$ rpki-client -vvf repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa File: 3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa (raw, json) Hash identifier: Mc8Ea5+5WJ6GF7G0KNR6Ybiy7ufabhA8F83CYeyA+z0= Subject key identifier: B9:76:C5:67:62:55:3E:F9:90:83:ED:B0:0E:45:55:39:E8:57:81:BC Certificate issuer: /CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Certificate serial: 78C6530761FB9376D1E499C2D9DA08C2AE4DBDCD Authority key identifier: 64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa Signing time: Tue 27 May 2025 15:00:00 +0000 ROA not before: Tue 27 May 2025 14:55:00 +0000 ROA not after: Tue 26 May 2026 15:00:00 +0000 asID: 141146 IP address blocks: 103.158.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c6:53:07:61:fb:93:76:d1:e4:99:c2:d9:da:08:c2:ae:4d:bd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Validity Not Before: May 27 14:55:00 2025 GMT Not After : May 26 15:00:00 2026 GMT Subject: CN=B976C56762553EF99083EDB00E455539E85781BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7b:7b:a5:15:f0:4e:73:8f:8b:cd:95:93:18: 71:67:f6:31:26:52:50:d0:0f:f3:06:64:ee:11:cd: e8:c2:8a:07:46:ca:f6:64:eb:89:22:3a:ec:a0:dd: c5:9a:3d:af:1a:26:0f:fb:02:07:f7:34:60:22:44: 81:cc:f9:bb:6b:41:9a:a3:e5:a2:7a:2e:55:5b:65: 79:fd:76:e0:99:71:4a:d9:ad:61:1f:ba:5e:3d:4a: 4d:e5:61:3c:30:bc:ac:83:79:4a:2d:3b:5d:ca:b5: a7:b8:6d:95:70:24:ac:b9:92:ec:30:93:e9:bc:8e: 52:f7:40:89:31:b9:84:b3:f1:2f:94:c6:8c:23:f7: 29:f6:74:9b:c5:da:a5:1d:dc:2a:2b:e6:50:8e:f4: bc:98:56:0a:fc:80:6a:3c:8c:f5:a0:da:e6:15:b5: 88:0c:09:3a:e9:33:97:07:4e:b8:15:7c:92:96:a1: 52:cf:5b:6a:ad:16:b0:e3:da:6e:78:04:19:31:1a: f4:51:6a:28:01:e2:1f:0f:82:7e:c7:e1:ea:4d:05: 98:e8:d1:85:30:3d:bf:2e:db:28:f5:b2:30:9b:84: f6:85:fa:77:db:ad:dd:d6:ee:5c:7b:8d:cc:f6:cf: 34:b7:2e:a3:73:c6:d6:b6:7b:fa:f0:ff:b8:d7:96: 9f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:76:C5:67:62:55:3E:F9:90:83:ED:B0:0E:45:55:39:E8:57:81:BC X509v3 Authority Key Identifier: keyid:64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.208.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:20:e8:a1:a5:1e:29:f9:7f:32:6a:7f:22:db:61:31:61:f4: 50:94:6f:dd:17:2e:00:b0:fe:a7:e0:60:1a:62:73:dd:70:7a: 77:34:7d:b2:7f:28:56:47:1d:e1:36:e3:e4:11:d4:ce:a8:09: a4:2a:cc:dd:70:71:b6:0a:cc:48:4f:bc:73:ea:c8:a9:eb:00: e9:53:b1:9f:04:98:17:6c:be:cc:b3:d1:7d:b4:e7:a5:2b:21: a1:89:90:49:30:d0:bf:f8:15:02:f2:10:d0:00:66:7c:d0:0f: 3c:43:3e:c1:3b:82:12:9c:de:dc:cc:90:c8:62:fa:64:2b:33: ce:48:6c:25:53:22:10:ff:01:b8:61:f4:6e:50:32:68:7f:5c: fe:8f:d8:cb:54:c8:ed:9c:55:01:c3:49:aa:0b:82:ab:ab:c2: 82:f0:e7:e4:49:35:b2:ba:a1:97:6c:a6:43:f2:59:de:12:6c: ec:c5:23:69:d8:be:7d:25:e3:c6:10:47:f0:d2:ac:ba:dd:5c: fa:5b:98:fd:57:53:7a:0b:9b:92:8e:8c:b7:b3:ef:5e:d4:7c: e5:23:36:08:a8:e1:ef:a4:d9:f6:a3:3b:d4:4d:4f:8c:72:32: a8:c4:a4:b3:fb:39:4b:b0:eb:26:a9:34:81:81:b6:84:23:f6: 86:ba:9a:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeMZTB2H7k3bR5JnC2doIwq5Nvc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZF RUYxNURCNjAeFw0yNTA1MjcxNDU1MDBaFw0yNjA1MjYxNTAwMDBaMDMxMTAvBgNV BAMTKEI5NzZDNTY3NjI1NTNFRjk5MDgzRURCMDBFNDU1NTM5RTg1NzgxQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNe3ulFfBOc4+LzZWTGHFn9jEm UlDQD/MGZO4RzejCigdGyvZk64kiOuyg3cWaPa8aJg/7Agf3NGAiRIHM+btrQZqj 5aJ6LlVbZXn9duCZcUrZrWEful49Sk3lYTwwvKyDeUotO13Ktae4bZVwJKy5kuww k+m8jlL3QIkxuYSz8S+Uxowj9yn2dJvF2qUd3Cor5lCO9LyYVgr8gGo8jPWg2uYV tYgMCTrpM5cHTrgVfJKWoVLPW2qtFrDj2m54BBkxGvRRaigB4h8Pgn7H4epNBZjo 0YUwPb8u2yj1sjCbhPaF+nfbrd3W7lx7jcz2zzS3LqNzxta2e/rw/7jXlp+HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuXbFZ2JVPvmQg+2wDkVVOehXgbwwHwYDVR0j BBgwFoAUZLRmUdewx1fkrt4BaR8GL+7xXbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTcwNTkyNy1lYzY0LTQ0ZjUtOWM5ZS1jOWE1NWE1MjNiNjQvMC82NEI0NjY1MUQ3 QjBDNzU3RTRBRURFMDE2OTFGMDYyRkVFRjE1REI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZFRUYx NURCNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnntAwDQYJ KoZIhvcNAQELBQADggEBAG8g6KGlHin5fzJqfyLbYTFh9FCUb90XLgCw/qfgYBpi c91wenc0fbJ/KFZHHeE24+QR1M6oCaQqzN1wcbYKzEhPvHPqyKnrAOlTsZ8EmBds vsyz0X2056UrIaGJkEkw0L/4FQLyENAAZnzQDzxDPsE7ghKc3tzMkMhi+mQrM85I bCVTIhD/Abhh9G5QMmh/XP6P2MtUyO2cVQHDSaoLgqurwoLw5+RJNbK6oZdspkPy Wd4SbOzFI2nYvn0l48YQR/DSrLrdXPpbmP1XU3oLm5KOjLez717UfOUjNgio4e+k 2fajO9RNT4xyMqjEpLP7OUuw6yapNIGBtoQj9oa6mhI= -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:40 2025 by rpki-client