$ rpki-client -vvf repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32332d3233203d3e20313339343031.roa File: 3130332e3134322e3138322e302f32332d3233203d3e20313339343031.roa (raw, json) Hash identifier: nDJsXQF4hqhJpcR0lg3wt+EWX7mJLFJQ/flot1hEV/U= Subject key identifier: 99:8B:70:97:E5:7D:22:7F:BF:78:55:BC:07:14:6A:31:F7:01:21:33 Certificate issuer: /CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Certificate serial: 3CFE5D87FBE2285688211C6E8049521B34A58D65 Authority key identifier: B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32332d3233203d3e20313339343031.roa Signing time: Mon 02 Jun 2025 02:04:28 +0000 ROA not before: Mon 02 Jun 2025 01:59:28 +0000 ROA not after: Mon 01 Jun 2026 02:04:28 +0000 asID: 139401 IP address blocks: 103.142.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fe:5d:87:fb:e2:28:56:88:21:1c:6e:80:49:52:1b:34:a5:8d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Validity Not Before: Jun 2 01:59:28 2025 GMT Not After : Jun 1 02:04:28 2026 GMT Subject: CN=998B7097E57D227FBF7855BC07146A31F7012133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:69:b5:12:10:4e:2f:22:66:0b:bf:df:b6: c7:b3:3d:8d:e3:01:bf:b4:48:1e:92:e3:dc:b6:02: d2:90:0b:23:25:cb:ee:fc:b6:9b:cf:b3:4b:f1:6c: 0f:78:8e:ff:98:59:0a:55:0c:66:1d:7d:27:35:45: 61:d4:82:61:a7:19:69:26:8c:ab:49:af:19:b0:ab: 58:36:73:96:71:25:da:4e:a1:ff:98:ba:fa:80:6b: 60:5a:ce:a7:7c:87:a8:c0:5a:b6:d3:d6:d3:2b:eb: 13:1d:f0:e6:7b:d6:a3:0b:32:3e:ce:43:fa:d2:e2: f8:9f:ef:f4:d1:e2:ab:34:78:13:c2:14:d8:52:6f: de:7d:08:fc:5b:62:66:5b:a9:d9:22:18:50:f0:d7: 53:2f:07:66:68:16:03:ec:e7:59:ee:e8:14:cb:fd: ba:34:d0:e5:27:8f:0b:36:72:ae:b4:0f:ca:9f:78: f0:7e:48:4d:ef:1f:8c:07:fa:61:e4:a3:89:dd:01: df:44:8c:8d:4c:2e:57:28:e8:ea:f8:4f:06:80:ae: 11:66:83:35:5e:03:66:d9:c0:09:c1:65:89:d1:fc: b8:05:92:61:eb:c7:f2:7c:be:69:6e:13:5d:74:3e: 4e:16:89:59:60:cd:49:de:b0:9d:5a:13:65:e1:6c: 26:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8B:70:97:E5:7D:22:7F:BF:78:55:BC:07:14:6A:31:F7:01:21:33 X509v3 Authority Key Identifier: keyid:B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32332d3233203d3e20313339343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.182.0/23 Signature Algorithm: sha256WithRSAEncryption a2:1f:9a:68:69:ef:55:73:59:8c:8d:5d:7a:40:e9:17:63:24: 51:d4:96:79:54:30:f8:5a:d4:58:99:33:99:b1:e3:82:f3:21: 9f:49:d8:49:5b:7a:ce:41:98:2a:08:13:18:2c:4b:3f:1f:26: f1:b0:e1:b5:a4:2a:4d:56:dc:94:69:b0:0c:fd:e9:6e:b9:1e: a1:ea:e2:74:99:ce:aa:93:35:5e:b7:a3:47:1c:3b:24:39:29: 0d:05:f1:f1:ce:75:81:bf:0d:ce:0d:f0:71:ea:75:b7:46:b6: b4:db:23:71:07:71:64:0f:10:cf:e4:6e:1a:b1:56:43:3e:fd: 8d:3c:82:c6:78:4a:5e:27:98:88:93:45:3e:82:9c:b6:02:b2: 43:d4:ba:c9:5c:e2:ff:0c:53:bf:ad:5f:ce:07:d0:8e:75:b2: 84:91:a3:05:34:68:a7:62:0d:ad:57:26:78:36:e2:97:bb:de: 7d:ba:c8:d2:b4:ce:40:5c:47:f4:b6:c5:81:5e:db:bf:15:3c: 1d:c3:4e:a2:5e:7f:97:3f:a7:52:6d:ae:38:e7:94:c1:e2:fd: b2:02:b1:be:ec:45:ff:31:a5:91:8f:e6:9c:f3:dd:2a:50:48: 9a:4e:51:78:db:92:8b:f8:01:17:9c:5c:aa:26:d9:07:28:4d: e0:50:10:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPP5dh/viKFaIIRxugElSGzSljWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUy ODJEMTRCMDAeFw0yNTA2MDIwMTU5MjhaFw0yNjA2MDEwMjA0MjhaMDMxMTAvBgNV BAMTKDk5OEI3MDk3RTU3RDIyN0ZCRjc4NTVCQzA3MTQ2QTMxRjcwMTIxMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXmm1EhBOLyJmC7/ftsezPY3j Ab+0SB6S49y2AtKQCyMly+78tpvPs0vxbA94jv+YWQpVDGYdfSc1RWHUgmGnGWkm jKtJrxmwq1g2c5ZxJdpOof+YuvqAa2Bazqd8h6jAWrbT1tMr6xMd8OZ71qMLMj7O Q/rS4vif7/TR4qs0eBPCFNhSb959CPxbYmZbqdkiGFDw11MvB2ZoFgPs51nu6BTL /bo00OUnjws2cq60D8qfePB+SE3vH4wH+mHko4ndAd9EjI1MLlco6Or4TwaArhFm gzVeA2bZwAnBZYnR/LgFkmHrx/J8vmluE110Pk4WiVlgzUnesJ1aE2XhbCaXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmYtwl+V9In+/eFW8BxRqMfcBITMwHwYDVR0j BBgwFoAUtl0UYKz8jZEYM4HcZOUtLigtFLAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjZjZjI4ZC1mZmM3LTQzNTEtYThjYi0yNWQxOWZjNDMxNzcvMC9CNjVEMTQ2MEFD RkM4RDkxMTgzMzgxREM2NEU1MkQyRTI4MkQxNEIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUyODJE MTRCMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNmNmMjhkLWZmYzctNDM1MS1h OGNiLTI1ZDE5ZmM0MzE3Ny8wLzMxMzAzMzJlMzEzNDMyMmUzMTM4MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjrYwDQYJ KoZIhvcNAQELBQADggEBAKIfmmhp71VzWYyNXXpA6RdjJFHUlnlUMPha1FiZM5mx 44LzIZ9J2Elbes5BmCoIExgsSz8fJvGw4bWkKk1W3JRpsAz96W65HqHq4nSZzqqT NV63o0ccOyQ5KQ0F8fHOdYG/Dc4N8HHqdbdGtrTbI3EHcWQPEM/kbhqxVkM+/Y08 gsZ4Sl4nmIiTRT6CnLYCskPUuslc4v8MU7+tX84H0I51soSRowU0aKdiDa1XJng2 4pe73n26yNK0zkBcR/S2xYFe278VPB3DTqJef5c/p1JtrjjnlMHi/bICsb7sRf8x pZGP5pzz3SpQSJpOUXjbkov4ARecXKom2QcoTeBQEGg= -----END CERTIFICATE-----Generated at Sat Jun 7 05:52:00 2025 by rpki-client