$ rpki-client -vvf repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa File: 3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa (raw, json) Hash identifier: UdMMuDzVeoO8FHRaQDUzSG3siVMxaIJM4SzGz06W/gA= Subject key identifier: 8D:6C:80:B4:0D:67:13:C4:C6:62:4E:20:FB:7E:9A:16:A6:82:EC:7C Certificate issuer: /CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Certificate serial: 3CA1E8D401CDBE9C4B79EE5D852B51FCC240C794 Authority key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa Signing time: Wed 14 May 2025 07:01:11 +0000 ROA not before: Wed 14 May 2025 06:56:11 +0000 ROA not after: Wed 13 May 2026 07:01:11 +0000 asID: 141909 IP address blocks: 103.164.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a1:e8:d4:01:cd:be:9c:4b:79:ee:5d:85:2b:51:fc:c2:40:c7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Validity Not Before: May 14 06:56:11 2025 GMT Not After : May 13 07:01:11 2026 GMT Subject: CN=8D6C80B40D6713C4C6624E20FB7E9A16A682EC7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9c:88:10:34:f3:b2:b1:2a:52:aa:ab:f3:05: 25:20:53:68:38:a6:42:6a:52:99:2d:e6:e8:05:11: 8e:84:ef:8c:8a:42:66:e4:b1:d5:23:81:28:70:cc: 07:4b:ee:4d:91:b6:4e:21:d3:9f:03:a2:cd:1a:23: 81:ad:ec:c0:4d:89:0e:14:50:b8:71:ae:70:67:b1: 4e:75:1a:35:32:e9:e4:0d:7d:34:1e:2c:a7:f7:fd: 41:62:fd:f9:ec:8a:ae:e3:4a:4b:a7:48:11:1f:91: 25:02:ae:f2:e2:d1:da:bb:d1:09:9c:77:2c:60:32: c8:bb:21:9c:45:a9:8e:2f:14:46:94:6c:11:c6:43: 85:b3:d6:91:2a:fc:c4:f7:97:59:17:3a:b5:25:e7: 04:eb:6e:1c:08:d7:db:c2:9b:d8:ad:7d:b3:e3:be: 30:5b:32:75:cd:69:63:29:67:f0:8b:d8:5e:89:55: 1c:a6:99:94:bf:10:7d:c6:58:fc:0a:6d:5a:33:72: 69:c6:d9:97:be:0a:cd:54:d6:9f:5d:aa:f4:f5:19: c1:84:53:78:dc:ca:56:ae:08:7b:ef:3c:b0:96:13: 61:02:08:42:29:a9:c2:fb:db:51:87:32:09:f2:f3: 8a:9f:42:0f:e9:4a:14:30:86:49:ad:bf:0e:ea:e9: 3d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6C:80:B4:0D:67:13:C4:C6:62:4E:20:FB:7E:9A:16:A6:82:EC:7C X509v3 Authority Key Identifier: keyid:5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 34:b6:51:80:ca:15:b3:5a:e2:8f:5c:76:f0:6c:1b:ff:a3:0d: b7:a6:e1:aa:d4:67:47:62:be:01:43:48:e6:44:f3:37:a2:70: 8a:3d:69:32:93:2a:0a:2c:14:36:4c:f2:82:04:9c:d9:b4:cb: f6:7b:d8:a2:a0:aa:90:9a:5d:5d:1e:5c:83:46:23:29:b1:b6: 01:1d:da:31:e3:b7:1f:0d:ac:30:c5:5d:14:5e:0a:11:01:aa: 92:f4:ee:79:96:01:7d:08:ef:89:e0:58:78:27:1b:bf:99:ba: 1f:c3:15:19:64:de:e7:75:ea:06:4f:20:be:c5:ee:15:32:6d: 5b:fa:74:87:33:85:e6:fe:76:c5:9c:31:aa:40:b1:44:81:31: ea:1f:46:0c:cb:56:e7:a6:c7:21:de:88:7f:15:e8:64:3b:95: 66:a8:db:c6:cc:9e:c3:9a:0f:7b:49:1c:e3:64:aa:9e:c6:2e: 6c:9a:68:6f:59:9f:f9:fb:0e:b9:b1:d9:4f:45:78:d9:8b:61: c3:81:00:ae:f4:47:db:55:d1:86:14:b2:ae:51:c8:9d:ae:4b: c2:d1:30:46:fe:01:d6:f0:3d:62:69:3d:a0:8b:93:e2:b1:46: 4f:56:8e:4c:87:5a:fc:c4:b1:3b:9c:56:a9:22:b1:8f:05:92: 2e:44:8f:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPKHo1AHNvpxLee5dhStR/MJAx5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0My RTZCM0Q4RjAeFw0yNTA1MTQwNjU2MTFaFw0yNjA1MTMwNzAxMTFaMDMxMTAvBgNV BAMTKDhENkM4MEI0MEQ2NzEzQzRDNjYyNEUyMEZCN0U5QTE2QTY4MkVDN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenIgQNPOysSpSqqvzBSUgU2g4 pkJqUpkt5ugFEY6E74yKQmbksdUjgShwzAdL7k2Rtk4h058Dos0aI4Gt7MBNiQ4U ULhxrnBnsU51GjUy6eQNfTQeLKf3/UFi/fnsiq7jSkunSBEfkSUCrvLi0dq70Qmc dyxgMsi7IZxFqY4vFEaUbBHGQ4Wz1pEq/MT3l1kXOrUl5wTrbhwI19vCm9itfbPj vjBbMnXNaWMpZ/CL2F6JVRymmZS/EH3GWPwKbVozcmnG2Ze+Cs1U1p9dqvT1GcGE U3jcylauCHvvPLCWE2ECCEIpqcL721GHMgny84qfQg/pShQwhkmtvw7q6T1lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjWyAtA1nE8TGYk4g+36aFqaC7HwwHwYDVR0j BBgwFoAUXB3H6HRXqR81kVrx3j+7zC5rPY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMC81QzFEQzdFODc0 NTdBOTFGMzU5MTVBRjFERTNGQkJDQzJFNkIzRDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0MyRTZC M0Q4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJiLWM0OGUtNGJhMC04 YWQ3LTU4ZTEyNjNjNmRjNy8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpJYwDQYJ KoZIhvcNAQELBQADggEBADS2UYDKFbNa4o9cdvBsG/+jDbem4arUZ0divgFDSOZE 8zeicIo9aTKTKgosFDZM8oIEnNm0y/Z72KKgqpCaXV0eXINGIymxtgEd2jHjtx8N rDDFXRReChEBqpL07nmWAX0I74ngWHgnG7+Zuh/DFRlk3ud16gZPIL7F7hUybVv6 dIczheb+dsWcMapAsUSBMeofRgzLVuemxyHeiH8V6GQ7lWao28bMnsOaD3tJHONk qp7GLmyaaG9Zn/n7Drmx2U9FeNmLYcOBAK70R9tV0YYUsq5RyJ2uS8LRMEb+Adbw PWJpPaCLk+KxRk9WjkyHWvzEsTucVqkisY8Fki5Ej4g= -----END CERTIFICATE-----Generated at Sat Jun 7 21:03:12 2025 by rpki-client