$ rpki-client -vvf repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa File: 3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa (raw, json) Hash identifier: g2j4L6oa7s+Yo5r0t0sgHCPdhAYOBJ4LtHuSFZmj5UA= Subject key identifier: 9E:B8:98:F4:2F:5C:ED:03:A2:B1:24:F2:51:E0:F1:E1:0B:9A:C9:10 Certificate issuer: /CN=2140359E23DF113617F9AB2E131D231E4D35F9AA Certificate serial: 64E12AD6A42258FDD1EFE14C7208B01C26EBACAF Authority key identifier: 21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa Signing time: Mon 02 Jun 2025 02:03:25 +0000 ROA not before: Mon 02 Jun 2025 01:58:25 +0000 ROA not after: Mon 01 Jun 2026 02:03:25 +0000 asID: 55674 IP address blocks: 101.203.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.crl rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e1:2a:d6:a4:22:58:fd:d1:ef:e1:4c:72:08:b0:1c:26:eb:ac:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2140359E23DF113617F9AB2E131D231E4D35F9AA Validity Not Before: Jun 2 01:58:25 2025 GMT Not After : Jun 1 02:03:25 2026 GMT Subject: CN=9EB898F42F5CED03A2B124F251E0F1E10B9AC910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d9:f0:bd:95:e4:87:6b:fd:df:9e:c6:3c:e7: 7b:6d:60:3a:ef:0f:8b:c4:28:c8:ec:d5:7b:2e:70: 25:e9:dc:a3:d5:3a:c2:c3:ac:36:9c:83:09:bb:c8: 3f:35:8b:8c:c4:9b:4c:ec:9b:60:7c:da:33:ac:93: 69:2c:1c:2f:4b:8e:ab:56:97:9f:2d:d1:1e:1f:fe: 65:23:87:4b:a2:0b:8d:c6:57:b0:1f:97:9e:1f:45: 32:2c:7b:4e:d5:ea:74:c8:ff:0f:3e:f8:f8:2f:20: 17:32:58:ca:4f:73:48:b0:34:67:fd:37:56:67:54: 02:1b:16:8c:11:09:a2:f0:99:4d:18:35:26:78:da: b1:78:45:d1:f2:a6:27:96:f2:77:6d:07:0d:bd:9a: 2e:d0:e2:50:40:39:aa:a7:cb:78:d4:a9:a9:de:1b: a5:6b:9f:66:72:a2:8e:82:42:d5:67:cd:14:12:cc: 81:ca:9f:ab:db:1f:50:6a:4c:01:78:4b:eb:9d:a8: c6:e8:ab:a5:fd:04:9e:28:74:01:de:32:eb:94:9c: 60:18:1d:02:28:59:4e:d3:de:2c:20:2f:dc:5e:e6: d5:83:b9:bf:1e:d9:ad:c3:d4:19:2c:e4:67:0d:37: 3b:46:1e:43:dd:15:5a:6f:8a:c8:e9:d9:de:42:b4: ac:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B8:98:F4:2F:5C:ED:03:A2:B1:24:F2:51:E0:F1:E1:0B:9A:C9:10 X509v3 Authority Key Identifier: keyid:21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.203.168.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:9e:f2:59:07:52:7e:13:df:99:2c:b4:2b:74:76:d3:2b:30: 14:a3:0e:26:c2:3a:f1:fc:6a:81:e0:6a:97:bc:59:96:b8:30: bd:41:47:d5:c6:74:3c:6c:72:89:c8:9a:26:ef:17:69:84:e0: df:8b:f2:06:b3:2c:20:2d:9e:e5:1b:2f:c3:91:f9:4c:cd:4e: 42:d7:f7:68:72:7c:41:c2:44:98:30:cc:a8:15:6f:2a:e1:62: 10:d2:0e:65:dd:88:db:cd:5b:39:1e:9a:45:47:b4:48:5b:eb: 93:8a:3a:26:de:68:e1:e2:d3:8a:24:de:d9:e0:cd:0c:34:fd: af:f5:86:b1:ee:bc:e5:c9:13:ce:fb:f4:1e:ef:77:57:3a:96: 90:f4:32:22:47:52:42:bf:62:7d:34:79:a0:14:76:ad:fc:59: 64:12:94:46:e5:b2:50:e6:8d:16:37:9d:13:a8:a3:e3:86:e9: e5:0b:43:ae:ac:c6:8f:b7:a4:35:70:90:40:7f:19:29:89:fd: 89:eb:f7:ed:f7:83:1b:9a:fc:3c:37:e7:6b:d8:a2:fa:e2:d1: be:53:ab:8b:46:f5:55:da:a4:73:f8:39:62:c9:7e:af:5d:1a: 82:1c:2e:b5:f6:e3:4f:bd:57:cb:33:5c:fe:0e:d7:27:61:d8: b7:ac:37:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZOEq1qQiWP3R7+FMcgiwHCbrrK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0MDM1OUUyM0RGMTEzNjE3RjlBQjJFMTMxRDIzMUU0 RDM1RjlBQTAeFw0yNTA2MDIwMTU4MjVaFw0yNjA2MDEwMjAzMjVaMDMxMTAvBgNV BAMTKDlFQjg5OEY0MkY1Q0VEMDNBMkIxMjRGMjUxRTBGMUUxMEI5QUM5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi2fC9leSHa/3fnsY853ttYDrv D4vEKMjs1XsucCXp3KPVOsLDrDacgwm7yD81i4zEm0zsm2B82jOsk2ksHC9LjqtW l58t0R4f/mUjh0uiC43GV7Afl54fRTIse07V6nTI/w8++PgvIBcyWMpPc0iwNGf9 N1ZnVAIbFowRCaLwmU0YNSZ42rF4RdHypieW8ndtBw29mi7Q4lBAOaqny3jUqane G6Vrn2Zyoo6CQtVnzRQSzIHKn6vbH1BqTAF4S+udqMboq6X9BJ4odAHeMuuUnGAY HQIoWU7T3iwgL9xe5tWDub8e2a3D1Bks5GcNNztGHkPdFVpvisjp2d5CtKwNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnriY9C9c7QOisSTyUeDx4QuayRAwHwYDVR0j BBgwFoAUIUA1niPfETYX+asuEx0jHk01+aowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTgwZjc1NS01YzI3LTQwZjgtODBhZi0yZmE4ZGYxMTUyODIvMC8yMTQwMzU5RTIz REYxMTM2MTdGOUFCMkUxMzFEMjMxRTREMzVGOUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0MDM1OUUyM0RGMTEzNjE3RjlBQjJFMTMxRDIzMUU0RDM1 RjlBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxODBmNzU1LTVjMjctNDBmOC04 MGFmLTJmYThkZjExNTI4Mi8wLzMxMzAzMTJlMzIzMDMzMmUzMTM2MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZcuoMA0GCSqG SIb3DQEBCwUAA4IBAQArnvJZB1J+E9+ZLLQrdHbTKzAUow4mwjrx/GqB4GqXvFmW uDC9QUfVxnQ8bHKJyJom7xdphODfi/IGsywgLZ7lGy/DkflMzU5C1/docnxBwkSY MMyoFW8q4WIQ0g5l3YjbzVs5HppFR7RIW+uTijom3mjh4tOKJN7Z4M0MNP2v9Yax 7rzlyRPO+/Qe73dXOpaQ9DIiR1JCv2J9NHmgFHat/FlkEpRG5bJQ5o0WN50TqKPj hunlC0OurMaPt6Q1cJBAfxkpif2J6/ft94Mbmvw8N+dr2KL64tG+U6uLRvVV2qRz +DliyX6vXRqCHC619uNPvVfLM1z+DtcnYdi3rDdr -----END CERTIFICATE-----Generated at Thu Jun 5 19:00:13 2025 by rpki-client