$ rpki-client -vvf repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32342d3234203d3e20313339343031.roa File: 3130332e3134322e3138322e302f32342d3234203d3e20313339343031.roa (raw, json) Hash identifier: ToIgM0jAxY4WS16atQIWn5JwGnfQgFyIoACDw/eMgWU= Subject key identifier: 39:BA:64:4D:28:54:45:3D:D7:A3:91:A6:A3:BE:F8:45:09:18:C9:C5 Certificate issuer: /CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Certificate serial: 24BCA82666F07EF0A0D66B534F3D829B539E285D Authority key identifier: B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32342d3234203d3e20313339343031.roa Signing time: Mon 02 Jun 2025 02:04:28 +0000 ROA not before: Mon 02 Jun 2025 01:59:28 +0000 ROA not after: Mon 01 Jun 2026 02:04:28 +0000 asID: 139401 IP address blocks: 103.142.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bc:a8:26:66:f0:7e:f0:a0:d6:6b:53:4f:3d:82:9b:53:9e:28:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Validity Not Before: Jun 2 01:59:28 2025 GMT Not After : Jun 1 02:04:28 2026 GMT Subject: CN=39BA644D2854453DD7A391A6A3BEF8450918C9C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:69:5d:11:9e:68:68:a7:ce:3b:54:27:26:b2: 69:4e:38:0c:8c:58:93:80:ee:2c:a8:e9:c9:29:51: dd:04:38:1e:52:7c:5f:4a:9a:1c:6c:cd:2e:c3:1c: 93:89:d2:bc:90:fc:2e:a5:47:e3:3d:65:f1:5d:79: 05:e9:ea:f4:e8:37:7f:6d:3d:bb:93:40:33:d1:f7: 4f:90:1a:52:53:b5:f9:87:f2:89:36:e2:cb:b6:a9: bd:b8:8b:77:f1:6d:f8:1f:67:6e:e6:d2:68:3a:09: 39:35:d1:01:37:eb:83:7e:da:ca:fd:6c:a8:28:c8: 4a:35:ce:9c:2b:17:32:cc:66:19:f0:cd:60:30:4f: 7d:14:e0:60:43:67:7b:82:19:8f:5b:95:ea:3e:85: c4:e2:e4:f4:03:67:b9:17:5a:52:67:7f:0f:b8:8b: 94:12:0c:f6:fd:d1:36:24:69:56:17:61:74:4d:58: 3e:51:57:30:bd:2b:e2:f8:9c:41:44:d8:0f:06:52: ef:a5:14:88:6f:c4:0d:57:29:a1:c4:b3:e4:2b:89: b6:71:7b:7f:d0:18:40:7c:06:e8:3e:ee:fc:a4:1a: 00:a7:df:74:59:a0:3b:2b:40:b6:d0:0a:55:43:82: 7e:49:d6:cc:43:73:49:98:e8:d3:33:bb:38:cf:9f: 10:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BA:64:4D:28:54:45:3D:D7:A3:91:A6:A3:BE:F8:45:09:18:C9:C5 X509v3 Authority Key Identifier: keyid:B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/3130332e3134322e3138322e302f32342d3234203d3e20313339343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.182.0/24 Signature Algorithm: sha256WithRSAEncryption 30:cf:53:ec:da:48:eb:5c:35:a4:fc:2f:72:fd:62:68:28:91: eb:40:5f:46:e9:8a:ed:22:96:8e:10:e5:6a:19:89:ce:ae:be: 1b:21:b9:7b:66:d5:f3:2c:32:87:c5:82:7e:4c:c3:4f:72:57: 2d:c2:66:40:e9:91:79:a7:d4:a9:32:2b:cd:10:ef:6e:a2:02: d0:c0:e5:17:91:86:63:b3:51:8a:da:37:01:fd:08:e8:e8:dd: 35:d3:dd:df:87:82:30:34:d0:5a:ea:3e:65:8f:84:92:c8:6a: 8a:f0:0b:e2:46:c1:19:2f:99:b7:ef:d2:bb:4c:2b:d8:db:76: 7d:6a:43:89:fe:3e:88:f0:fd:0e:7a:c2:fa:44:c8:90:51:8b: e3:73:58:8e:d2:ef:e2:76:b5:a8:6f:20:82:ac:6d:d7:e8:e8: 6e:e1:ef:f9:31:e5:3c:0c:9e:bf:05:43:df:7c:a0:46:11:63: 30:f3:13:0f:c2:58:b9:b2:f3:35:d2:72:c2:3e:5d:7f:e8:05: df:b5:88:ec:8b:ed:7f:77:6a:30:bd:0f:d3:e0:9a:bf:61:ac: 08:06:05:66:56:62:e0:04:b2:da:44:23:af:33:7e:01:ec:b3: 2f:5a:43:bf:a2:58:aa:3e:d2:d4:22:0b:1f:b5:d1:2f:b1:7e: 3a:0d:01:f4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJLyoJmbwfvCg1mtTTz2Cm1OeKF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUy ODJEMTRCMDAeFw0yNTA2MDIwMTU5MjhaFw0yNjA2MDEwMjA0MjhaMDMxMTAvBgNV BAMTKDM5QkE2NDREMjg1NDQ1M0REN0EzOTFBNkEzQkVGODQ1MDkxOEM5QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYaV0Rnmhop847VCcmsmlOOAyM WJOA7iyo6ckpUd0EOB5SfF9KmhxszS7DHJOJ0ryQ/C6lR+M9ZfFdeQXp6vToN39t PbuTQDPR90+QGlJTtfmH8ok24su2qb24i3fxbfgfZ27m0mg6CTk10QE364N+2sr9 bKgoyEo1zpwrFzLMZhnwzWAwT30U4GBDZ3uCGY9bleo+hcTi5PQDZ7kXWlJnfw+4 i5QSDPb90TYkaVYXYXRNWD5RVzC9K+L4nEFE2A8GUu+lFIhvxA1XKaHEs+QribZx e3/QGEB8Bug+7vykGgCn33RZoDsrQLbQClVDgn5J1sxDc0mY6NMzuzjPnxDZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUObpkTShURT3Xo5Gmo774RQkYycUwHwYDVR0j BBgwFoAUtl0UYKz8jZEYM4HcZOUtLigtFLAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjZjZjI4ZC1mZmM3LTQzNTEtYThjYi0yNWQxOWZjNDMxNzcvMC9CNjVEMTQ2MEFD RkM4RDkxMTgzMzgxREM2NEU1MkQyRTI4MkQxNEIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUyODJE MTRCMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNmNmMjhkLWZmYzctNDM1MS1h OGNiLTI1ZDE5ZmM0MzE3Ny8wLzMxMzAzMzJlMzEzNDMyMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjrYwDQYJ KoZIhvcNAQELBQADggEBADDPU+zaSOtcNaT8L3L9YmgoketAX0bpiu0ilo4Q5WoZ ic6uvhshuXtm1fMsMofFgn5Mw09yVy3CZkDpkXmn1KkyK80Q726iAtDA5ReRhmOz UYraNwH9COjo3TXT3d+HgjA00FrqPmWPhJLIaorwC+JGwRkvmbfv0rtMK9jbdn1q Q4n+Pojw/Q56wvpEyJBRi+NzWI7S7+J2tahvIIKsbdfo6G7h7/kx5TwMnr8FQ998 oEYRYzDzEw/CWLmy8zXScsI+XX/oBd+1iOyL7X93ajC9D9Pgmr9hrAgGBWZWYuAE stpEI68zfgHssy9aQ7+iWKo+0tQiCx+10S+xfjoNAfQ= -----END CERTIFICATE-----Generated at Sat Jun 7 23:02:28 2025 by rpki-client