$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa File: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (raw, json) Hash identifier: HdUQMZ7SOKpAyFz6JesRqd55RtIwIZs1nM/RQd+kRrc= Subject key identifier: 44:E5:67:4C:37:D4:EF:9C:18:DC:FA:55:F7:5C:FE:1D:A1:C1:6C:6E Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 7A8C0EC3DEB8A46168092CBB0141D641D7DAF6A3 Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa Signing time: Fri 16 May 2025 14:02:23 +0000 ROA not before: Fri 16 May 2025 13:57:23 +0000 ROA not after: Fri 15 May 2026 14:02:23 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:8c:0e:c3:de:b8:a4:61:68:09:2c:bb:01:41:d6:41:d7:da:f6:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: May 16 13:57:23 2025 GMT Not After : May 15 14:02:23 2026 GMT Subject: CN=44E5674C37D4EF9C18DCFA55F75CFE1DA1C16C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:91:10:20:c6:90:cc:1b:54:6e:23:c1:25:76: e0:30:71:4a:51:ae:78:05:33:69:3b:08:d8:35:1e: 79:a3:c3:f4:ea:ad:8b:ff:aa:c8:78:8e:bc:18:0d: 29:93:be:43:33:9a:37:83:74:95:85:de:79:5d:fb: 02:ac:74:ce:07:fd:a7:69:88:22:12:7e:77:b9:9c: dc:2c:2b:76:c7:ec:80:c1:d5:e6:0a:28:71:1f:b9: 5a:a3:e2:71:c6:c6:74:dc:73:6f:9a:68:81:ee:a0: b2:32:c3:fe:cd:77:48:15:fd:3f:3e:6d:1d:89:53: 3a:b3:c1:da:37:f7:cd:df:89:9c:8e:87:e3:58:f3: 40:93:15:5e:d4:45:8a:ef:dc:d2:60:f8:2b:7b:1d: e9:2d:08:d7:68:6b:79:4c:23:2a:6f:6a:60:95:e2: f1:1f:56:07:b3:56:26:4c:3b:1a:d7:59:c9:39:42: 63:f9:ba:15:9b:db:8a:ef:40:af:96:0f:62:f3:f6: 88:dd:74:87:58:b0:58:ee:67:95:2c:eb:f7:62:bb: e8:df:45:c4:a0:5f:90:06:9e:f9:68:78:6a:06:5f: c6:b4:75:65:3b:56:b8:c3:fa:8f:30:46:48:dc:e6: 10:39:16:4f:0b:b3:6e:ff:7d:9e:68:4d:74:43:8e: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E5:67:4C:37:D4:EF:9C:18:DC:FA:55:F7:5C:FE:1D:A1:C1:6C:6E X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption 80:57:b1:f5:94:dd:e3:31:d6:e2:9e:44:72:62:f3:89:4a:90: 44:7a:73:1a:4d:98:4f:ef:90:d4:a5:a3:be:47:7e:40:40:aa: 5b:2d:5b:64:7d:3b:f4:ea:a1:2b:f3:8f:1f:73:30:ed:e7:0b: cf:38:2f:d4:08:1c:5c:1c:d3:40:40:26:e7:d7:56:6d:44:49: 01:42:a1:3c:74:de:d7:fe:b2:35:d4:f5:46:8a:e1:9a:59:8e: 2e:d7:67:3b:80:dc:66:57:96:1a:61:af:62:59:81:7b:11:eb: 35:95:e7:4d:58:9a:50:47:cf:4e:2f:23:49:7f:8a:97:72:c9: bd:73:f7:58:d6:d0:19:cf:e4:18:1e:7d:9a:3e:f7:46:5b:b7: 67:3e:39:76:69:4d:dd:b7:44:6d:8a:78:26:ac:51:c1:c4:5e: c8:47:77:ab:a6:64:1d:2a:6c:86:6e:c6:29:65:3d:0b:b3:c5: 0b:4f:4e:51:da:95:ad:12:98:94:de:c3:22:2c:d1:7d:54:5b: 1a:3a:87:2d:9f:2e:25:03:61:66:2e:d1:38:84:87:28:6f:aa: 49:63:16:42:5a:69:d8:ca:12:08:8a:e7:1b:4a:85:07:f2:41: 2d:a8:f5:7d:d9:a8:b7:53:ec:4d:3d:3a:60:18:71:1c:3e:a3: a7:d6:38:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeowOw964pGFoCSy7AUHWQdfa9qMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNTA1MTYxMzU3MjNaFw0yNjA1MTUxNDAyMjNaMDMxMTAvBgNV BAMTKDQ0RTU2NzRDMzdENEVGOUMxOERDRkE1NUY3NUNGRTFEQTFDMTZDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkRAgxpDMG1RuI8ElduAwcUpR rngFM2k7CNg1Hnmjw/TqrYv/qsh4jrwYDSmTvkMzmjeDdJWF3nld+wKsdM4H/adp iCISfne5nNwsK3bH7IDB1eYKKHEfuVqj4nHGxnTcc2+aaIHuoLIyw/7Nd0gV/T8+ bR2JUzqzwdo3983fiZyOh+NY80CTFV7URYrv3NJg+Ct7HektCNdoa3lMIypvamCV 4vEfVgezViZMOxrXWck5QmP5uhWb24rvQK+WD2Lz9ojddIdYsFjuZ5Us6/diu+jf RcSgX5AGnvloeGoGX8a0dWU7VrjD+o8wRkjc5hA5Fk8Ls27/fZ5oTXRDjmA3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUROVnTDfU75wY3PpV91z+HaHBbG4wHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQCAV7H1lN3jMdbinkRyYvOJSpBEenMaTZhP75DUpaO+R35A QKpbLVtkfTv06qEr848fczDt5wvPOC/UCBxcHNNAQCbn11ZtREkBQqE8dN7X/rI1 1PVGiuGaWY4u12c7gNxmV5YaYa9iWYF7Ees1ledNWJpQR89OLyNJf4qXcsm9c/dY 1tAZz+QYHn2aPvdGW7dnPjl2aU3dt0RtingmrFHBxF7IR3erpmQdKmyGbsYpZT0L s8ULT05R2pWtEpiU3sMiLNF9VFsaOoctny4lA2FmLtE4hIcob6pJYxZCWmnYyhII iucbSoUH8kEtqPV92ai3U+xNPTpgGHEcPqOn1jj+ -----END CERTIFICATE-----Generated at Mon Jun 9 00:53:24 2025 by rpki-client