$ rpki-client -vvf repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa File: 3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa (raw, json) Hash identifier: CeAdG0+iQqX7R4GwVIJ8BeduoZGnHUGjqn0LAsOfmaQ= Subject key identifier: 19:42:88:A0:67:E4:D7:73:C4:47:6B:00:0A:74:7D:AA:0C:8D:76:82 Certificate issuer: /CN=571E2EFA23FEA611810611410635E23A090F4550 Certificate serial: 4CD09292871726F31546930C4A9D7283B25876D5 Authority key identifier: 57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa Signing time: Tue 20 May 2025 23:00:02 +0000 ROA not before: Tue 20 May 2025 22:55:02 +0000 ROA not after: Tue 19 May 2026 23:00:02 +0000 asID: 141621 IP address blocks: 103.155.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d0:92:92:87:17:26:f3:15:46:93:0c:4a:9d:72:83:b2:58:76:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=571E2EFA23FEA611810611410635E23A090F4550 Validity Not Before: May 20 22:55:02 2025 GMT Not After : May 19 23:00:02 2026 GMT Subject: CN=194288A067E4D773C4476B000A747DAA0C8D7682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:12:61:1c:b4:11:ce:4e:f1:6b:bc:45:4d:6f: c7:3f:38:8c:1f:0f:c8:c1:ad:37:e3:fe:bf:5f:3a: 1d:ee:60:78:57:10:6d:00:77:49:d4:40:77:4f:28: 94:f0:4f:b6:ce:54:f6:2e:ed:dc:72:2b:f8:eb:b0: bc:d6:aa:f5:05:52:41:76:ba:78:79:78:88:25:0a: 99:d2:11:ea:2a:08:fd:d9:27:17:57:04:d2:0f:1f: ce:b8:c9:4d:e3:d0:0d:d7:d1:d0:ee:16:85:7a:b0: ee:6a:a6:32:33:a0:6c:18:6f:52:7b:23:5d:34:17: ee:9f:cb:22:ea:85:b5:21:07:3d:19:30:11:7f:42: 49:3c:71:8b:fb:e2:f6:fe:96:5b:62:e8:29:d6:f6: ea:62:26:4b:27:ab:16:80:4c:3c:81:ff:a5:96:06: 83:08:d9:e7:5a:34:5b:bc:5c:f6:af:51:ff:aa:e4: 42:7a:09:fa:9c:a9:0c:c1:be:d7:01:b7:25:5e:c1: 9f:b2:a8:89:29:cb:f0:aa:23:47:89:1d:89:dc:76: 02:0b:04:4b:98:c4:fc:6c:cf:75:3d:f8:6a:25:27: 2d:53:2e:13:aa:2c:b1:02:ac:e3:9b:cc:d8:98:e6: c3:0e:5a:a3:3a:1f:53:c0:c1:12:74:af:49:12:9b: 2a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:42:88:A0:67:E4:D7:73:C4:47:6B:00:0A:74:7D:AA:0C:8D:76:82 X509v3 Authority Key Identifier: keyid:57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36352e302f32342d3234203d3e20313431363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.65.0/24 Signature Algorithm: sha256WithRSAEncryption 30:4f:87:9d:a7:bf:cf:8c:0c:b1:87:22:00:04:4f:e9:15:ef: c4:f8:5d:5d:68:c6:5a:3d:56:4a:03:83:1d:f0:e1:9b:27:3b: 61:aa:11:02:a7:6b:dd:b7:eb:11:da:10:88:9c:53:bf:0d:c3: 8a:d3:a4:67:89:a4:6e:cd:0d:21:56:6e:db:c6:e2:3b:39:31: 64:b6:28:df:31:36:a8:05:92:1f:32:10:17:c2:e8:56:e0:7b: 9a:b7:db:f9:af:5c:ea:7b:bd:f6:cf:fc:d6:d6:cc:5c:24:cf: 03:ee:58:61:00:c4:5e:70:8c:b9:ab:12:46:33:3b:19:8f:50: f8:d0:de:f4:9a:38:8d:2f:71:68:97:40:28:6a:53:51:38:fb: 07:bd:2f:3e:ea:4d:09:db:5c:87:36:31:de:2d:81:5f:b3:9c: 68:94:bb:42:56:89:cb:5c:ba:5c:00:35:7e:48:5c:41:f5:68: cb:d4:71:33:4c:84:c1:8b:a9:84:fa:ca:65:b2:08:43:2c:99: 8c:5a:5a:ee:13:bb:9b:83:41:22:d3:a9:19:53:d1:51:62:f2: a8:8b:f7:0e:74:79:2f:7d:11:9b:d4:bd:08:a5:7e:65:3c:6c: 09:ef:d8:c1:82:8d:36:67:c0:65:a0:d4:44:b3:0b:3f:44:49: f7:0b:23:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTNCSkocXJvMVRpMMSp1yg7JYdtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0Ew OTBGNDU1MDAeFw0yNTA1MjAyMjU1MDJaFw0yNjA1MTkyMzAwMDJaMDMxMTAvBgNV BAMTKDE5NDI4OEEwNjdFNEQ3NzNDNDQ3NkIwMDBBNzQ3REFBMEM4RDc2ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoEmEctBHOTvFrvEVNb8c/OIwf D8jBrTfj/r9fOh3uYHhXEG0Ad0nUQHdPKJTwT7bOVPYu7dxyK/jrsLzWqvUFUkF2 unh5eIglCpnSEeoqCP3ZJxdXBNIPH864yU3j0A3X0dDuFoV6sO5qpjIzoGwYb1J7 I100F+6fyyLqhbUhBz0ZMBF/Qkk8cYv74vb+llti6CnW9upiJksnqxaATDyB/6WW BoMI2edaNFu8XPavUf+q5EJ6CfqcqQzBvtcBtyVewZ+yqIkpy/CqI0eJHYncdgIL BEuYxPxsz3U9+GolJy1TLhOqLLECrOObzNiY5sMOWqM6H1PAwRJ0r0kSmypbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGUKIoGfk13PER2sACnR9qgyNdoIwHwYDVR0j BBgwFoAUVx4u+iP+phGBBhFBBjXiOgkPRVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTY0YWJmYi0xOTYyLTQ0YTktODM3Ni1jYmZiMWVmY2RhYmEvMC81NzFFMkVGQTIz RkVBNjExODEwNjExNDEwNjM1RTIzQTA5MEY0NTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0EwOTBG NDU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NjRhYmZiLTE5NjItNDRhOS04 Mzc2LWNiZmIxZWZjZGFiYS8wLzMxMzAzMzJlMzEzNTM1MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5tBMA0GCSqG SIb3DQEBCwUAA4IBAQAwT4edp7/PjAyxhyIABE/pFe/E+F1daMZaPVZKA4Md8OGb JzthqhECp2vdt+sR2hCInFO/DcOK06RniaRuzQ0hVm7bxuI7OTFktijfMTaoBZIf MhAXwuhW4Huat9v5r1zqe732z/zW1sxcJM8D7lhhAMRecIy5qxJGMzsZj1D40N70 mjiNL3Fol0AoalNROPsHvS8+6k0J21yHNjHeLYFfs5xolLtCVonLXLpcADV+SFxB 9WjL1HEzTITBi6mE+splsghDLJmMWlruE7ubg0Ei06kZU9FRYvKoi/cOdHkvfRGb 1L0IpX5lPGwJ79jBgo02Z8BloNREsws/REn3CyMs -----END CERTIFICATE-----Generated at Sat Jun 7 23:09:10 2025 by rpki-client