$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa File: 3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa (raw, json) Hash identifier: PNy2Ky9qBufKbv/f4p4dFdjvMCRYXe8YTpQCXZbAHQM= Subject key identifier: DB:BF:85:81:BF:70:45:F6:09:CD:7C:27:C1:45:F5:41:3B:BE:E0:FB Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Certificate serial: 38969E5E400B322E820C8E067258E451108DBACB Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa Signing time: Mon 02 Jun 2025 02:03:04 +0000 ROA not before: Mon 02 Jun 2025 01:58:04 +0000 ROA not after: Mon 01 Jun 2026 02:03:04 +0000 asID: 138107 IP address blocks: 103.126.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:96:9e:5e:40:0b:32:2e:82:0c:8e:06:72:58:e4:51:10:8d:ba:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Validity Not Before: Jun 2 01:58:04 2025 GMT Not After : Jun 1 02:03:04 2026 GMT Subject: CN=DBBF8581BF7045F609CD7C27C145F5413BBEE0FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7a:bc:3c:eb:33:5d:62:35:ed:2d:78:cd:53: d1:c8:a2:b4:87:02:dc:93:de:27:d0:c9:5a:66:61: 95:ea:c0:c5:1b:de:11:fb:61:ca:0f:8d:5c:28:cf: 23:ff:04:c7:04:da:ee:e9:63:c8:dc:80:be:36:e2: f4:c1:41:95:c7:56:c9:ac:a6:e5:98:c1:19:54:19: 9a:95:b2:21:99:76:6b:3d:9d:85:55:73:a2:8a:ab: ce:1a:6d:76:52:ef:57:66:b8:43:58:75:18:65:3f: 44:44:80:f1:fc:c5:12:0a:94:35:bf:f1:85:1c:0c: e7:4d:a3:cf:e8:db:68:9f:c6:62:4a:8f:64:a5:82: 58:c0:53:9f:ac:04:97:28:cf:92:87:ce:54:25:00: c6:5e:7e:a7:99:83:24:08:5b:5b:c5:9d:fc:1a:86: b8:b3:8e:a4:a6:71:c1:31:49:16:2b:0e:2c:8a:25: da:ac:4b:0f:de:5e:29:a3:24:37:ab:8f:b1:0b:78: 04:28:e9:f0:f2:30:9a:38:4f:3f:56:b7:46:03:52: 3e:6d:5d:33:0c:36:0e:67:81:b9:fb:55:55:ab:4b: fc:c3:89:67:e1:e2:b8:fb:6c:92:f8:b0:86:d1:f6: 5d:09:e3:a4:e7:3a:71:ac:9d:e7:b6:39:73:92:02: 5c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BF:85:81:BF:70:45:F6:09:CD:7C:27:C1:45:F5:41:3B:BE:E0:FB X509v3 Authority Key Identifier: keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.56.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:fe:6a:e0:8e:cf:e6:b9:8c:3f:f1:59:b4:21:ff:cd:00:44: da:91:c7:ab:0f:85:4b:c3:fd:67:48:8b:17:bc:2f:b9:55:86: 1e:ff:6e:0c:c2:a5:74:13:52:ba:19:a6:fd:98:83:9e:be:69: 38:48:b6:25:d1:a9:1f:ee:e2:fb:2d:d8:a4:e1:a3:4e:96:5c: 69:5d:8d:22:2d:31:73:89:e4:9b:bc:74:66:3d:48:bf:e4:5c: c6:ba:24:a6:c2:23:fe:98:34:c6:19:9a:dd:67:24:6a:08:ec: d1:f3:3e:42:60:64:a6:00:67:5e:4c:03:96:9e:4a:0c:73:67: b3:ce:bc:b1:97:02:cd:4e:f0:1d:f2:2d:c5:fe:4e:54:93:e7: 39:3b:91:df:cd:eb:b1:d9:e6:7e:56:3d:82:fe:c0:2a:37:66: c4:01:fc:e4:e3:da:a8:29:6f:ab:9d:98:7e:6f:91:c1:68:46: 2b:48:b1:c4:ae:a1:1d:fc:d4:70:bc:57:00:80:f3:98:b9:d6: 40:43:e6:37:cc:19:2f:7b:79:10:7f:06:db:a8:de:8c:19:4f: 81:91:cb:a0:2a:48:fd:1f:46:9b:5e:b4:37:32:5e:94:1a:e5: 98:df:57:14:62:7d:28:6a:50:e2:f7:01:5e:f5:9a:17:e7:25: c5:1a:58:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOJaeXkALMi6CDI4GcljkURCNusswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFB NEY2Njg5RjAeFw0yNTA2MDIwMTU4MDRaFw0yNjA2MDEwMjAzMDRaMDMxMTAvBgNV BAMTKERCQkY4NTgxQkY3MDQ1RjYwOUNEN0MyN0MxNDVGNTQxM0JCRUUwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFerw86zNdYjXtLXjNU9HIorSH AtyT3ifQyVpmYZXqwMUb3hH7YcoPjVwozyP/BMcE2u7pY8jcgL424vTBQZXHVsms puWYwRlUGZqVsiGZdms9nYVVc6KKq84abXZS71dmuENYdRhlP0REgPH8xRIKlDW/ 8YUcDOdNo8/o22ifxmJKj2SlgljAU5+sBJcoz5KHzlQlAMZefqeZgyQIW1vFnfwa hrizjqSmccExSRYrDiyKJdqsSw/eXimjJDerj7ELeAQo6fDyMJo4Tz9Wt0YDUj5t XTMMNg5ngbn7VVWrS/zDiWfh4rj7bJL4sIbR9l0J46TnOnGsnee2OXOSAlyPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU27+Fgb9wRfYJzXwnwUX1QTu+4PswHwYDVR0j BBgwFoAUmG7+HCu4sOThRy6dqlt3WqT2aJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTYyZDE1Yi0xMDJiLTQzMWYtYTUzOS0wYTkzMmIzMTM2NmMvMC85ODZFRkUxQzJC QjhCMEU0RTE0NzJFOURBQTVCNzc1QUE0RjY2ODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFBNEY2 Njg5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMxMzAzMzJlMzEzMjM2MmUzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ344MA0GCSqG SIb3DQEBCwUAA4IBAQBv/mrgjs/muYw/8Vm0If/NAETakcerD4VLw/1nSIsXvC+5 VYYe/24MwqV0E1K6Gab9mIOevmk4SLYl0akf7uL7Ldik4aNOllxpXY0iLTFzieSb vHRmPUi/5FzGuiSmwiP+mDTGGZrdZyRqCOzR8z5CYGSmAGdeTAOWnkoMc2ezzryx lwLNTvAd8i3F/k5Uk+c5O5Hfzeux2eZ+Vj2C/sAqN2bEAfzk49qoKW+rnZh+b5HB aEYrSLHErqEd/NRwvFcAgPOYudZAQ+Y3zBkve3kQfwbbqN6MGU+BkcugKkj9H0ab XrQ3Ml6UGuWY31cUYn0oalDi9wFe9ZoX5yXFGlit -----END CERTIFICATE-----Generated at Sat Jun 7 22:44:34 2025 by rpki-client