$ rpki-client -vvf repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35342e302f32342d3234203d3e20313338313233.roa File: 3130332e3133322e35342e302f32342d3234203d3e20313338313233.roa (raw, json) Hash identifier: xRhm+ztLVPsT2+vuoKMwBZMT/FF6d5r60ZpTwX3FlUw= Subject key identifier: 67:35:2F:97:07:F7:BF:AD:17:8D:5B:C9:A5:2F:99:25:23:1D:1C:2A Certificate issuer: /CN=B88116E180F32C03362804A81CB0CF2EB0C261B6 Certificate serial: 77DCC14C3A67EF19F55C2B16D7967155D0BCB4F7 Authority key identifier: B8:81:16:E1:80:F3:2C:03:36:28:04:A8:1C:B0:CF:2E:B0:C2:61:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35342e302f32342d3234203d3e20313338313233.roa Signing time: Mon 12 May 2025 08:01:05 +0000 ROA not before: Mon 12 May 2025 07:56:05 +0000 ROA not after: Mon 11 May 2026 08:01:05 +0000 asID: 138123 IP address blocks: 103.132.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.crl rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:dc:c1:4c:3a:67:ef:19:f5:5c:2b:16:d7:96:71:55:d0:bc:b4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B88116E180F32C03362804A81CB0CF2EB0C261B6 Validity Not Before: May 12 07:56:05 2025 GMT Not After : May 11 08:01:05 2026 GMT Subject: CN=67352F9707F7BFAD178D5BC9A52F9925231D1C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:a6:f9:d0:f0:3a:cf:cb:0e:2d:9e:be:ee: 83:bf:cd:b6:a0:35:d2:18:88:7d:bb:f7:d1:24:38: 2f:aa:39:2c:b8:4c:fb:28:a6:ae:76:c3:16:5a:da: 6b:9e:bc:da:1d:3b:84:ea:da:e6:e0:74:ce:54:20: 53:4d:04:ff:c1:66:ce:91:0a:86:64:4b:a8:25:43: 58:55:f3:56:11:1d:8c:bc:70:15:1a:3b:9a:75:40: 89:ba:99:70:d2:62:5a:f0:e5:d7:8a:6e:98:dc:dd: b5:c3:40:6c:06:2a:93:e3:ab:10:85:bf:72:90:4f: 45:12:f5:01:24:5b:6b:79:fb:6a:ac:5f:e0:0e:87: 81:85:62:43:47:78:32:56:05:84:d1:dd:73:9a:13: 48:87:05:73:c5:e9:a7:f8:64:f8:ca:f7:5c:71:71: 82:55:e1:b6:59:fa:08:6a:c5:e6:ae:25:28:fe:9a: a4:f6:aa:06:26:b7:ec:19:3b:80:7e:38:80:a6:4f: 17:08:d1:f2:c8:42:ce:76:e8:b5:af:0d:ff:80:a5: 9f:1e:ff:0c:fc:0c:29:a6:25:51:be:5f:33:68:a7: 72:96:27:f5:76:cc:13:52:b5:e1:2e:3a:ef:4d:20: ed:4f:a0:41:7a:cf:8e:fa:a2:b6:ee:d2:b8:30:80: 3f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:35:2F:97:07:F7:BF:AD:17:8D:5B:C9:A5:2F:99:25:23:1D:1C:2A X509v3 Authority Key Identifier: keyid:B8:81:16:E1:80:F3:2C:03:36:28:04:A8:1C:B0:CF:2E:B0:C2:61:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/B88116E180F32C03362804A81CB0CF2EB0C261B6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B88116E180F32C03362804A81CB0CF2EB0C261B6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/3130332e3133322e35342e302f32342d3234203d3e20313338313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.54.0/24 Signature Algorithm: sha256WithRSAEncryption 18:68:ae:75:76:ff:20:be:cc:f7:60:c2:67:7a:9a:2d:42:81: 5a:bd:e8:53:e5:ec:52:25:60:c4:cc:1e:ee:8b:f6:a3:ff:63: 7d:bd:ce:35:6f:50:b3:53:52:b4:71:4e:9f:59:31:f4:b5:ce: c0:97:2c:86:d6:c2:07:d2:ec:71:63:19:01:7c:43:d8:ff:74: 00:1f:bf:ed:10:b5:d6:08:00:42:80:e2:a3:5e:12:5a:2b:35: 7e:c7:db:df:2a:0e:e9:6b:7e:64:46:1a:88:8a:9f:2d:09:94: 53:5f:2a:d4:7a:98:c4:06:ab:d5:d0:36:6c:53:72:41:da:89: a6:6e:ea:18:fa:31:f4:5d:dc:4f:c4:f9:b1:78:e7:f8:68:ef: 6a:4e:9b:94:8a:0a:f1:98:e3:c9:f8:d6:2c:a5:a6:d8:3e:58: cb:8c:0e:fd:71:7e:46:eb:01:9f:86:61:62:49:0a:9d:d1:56: 57:17:ac:10:95:df:b6:eb:a8:33:92:1d:d3:e0:45:a1:46:aa: c5:17:c6:56:fe:a9:e5:02:3b:66:c3:db:dd:56:1c:56:b5:4c: da:c2:e6:de:fa:83:04:67:5b:c1:0a:26:0e:30:f4:50:b6:8d: f8:54:f9:39:ad:0e:8c:33:f0:0e:f0:98:fe:12:c7:0b:92:67: 6d:9d:7f:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd9zBTDpn7xn1XCsW15ZxVdC8tPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg4MTE2RTE4MEYzMkMwMzM2MjgwNEE4MUNCMENGMkVC MEMyNjFCNjAeFw0yNTA1MTIwNzU2MDVaFw0yNjA1MTEwODAxMDVaMDMxMTAvBgNV BAMTKDY3MzUyRjk3MDdGN0JGQUQxNzhENUJDOUE1MkY5OTI1MjMxRDFDMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7MKb50PA6z8sOLZ6+7oO/zbag NdIYiH2799EkOC+qOSy4TPsopq52wxZa2muevNodO4Tq2ubgdM5UIFNNBP/BZs6R CoZkS6glQ1hV81YRHYy8cBUaO5p1QIm6mXDSYlrw5deKbpjc3bXDQGwGKpPjqxCF v3KQT0US9QEkW2t5+2qsX+AOh4GFYkNHeDJWBYTR3XOaE0iHBXPF6af4ZPjK91xx cYJV4bZZ+ghqxeauJSj+mqT2qgYmt+wZO4B+OICmTxcI0fLIQs526LWvDf+ApZ8e /wz8DCmmJVG+XzNop3KWJ/V2zBNSteEuOu9NIO1PoEF6z476orbu0rgwgD9RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZzUvlwf3v60XjVvJpS+ZJSMdHCowHwYDVR0j BBgwFoAUuIEW4YDzLAM2KASoHLDPLrDCYbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTk2ZWQ4OS0yYTE2LTQxNTEtYmY4My01OWRjZTU2MTQ2MGMvMC9CODgxMTZFMTgw RjMyQzAzMzYyODA0QTgxQ0IwQ0YyRUIwQzI2MUI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg4MTE2RTE4MEYzMkMwMzM2MjgwNEE4MUNCMENGMkVCMEMy NjFCNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlOTZlZDg5LTJhMTYtNDE1MS1i ZjgzLTU5ZGNlNTYxNDYwYy8wLzMxMzAzMzJlMzEzMzMyMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Q2MA0GCSqG SIb3DQEBCwUAA4IBAQAYaK51dv8gvsz3YMJnepotQoFavehT5exSJWDEzB7ui/aj /2N9vc41b1CzU1K0cU6fWTH0tc7AlyyG1sIH0uxxYxkBfEPY/3QAH7/tELXWCABC gOKjXhJaKzV+x9vfKg7pa35kRhqIip8tCZRTXyrUepjEBqvV0DZsU3JB2ommbuoY +jH0XdxPxPmxeOf4aO9qTpuUigrxmOPJ+NYspabYPljLjA79cX5G6wGfhmFiSQqd 0VZXF6wQld+266gzkh3T4EWhRqrFF8ZW/qnlAjtmw9vdVhxWtUzawube+oMEZ1vB CiYOMPRQto34VPk5rQ6MM/AO8Jj+EscLkmdtnX+M -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:41 2025 by rpki-client