$ rpki-client -vvf repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa File: 3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa (raw, json) Hash identifier: qjM6zOskUgB5aVouJZ8bw8PRtPD9BsEaccD1Oe43xX4= Subject key identifier: AC:D4:48:92:3F:FA:40:F8:32:98:79:55:22:10:39:06:BA:1E:42:42 Certificate issuer: /CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796 Certificate serial: 3BB0645F0739A005E7DC15D1A49CD83773FBFAA5 Authority key identifier: 0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa Signing time: Mon 02 Jun 2025 02:04:09 +0000 ROA not before: Mon 02 Jun 2025 01:59:09 +0000 ROA not after: Mon 01 Jun 2026 02:04:09 +0000 asID: 140463 IP address blocks: 103.153.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.crl rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 05:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b0:64:5f:07:39:a0:05:e7:dc:15:d1:a4:9c:d8:37:73:fb:fa:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796 Validity Not Before: Jun 2 01:59:09 2025 GMT Not After : Jun 1 02:04:09 2026 GMT Subject: CN=ACD448923FFA40F83298795522103906BA1E4242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:18:2e:29:62:d3:89:cd:4a:dd:e6:2d:00:98: 70:7b:ab:54:7e:f9:b4:73:c0:b1:68:ec:41:7f:3d: 49:7f:44:cb:4b:07:32:48:85:6f:de:9c:de:a4:40: 79:3b:14:07:f5:27:17:cf:66:06:c5:65:aa:16:6f: 6c:61:94:dd:4b:da:dc:a7:3b:7d:49:29:13:93:77: f8:98:f1:2a:01:7a:80:19:a9:37:dc:3e:ad:99:9b: 46:b7:06:7d:b8:d4:63:4e:2c:e6:1f:7a:86:d2:b2: cd:01:ae:39:7a:f8:f8:99:e2:d6:ff:06:e8:e3:f9: c4:b1:f3:1b:77:d3:0f:0f:0c:35:2a:ee:dd:dc:f2: ae:66:7b:3c:6a:da:72:47:31:be:79:c2:f3:04:8f: 35:f2:13:71:e0:19:c4:ac:ed:d8:67:e3:db:4c:b0: 9e:67:64:ed:03:a3:bc:42:b8:fa:f8:48:b9:9e:14: 99:a2:76:25:46:56:7e:f4:05:64:99:a0:14:f7:13: 77:7f:58:08:55:ee:ae:a0:bb:70:84:f6:ed:86:a6: ea:4e:de:49:34:27:97:19:0d:c0:aa:fa:67:c4:07: a7:b5:8f:91:69:47:86:3d:9f:bb:24:c4:3a:ab:44: e6:a8:de:21:a5:d5:87:9d:4a:16:2d:ac:1a:8e:d6: 2f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D4:48:92:3F:FA:40:F8:32:98:79:55:22:10:39:06:BA:1E:42:42 X509v3 Authority Key Identifier: keyid:0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.131.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:b9:9d:05:5e:e7:9f:6c:4b:f0:ff:66:bb:ed:ed:18:3d:39: 79:3a:8f:6c:aa:2c:c4:fa:52:87:95:9e:bf:e0:a9:02:89:2c: 79:6c:cf:dd:49:eb:38:21:e1:9f:70:c1:ad:8b:57:f2:7c:3d: b6:72:8f:d3:27:a4:4b:2e:4a:59:de:fd:c2:c6:9d:7c:0b:34: 4e:e6:5c:7c:6f:16:81:d4:a3:f8:bf:57:7c:e9:be:e6:e7:99: 2a:8a:e2:69:ce:e2:ca:bb:28:ec:6d:f1:11:a5:36:11:8a:59: 44:cc:1c:7e:94:96:d5:1d:e5:f9:75:0d:ec:cf:a5:ab:68:9a: 05:5c:d5:c3:a0:58:f3:88:1b:9a:20:e9:ee:da:22:17:2c:c5: d0:06:20:79:07:ac:1f:d2:33:f5:42:31:c3:ab:e5:e8:08:12: 82:c8:4b:b4:dc:69:01:22:e2:75:a6:e7:3e:01:9d:37:dc:d2: fe:da:30:5f:ee:9d:49:2b:73:b4:b8:78:91:02:ec:17:64:3c: 88:20:75:f6:81:38:c8:56:e7:9c:51:68:18:82:8a:47:ca:03: d5:c2:33:30:91:50:92:03:50:2c:7a:fd:32:68:99:1a:09:d2: c5:a9:1b:c1:42:f4:c0:b5:f0:ab:08:3f:22:ab:67:66:6d:07: 08:08:41:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO7BkXwc5oAXn3BXRpJzYN3P7+qUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExREU2RkQ4OEJCOUVGNEUzNDlDMTc3NERBOTI2RTQy MzI2NDc5NjAeFw0yNTA2MDIwMTU5MDlaFw0yNjA2MDEwMjA0MDlaMDMxMTAvBgNV BAMTKEFDRDQ0ODkyM0ZGQTQwRjgzMjk4Nzk1NTIyMTAzOTA2QkExRTQyNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfGC4pYtOJzUrd5i0AmHB7q1R+ +bRzwLFo7EF/PUl/RMtLBzJIhW/enN6kQHk7FAf1JxfPZgbFZaoWb2xhlN1L2tyn O31JKROTd/iY8SoBeoAZqTfcPq2Zm0a3Bn241GNOLOYfeobSss0Brjl6+PiZ4tb/ Bujj+cSx8xt30w8PDDUq7t3c8q5mezxq2nJHMb55wvMEjzXyE3HgGcSs7dhn49tM sJ5nZO0Do7xCuPr4SLmeFJmidiVGVn70BWSZoBT3E3d/WAhV7q6gu3CE9u2GpupO 3kk0J5cZDcCq+mfEB6e1j5FpR4Y9n7skxDqrROao3iGl1YedShYtrBqO1i93AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrNRIkj/6QPgymHlVIhA5BroeQkIwHwYDVR0j BBgwFoAUCh3m/Yi7nvTjScF3Takm5CMmR5YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTFlMGJkNy0yODFhLTRlYmEtYjk4Yy04MjkzOTMyN2RkZDcvMC8wQTFERTZGRDg4 QkI5RUY0RTM0OUMxNzc0REE5MjZFNDIzMjY0Nzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEExREU2RkQ4OEJCOUVGNEUzNDlDMTc3NERBOTI2RTQyMzI2 NDc5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhMWUwYmQ3LTI4MWEtNGViYS1i OThjLTgyOTM5MzI3ZGRkNy8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmYMwDQYJ KoZIhvcNAQELBQADggEBAFy5nQVe559sS/D/Zrvt7Rg9OXk6j2yqLMT6UoeVnr/g qQKJLHlsz91J6zgh4Z9wwa2LV/J8PbZyj9MnpEsuSlne/cLGnXwLNE7mXHxvFoHU o/i/V3zpvubnmSqK4mnO4sq7KOxt8RGlNhGKWUTMHH6UltUd5fl1DezPpatomgVc 1cOgWPOIG5og6e7aIhcsxdAGIHkHrB/SM/VCMcOr5egIEoLIS7TcaQEi4nWm5z4B nTfc0v7aMF/unUkrc7S4eJEC7BdkPIggdfaBOMhW55xRaBiCikfKA9XCMzCRUJID UCx6/TJomRoJ0sWpG8FC9MC18KsIPyKrZ2ZtBwgIQf4= -----END CERTIFICATE-----Generated at Wed Jul 23 12:01:43 2025 by rpki-client