$ rpki-client -vvf repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa File: 3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa (raw, json) Hash identifier: MsMpPPcpIZuSudoMMepNN+ZazUOetlA5JvcEYSzR82g= Subject key identifier: C7:02:F5:3A:DC:1C:FC:DE:D1:BC:F6:1C:2A:B1:A8:1A:4C:01:F1:3B Certificate issuer: /CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Certificate serial: 7EEE884E6E01D211E9AA6BE71A993CB7B6D47CA1 Authority key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa Signing time: Wed 14 May 2025 07:01:11 +0000 ROA not before: Wed 14 May 2025 06:56:11 +0000 ROA not after: Wed 13 May 2026 07:01:11 +0000 asID: 141909 IP address blocks: 103.164.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ee:88:4e:6e:01:d2:11:e9:aa:6b:e7:1a:99:3c:b7:b6:d4:7c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Validity Not Before: May 14 06:56:11 2025 GMT Not After : May 13 07:01:11 2026 GMT Subject: CN=C702F53ADC1CFCDED1BCF61C2AB1A81A4C01F13B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:62:4e:3d:9b:4d:5f:44:29:7b:a6:d0:52:53: a8:87:57:91:eb:8a:ef:eb:a5:39:6e:8d:0a:11:42: cc:d7:7a:40:34:0c:21:80:59:c1:15:37:14:48:ec: fa:26:25:ee:08:e0:a7:d7:16:c1:e1:fb:93:a2:90: 6c:8e:f0:e7:22:a6:03:34:59:7c:37:27:21:3a:2f: 07:71:16:8e:07:d2:d8:e3:de:a5:8a:a6:6b:0e:e7: b9:c2:b0:8d:3d:e5:b8:aa:d7:65:71:ff:9d:4c:b4: 5e:83:7a:5f:5c:ab:ee:26:0e:b7:ec:e3:18:64:c4: e9:8f:4f:3c:4e:61:ae:a0:ba:20:ac:8d:3c:13:f8: 20:12:2c:f9:21:e8:00:91:bb:71:1d:eb:db:44:f4: 84:01:bb:16:20:f4:4e:25:af:b0:e5:b1:9b:78:44: ce:6c:9c:03:28:c1:f2:61:a1:1a:f8:bd:a3:84:66: 4b:91:f0:d4:22:ee:03:4c:ea:ae:c7:90:72:35:2d: 17:41:bc:2e:0c:f4:cb:ea:7a:90:a3:30:6e:68:10: 2b:43:50:82:13:54:2b:39:f3:82:7e:c8:18:02:e7: 83:0d:68:ec:c0:1b:cf:95:66:8a:c4:ed:90:51:36: 67:38:a8:08:62:9b:61:8c:ec:b2:ae:95:01:8e:48: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:02:F5:3A:DC:1C:FC:DE:D1:BC:F6:1C:2A:B1:A8:1A:4C:01:F1:3B X509v3 Authority Key Identifier: keyid:5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32342d3234203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/24 Signature Algorithm: sha256WithRSAEncryption b7:80:43:50:e9:31:76:0c:eb:c5:e6:ad:60:9b:04:7c:7b:32: 5a:ab:95:86:66:f6:2c:e1:31:7e:73:8c:7f:d5:b9:40:04:10: a4:e7:19:98:9f:0c:bb:d3:9d:a5:47:69:e8:b3:aa:6a:52:3a: 9a:4e:57:27:2c:d6:ee:e5:25:f2:34:e4:69:d0:f8:cb:62:34: 72:e2:6f:44:44:d8:7d:ea:bd:d3:99:8c:3f:19:64:3e:fe:f0: 7b:63:0e:a6:31:e0:a6:b9:37:5e:06:24:23:2c:25:4b:fe:dc: 9a:71:6e:fd:21:51:a4:a4:8a:ea:94:8a:ab:f4:ed:ea:ed:50: 38:7a:6a:51:59:96:73:d3:06:98:3f:5c:bd:c3:0f:bc:0a:71: e4:90:3a:0b:1a:7c:21:92:03:54:c0:ad:28:a5:e1:e3:ca:60: 87:9d:6c:82:2e:78:25:a9:0e:5c:81:9f:07:50:a1:c6:61:22: a5:fd:59:7c:1a:9e:90:52:4b:34:2e:e1:04:6c:75:3c:d8:e6: 30:41:6d:62:d1:d1:72:1b:ff:a0:59:5c:58:5a:cc:bd:99:dd: 5b:43:af:8d:01:65:a1:f6:13:71:0e:9d:2b:b1:ae:ea:80:a0: 4b:3e:46:ca:a5:e4:a4:66:14:a3:86:5d:51:86:aa:38:9c:b5: b3:da:8d:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfu6ITm4B0hHpqmvnGpk8t7bUfKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0My RTZCM0Q4RjAeFw0yNTA1MTQwNjU2MTFaFw0yNjA1MTMwNzAxMTFaMDMxMTAvBgNV BAMTKEM3MDJGNTNBREMxQ0ZDREVEMUJDRjYxQzJBQjFBODFBNEMwMUYxM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYk49m01fRCl7ptBSU6iHV5Hr iu/rpTlujQoRQszXekA0DCGAWcEVNxRI7PomJe4I4KfXFsHh+5OikGyO8OcipgM0 WXw3JyE6LwdxFo4H0tjj3qWKpmsO57nCsI095biq12Vx/51MtF6Del9cq+4mDrfs 4xhkxOmPTzxOYa6guiCsjTwT+CASLPkh6ACRu3Ed69tE9IQBuxYg9E4lr7DlsZt4 RM5snAMowfJhoRr4vaOEZkuR8NQi7gNM6q7HkHI1LRdBvC4M9MvqepCjMG5oECtD UIITVCs584J+yBgC54MNaOzAG8+VZorE7ZBRNmc4qAhim2GM7LKulQGOSAcJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxwL1Otwc/N7RvPYcKrGoGkwB8TswHwYDVR0j BBgwFoAUXB3H6HRXqR81kVrx3j+7zC5rPY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMC81QzFEQzdFODc0 NTdBOTFGMzU5MTVBRjFERTNGQkJDQzJFNkIzRDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0MyRTZC M0Q4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJiLWM0OGUtNGJhMC04 YWQ3LTU4ZTEyNjNjNmRjNy8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpJYwDQYJ KoZIhvcNAQELBQADggEBALeAQ1DpMXYM68XmrWCbBHx7MlqrlYZm9izhMX5zjH/V uUAEEKTnGZifDLvTnaVHaeizqmpSOppOVycs1u7lJfI05GnQ+MtiNHLib0RE2H3q vdOZjD8ZZD7+8HtjDqYx4Ka5N14GJCMsJUv+3Jpxbv0hUaSkiuqUiqv07ertUDh6 alFZlnPTBpg/XL3DD7wKceSQOgsafCGSA1TArSil4ePKYIedbIIueCWpDlyBnwdQ ocZhIqX9WXwanpBSSzQu4QRsdTzY5jBBbWLR0XIb/6BZXFhazL2Z3VtDr40BZaH2 E3EOnSuxruqAoEs+Rsql5KRmFKOGXVGGqjictbPaja4= -----END CERTIFICATE-----Generated at Sat Jun 7 21:16:47 2025 by rpki-client