$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa (raw, json) Hash identifier: cdpLxSADx6mq88cWkf5UoxPyeajYM3Kq/Bc+NW2yaec= Subject key identifier: 18:3E:5B:A5:25:54:55:4D:63:08:BA:99:86:3C:B2:FA:DD:60:B2:10 Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 2F530D451E5FD862E84E82A7C143F0B39EBDA66F Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa Signing time: Mon 02 Jun 2025 02:03:57 +0000 ROA not before: Mon 02 Jun 2025 01:58:57 +0000 ROA not after: Mon 01 Jun 2026 02:03:57 +0000 asID: 139421 IP address blocks: 103.144.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:53:0d:45:1e:5f:d8:62:e8:4e:82:a7:c1:43:f0:b3:9e:bd:a6:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Jun 2 01:58:57 2025 GMT Not After : Jun 1 02:03:57 2026 GMT Subject: CN=183E5BA52554554D6308BA99863CB2FADD60B210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:f4:d5:7c:f6:b2:49:b4:4c:e8:a0:46:1c: 89:b2:51:32:3e:9a:8d:d2:4f:c2:a4:67:4a:a9:6a: 2b:07:d1:df:c9:69:9b:80:7e:1d:1d:42:38:cf:cd: df:b4:30:4c:eb:35:cd:32:a4:24:ae:e3:a8:77:ce: 7d:ca:6e:a4:aa:2e:7f:22:80:27:18:38:cc:c2:e6: 13:8d:8f:2f:95:32:d5:e8:37:d4:8a:92:59:3e:b5: b6:77:0d:4a:93:f4:96:f5:0e:82:c1:42:79:a6:df: ce:c5:bb:5d:47:10:99:35:c7:d0:ac:98:e3:69:40: cc:1e:fd:cf:a4:35:4e:43:e1:be:38:2e:35:b1:bb: 3e:75:6b:6c:0e:d5:88:01:3a:f0:2d:09:be:31:c1: 98:7b:da:05:57:e5:56:4c:ba:b1:fe:69:6d:64:6e: 87:4b:de:3d:be:72:76:2c:e3:9a:8e:bf:d6:3c:dd: 6f:4a:36:69:27:c1:e8:07:5d:b6:f0:3c:91:67:16: f7:c9:aa:5d:23:66:53:b0:a0:8e:0e:2a:18:c1:d9: a0:aa:84:b3:69:a9:fd:2b:e8:41:d7:b0:95:c4:e6: 83:ed:47:7c:7d:d0:f2:ea:a6:14:e4:7b:72:9b:26: 92:ab:67:ba:ea:28:2e:d2:18:f5:ee:48:ba:83:d3: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3E:5B:A5:25:54:55:4D:63:08:BA:99:86:3C:B2:FA:DD:60:B2:10 X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/23 Signature Algorithm: sha256WithRSAEncryption a6:2f:ad:83:bb:00:c6:84:ea:bc:f5:de:4e:4b:07:4e:05:2f: 5b:2a:4d:b1:5c:d9:e7:1c:82:4a:69:dc:8f:3a:93:8e:27:8d: a5:77:3a:6b:5f:2b:55:66:be:07:3e:a5:16:7f:ef:70:9b:f7: 90:57:85:00:ae:07:80:e5:04:09:3d:62:8e:42:d6:2a:c4:9b: 83:d0:fa:91:9f:74:c2:fa:2a:71:47:59:c2:9e:22:f4:fe:15: 01:4b:fc:f5:c5:14:73:44:02:7e:3c:54:e0:55:e8:fb:3c:9d: 2c:0e:22:4a:60:f2:fa:fd:2a:8b:8e:fb:f6:28:86:80:7f:30: 7c:0e:c7:9f:b8:4f:3e:8b:45:7d:c1:01:94:c0:aa:21:68:21: 23:e6:12:87:fd:7a:a0:57:f1:d5:53:0e:b6:99:d6:4a:53:7c: 58:19:66:41:0d:c8:82:32:6d:09:d5:a4:f1:51:2a:9f:b2:43: d0:2c:a0:d0:a7:64:08:81:f0:d4:0d:c2:06:25:13:fe:6a:a5: 7e:63:a3:66:b5:42:60:94:9c:9e:38:af:eb:4c:90:2e:19:dc: 7e:e4:8d:25:d8:89:1e:55:e2:ff:6b:a9:6d:78:7c:ed:4a:2a: d6:3b:04:2c:c4:c0:f9:a6:f7:64:fb:06:4e:96:48:41:57:b0: e8:5e:52:6d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUL1MNRR5f2GLoToKnwUPws569pm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNTA2MDIwMTU4NTdaFw0yNjA2MDEwMjAzNTdaMDMxMTAvBgNV BAMTKDE4M0U1QkE1MjU1NDU1NEQ2MzA4QkE5OTg2M0NCMkZBREQ2MEIyMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBJPTVfPaySbRM6KBGHImyUTI+ mo3ST8KkZ0qpaisH0d/JaZuAfh0dQjjPzd+0MEzrNc0ypCSu46h3zn3KbqSqLn8i gCcYOMzC5hONjy+VMtXoN9SKklk+tbZ3DUqT9Jb1DoLBQnmm387Fu11HEJk1x9Cs mONpQMwe/c+kNU5D4b44LjWxuz51a2wO1YgBOvAtCb4xwZh72gVX5VZMurH+aW1k bodL3j2+cnYs45qOv9Y83W9KNmknwegHXbbwPJFnFvfJql0jZlOwoI4OKhjB2aCq hLNpqf0r6EHXsJXE5oPtR3x90PLqphTke3KbJpKrZ7rqKC7SGPXuSLqD0/8dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGD5bpSVUVU1jCLqZhjyy+t1gshAwHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkGYwDQYJ KoZIhvcNAQELBQADggEBAKYvrYO7AMaE6rz13k5LB04FL1sqTbFc2eccgkpp3I86 k44njaV3OmtfK1Vmvgc+pRZ/73Cb95BXhQCuB4DlBAk9Yo5C1irEm4PQ+pGfdML6 KnFHWcKeIvT+FQFL/PXFFHNEAn48VOBV6Ps8nSwOIkpg8vr9KouO+/YohoB/MHwO x5+4Tz6LRX3BAZTAqiFoISPmEof9eqBX8dVTDraZ1kpTfFgZZkENyIIybQnVpPFR Kp+yQ9AsoNCnZAiB8NQNwgYlE/5qpX5jo2a1QmCUnJ44r+tMkC4Z3H7kjSXYiR5V 4v9rqW14fO1KKtY7BCzEwPmm92T7Bk6WSEFXsOheUm0= -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:46 2025 by rpki-client