$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa File: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (raw, json) Hash identifier: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw= Subject key identifier: FB:41:43:8D:0C:A3:DD:15:A9:58:F3:5D:32:72:C2:AF:2B:A9:61:03 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 297566BF8D03C1133F559A8594CF18732BBD602E Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa Signing time: Thu 08 May 2025 01:03:18 +0000 ROA not before: Thu 08 May 2025 00:58:18 +0000 ROA not after: Thu 07 May 2026 01:03:18 +0000 asID: 141056 IP address blocks: 103.155.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:75:66:bf:8d:03:c1:13:3f:55:9a:85:94:cf:18:73:2b:bd:60:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: May 8 00:58:18 2025 GMT Not After : May 7 01:03:18 2026 GMT Subject: CN=FB41438D0CA3DD15A958F35D3272C2AF2BA96103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a9:1a:cb:5b:91:81:52:d1:cd:e1:38:37:02: eb:12:2f:78:a4:37:e9:50:8c:e8:39:40:b8:05:e9: 2b:7f:c4:a3:d9:d5:68:dc:59:73:51:8c:08:a3:c2: 02:76:ca:7a:22:b6:e1:f8:36:2c:ed:81:46:56:79: a9:77:3a:9b:50:e1:fe:86:23:16:a1:63:73:94:22: 01:93:da:f8:6f:ed:e6:28:24:a6:d4:ce:f6:8a:04: 8a:70:c2:4c:66:82:fb:48:f9:f1:d7:6d:98:30:1b: 25:b1:70:36:81:f0:c5:83:aa:9b:81:c3:5d:c6:7a: 1e:9c:20:ce:65:3d:f6:55:6e:38:f0:c6:4e:77:3d: ac:ed:29:5c:7f:fc:99:28:3c:eb:9a:b1:7f:84:13: f7:6e:e8:eb:40:ad:2b:d3:46:49:c5:de:4c:fc:82: 42:bd:cf:cb:22:52:be:d7:24:ac:77:46:ff:4e:fe: d4:bd:30:a5:5c:ae:a4:72:d9:46:50:de:35:29:44: 56:95:6a:e6:cb:4e:ca:97:28:5d:61:50:06:25:b8: 27:88:cc:c6:7c:e3:2a:58:35:61:6c:7b:0e:ff:5d: 39:8f:e1:ec:e8:ad:36:5a:b7:b6:73:ce:c0:1a:a9: 7d:e7:02:8f:3c:f5:bd:de:6c:a3:64:be:ec:9f:01: ef:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:41:43:8D:0C:A3:DD:15:A9:58:F3:5D:32:72:C2:AF:2B:A9:61:03 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.116.0/23 Signature Algorithm: sha256WithRSAEncryption 11:6c:5f:1b:87:97:22:48:0e:96:5d:33:3c:19:a0:81:fe:e2: 48:11:0f:63:5d:74:bf:0f:9e:1b:81:51:99:ef:74:12:dc:d4: 93:b4:b9:b9:24:5e:74:80:46:60:cd:1c:94:f1:64:37:34:cd: bf:d8:03:af:6a:8c:8b:9f:83:c4:1c:2f:ba:19:05:04:0f:40: 66:93:01:3e:4d:2b:a5:80:da:60:8f:9c:6e:1c:70:8e:55:4c: 7d:c3:e8:05:c9:ce:4d:69:20:d1:97:b4:98:77:12:c3:00:3d: e1:48:db:00:d1:47:e9:68:0b:ed:28:9d:b7:d4:73:a5:6d:e2: 15:51:88:ba:4f:3d:57:88:ab:a5:7b:34:ea:b9:af:2a:2b:e2: 64:b3:4c:94:4f:88:aa:7e:64:f5:e4:a0:0b:51:6e:bf:78:3d: f6:8f:aa:da:0c:f2:e3:a2:26:35:a8:cb:20:43:d6:94:da:ea: 77:d9:2b:98:83:3a:d6:f7:ab:dd:6b:3c:f4:56:67:bb:22:18: 3e:e5:aa:e2:f7:a7:02:7a:23:96:76:ff:89:76:c3:73:ad:8a: 79:35:c5:c4:69:e1:9e:bb:4a:b8:d6:bb:6e:c6:e1:2a:70:6e: b3:77:ef:f5:49:5b:bd:65:80:03:89:6f:8f:c4:5c:d8:e6:1e: fd:a3:94:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKXVmv40DwRM/VZqFlM8Ycyu9YC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA1MDgwMDU4MThaFw0yNjA1MDcwMTAzMThaMDMxMTAvBgNV BAMTKEZCNDE0MzhEMENBM0REMTVBOTU4RjM1RDMyNzJDMkFGMkJBOTYxMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwqRrLW5GBUtHN4Tg3AusSL3ik N+lQjOg5QLgF6St/xKPZ1WjcWXNRjAijwgJ2ynoituH4NiztgUZWeal3OptQ4f6G IxahY3OUIgGT2vhv7eYoJKbUzvaKBIpwwkxmgvtI+fHXbZgwGyWxcDaB8MWDqpuB w13Geh6cIM5lPfZVbjjwxk53PaztKVx//JkoPOuasX+EE/du6OtArSvTRknF3kz8 gkK9z8siUr7XJKx3Rv9O/tS9MKVcrqRy2UZQ3jUpRFaVaubLTsqXKF1hUAYluCeI zMZ84ypYNWFsew7/XTmP4ezorTZat7ZzzsAaqX3nAo889b3ebKNkvuyfAe+nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+0FDjQyj3RWpWPNdMnLCryupYQMwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMxMzAzMzJlMzEzNTM1MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm3QwDQYJ KoZIhvcNAQELBQADggEBABFsXxuHlyJIDpZdMzwZoIH+4kgRD2NddL8PnhuBUZnv dBLc1JO0ubkkXnSARmDNHJTxZDc0zb/YA69qjIufg8QcL7oZBQQPQGaTAT5NK6WA 2mCPnG4ccI5VTH3D6AXJzk1pINGXtJh3EsMAPeFI2wDRR+loC+0onbfUc6Vt4hVR iLpPPVeIq6V7NOq5ryor4mSzTJRPiKp+ZPXkoAtRbr94PfaPqtoM8uOiJjWoyyBD 1pTa6nfZK5iDOtb3q91rPPRWZ7siGD7lquL3pwJ6I5Z2/4l2w3Otink1xcRp4Z67 SrjWu27G4SpwbrN37/VJW71lgAOJb4/EXNjmHv2jlAQ= -----END CERTIFICATE-----Generated at Sat Jun 7 13:57:07 2025 by rpki-client