$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: BUjAtiDKImhm44uw2SFH6kSw2t9lwdf9XIcal9kQ1mg= Subject key identifier: C8:6C:90:CC:05:24:26:C3:87:FD:7A:80:AC:01:82:9A:35:04:E2:B0 Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 5E631750CA692F1C8B4C1618922C8288B163563F Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:04:37 +0000 ROA not before: Mon 02 Jun 2025 01:59:37 +0000 ROA not after: Mon 01 Jun 2026 02:04:37 +0000 asID: 58369 IP address blocks: 103.140.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:63:17:50:ca:69:2f:1c:8b:4c:16:18:92:2c:82:88:b1:63:56:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Jun 2 01:59:37 2025 GMT Not After : Jun 1 02:04:37 2026 GMT Subject: CN=C86C90CC052426C387FD7A80AC01829A3504E2B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:ed:aa:35:7a:7a:e9:e8:70:aa:a3:5b:4b: 7b:cb:03:1f:f4:7e:3c:cd:33:64:f2:a0:36:d0:6f: b5:ff:2c:31:08:0c:19:01:2d:b1:57:1a:4c:1b:c6: a4:a5:75:e2:65:9b:28:f3:c6:9a:3c:27:7f:72:ae: 1d:5c:54:69:b5:b4:4f:f6:b8:b1:f3:b0:1c:59:66: 24:1d:02:cc:a8:ce:5f:65:2f:19:c2:e3:a5:7f:50: 2a:49:4f:11:75:63:6b:b1:ea:6c:01:fa:f7:a0:e0: 8c:81:d8:57:d1:08:14:74:b1:95:60:bb:e5:68:c5: 50:6b:3e:2a:fe:b9:9f:f6:20:03:5f:35:73:47:bd: 3c:01:61:6b:e1:ed:2d:43:80:17:89:c3:54:fd:01: f1:42:29:1d:d4:45:a3:4f:82:a1:83:c6:e7:dd:d9: f1:8d:0e:86:c9:e4:bf:3f:6d:21:6e:1d:3e:97:a8: cf:75:a2:a6:0c:2b:25:b2:b5:25:37:ae:02:32:5c: a1:f0:64:49:1c:c8:e6:03:56:60:7d:9a:64:8f:1a: a2:58:06:9a:3a:d7:2c:75:c1:59:e2:f0:64:bd:6d: 00:e1:75:b5:9c:15:20:5a:c8:a8:98:9e:96:99:ff: 59:52:ab:eb:58:5f:3e:83:2a:53:1b:c9:6e:69:42: b2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6C:90:CC:05:24:26:C3:87:FD:7A:80:AC:01:82:9A:35:04:E2:B0 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.109.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:4d:d7:7a:49:7b:41:f1:9e:13:67:6a:41:95:b9:d5:c9:41: 9f:a5:75:97:44:27:eb:19:3d:bd:c5:2b:e8:d1:b4:e9:79:b0: 11:37:c5:61:54:68:61:bb:6b:1c:2b:4e:ea:45:bf:32:3e:0b: 53:84:b2:1b:18:cb:f0:f1:54:a8:be:80:98:97:0f:8b:2b:c1: fc:ad:fe:2f:7e:33:05:db:b4:9a:04:01:86:cb:5d:14:10:b6: 77:6a:6e:67:ce:25:6d:ab:de:1d:ed:3e:80:c3:91:56:16:82: bc:77:0d:4d:76:fb:55:a9:dc:57:4b:78:f2:99:bd:c0:43:92: 2a:4d:dd:6d:62:c9:f9:1d:ae:a7:61:aa:98:b4:b4:06:01:c8: 2e:2b:2d:d5:19:99:72:64:2b:ed:fb:a7:f8:65:83:d8:e2:0a: 26:43:11:4a:98:f0:ca:8c:38:26:cb:79:15:cc:c4:a0:23:e3: 27:2a:d5:dd:ea:30:df:bd:09:cd:b7:4c:b1:50:98:72:1f:bd: 8d:50:b9:f6:0c:aa:79:d6:e3:84:47:a4:d8:86:e5:2d:ad:43: e6:b9:33:2a:09:6a:59:b5:67:73:43:53:25:4c:b8:39:c1:98: fa:20:be:ec:6a:26:25:04:43:f4:d3:40:df:84:b2:34:3c:ca: 4c:a2:31:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXmMXUMppLxyLTBYYkiyCiLFjVj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNTA2MDIwMTU5MzdaFw0yNjA2MDEwMjA0MzdaMDMxMTAvBgNV BAMTKEM4NkM5MENDMDUyNDI2QzM4N0ZEN0E4MEFDMDE4MjlBMzUwNEUyQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy5e2qNXp66ehwqqNbS3vLAx/0 fjzNM2TyoDbQb7X/LDEIDBkBLbFXGkwbxqSldeJlmyjzxpo8J39yrh1cVGm1tE/2 uLHzsBxZZiQdAsyozl9lLxnC46V/UCpJTxF1Y2ux6mwB+veg4IyB2FfRCBR0sZVg u+VoxVBrPir+uZ/2IANfNXNHvTwBYWvh7S1DgBeJw1T9AfFCKR3URaNPgqGDxufd 2fGNDobJ5L8/bSFuHT6XqM91oqYMKyWytSU3rgIyXKHwZEkcyOYDVmB9mmSPGqJY Bpo61yx1wVni8GS9bQDhdbWcFSBayKiYnpaZ/1lSq+tYXz6DKlMbyW5pQrJTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyGyQzAUkJsOH/XqArAGCmjUE4rAwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xtMA0GCSqG SIb3DQEBCwUAA4IBAQCcTdd6SXtB8Z4TZ2pBlbnVyUGfpXWXRCfrGT29xSvo0bTp ebARN8VhVGhhu2scK07qRb8yPgtThLIbGMvw8VSovoCYlw+LK8H8rf4vfjMF27Sa BAGGy10UELZ3am5nziVtq94d7T6Aw5FWFoK8dw1NdvtVqdxXS3jymb3AQ5IqTd1t Ysn5Ha6nYaqYtLQGAcguKy3VGZlyZCvt+6f4ZYPY4gomQxFKmPDKjDgmy3kVzMSg I+MnKtXd6jDfvQnNt0yxUJhyH72NULn2DKp51uOER6TYhuUtrUPmuTMqCWpZtWdz Q1MlTLg5wZj6IL7saiYlBEP000DfhLI0PMpMojF9 -----END CERTIFICATE-----Generated at Sun Jun 8 12:47:52 2025 by rpki-client