$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U= Subject key identifier: 79:E0:DC:14:E9:23:71:65:E1:29:51:74:F8:DE:E6:4F:BF:61:9E:8F Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 7ED920BB8A651A438404885BB9EA034165210AF6 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa Signing time: Mon 02 Jun 2025 01:02:38 +0000 ROA not before: Mon 02 Jun 2025 00:57:38 +0000 ROA not after: Mon 01 Jun 2026 01:02:38 +0000 asID: 140456 IP address blocks: 103.153.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d9:20:bb:8a:65:1a:43:84:04:88:5b:b9:ea:03:41:65:21:0a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jun 2 00:57:38 2025 GMT Not After : Jun 1 01:02:38 2026 GMT Subject: CN=79E0DC14E9237165E1295174F8DEE64FBF619E8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:7f:0a:3e:aa:ed:74:a1:73:f3:b2:f2:48: d2:f6:09:e3:e9:fc:a6:cc:30:3d:47:77:68:d6:b8: da:e5:f1:a3:dd:c9:ea:6c:54:62:92:1d:d9:80:af: 05:c5:4c:d4:06:4d:ab:f9:0d:ce:62:b5:4a:1e:be: 84:0e:bd:ee:fa:68:43:15:99:1f:8e:99:12:4f:bf: 97:88:b3:d6:1a:0c:8d:93:f7:75:11:50:73:7e:29: e4:d7:3f:6b:69:9c:94:3e:5e:3c:75:60:80:87:e2: 2b:f2:08:bb:06:89:1f:8e:50:0f:c5:f6:07:85:11: df:53:96:e6:3a:32:56:44:64:f9:85:01:05:07:75: f2:0a:ad:93:59:7e:bc:05:75:0a:f7:18:7f:a1:72: 1e:55:36:3f:2b:a1:ea:21:99:84:a8:52:f7:fb:0d: 49:5d:77:e7:91:09:b9:2d:95:47:3f:08:da:6d:19: 89:f4:0f:13:09:c3:55:3a:bc:99:60:9c:f8:53:95: cf:e1:04:43:17:b8:02:74:84:94:98:00:1d:62:46: 03:a0:75:c4:e2:b0:e9:1e:81:10:56:75:a7:f8:0c: be:56:1f:82:c4:f0:e9:3d:f3:c2:ed:92:c9:ea:ab: b4:65:ae:ff:2c:d4:c4:50:5b:a2:a9:4f:19:b3:1f: 76:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:E0:DC:14:E9:23:71:65:E1:29:51:74:F8:DE:E6:4F:BF:61:9E:8F X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.61.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:e8:e7:a4:8f:29:3a:94:e1:df:4c:f9:e2:87:96:73:fc:95: d2:ba:ec:33:26:21:ee:66:4f:ee:e7:73:e0:03:c3:42:51:e2: b7:26:d8:80:40:99:f9:52:25:33:d5:6b:60:f8:a4:2a:dd:83: 8f:b5:7c:51:79:1d:71:07:f0:6f:ce:e6:18:15:01:9c:d0:59: 4f:30:c2:34:1d:57:40:19:63:e3:c8:49:73:4e:0d:8c:d4:5e: 22:f5:14:f9:04:93:53:e6:00:73:20:59:97:1a:ac:05:e1:2c: 07:89:c8:ce:d9:d9:9c:52:ab:52:98:d9:4b:72:d5:42:bf:07: d6:b0:1a:44:a4:61:ce:69:92:a4:9b:b4:1c:4b:15:71:27:3c: f4:26:26:ae:f3:7c:86:22:36:1e:8f:58:df:7b:9f:f3:68:04: 23:13:1c:fc:34:80:12:b2:4e:98:2b:ee:f1:ff:bf:09:19:84: 2f:52:a0:4e:44:ab:a6:24:ce:46:d0:fb:9b:62:97:af:0b:ef: 45:4b:5d:96:7d:7a:d1:a5:db:c5:ef:9d:cb:09:a7:f9:51:d8: 31:f8:8c:0c:38:b2:1b:e1:b7:6e:d4:25:e7:c6:e7:da:7a:77: b7:b3:9b:ac:91:96:46:6d:1c:eb:c8:00:49:1c:ed:73:51:e6: d6:d1:6f:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUftkgu4plGkOEBIhbueoDQWUhCvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA2MDIwMDU3MzhaFw0yNjA2MDEwMTAyMzhaMDMxMTAvBgNV BAMTKDc5RTBEQzE0RTkyMzcxNjVFMTI5NTE3NEY4REVFNjRGQkY2MTlFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX+H8KPqrtdKFz87LySNL2CePp /KbMMD1Hd2jWuNrl8aPdyepsVGKSHdmArwXFTNQGTav5Dc5itUoevoQOve76aEMV mR+OmRJPv5eIs9YaDI2T93URUHN+KeTXP2tpnJQ+Xjx1YICH4ivyCLsGiR+OUA/F 9geFEd9TluY6MlZEZPmFAQUHdfIKrZNZfrwFdQr3GH+hch5VNj8roeohmYSoUvf7 DUldd+eRCbktlUc/CNptGYn0DxMJw1U6vJlgnPhTlc/hBEMXuAJ0hJSYAB1iRgOg dcTisOkegRBWdaf4DL5WH4LE8Ok988Ltksnqq7Rlrv8s1MRQW6KpTxmzH3YjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeeDcFOkjcWXhKVF0+N7mT79hno8wHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k9MA0GCSqG SIb3DQEBCwUAA4IBAQAe6Oekjyk6lOHfTPnih5Zz/JXSuuwzJiHuZk/u53PgA8NC UeK3JtiAQJn5UiUz1Wtg+KQq3YOPtXxReR1xB/BvzuYYFQGc0FlPMMI0HVdAGWPj yElzTg2M1F4i9RT5BJNT5gBzIFmXGqwF4SwHicjO2dmcUqtSmNlLctVCvwfWsBpE pGHOaZKkm7QcSxVxJzz0Jiau83yGIjYej1jfe5/zaAQjExz8NIASsk6YK+7x/78J GYQvUqBORKumJM5G0PubYpevC+9FS12WfXrRpdvF753LCaf5Udgx+IwMOLIb4bdu 1CXnxufaene3s5uskZZGbRzryABJHO1zUebW0W/A -----END CERTIFICATE-----Generated at Sat Jun 7 05:55:19 2025 by rpki-client