$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa File: 3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: BvB+dwr9bBtzkRyMA8bTepBQEZZlKW8nu8VJsNMkUH8= Subject key identifier: 83:06:9E:35:CB:92:78:07:0B:41:6D:A3:CA:0E:8D:D2:26:18:A9:AA Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 657749F32590038068238BF46517F3F398A91EAC Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa Signing time: Tue 27 May 2025 11:01:31 +0000 ROA not before: Tue 27 May 2025 10:56:31 +0000 ROA not after: Tue 26 May 2026 11:01:31 +0000 asID: 38524 IP address blocks: 103.191.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 19:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:77:49:f3:25:90:03:80:68:23:8b:f4:65:17:f3:f3:98:a9:1e:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: May 27 10:56:31 2025 GMT Not After : May 26 11:01:31 2026 GMT Subject: CN=83069E35CB9278070B416DA3CA0E8DD22618A9AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:60:40:9d:d9:43:89:d8:7c:86:b1:cc:0f:b6: e7:6d:8a:b2:4d:3d:0b:54:c5:7f:6d:63:14:9c:7f: 07:c7:4c:e4:14:b9:62:8d:87:62:41:c4:a9:79:1b: 79:31:e2:25:13:89:b2:89:c1:5c:14:18:ba:fd:98: 3e:b0:a3:9a:ef:a0:f1:7d:1a:1c:d6:7b:22:7d:6c: f5:af:2d:60:bc:ba:97:f9:c5:d4:6b:7c:a3:8b:ae: cc:06:b7:26:c0:27:34:c5:f3:f0:63:95:8d:2c:6f: 47:2b:ab:14:e0:b5:de:3b:b4:71:04:05:75:56:49: 32:90:87:a1:e8:40:32:f6:8e:5d:08:0c:a2:d7:cd: f0:51:cf:bb:41:df:92:c2:6e:2a:84:d7:b4:ea:6d: 6c:ed:5b:d3:fd:71:f3:b6:e2:d6:dd:98:d1:0d:5d: 82:1b:22:21:4e:89:91:11:dd:d6:33:0d:0e:5d:92: aa:fd:e0:08:a4:c3:c3:c1:eb:e1:09:c8:13:cc:1b: 3d:bf:d4:ac:b1:5b:3d:a5:2f:84:64:1e:ce:95:15: 48:44:c1:39:a8:a2:df:fc:e8:5b:16:03:72:37:69: 94:d4:eb:4a:d1:b0:b9:53:48:d5:35:2b:24:80:53: e1:fb:6e:af:88:e9:2e:eb:77:9b:7c:f0:fc:ff:a2: 86:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:06:9E:35:CB:92:78:07:0B:41:6D:A3:CA:0E:8D:D2:26:18:A9:AA X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/24 Signature Algorithm: sha256WithRSAEncryption 90:82:53:8e:26:21:5d:53:19:67:6e:6c:7b:e9:71:73:e4:4f: aa:ee:28:58:b5:09:81:38:85:5e:06:ee:f2:66:a2:33:9f:94: 5c:bc:08:f8:36:4a:7e:07:55:e6:49:f2:4b:f3:d7:25:35:f5: 2f:55:97:ad:d7:b9:91:c2:c9:9a:1d:10:dd:e3:e9:b0:cd:a1: 12:c4:b7:19:a0:c2:54:fa:b8:49:07:b6:e7:cf:09:5e:61:80: 7a:03:88:db:78:57:62:3a:39:f6:88:46:0d:70:36:f8:7c:67: 1b:5a:24:8e:39:af:c3:06:c9:41:c2:eb:36:a2:04:b9:45:90: 97:ed:9f:05:e1:82:fb:64:94:67:27:3a:43:d7:a4:2b:a0:c0: fa:e8:a5:98:45:a1:a6:cb:33:ad:c8:a8:d6:50:e4:c1:5b:13: bd:d8:e3:6b:67:aa:26:94:09:8f:e6:ef:bd:b0:98:3c:61:7f: 99:56:a1:3b:e9:bb:02:a8:d7:36:6a:49:23:37:cd:ab:5c:ba: c4:bc:f1:aa:77:ad:dc:43:ce:64:18:8c:c5:53:03:b7:58:11: b3:e8:d9:25:a8:1e:4a:f1:10:1c:2b:08:79:78:95:ce:ea:3b: 8c:03:d8:91:62:60:a9:d8:9b:0b:7c:72:51:ea:0e:63:ab:b9: 79:dd:aa:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZXdJ8yWQA4BoI4v0ZRfz85ipHqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yNTA1MjcxMDU2MzFaFw0yNjA1MjYxMTAxMzFaMDMxMTAvBgNV BAMTKDgzMDY5RTM1Q0I5Mjc4MDcwQjQxNkRBM0NBMEU4REQyMjYxOEE5QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0YECd2UOJ2HyGscwPtudtirJN PQtUxX9tYxScfwfHTOQUuWKNh2JBxKl5G3kx4iUTibKJwVwUGLr9mD6wo5rvoPF9 GhzWeyJ9bPWvLWC8upf5xdRrfKOLrswGtybAJzTF8/BjlY0sb0crqxTgtd47tHEE BXVWSTKQh6HoQDL2jl0IDKLXzfBRz7tB35LCbiqE17TqbWztW9P9cfO24tbdmNEN XYIbIiFOiZER3dYzDQ5dkqr94Aikw8PB6+EJyBPMGz2/1KyxWz2lL4RkHs6VFUhE wTmoot/86FsWA3I3aZTU60rRsLlTSNU1KySAU+H7bq+I6S7rd5t88Pz/ooa9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgwaeNcuSeAcLQW2jyg6N0iYYqaowHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7+YMA0GCSqG SIb3DQEBCwUAA4IBAQCQglOOJiFdUxlnbmx76XFz5E+q7ihYtQmBOIVeBu7yZqIz n5RcvAj4Nkp+B1XmSfJL89clNfUvVZet17mRwsmaHRDd4+mwzaESxLcZoMJU+rhJ B7bnzwleYYB6A4jbeFdiOjn2iEYNcDb4fGcbWiSOOa/DBslBwus2ogS5RZCX7Z8F 4YL7ZJRnJzpD16QroMD66KWYRaGmyzOtyKjWUOTBWxO92ONrZ6omlAmP5u+9sJg8 YX+ZVqE76bsCqNc2akkjN82rXLrEvPGqd63cQ85kGIzFUwO3WBGz6NklqB5K8RAc Kwh5eJXO6juMA9iRYmCp2JsLfHJR6g5jq7l53ar4 -----END CERTIFICATE-----Generated at Thu Jun 5 18:30:28 2025 by rpki-client