$ rpki-client -vvf repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/3130332e3134342e39302e302f32332d3234203d3e20313339343235.roa File: 3130332e3134342e39302e302f32332d3234203d3e20313339343235.roa (raw, json) Hash identifier: ivixgTI+bD3oZFKOSl+IC3pWvOMcPxvLBq04R8ayQa4= Subject key identifier: F3:AE:08:F8:EA:5B:6B:80:86:91:9A:83:80:7A:80:B0:E3:C2:DB:D3 Certificate issuer: /CN=1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE Certificate serial: 36C5C6F00E7A8D11F62B390CEFAB12475B7DDA17 Authority key identifier: 1E:07:47:65:6C:CC:5D:4B:BB:DB:85:B8:DE:73:5A:6D:F4:4C:72:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/3130332e3134342e39302e302f32332d3234203d3e20313339343235.roa Signing time: Mon 02 Jun 2025 01:02:32 +0000 ROA not before: Mon 02 Jun 2025 00:57:32 +0000 ROA not after: Mon 01 Jun 2026 01:02:32 +0000 asID: 139425 IP address blocks: 103.144.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.crl rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c5:c6:f0:0e:7a:8d:11:f6:2b:39:0c:ef:ab:12:47:5b:7d:da:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE Validity Not Before: Jun 2 00:57:32 2025 GMT Not After : Jun 1 01:02:32 2026 GMT Subject: CN=F3AE08F8EA5B6B8086919A83807A80B0E3C2DBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:de:7a:27:20:7e:69:e0:53:7c:23:07:83: 48:59:29:21:96:72:24:7d:b1:a5:f5:28:cf:6e:96: 58:a1:f6:20:59:c2:a7:07:d6:5f:0b:48:27:c7:d4: 80:5d:2d:06:be:65:c1:ab:d8:0b:0e:6e:5e:61:aa: bd:db:6c:14:ad:9e:36:46:98:ce:f1:84:bf:b0:b6: 46:a3:b1:51:2f:b5:e2:81:c0:86:0a:b0:2d:19:33: 27:43:ba:4c:5a:aa:00:de:8b:06:e5:0a:0e:26:2d: 6c:91:8f:eb:eb:b2:1e:d5:51:da:62:41:a2:7b:7d: 99:59:40:1e:cf:5a:28:6b:e5:50:3a:1d:3b:4b:a6: b8:9a:80:61:31:64:7b:9c:d8:97:97:69:36:04:1e: 85:48:cd:75:8c:46:da:44:69:58:7f:0c:5f:a0:4d: b5:70:c3:50:d9:c2:ea:69:4c:9b:c9:89:c2:8d:0d: 5c:9d:42:c8:72:b3:df:56:b2:37:6a:63:72:3b:cd: e1:ea:6e:b7:ee:e1:23:3c:98:1c:47:5c:24:6b:7d: e0:0b:f8:b1:30:55:43:1c:4f:12:84:a5:3c:42:1c: 02:9b:40:52:c3:53:03:0d:78:bd:a6:56:e0:af:12: 58:49:64:d8:22:fd:75:52:1b:44:e8:bb:ee:ca:15: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AE:08:F8:EA:5B:6B:80:86:91:9A:83:80:7A:80:B0:E3:C2:DB:D3 X509v3 Authority Key Identifier: keyid:1E:07:47:65:6C:CC:5D:4B:BB:DB:85:B8:DE:73:5A:6D:F4:4C:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/3130332e3134342e39302e302f32332d3234203d3e20313339343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.90.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:e6:d6:64:96:58:8a:35:fd:e8:02:7a:a3:31:e6:27:b9:b3: 20:3d:f0:f5:88:d6:7f:81:22:84:5e:87:88:9f:82:85:42:22: 2b:1c:e4:39:ce:ea:4b:d3:e8:d4:11:1c:b9:25:62:ed:68:6c: 53:a6:20:75:27:dc:68:f6:7e:33:7a:bb:d8:5a:b7:8b:fb:84: d8:42:57:b0:e9:ad:12:88:4d:9b:08:58:7e:9b:7c:77:27:42: aa:c9:96:72:89:d1:14:34:af:65:16:da:8a:18:bf:f9:8a:40: 8f:c0:6e:3b:39:54:38:af:4d:24:f1:f7:05:7b:1d:9c:f2:da: e4:a9:e1:98:a4:f5:52:19:4f:f1:a5:9c:6c:cc:57:10:b1:4d: 81:e5:22:e8:50:f4:f8:77:62:0d:09:7d:20:b9:fb:90:8f:3e: 37:dc:49:11:50:1a:3a:72:25:7e:50:c8:30:6d:33:aa:f3:c5: 49:3d:4e:56:16:b1:1d:22:8b:17:3a:42:76:ab:87:36:15:05: 91:fa:de:92:21:1a:1c:79:b3:ea:89:94:82:ef:a7:5a:e7:2d: 59:c7:9a:b1:6a:d9:59:a9:9a:30:7f:b6:b4:9f:b1:02:82:b0: fc:7b:39:ef:e4:f4:ca:f0:c6:77:61:e0:95:3d:b4:4e:38:51: 14:11:99:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNsXG8A56jRH2KzkM76sSR1t92hcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUUwNzQ3NjU2Q0NDNUQ0QkJCREI4NUI4REU3MzVBNkRG NDRDNzJBRTAeFw0yNTA2MDIwMDU3MzJaFw0yNjA2MDEwMTAyMzJaMDMxMTAvBgNV BAMTKEYzQUUwOEY4RUE1QjZCODA4NjkxOUE4MzgwN0E4MEIwRTNDMkRCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//d56JyB+aeBTfCMHg0hZKSGW ciR9saX1KM9ullih9iBZwqcH1l8LSCfH1IBdLQa+ZcGr2AsObl5hqr3bbBStnjZG mM7xhL+wtkajsVEvteKBwIYKsC0ZMydDukxaqgDeiwblCg4mLWyRj+vrsh7VUdpi QaJ7fZlZQB7PWihr5VA6HTtLpriagGExZHuc2JeXaTYEHoVIzXWMRtpEaVh/DF+g TbVww1DZwuppTJvJicKNDVydQshys99WsjdqY3I7zeHqbrfu4SM8mBxHXCRrfeAL +LEwVUMcTxKEpTxCHAKbQFLDUwMNeL2mVuCvElhJZNgi/XVSG0Tou+7KFc3HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU864I+Opba4CGkZqDgHqAsOPC29MwHwYDVR0j BBgwFoAUHgdHZWzMXUu724W43nNabfRMcq4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmVhZDJmNS04YjY1LTQ4MjktODg0Yi1kN2MwNmRkMGY4M2EvMC8xRTA3NDc2NTZD Q0M1RDRCQkJEQjg1QjhERTczNUE2REY0NEM3MkFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUUwNzQ3NjU2Q0NDNUQ0QkJCREI4NUI4REU3MzVBNkRGNDRD NzJBRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZWFkMmY1LThiNjUtNDgyOS04 ODRiLWQ3YzA2ZGQwZjgzYS8wLzMxMzAzMzJlMzEzNDM0MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5BaMA0GCSqG SIb3DQEBCwUAA4IBAQAr5tZklliKNf3oAnqjMeYnubMgPfD1iNZ/gSKEXoeIn4KF QiIrHOQ5zupL0+jUERy5JWLtaGxTpiB1J9xo9n4zervYWreL+4TYQlew6a0SiE2b CFh+m3x3J0KqyZZyidEUNK9lFtqKGL/5ikCPwG47OVQ4r00k8fcFex2c8trkqeGY pPVSGU/xpZxszFcQsU2B5SLoUPT4d2INCX0gufuQjz433EkRUBo6ciV+UMgwbTOq 88VJPU5WFrEdIosXOkJ2q4c2FQWR+t6SIRocebPqiZSC76da5y1Zx5qxatlZqZow f7a0n7ECgrD8eznv5PTK8MZ3YeCVPbROOFEUEZle -----END CERTIFICATE-----Generated at Fri Jun 6 17:02:10 2025 by rpki-client