$ rpki-client -vvf repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa File: 3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa (raw, json) Hash identifier: hCqKQAmBft8A8taUBcT8sOYve7SjkWXpgzjj9NA6B/s= Subject key identifier: 15:F4:68:98:6F:48:E9:CD:B6:11:CD:4E:34:F7:82:57:90:F6:C1:4A Certificate issuer: /CN=E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4 Certificate serial: 7F7976112F039F71CA4A894AABF40B2B5AF0D4E4 Authority key identifier: E7:DC:BB:5E:91:2C:56:AB:C8:9C:BB:C8:FA:42:B5:E6:3D:15:2A:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa Signing time: Mon 02 Jun 2025 01:02:26 +0000 ROA not before: Mon 02 Jun 2025 00:57:26 +0000 ROA not after: Mon 01 Jun 2026 01:02:26 +0000 asID: 138864 IP address blocks: 103.139.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.crl rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:79:76:11:2f:03:9f:71:ca:4a:89:4a:ab:f4:0b:2b:5a:f0:d4:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4 Validity Not Before: Jun 2 00:57:26 2025 GMT Not After : Jun 1 01:02:26 2026 GMT Subject: CN=15F468986F48E9CDB611CD4E34F7825790F6C14A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:11:6c:84:88:ca:d1:b0:06:2e:63:d7:7d: a6:9b:49:70:29:a0:d9:7c:60:78:5d:b7:96:53:70: 17:15:78:d2:82:8f:bf:fe:55:8b:3f:ae:0e:5d:72: 78:dd:b4:b6:46:76:24:b2:84:b3:2a:f6:2a:a6:ca: c4:ae:fd:7e:12:dc:22:16:cd:00:e4:3f:4e:ac:b6: 35:24:6f:ac:33:62:a3:20:de:68:d8:ec:9d:b2:f7: 3a:34:c4:d8:d2:5a:a2:19:b2:08:7c:36:9a:26:ca: c6:ef:49:b6:2b:ec:80:f6:44:e0:88:f2:5f:c1:bd: cf:4e:32:81:36:ef:64:bb:16:22:90:39:63:28:d8: 2c:ea:fe:49:41:71:0e:62:a3:fa:86:16:25:82:4b: b0:37:1c:fc:0a:fb:ad:94:f8:f5:4b:5a:1d:e3:d3: d5:5f:d9:05:07:04:fd:38:9a:6a:00:7a:d5:06:7c: 6d:b5:0a:7a:a2:29:47:bb:34:cc:31:d3:bf:41:29: b0:3e:6d:fd:6c:9b:4d:91:5f:8d:6f:95:12:51:1c: 4a:5e:a9:ff:27:09:29:c3:aa:bb:72:31:2b:cc:07: cd:00:17:a8:3f:6e:8d:22:29:1a:62:3d:d7:b0:b6: ee:8d:66:6b:e0:e6:3f:50:70:36:01:4b:68:88:47: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F4:68:98:6F:48:E9:CD:B6:11:CD:4E:34:F7:82:57:90:F6:C1:4A X509v3 Authority Key Identifier: keyid:E7:DC:BB:5E:91:2C:56:AB:C8:9C:BB:C8:FA:42:B5:E6:3D:15:2A:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.186.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:15:1f:b8:11:19:12:13:45:b0:2e:22:97:b9:48:dc:59:a0: e8:28:59:fc:49:58:3f:f1:8f:d4:2a:04:63:2c:1b:3a:9e:a8: e0:f8:93:9c:52:f2:3a:24:96:e6:94:3b:db:f7:83:2c:f7:3b: 08:38:9b:ce:5b:dc:c3:47:ad:27:d9:eb:c7:16:4b:37:fa:52: e1:9a:78:cb:38:2b:a1:bd:d5:07:25:f4:d6:88:fa:31:e5:67: f8:91:c3:b0:6c:e8:6e:b4:d3:96:f4:93:06:43:11:c0:43:d8: 16:b9:07:df:8f:8c:e2:17:fd:9d:48:ce:48:ee:a8:b6:1a:b3: a3:5a:0c:d8:81:8b:38:81:97:28:ba:04:de:f9:c1:45:80:ab: c2:60:9f:14:60:6d:f3:40:14:97:bc:b6:84:4f:3a:fd:1c:79: 12:e4:c4:10:fe:0f:c2:c7:f8:4c:94:ab:7d:1b:ef:64:cc:52: 94:86:c4:92:ef:4b:b6:8e:84:cd:0d:f8:29:81:6a:85:51:70: 97:bf:58:03:f3:5f:49:2e:83:35:af:d5:2b:56:42:dd:8b:fb: f8:28:c2:14:00:db:74:b9:ee:db:09:80:e2:63:b1:f8:45:f8: c2:f0:e9:41:a8:30:3d:a6:f6:7f:b2:1d:0f:53:7d:fe:62:61: cd:40:da:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf3l2ES8Dn3HKSolKq/QLK1rw1OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEQ0JCNUU5MTJDNTZBQkM4OUNCQkM4RkE0MkI1RTYz RDE1MkFGNDAeFw0yNTA2MDIwMDU3MjZaFw0yNjA2MDEwMTAyMjZaMDMxMTAvBgNV BAMTKDE1RjQ2ODk4NkY0OEU5Q0RCNjExQ0Q0RTM0Rjc4MjU3OTBGNkMxNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQMxFshIjK0bAGLmPXfaabSXAp oNl8YHhdt5ZTcBcVeNKCj7/+VYs/rg5dcnjdtLZGdiSyhLMq9iqmysSu/X4S3CIW zQDkP06stjUkb6wzYqMg3mjY7J2y9zo0xNjSWqIZsgh8NpomysbvSbYr7ID2ROCI 8l/Bvc9OMoE272S7FiKQOWMo2Czq/klBcQ5io/qGFiWCS7A3HPwK+62U+PVLWh3j 09Vf2QUHBP04mmoAetUGfG21CnqiKUe7NMwx079BKbA+bf1sm02RX41vlRJRHEpe qf8nCSnDqrtyMSvMB80AF6g/bo0iKRpiPdewtu6NZmvg5j9QcDYBS2iIRxmZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFfRomG9I6c22Ec1ONPeCV5D2wUowHwYDVR0j BBgwFoAU59y7XpEsVqvInLvI+kK15j0VKvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDM1OGIwMC0zMWNkLTQxYTMtOTUzNi1kYmIxOTNlN2Y0ZDAvMC9FN0RDQkI1RTkx MkM1NkFCQzg5Q0JCQzhGQTQyQjVFNjNEMTUyQUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEQ0JCNUU5MTJDNTZBQkM4OUNCQkM4RkE0MkI1RTYzRDE1 MkFGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MzU4YjAwLTMxY2QtNDFhMy05 NTM2LWRiYjE5M2U3ZjRkMC8wLzMxMzAzMzJlMzEzMzM5MmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni7owDQYJ KoZIhvcNAQELBQADggEBAC8VH7gRGRITRbAuIpe5SNxZoOgoWfxJWD/xj9QqBGMs GzqeqOD4k5xS8jokluaUO9v3gyz3Owg4m85b3MNHrSfZ68cWSzf6UuGaeMs4K6G9 1Qcl9NaI+jHlZ/iRw7Bs6G6005b0kwZDEcBD2Ba5B9+PjOIX/Z1IzkjuqLYas6Na DNiBiziBlyi6BN75wUWAq8JgnxRgbfNAFJe8toRPOv0ceRLkxBD+D8LH+EyUq30b 72TMUpSGxJLvS7aOhM0N+CmBaoVRcJe/WAPzX0kugzWv1StWQt2L+/gowhQA23S5 7tsJgOJjsfhF+MLw6UGoMD2m9n+yHQ9Tff5iYc1A2l4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:51 2025 by rpki-client