$ rpki-client -vvf repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35322e302f32342d3234203d3e20313338313233.roa File: 3130332e3133322e35322e302f32342d3234203d3e20313338313233.roa (raw, json) Hash identifier: 61PqzbefMCe104GH4tvsaNnjc51GZYX3PE2lw6vf/AE= Subject key identifier: D8:D6:C8:2E:F5:EF:B1:D9:E9:25:CC:8D:65:B2:D2:CA:84:F9:97:1F Certificate issuer: /CN=B88116E180F32C03362804A81CB0CF2EB0C261B6 Certificate serial: 11131996284688338A8F395C8B58EFBB1A67D245 Authority key identifier: B8:81:16:E1:80:F3:2C:03:36:28:04:A8:1C:B0:CF:2E:B0:C2:61:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35322e302f32342d3234203d3e20313338313233.roa Signing time: Mon 12 May 2025 08:01:04 +0000 ROA not before: Mon 12 May 2025 07:56:04 +0000 ROA not after: Mon 11 May 2026 08:01:04 +0000 asID: 138123 IP address blocks: 103.132.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.crl rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:13:19:96:28:46:88:33:8a:8f:39:5c:8b:58:ef:bb:1a:67:d2:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B88116E180F32C03362804A81CB0CF2EB0C261B6 Validity Not Before: May 12 07:56:04 2025 GMT Not After : May 11 08:01:04 2026 GMT Subject: CN=D8D6C82EF5EFB1D9E925CC8D65B2D2CA84F9971F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:5f:df:4a:1f:fe:93:10:66:37:f7:e6:af: e4:17:4a:fe:9f:db:3f:38:0a:d6:51:bb:f3:1d:a6: 5f:c0:43:fb:ef:51:fa:19:5b:6f:63:65:a4:46:10: 6b:bc:d3:e6:77:e4:49:76:8c:26:b7:42:56:af:46: 73:ee:5a:49:b4:5e:ed:1a:38:bc:f4:bc:21:01:4b: 49:ac:ed:9b:e3:8d:b5:24:8c:56:77:bc:97:b7:e7: cb:3d:45:42:1d:51:e5:c7:41:c5:f9:e9:03:53:c2: 51:9e:90:65:09:b5:15:e5:7f:f9:03:32:67:a4:94: de:fa:ad:4b:29:d2:e3:dd:fe:73:2f:55:a3:e3:b0: 40:91:aa:97:7b:69:ae:7a:74:63:51:5d:a2:2d:d6: ba:2f:56:5d:6d:2f:1a:6b:94:7b:d6:8f:11:c7:57: d5:d7:e1:b4:1e:6a:20:43:4f:9e:26:78:90:8f:94: 87:f2:b1:7c:f5:7a:b5:6c:1b:53:74:8b:7f:e9:79: e2:0c:f4:5c:42:6e:5b:98:76:7b:55:9e:8e:c3:bb: f8:33:3e:ff:52:de:ad:a4:b7:85:26:3e:0a:a5:f6: ca:c9:96:b4:68:32:e7:36:fc:2c:13:3a:ce:99:1a: 23:71:53:3e:de:5d:75:b9:e6:fb:89:34:91:0b:d6: e5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D6:C8:2E:F5:EF:B1:D9:E9:25:CC:8D:65:B2:D2:CA:84:F9:97:1F X509v3 Authority Key Identifier: keyid:B8:81:16:E1:80:F3:2C:03:36:28:04:A8:1C:B0:CF:2E:B0:C2:61:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35322e302f32342d3234203d3e20313338313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.52.0/24 Signature Algorithm: sha256WithRSAEncryption 49:22:28:2d:ab:31:bf:08:c7:ea:48:04:5e:d7:a7:d0:77:69: f6:4e:21:9b:87:7f:e1:a0:b6:81:20:c0:21:90:40:17:ad:b2: fb:11:f5:16:ff:e5:a5:b3:e5:35:13:5a:18:82:36:e4:bf:f1: b7:ae:1a:b9:bb:35:ab:20:15:60:63:8c:3d:78:1c:52:4e:3d: ab:4f:77:31:fe:e6:96:29:4c:84:c7:af:2a:42:ac:38:e6:ef: e0:7a:f2:1e:f1:3f:d2:b8:21:9f:af:57:02:ce:25:38:6c:f2: 93:a5:cc:5a:30:95:14:83:dd:f4:fb:0a:8d:45:80:c9:38:61: 47:60:e1:97:11:64:57:55:ed:53:59:e2:02:d9:50:fe:48:86: 90:88:93:1b:8b:7a:3f:3e:f6:1c:bc:5d:3a:a3:99:df:bb:5d: de:45:b0:04:69:11:e2:a4:5e:cb:9c:c5:c9:b1:f9:e0:3d:5d: 3a:8c:4d:64:e8:51:e0:a7:ad:f5:22:0d:53:6e:e3:a0:8f:53: 03:53:1a:55:da:3f:5d:da:81:9e:6e:b8:a3:f8:59:41:e1:a3: ee:13:5f:7a:48:12:75:60:f7:31:b8:cc:fd:7b:5a:46:b4:a5: e4:8e:40:7c:88:89:42:7e:a5:9b:f7:32:9b:88:1e:e5:9c:f8: 8f:ea:13:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUERMZlihGiDOKjzlci1jvuxpn0kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg4MTE2RTE4MEYzMkMwMzM2MjgwNEE4MUNCMENGMkVC MEMyNjFCNjAeFw0yNTA1MTIwNzU2MDRaFw0yNjA1MTEwODAxMDRaMDMxMTAvBgNV BAMTKEQ4RDZDODJFRjVFRkIxRDlFOTI1Q0M4RDY1QjJEMkNBODRGOTk3MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq21/fSh/+kxBmN/fmr+QXSv6f 2z84CtZRu/Mdpl/AQ/vvUfoZW29jZaRGEGu80+Z35El2jCa3QlavRnPuWkm0Xu0a OLz0vCEBS0ms7ZvjjbUkjFZ3vJe358s9RUIdUeXHQcX56QNTwlGekGUJtRXlf/kD MmeklN76rUsp0uPd/nMvVaPjsECRqpd7aa56dGNRXaIt1rovVl1tLxprlHvWjxHH V9XX4bQeaiBDT54meJCPlIfysXz1erVsG1N0i3/peeIM9FxCbluYdntVno7Du/gz Pv9S3q2kt4UmPgql9srJlrRoMuc2/CwTOs6ZGiNxUz7eXXW55vuJNJEL1uVrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2NbILvXvsdnpJcyNZbLSyoT5lx8wHwYDVR0j BBgwFoAUuIEW4YDzLAM2KASoHLDPLrDCYbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTk2ZWQ4OS0yYTE2LTQxNTEtYmY4My01OWRjZTU2MTQ2MGMvMC9CODgxMTZFMTgw RjMyQzAzMzYyODA0QTgxQ0IwQ0YyRUIwQzI2MUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg4MTE2RTE4MEYzMkMwMzM2MjgwNEE4MUNCMENGMkVCMEMy NjFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOTZlZDg5LTJhMTYtNDE1MS1i ZjgzLTU5ZGNlNTYxNDYwYy8wLzMxMzAzMzJlMzEzMzMyMmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Q0MA0GCSqG SIb3DQEBCwUAA4IBAQBJIigtqzG/CMfqSARe16fQd2n2TiGbh3/hoLaBIMAhkEAX rbL7EfUW/+Wls+U1E1oYgjbkv/G3rhq5uzWrIBVgY4w9eBxSTj2rT3cx/uaWKUyE x68qQqw45u/gevIe8T/SuCGfr1cCziU4bPKTpcxaMJUUg930+wqNRYDJOGFHYOGX EWRXVe1TWeIC2VD+SIaQiJMbi3o/PvYcvF06o5nfu13eRbAEaRHipF7LnMXJsfng PV06jE1k6FHgp631Ig1TbuOgj1MDUxpV2j9d2oGebrij+FlB4aPuE196SBJ1YPcx uMz9e1pGtKXkjkB8iIlCfqWb9zKbiB7lnPiP6hNa -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:37 2025 by rpki-client