$ rpki-client -vvf repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa File: 3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa (raw, json) Hash identifier: i80S93LcbuzfKOEUZo9C4vjXTfLHmrCj4n9ypSMTwBE= Subject key identifier: C3:79:E4:EA:6D:B5:1B:6D:68:71:A9:45:F5:53:CA:9B:80:DE:A6:3D Certificate issuer: /CN=EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB Certificate serial: 2DE2C2CD78E7AB70D7C72BC9F313C607F74E9FD7 Authority key identifier: EA:EA:2F:2F:07:FF:F3:43:40:77:7B:3B:BD:7D:1D:18:6F:4E:C1:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa Signing time: Mon 02 Jun 2025 10:00:01 +0000 ROA not before: Mon 02 Jun 2025 09:55:01 +0000 ROA not after: Mon 01 Jun 2026 10:00:01 +0000 asID: 149937 IP address blocks: 103.191.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.crl rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:49:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e2:c2:cd:78:e7:ab:70:d7:c7:2b:c9:f3:13:c6:07:f7:4e:9f:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB Validity Not Before: Jun 2 09:55:01 2025 GMT Not After : Jun 1 10:00:01 2026 GMT Subject: CN=C379E4EA6DB51B6D6871A945F553CA9B80DEA63D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c9:d2:8e:a5:8d:86:15:64:24:ea:8d:d5:3b: 83:d8:3c:dc:2e:7a:8e:c0:59:02:98:c9:20:db:19: fa:23:b4:62:52:6c:43:56:56:05:42:a8:fd:2a:da: 54:4a:6a:44:9b:04:81:2a:95:19:ab:8f:cd:cd:76: 06:cb:fb:e7:e4:b5:d8:64:43:36:92:40:7c:89:21: f7:1e:4f:4f:6b:d8:7b:44:fd:29:7a:65:38:71:4f: 03:4a:75:ec:52:41:06:ad:72:31:f3:a1:dd:cc:10: 52:b5:a1:7a:a4:0d:12:04:5a:d1:9e:97:64:e6:0b: 62:92:f7:7f:28:94:cc:1c:1d:4f:70:ee:14:18:8c: 05:1e:48:f7:8b:53:a4:89:24:9a:2b:7d:cc:35:29: 4e:d8:24:9b:8c:9f:18:ac:d5:26:88:d9:64:dd:e7: 7c:5a:29:14:e7:6c:ad:27:fe:d4:18:55:19:10:07: 80:4e:63:f4:38:42:10:85:16:42:73:b9:8b:8f:ec: f2:17:96:61:76:fc:51:65:3f:cc:ef:e7:5a:18:b5: 0d:da:41:55:2c:d2:8e:9b:95:74:7a:e5:e5:00:94: c5:1a:bd:cf:50:72:50:ac:09:17:1b:b1:d2:7e:cf: e6:59:20:91:34:a3:6e:26:8b:3f:7a:1f:27:27:de: 8c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:79:E4:EA:6D:B5:1B:6D:68:71:A9:45:F5:53:CA:9B:80:DE:A6:3D X509v3 Authority Key Identifier: keyid:EA:EA:2F:2F:07:FF:F3:43:40:77:7B:3B:BD:7D:1D:18:6F:4E:C1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.150.0/23 Signature Algorithm: sha256WithRSAEncryption ae:dc:94:27:dc:a1:34:1d:fc:d5:25:c1:08:81:df:45:1c:77: e4:37:59:12:2c:31:75:b5:28:6d:ef:4f:c2:ab:a2:9d:60:bb: b4:e7:60:f1:43:a8:6f:46:04:99:04:63:97:53:9e:cd:9c:16: b0:aa:53:30:0a:17:e6:30:ea:4e:f5:b0:05:71:d7:e6:3d:5e: 60:40:64:7f:8d:86:0f:10:a2:d9:84:58:e4:fc:c4:d9:3b:8b: 0b:0c:f1:a5:d3:c1:c4:fb:48:12:6f:94:fe:01:6d:19:3b:ba: 3b:70:39:03:f4:ac:5c:8f:ef:4c:36:c9:55:9b:e2:af:c4:05: a2:98:e5:28:7d:ef:d7:e1:59:f6:c8:ac:aa:4d:2a:f3:0e:ba: 4b:cc:60:62:d9:d4:dc:7d:f7:c3:9d:4a:a1:ce:fd:de:3a:b2: 14:8c:72:6d:9d:cb:5b:0d:dc:ec:b5:28:52:5b:16:0e:95:6b: cd:f7:b5:f3:13:94:a2:be:7b:13:bf:5f:fa:46:96:bf:11:fa: a9:fd:b1:3b:25:62:e8:9c:48:c5:c1:9e:e0:d2:49:94:81:a9: d4:8d:bf:03:53:d2:52:5f:bc:9d:7a:93:91:c2:11:f6:8e:7c: 89:46:bc:d9:da:ff:e6:65:53:d5:eb:58:e5:86:a3:ea:3e:12: 17:ff:56:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULeLCzXjnq3DXxyvJ8xPGB/dOn9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFQTJGMkYwN0ZGRjM0MzQwNzc3QjNCQkQ3RDFEMTg2 RjRFQzFDQjAeFw0yNTA2MDIwOTU1MDFaFw0yNjA2MDExMDAwMDFaMDMxMTAvBgNV BAMTKEMzNzlFNEVBNkRCNTFCNkQ2ODcxQTk0NUY1NTNDQTlCODBERUE2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZydKOpY2GFWQk6o3VO4PYPNwu eo7AWQKYySDbGfojtGJSbENWVgVCqP0q2lRKakSbBIEqlRmrj83NdgbL++fktdhk QzaSQHyJIfceT09r2HtE/Sl6ZThxTwNKdexSQQatcjHzod3MEFK1oXqkDRIEWtGe l2TmC2KS938olMwcHU9w7hQYjAUeSPeLU6SJJJorfcw1KU7YJJuMnxis1SaI2WTd 53xaKRTnbK0n/tQYVRkQB4BOY/Q4QhCFFkJzuYuP7PIXlmF2/FFlP8zv51oYtQ3a QVUs0o6blXR65eUAlMUavc9QclCsCRcbsdJ+z+ZZIJE0o24miz96Hycn3ox7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw3nk6m21G21ocalF9VPKm4Depj0wHwYDVR0j BBgwFoAU6uovLwf/80NAd3s7vX0dGG9OwcswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGI0MjQyMC01NmQwLTQ1MWEtYTI5ZC01ZjlkNjIzMGUyMjcvMC9FQUVBMkYyRjA3 RkZGMzQzNDA3NzdCM0JCRDdEMUQxODZGNEVDMUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFFQTJGMkYwN0ZGRjM0MzQwNzc3QjNCQkQ3RDFEMTg2RjRF QzFDQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4YjQyNDIwLTU2ZDAtNDUxYS1h MjlkLTVmOWQ2MjMwZTIyNy8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnv5YwDQYJ KoZIhvcNAQELBQADggEBAK7clCfcoTQd/NUlwQiB30Ucd+Q3WRIsMXW1KG3vT8Kr op1gu7TnYPFDqG9GBJkEY5dTns2cFrCqUzAKF+Yw6k71sAVx1+Y9XmBAZH+Nhg8Q otmEWOT8xNk7iwsM8aXTwcT7SBJvlP4BbRk7ujtwOQP0rFyP70w2yVWb4q/EBaKY 5Sh979fhWfbIrKpNKvMOukvMYGLZ1Nx998OdSqHO/d46shSMcm2dy1sN3Oy1KFJb Fg6Va833tfMTlKK+exO/X/pGlr8R+qn9sTslYuicSMXBnuDSSZSBqdSNvwNT0lJf vJ16k5HCEfaOfIlGvNna/+ZlU9XrWOWGo+o+Ehf/VlI= -----END CERTIFICATE-----Generated at Sat Jun 7 12:28:58 2025 by rpki-client