$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c= Subject key identifier: 7E:6F:36:B3:69:AB:F9:B7:C2:4F:BB:70:05:3C:F1:B8:FE:1B:82:B1 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 04BD086FF484A4CAD1F13DF61F700295C3B9F8CE Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa Signing time: Mon 02 Jun 2025 01:02:39 +0000 ROA not before: Mon 02 Jun 2025 00:57:39 +0000 ROA not after: Mon 01 Jun 2026 01:02:39 +0000 asID: 140456 IP address blocks: 103.153.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:bd:08:6f:f4:84:a4:ca:d1:f1:3d:f6:1f:70:02:95:c3:b9:f8:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jun 2 00:57:39 2025 GMT Not After : Jun 1 01:02:39 2026 GMT Subject: CN=7E6F36B369ABF9B7C24FBB70053CF1B8FE1B82B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9a:02:09:a0:6b:ef:fa:cc:ff:f2:58:e4:a6: a5:14:fd:a7:3b:aa:75:25:67:4c:45:34:24:c6:dc: e7:3a:9f:cc:6e:72:2e:e4:61:42:f0:23:29:ed:5c: 58:89:8d:db:39:1d:ea:2a:ff:be:89:75:42:ab:19: ea:a0:dd:24:fb:ef:b8:4d:6b:d2:29:37:51:f5:bd: 5e:c3:e1:98:d5:79:3e:9e:e8:04:3e:49:8e:6f:e6: 05:7e:49:10:c3:5c:7e:9f:26:e4:2e:df:8d:dc:cd: ae:e9:50:de:da:bb:70:6d:f3:2e:25:d5:6f:15:a8: a1:62:d9:f6:ce:c5:4f:f8:3e:25:73:75:62:9e:b5: 88:e1:e4:70:5e:bc:23:b9:a7:42:a9:a4:b3:c2:f4: 40:68:bf:86:8f:ba:69:18:bc:cb:29:b8:ca:0e:5f: 54:d4:b2:d5:51:0e:e2:2f:11:95:89:8e:ee:ce:a4: 41:8d:8b:a1:1e:83:5d:88:5e:35:c0:ac:cd:e3:c0: 2e:db:21:0c:48:39:c3:23:45:b0:e0:25:8d:fb:c3: 99:c2:96:0a:af:f8:a5:9d:b2:79:16:4f:5e:ef:20: 88:bd:2b:5b:cf:77:53:0d:4e:ea:96:13:77:eb:ed: c2:ed:95:56:69:e6:37:9e:b6:bf:a0:82:73:3a:0f: f1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6F:36:B3:69:AB:F9:B7:C2:4F:BB:70:05:3C:F1:B8:FE:1B:82:B1 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/24 Signature Algorithm: sha256WithRSAEncryption 35:cc:6e:1f:5f:8a:7a:4f:94:df:9b:c8:09:90:d8:9f:8c:4f: 2d:b5:ae:6b:81:54:30:42:96:a2:47:3f:2a:92:c2:46:f9:cf: 07:39:74:2e:39:aa:0b:b5:4b:52:0b:8d:99:69:b2:4f:4c:fe: 54:18:a1:aa:00:15:07:a7:95:2e:66:87:ee:7e:f8:92:19:4f: f1:5b:52:71:fb:a2:ee:66:a8:1a:bb:ab:f8:95:f4:a7:bf:31: 9d:4f:47:0d:95:ef:44:85:44:36:af:07:c4:67:04:2d:b9:cf: 69:46:8f:99:db:8a:e9:a8:d1:1b:ab:60:ce:29:89:26:cc:cb: f5:78:c8:16:0c:6b:b8:e2:c4:72:f2:9b:e7:0b:86:e1:81:15: 5f:89:ea:ac:57:ff:34:3b:08:68:e4:d8:b7:9e:26:86:45:6b: fa:c2:dc:c0:f5:7d:ae:c3:d8:cb:53:88:ba:25:df:9a:36:30: 70:17:25:58:ce:9c:41:61:b9:bd:bc:eb:eb:a6:21:dd:c0:18: 96:c6:23:9e:42:3b:83:8f:23:58:e4:7b:0b:24:cb:aa:60:57: fa:74:29:4a:b9:b7:ee:ce:bb:3e:d9:b8:59:1a:8c:2b:66:89: 0e:94:f6:c8:44:56:41:70:50:10:ce:22:79:2c:7e:a4:a9:f4: 6f:66:3c:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBL0Ib/SEpMrR8T32H3AClcO5+M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA2MDIwMDU3MzlaFw0yNjA2MDEwMTAyMzlaMDMxMTAvBgNV BAMTKDdFNkYzNkIzNjlBQkY5QjdDMjRGQkI3MDA1M0NGMUI4RkUxQjgyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3mgIJoGvv+sz/8ljkpqUU/ac7 qnUlZ0xFNCTG3Oc6n8xuci7kYULwIyntXFiJjds5Heoq/76JdUKrGeqg3ST777hN a9IpN1H1vV7D4ZjVeT6e6AQ+SY5v5gV+SRDDXH6fJuQu343cza7pUN7au3Bt8y4l 1W8VqKFi2fbOxU/4PiVzdWKetYjh5HBevCO5p0KppLPC9EBov4aPumkYvMspuMoO X1TUstVRDuIvEZWJju7OpEGNi6Eeg12IXjXArM3jwC7bIQxIOcMjRbDgJY37w5nC lgqv+KWdsnkWT17vIIi9K1vPd1MNTuqWE3fr7cLtlVZp5jeetr+ggnM6D/HvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfm82s2mr+bfCT7twBTzxuP4bgrEwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQA1zG4fX4p6T5Tfm8gJkNifjE8tta5rgVQwQpaiRz8qksJG +c8HOXQuOaoLtUtSC42ZabJPTP5UGKGqABUHp5UuZofufviSGU/xW1Jx+6LuZqga u6v4lfSnvzGdT0cNle9EhUQ2rwfEZwQtuc9pRo+Z24rpqNEbq2DOKYkmzMv1eMgW DGu44sRy8pvnC4bhgRVfieqsV/80Owho5Ni3niaGRWv6wtzA9X2uw9jLU4i6Jd+a NjBwFyVYzpxBYbm9vOvrpiHdwBiWxiOeQjuDjyNY5HsLJMuqYFf6dClKubfuzrs+ 2bhZGowrZokOlPbIRFZBcFAQziJ5LH6kqfRvZjwR -----END CERTIFICATE-----Generated at Sat Jun 7 05:54:33 2025 by rpki-client