$ rpki-client -vvf repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa File: 3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa (raw, json) Hash identifier: UqzHREfMZRSfOR8nYb3XR77CjtG93BxmjJaVVwgwsiI= Subject key identifier: A6:36:F4:76:C2:9F:9A:CA:32:23:89:86:E6:B5:2D:18:D0:B1:F0:15 Certificate issuer: /CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Certificate serial: 0FB61D0ADBEA3047BE7E6269791BA433A7BD0BE5 Authority key identifier: 79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa Signing time: Wed 14 May 2025 16:00:02 +0000 ROA not before: Wed 14 May 2025 15:55:02 +0000 ROA not after: Wed 13 May 2026 16:00:02 +0000 asID: 149976 IP address blocks: 103.157.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b6:1d:0a:db:ea:30:47:be:7e:62:69:79:1b:a4:33:a7:bd:0b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Validity Not Before: May 14 15:55:02 2025 GMT Not After : May 13 16:00:02 2026 GMT Subject: CN=A636F476C29F9ACA32238986E6B52D18D0B1F015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d5:4e:72:01:16:c9:15:fc:18:96:e9:5b:56: 0a:14:d3:d6:7d:d6:bc:60:b3:1f:3c:2a:4c:ae:55: 86:75:33:43:f8:75:49:c0:30:6f:49:13:2f:f2:e8: 47:cc:14:dc:07:d7:70:a4:ad:8b:fb:ed:bc:22:13: 6e:be:96:d5:69:4b:00:39:22:ec:be:49:e4:21:01: 02:01:34:29:d9:54:4e:87:e7:11:46:ed:57:8e:0c: 4f:0d:4f:4c:80:21:a6:c3:64:b3:d0:e0:f2:5f:62: d2:d9:0a:c1:ac:54:8c:20:07:8b:21:5d:84:15:72: 03:55:f3:12:1c:a7:34:8b:92:41:c9:d5:a0:7f:36: c0:1a:c4:be:74:81:c9:eb:5f:17:c0:9c:7a:12:4e: 05:3d:ae:90:45:a7:c5:95:a1:95:f2:9e:58:31:52: 10:e7:26:7d:b9:2c:37:14:c6:f1:ad:3f:1a:f3:3b: 17:72:2d:56:16:bc:16:8d:e6:27:38:5c:51:8e:f6: 1e:8b:48:c7:a6:f5:d7:38:af:1a:92:4d:da:26:95: ab:be:18:3d:12:95:f4:34:57:e4:93:82:3c:0d:2e: df:d1:d2:50:98:da:d5:39:35:2e:75:99:3c:cf:63: c2:c8:8a:28:14:7a:95:e7:eb:42:0c:7e:28:07:2b: b4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:36:F4:76:C2:9F:9A:CA:32:23:89:86:E6:B5:2D:18:D0:B1:F0:15 X509v3 Authority Key Identifier: keyid:79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.62.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:f9:be:53:92:da:c1:ee:0f:8e:d4:f6:cd:0c:27:d7:62:d2: 2a:e6:b9:26:77:c8:de:79:7f:90:3a:9a:c5:fb:11:e5:e8:03: 20:73:c4:6f:59:67:01:15:1a:b7:44:c9:1f:9b:e5:8a:a1:bb: 87:d0:50:c0:26:03:36:19:1f:f9:f4:b2:e9:41:b6:d5:32:13: 06:81:7a:20:9e:b7:fd:1d:ab:1b:6c:eb:95:81:0f:67:50:55: 13:e9:81:c3:6a:f2:f7:13:ae:2b:9f:8f:38:00:43:31:23:3d: 40:a8:7c:bf:ca:7b:a4:7a:aa:9b:53:f3:44:5d:87:c3:c4:25: 5c:6b:5f:f5:a3:be:9e:83:31:03:3c:41:1e:0a:73:fe:b6:6c: 4a:47:2d:e4:b8:8c:15:f1:4a:29:fd:30:8f:c8:be:33:20:39: 33:87:d6:85:0c:0e:50:67:16:44:08:62:82:5d:e2:cc:9e:9c: 1c:0c:48:4b:88:a2:bc:32:81:33:02:0e:f0:0c:c8:16:8d:90: fe:a1:98:fe:5c:98:7b:39:82:fc:d8:21:55:00:20:c0:42:11: 69:47:43:9b:16:4d:35:34:1b:68:79:ed:85:b2:00:4e:60:95: 8d:7f:e5:fa:a4:bd:68:c6:b1:43:f0:e0:69:78:c0:c8:ea:91: 30:e4:c7:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD7YdCtvqMEe+fmJpeRukM6e9C+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzND QUQyNkRENTAeFw0yNTA1MTQxNTU1MDJaFw0yNjA1MTMxNjAwMDJaMDMxMTAvBgNV BAMTKEE2MzZGNDc2QzI5RjlBQ0EzMjIzODk4NkU2QjUyRDE4RDBCMUYwMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE1U5yARbJFfwYlulbVgoU09Z9 1rxgsx88KkyuVYZ1M0P4dUnAMG9JEy/y6EfMFNwH13CkrYv77bwiE26+ltVpSwA5 Iuy+SeQhAQIBNCnZVE6H5xFG7VeODE8NT0yAIabDZLPQ4PJfYtLZCsGsVIwgB4sh XYQVcgNV8xIcpzSLkkHJ1aB/NsAaxL50gcnrXxfAnHoSTgU9rpBFp8WVoZXynlgx UhDnJn25LDcUxvGtPxrzOxdyLVYWvBaN5ic4XFGO9h6LSMem9dc4rxqSTdomlau+ GD0SlfQ0V+STgjwNLt/R0lCY2tU5NS51mTzPY8LIiigUepXn60IMfigHK7SJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpjb0dsKfmsoyI4mG5rUtGNCx8BUwHwYDVR0j BBgwFoAUeYlE9/vFfVz79fG7aA8tc8rSbdUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmQzMDU4Ny1hN2NhLTQxOTUtYTM1OS0wYzBmNjI3YWY4ZGEvMC83OTg5NDRGN0ZC QzU3RDVDRkJGNUYxQkI2ODBGMkQ3M0NBRDI2REQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzNDQUQy NkRENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZDMwNTg3LWE3Y2EtNDE5NS1h MzU5LTBjMGY2MjdhZjhkYS8wLzMxMzAzMzJlMzEzNTM3MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ50+MA0GCSqG SIb3DQEBCwUAA4IBAQAa+b5TktrB7g+O1PbNDCfXYtIq5rkmd8jeeX+QOprF+xHl 6AMgc8RvWWcBFRq3RMkfm+WKobuH0FDAJgM2GR/59LLpQbbVMhMGgXognrf9Hasb bOuVgQ9nUFUT6YHDavL3E64rn484AEMxIz1AqHy/ynukeqqbU/NEXYfDxCVca1/1 o76egzEDPEEeCnP+tmxKRy3kuIwV8Uop/TCPyL4zIDkzh9aFDA5QZxZECGKCXeLM npwcDEhLiKK8MoEzAg7wDMgWjZD+oZj+XJh7OYL82CFVACDAQhFpR0ObFk01NBto ee2FsgBOYJWNf+X6pL1oxrFD8OBpeMDI6pEw5MfW -----END CERTIFICATE-----Generated at Sun Jun 8 23:10:53 2025 by rpki-client