmpZjzRLl/GTFI57RETT4Swjo6yTRDJcf8w4l41zWyCmc99RF5 s6awIBqr43Gz5q+r8yKay7qD2M1cecbXh/4XtGhbpWPI1nQXM/H1xYlBcmjnDLNK SWAv1j05VGr0+j5y0gGi1jJxEcVKQ1lNA4SyCF9rbHE= -----END CERTIFICATE-----Generated at Mon Jul 21 19:28:44 2025 by rpki-client