$ rpki-client -vvf repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa File: 3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa (raw, json) Hash identifier: UgrkGIb65avdk0c9bxD0Hl16cvFjKtiPVw8WTE1xwNs= Subject key identifier: 14:F1:32:98:06:13:44:6E:2A:C8:DD:39:F0:D0:52:C4:B2:10:81:F1 Certificate issuer: /CN=FC4A38DAAF15E8284373FD82AE59B27383D4A68F Certificate serial: 33314232074ECE1A775B416E7BA3F95507986333 Authority key identifier: FC:4A:38:DA:AF:15:E8:28:43:73:FD:82:AE:59:B2:73:83:D4:A6:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa Signing time: Mon 02 Jun 2025 02:04:16 +0000 ROA not before: Mon 02 Jun 2025 01:59:16 +0000 ROA not after: Mon 01 Jun 2026 02:04:16 +0000 asID: 138849 IP address blocks: 103.137.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.crl rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:31:42:32:07:4e:ce:1a:77:5b:41:6e:7b:a3:f9:55:07:98:63:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4A38DAAF15E8284373FD82AE59B27383D4A68F Validity Not Before: Jun 2 01:59:16 2025 GMT Not After : Jun 1 02:04:16 2026 GMT Subject: CN=14F132980613446E2AC8DD39F0D052C4B21081F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:be:85:2b:dd:77:02:d4:b8:40:04:e4:17: 73:86:a1:16:4d:d1:63:d8:f6:c5:4a:8b:bf:07:b0: e5:91:af:b6:b6:9a:49:1e:87:6d:c0:a9:d9:18:8e: 41:5e:37:67:ec:23:3c:b6:e2:93:d1:c6:95:f2:e3: d0:a2:07:13:c9:5b:06:bd:8c:07:10:47:c3:12:6a: 72:ec:94:32:f7:e9:dc:98:7b:48:72:4f:05:e2:21: e9:93:fe:52:fb:59:59:ed:39:11:eb:9d:c0:07:83: 87:fa:64:72:61:f3:de:7a:6b:01:ed:89:99:ba:d3: cf:06:ff:16:e2:e8:5b:8c:5e:7f:40:a7:b8:c3:9f: f7:c3:a6:c7:3a:48:ae:f1:d6:c4:61:11:f1:74:3c: 80:5f:b8:a9:c9:f4:69:e3:92:b9:00:b9:ee:43:a8: 1e:90:38:81:29:20:83:0f:8e:98:bc:dd:5a:b6:37: c9:66:80:40:8f:7e:f7:78:cf:79:9b:50:04:0f:06: 25:e2:58:27:f0:81:b5:c1:79:00:ba:ba:9e:db:a2: 1f:d2:93:73:b7:b7:7e:ab:f8:a1:7f:4c:8a:e9:df: a9:37:d9:c6:2c:96:25:b0:96:b9:76:52:f7:d6:af: df:08:82:48:6d:45:83:0c:7e:c4:c7:bd:fb:5c:d7: 7d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F1:32:98:06:13:44:6E:2A:C8:DD:39:F0:D0:52:C4:B2:10:81:F1 X509v3 Authority Key Identifier: keyid:FC:4A:38:DA:AF:15:E8:28:43:73:FD:82:AE:59:B2:73:83:D4:A6:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.144.0/23 Signature Algorithm: sha256WithRSAEncryption 17:c1:6b:12:28:2f:6e:3e:64:40:0e:f3:ab:a1:79:a9:6e:7c: e5:4f:92:1f:c0:d4:65:2b:a3:b9:34:1d:4b:6a:45:e0:3e:e5: 3d:3a:ad:cf:89:46:ef:dd:4e:e2:62:9d:f1:27:0f:1f:a3:cd: 29:10:36:bb:30:f5:c3:80:b8:c7:2e:78:a3:72:ce:0d:ba:04: 14:a8:04:23:ad:ab:f6:ee:69:d6:4f:57:fd:79:40:72:19:41: a0:8c:5c:8c:c7:8e:f5:d7:25:fc:71:98:d0:14:e6:97:e6:a0: 55:58:be:6f:f5:05:c5:58:02:62:9e:10:b6:01:99:78:59:e7: 2d:fc:fb:f7:41:5c:96:fb:97:3b:78:12:b2:7b:77:2b:75:26: e0:b8:1a:c1:b5:4d:83:c9:0a:6c:58:5f:05:2e:0a:7f:b6:bb: 7b:7f:42:96:59:29:7d:cc:a3:d0:5a:27:59:31:43:c5:66:dc: 52:d3:fc:72:aa:13:34:d0:7d:a8:f3:e6:33:4f:8e:cc:52:b0: 64:9e:c5:5a:14:0f:21:d9:d0:ad:40:a4:24:4c:3b:ce:5a:48: 26:e8:21:97:36:be:b7:51:b5:46:b3:2f:1b:93:93:e4:9c:c3: 36:16:05:2e:d5:ce:f2:e2:18:75:48:e1:be:86:77:5b:f6:b7: fe:87:8a:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMzFCMgdOzhp3W0Fue6P5VQeYYzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0QTM4REFBRjE1RTgyODQzNzNGRDgyQUU1OUIyNzM4 M0Q0QTY4RjAeFw0yNTA2MDIwMTU5MTZaFw0yNjA2MDEwMjA0MTZaMDMxMTAvBgNV BAMTKDE0RjEzMjk4MDYxMzQ0NkUyQUM4REQzOUYwRDA1MkM0QjIxMDgxRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6tL6FK913AtS4QATkF3OGoRZN 0WPY9sVKi78HsOWRr7a2mkkeh23AqdkYjkFeN2fsIzy24pPRxpXy49CiBxPJWwa9 jAcQR8MSanLslDL36dyYe0hyTwXiIemT/lL7WVntORHrncAHg4f6ZHJh8956awHt iZm6088G/xbi6FuMXn9Ap7jDn/fDpsc6SK7x1sRhEfF0PIBfuKnJ9GnjkrkAue5D qB6QOIEpIIMPjpi83Vq2N8lmgECPfvd4z3mbUAQPBiXiWCfwgbXBeQC6up7boh/S k3O3t36r+KF/TIrp36k32cYsliWwlrl2UvfWr98IgkhtRYMMfsTHvftc131dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFPEymAYTRG4qyN058NBSxLIQgfEwHwYDVR0j BBgwFoAU/Eo42q8V6ChDc/2Crlmyc4PUpo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTQ2MTgzYy1kOWVmLTRjMzMtYmU5OS1lODRiZWRiMTBiNjgvMC9GQzRBMzhEQUFG MTVFODI4NDM3M0ZEODJBRTU5QjI3MzgzRDRBNjhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM0QTM4REFBRjE1RTgyODQzNzNGRDgyQUU1OUIyNzM4M0Q0 QTY4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NDYxODNjLWQ5ZWYtNGMzMy1i ZTk5LWU4NGJlZGIxMGI2OC8wLzMxMzAzMzJlMzEzMzM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniZAwDQYJ KoZIhvcNAQELBQADggEBABfBaxIoL24+ZEAO86uhealufOVPkh/A1GUro7k0HUtq ReA+5T06rc+JRu/dTuJinfEnDx+jzSkQNrsw9cOAuMcueKNyzg26BBSoBCOtq/bu adZPV/15QHIZQaCMXIzHjvXXJfxxmNAU5pfmoFVYvm/1BcVYAmKeELYBmXhZ5y38 +/dBXJb7lzt4ErJ7dyt1JuC4GsG1TYPJCmxYXwUuCn+2u3t/QpZZKX3Mo9BaJ1kx Q8Vm3FLT/HKqEzTQfajz5jNPjsxSsGSexVoUDyHZ0K1ApCRMO85aSCboIZc2vrdR tUazLxuTk+ScwzYWBS7VzvLiGHVI4b6Gd1v2t/6Hivs= -----END CERTIFICATE-----Generated at Sat Jun 7 22:56:20 2025 by rpki-client