$ rpki-client -vvf repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa File: 3130332e3135322e372e302f32342d3234203d3e20313430343236.roa (raw, json) Hash identifier: SqOaXQt4sheoHjLEWCQY+hr/jk21P7Mbb0/p3ua6+Wo= Subject key identifier: 93:3F:B9:7C:89:B7:F8:60:1A:6B:F0:CA:FD:1A:BA:00:55:09:7F:77 Certificate issuer: /CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589 Certificate serial: 2CBA99743672FE33FFF3DDF153545D92713EFCC9 Authority key identifier: 33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa Signing time: Mon 02 Jun 2025 02:05:06 +0000 ROA not before: Mon 02 Jun 2025 02:00:06 +0000 ROA not after: Mon 01 Jun 2026 02:05:06 +0000 asID: 140426 IP address blocks: 103.152.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.crl rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ba:99:74:36:72:fe:33:ff:f3:dd:f1:53:54:5d:92:71:3e:fc:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589 Validity Not Before: Jun 2 02:00:06 2025 GMT Not After : Jun 1 02:05:06 2026 GMT Subject: CN=933FB97C89B7F8601A6BF0CAFD1ABA0055097F77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:66:5e:d9:68:fd:d3:e3:72:07:f9:62:22: cc:4d:dd:72:1b:aa:c8:53:d4:1e:fa:86:fc:1c:11: 60:1d:ae:24:c1:46:48:2a:7c:19:7a:c3:74:1e:eb: 1d:13:17:fb:87:e3:80:2a:7b:31:db:83:9f:68:e7: e4:00:24:b1:35:ba:74:bf:db:ba:f8:50:31:44:43: 5c:4f:87:93:9c:72:8a:09:fe:bb:74:55:69:4d:47: c9:61:df:93:4e:33:d6:83:77:3e:90:12:fa:17:50: b7:77:47:9b:39:40:0f:33:68:06:79:44:2a:0e:d1: 1a:7e:a3:63:4e:b3:a6:0c:33:44:32:8f:dc:2f:e2: c5:24:d7:92:a2:b8:1e:78:b6:d9:3a:83:bd:06:06: 93:d5:d0:1b:be:30:4d:27:dc:b1:f6:4d:d1:e9:5b: 8e:d8:ca:8a:51:b7:55:d3:27:f1:cb:c9:00:b9:a4: e8:59:f3:81:a4:6e:53:9e:a8:cb:43:c8:02:70:36: 00:8c:ea:8c:77:6d:7f:92:3f:c6:85:cd:03:7f:f0: 5d:68:ab:7b:09:40:3b:ba:af:50:e6:d4:99:63:ef: 17:ff:fc:32:09:73:9f:8a:b5:e0:fb:36:92:d4:5d: e1:6e:6e:5b:2a:16:5a:8c:94:e8:83:06:30:79:41: 16:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3F:B9:7C:89:B7:F8:60:1A:6B:F0:CA:FD:1A:BA:00:55:09:7F:77 X509v3 Authority Key Identifier: keyid:33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.7.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ef:b0:35:ee:a8:e8:ae:72:fe:a9:6b:11:94:c9:9b:76:73: b4:0c:21:c2:32:28:55:82:54:bf:1d:7b:e0:04:67:12:b5:7c: f0:76:27:c8:df:5d:5f:cc:7a:8f:65:10:a5:b5:61:55:ff:24: c6:6f:27:35:3a:3a:00:83:0f:a8:c6:73:79:4f:c3:b1:87:ef: ee:1a:ce:9c:d1:f5:c1:57:3e:26:87:a4:e5:b6:48:bd:bf:48: 2f:28:43:8f:8e:85:12:d5:9f:1a:07:9c:a2:71:03:13:0b:5a: a8:6a:a4:4f:74:14:c6:dc:71:a5:3a:a5:bf:46:bb:d3:bd:23: da:51:60:9c:36:90:3d:64:3b:f7:5d:e1:c9:f3:3d:0f:53:b5: c3:de:5e:73:1d:a3:d6:75:e5:aa:77:f9:8e:a9:d3:d8:64:3d: f7:bd:4d:58:6d:64:1b:a7:4e:52:22:d5:0a:ec:7d:85:00:37: cc:8c:a1:37:7d:13:8a:63:67:1f:89:4b:06:ea:1a:a7:5f:ce: 2f:1d:f9:81:b5:6a:85:4b:4b:60:cd:ef:10:24:18:a4:69:c3: b5:3c:dc:22:14:72:90:a6:4c:4a:d5:e5:50:96:11:6f:52:34: 59:24:d1:77:dd:49:b5:3a:f6:95:ef:97:9b:a3:22:07:cb:b0: 29:2e:45:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULLqZdDZy/jP/893xU1RdknE+/MkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGMDA0MUI3Q0M2RDQxMzlBQjIzQjNDRDEwQzU2RTUx MjMzQzU4OTAeFw0yNTA2MDIwMjAwMDZaFw0yNjA2MDEwMjA1MDZaMDMxMTAvBgNV BAMTKDkzM0ZCOTdDODlCN0Y4NjAxQTZCRjBDQUZEMUFCQTAwNTUwOTdGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqGmZe2Wj90+NyB/liIsxN3XIb qshT1B76hvwcEWAdriTBRkgqfBl6w3Qe6x0TF/uH44AqezHbg59o5+QAJLE1unS/ 27r4UDFEQ1xPh5OccooJ/rt0VWlNR8lh35NOM9aDdz6QEvoXULd3R5s5QA8zaAZ5 RCoO0Rp+o2NOs6YMM0Qyj9wv4sUk15KiuB54ttk6g70GBpPV0Bu+ME0n3LH2TdHp W47YyopRt1XTJ/HLyQC5pOhZ84GkblOeqMtDyAJwNgCM6ox3bX+SP8aFzQN/8F1o q3sJQDu6r1Dm1Jlj7xf//DIJc5+KteD7NpLUXeFublsqFlqMlOiDBjB5QRbtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkz+5fIm3+GAaa/DK/Rq6AFUJf3cwHwYDVR0j BBgwFoAUM/AEG3zG1BOasjs80QxW5RIzxYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmFmMzY1ZS0wNWRlLTRjMzktYmY5Ni04M2U5MzliZWQ3ZGYvMC8zM0YwMDQxQjdD QzZENDEzOUFCMjNCM0NEMTBDNTZFNTEyMzNDNTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGMDA0MUI3Q0M2RDQxMzlBQjIzQjNDRDEwQzU2RTUxMjMz QzU4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYWYzNjVlLTA1ZGUtNGMzOS1i Zjk2LTgzZTkzOWJlZDdkZi8wLzMxMzAzMzJlMzEzNTMyMmUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeYBzANBgkqhkiG 9w0BAQsFAAOCAQEAGe+wNe6o6K5y/qlrEZTJm3ZztAwhwjIoVYJUvx174ARnErV8 8HYnyN9dX8x6j2UQpbVhVf8kxm8nNTo6AIMPqMZzeU/DsYfv7hrOnNH1wVc+Joek 5bZIvb9ILyhDj46FEtWfGgeconEDEwtaqGqkT3QUxtxxpTqlv0a7070j2lFgnDaQ PWQ7913hyfM9D1O1w95ecx2j1nXlqnf5jqnT2GQ9971NWG1kG6dOUiLVCux9hQA3 zIyhN30TimNnH4lLBuoap1/OLx35gbVqhUtLYM3vECQYpGnDtTzcIhRykKZMStXl UJYRb1I0WSTRd91JtTr2le+Xm6MiB8uwKS5Fbw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:44:12 2025 by rpki-client