$ rpki-client -vvf repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa File: 3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: Ho5Y5TOHX49gl1fZYVO+j2M3OjYa1AKAk+KnhAmd/6M= Subject key identifier: AC:9F:4D:C5:B5:31:66:32:CA:4F:63:15:E6:47:CA:7B:81:12:BD:45 Certificate issuer: /CN=8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0 Certificate serial: 6B06C9D61AF8C7E432154B212D8986E85BFEB039 Authority key identifier: 8C:57:C5:86:0B:F9:38:BB:57:E0:B7:ED:0F:89:0D:70:BF:EE:55:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa Signing time: Wed 21 May 2025 08:00:02 +0000 ROA not before: Wed 21 May 2025 07:55:02 +0000 ROA not after: Wed 20 May 2026 08:00:02 +0000 asID: 131111 IP address blocks: 103.159.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.crl rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:06:c9:d6:1a:f8:c7:e4:32:15:4b:21:2d:89:86:e8:5b:fe:b0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0 Validity Not Before: May 21 07:55:02 2025 GMT Not After : May 20 08:00:02 2026 GMT Subject: CN=AC9F4DC5B5316632CA4F6315E647CA7B8112BD45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:27:78:20:4c:ee:f1:8d:11:c9:23:0c:d6: 15:38:d9:f6:98:d6:f8:cd:c2:b0:ff:36:e9:d1:8f: c2:a7:45:5e:75:54:7d:c8:3a:a3:96:bf:4a:e1:58: ef:18:2e:8e:37:f6:e0:32:26:53:2e:65:14:f6:3c: 0b:f4:e8:d5:40:37:e1:d7:be:60:89:55:23:69:36: 97:bf:ee:d7:83:7b:54:9d:ff:70:c8:ff:1d:8a:74: dd:c6:a2:8c:88:e8:5c:de:ed:bf:3d:d9:d3:3a:7e: 83:99:c4:ce:29:39:c5:30:d9:f4:68:4d:2c:ac:bd: 5c:26:15:46:08:4c:aa:ec:0c:e2:5e:b7:15:9f:69: 64:9e:10:d3:53:42:2a:c4:3e:28:08:63:66:20:c6: 52:68:60:c0:85:66:7f:a0:92:51:c7:63:09:8b:ae: 92:67:c9:3c:99:89:0b:f4:38:70:ad:86:9d:8e:e8: 41:bf:07:8a:cd:43:89:ec:f7:dc:78:b1:cb:83:46: 02:41:6a:d4:2c:7d:97:62:4b:5c:21:1b:6a:1b:53: 29:04:d6:b0:bc:ae:a2:65:b5:ac:cb:ec:26:8a:f9: 32:c5:1f:6d:5b:75:18:8f:b8:71:f2:a1:21:6c:2a: 32:cc:f0:78:fc:3a:a4:d9:ac:39:63:b4:1d:d1:9d: c8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:9F:4D:C5:B5:31:66:32:CA:4F:63:15:E6:47:CA:7B:81:12:BD:45 X509v3 Authority Key Identifier: keyid:8C:57:C5:86:0B:F9:38:BB:57:E0:B7:ED:0F:89:0D:70:BF:EE:55:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.202.0/23 Signature Algorithm: sha256WithRSAEncryption 49:fa:ea:8d:2b:6f:3d:14:5e:36:10:2a:54:1f:73:17:33:72: 8c:1d:de:26:29:f4:e2:82:ec:f9:e0:13:25:bf:60:76:84:73: 78:df:6d:94:e3:ba:f3:cc:de:48:62:1f:ad:3e:8b:51:79:cb: 59:43:fe:6f:04:16:8e:b0:7e:82:59:59:0f:29:21:ba:3a:44: b6:4e:c2:91:74:b1:0d:66:6b:7a:19:c7:18:89:e2:e7:53:5e: 37:b0:3a:91:ca:71:7f:e4:8d:55:d4:9c:0f:34:20:db:87:6d: b2:ea:05:4e:73:6a:f3:95:ac:6f:35:e1:cf:89:c3:f6:48:a6: dd:2e:a6:25:5e:39:78:c5:13:2c:4c:08:1b:32:f9:b5:25:db: 58:c8:82:c9:bb:51:ba:2c:eb:0c:32:63:d8:3f:3c:26:c5:48: 4c:0a:ec:55:84:11:ba:0b:85:fc:b9:c9:a9:fb:35:05:2a:39: da:69:64:d8:a7:65:b7:3d:28:96:54:30:cc:dc:40:1d:e2:9b: 17:f7:71:54:18:b9:55:72:80:87:fb:52:c7:7b:6c:fc:3f:b4: 3e:da:19:2d:77:2c:d5:98:18:45:36:39:b2:9f:de:c3:de:24: fb:c9:41:65:78:c8:c0:be:a7:45:7c:56:9f:40:d2:20:73:3c: df:76:c6:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUawbJ1hr4x+QyFUshLYmG6Fv+sDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1N0M1ODYwQkY5MzhCQjU3RTBCN0VEMEY4OTBENzBC RkVFNTVBMDAeFw0yNTA1MjEwNzU1MDJaFw0yNjA1MjAwODAwMDJaMDMxMTAvBgNV BAMTKEFDOUY0REM1QjUzMTY2MzJDQTRGNjMxNUU2NDdDQTdCODExMkJENDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxxyd4IEzu8Y0RySMM1hU42faY 1vjNwrD/NunRj8KnRV51VH3IOqOWv0rhWO8YLo439uAyJlMuZRT2PAv06NVAN+HX vmCJVSNpNpe/7teDe1Sd/3DI/x2KdN3GooyI6Fze7b892dM6foOZxM4pOcUw2fRo TSysvVwmFUYITKrsDOJetxWfaWSeENNTQirEPigIY2YgxlJoYMCFZn+gklHHYwmL rpJnyTyZiQv0OHCthp2O6EG/B4rNQ4ns99x4scuDRgJBatQsfZdiS1whG2obUykE 1rC8rqJltazL7CaK+TLFH21bdRiPuHHyoSFsKjLM8Hj8OqTZrDljtB3RncjVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrJ9NxbUxZjLKT2MV5kfKe4ESvUUwHwYDVR0j BBgwFoAUjFfFhgv5OLtX4LftD4kNcL/uVaAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjkxM2ZhMS0zM2FlLTRlMzMtYmJlMi04MWJkOWYwM2M4NGIvMC84QzU3QzU4NjBC RjkzOEJCNTdFMEI3RUQwRjg5MEQ3MEJGRUU1NUEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1N0M1ODYwQkY5MzhCQjU3RTBCN0VEMEY4OTBENzBCRkVF NTVBMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyOTEzZmExLTMzYWUtNGUzMy1i YmUyLTgxYmQ5ZjAzYzg0Yi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8owDQYJ KoZIhvcNAQELBQADggEBAEn66o0rbz0UXjYQKlQfcxczcowd3iYp9OKC7PngEyW/ YHaEc3jfbZTjuvPM3khiH60+i1F5y1lD/m8EFo6wfoJZWQ8pIbo6RLZOwpF0sQ1m a3oZxxiJ4udTXjewOpHKcX/kjVXUnA80INuHbbLqBU5zavOVrG814c+Jw/ZIpt0u piVeOXjFEyxMCBsy+bUl21jIgsm7Ubos6wwyY9g/PCbFSEwK7FWEEboLhfy5yan7 NQUqOdppZNinZbc9KJZUMMzcQB3imxf3cVQYuVVygIf7Usd7bPw/tD7aGS13LNWY GEU2ObKf3sPeJPvJQWV4yMC+p0V8Vp9A0iBzPN92xs4= -----END CERTIFICATE-----Generated at Thu Jun 5 19:03:07 2025 by rpki-client