$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa File: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (raw, json) Hash identifier: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps= Subject key identifier: E1:5D:01:70:FE:7D:7C:32:C0:62:8D:BB:1B:03:1F:57:C5:2A:BE:70 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 61D45D3A8F2EF44AE34AD071524E46821D16F8DE Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa Signing time: Mon 02 Jun 2025 01:02:29 +0000 ROA not before: Mon 02 Jun 2025 00:57:29 +0000 ROA not after: Mon 01 Jun 2026 01:02:29 +0000 asID: 141056 IP address blocks: 103.155.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d4:5d:3a:8f:2e:f4:4a:e3:4a:d0:71:52:4e:46:82:1d:16:f8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Jun 2 00:57:29 2025 GMT Not After : Jun 1 01:02:29 2026 GMT Subject: CN=E15D0170FE7D7C32C0628DBB1B031F57C52ABE70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b3:b5:92:e8:0a:42:43:81:37:d6:be:91:83: f4:81:c5:fe:b8:25:e4:55:c6:b7:3e:20:9b:a1:08: 88:77:1c:53:fa:c5:64:17:98:05:8d:c8:27:f3:e2: 87:81:75:8a:0c:be:7e:b3:68:f8:cf:47:30:c4:86: 57:f9:42:cd:e6:b8:80:b0:95:8e:b1:7b:e9:04:a3: a5:b1:4e:2f:4a:13:16:ec:51:4d:e4:7f:f9:8b:70: d0:3f:2e:7d:4a:9d:a7:c8:cc:69:12:8e:7d:de:31: 97:79:14:bd:69:d3:e6:f0:25:c1:5f:6a:35:bb:d4: 1c:05:b1:ee:f9:36:17:77:11:61:1a:3b:34:3e:e4: ef:da:bc:e7:0a:20:28:2b:10:d4:57:7a:1f:6e:2c: 61:d3:20:8f:4d:de:87:a0:4d:79:12:e7:c6:23:5e: 04:58:58:3b:d6:18:8f:4d:d5:2c:fd:b0:77:6c:48: 51:17:1c:dd:57:0f:86:1a:db:5d:5b:32:74:41:4b: 73:a8:9b:36:0e:a9:b4:31:b9:3e:09:78:00:64:db: 4c:1e:59:51:00:8b:c0:94:8f:85:0c:37:f0:a0:18: c9:c1:4b:8b:4b:e3:7b:b0:2d:aa:9f:ef:de:36:3e: a7:6d:c1:49:cc:29:4a:37:9d:16:93:97:60:a3:78: ff:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5D:01:70:FE:7D:7C:32:C0:62:8D:BB:1B:03:1F:57:C5:2A:BE:70 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.117.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:07:f8:e8:7f:04:df:44:01:95:10:e2:a8:56:ef:b3:91:50: b9:15:3c:f3:c7:03:52:62:5d:12:89:47:36:15:91:d7:f9:fc: dd:ff:8b:9b:1c:9e:f0:eb:3a:24:41:5f:75:31:04:40:a4:97: 8e:13:9a:d9:77:28:45:43:cd:1c:3a:c6:a6:b6:f7:8b:3a:0d: 79:96:c0:b0:0a:3d:71:fc:06:4e:3d:39:e7:ff:75:ac:e2:5c: 49:a5:82:8d:9d:6e:b7:a9:bc:a1:20:cd:db:93:e1:5c:57:25: 93:1c:ef:b0:6f:3b:e3:c9:8b:9b:8a:20:69:0e:7b:e0:cb:52: ac:b4:5c:8e:09:35:25:60:91:dd:e1:30:c7:af:fb:3c:4b:2d: 3a:38:a9:b6:71:53:ea:5a:8d:40:6d:00:10:ac:26:0f:cf:dc: d9:22:d6:a2:24:71:aa:7a:92:8d:49:53:dc:c6:11:3a:73:32: 9e:4f:62:15:9e:41:37:39:64:dc:e0:00:6a:26:de:0b:bb:4a: 1d:6a:d1:d4:ba:eb:09:98:12:ab:15:6c:fb:29:2f:79:e8:ce: 67:e5:e9:53:44:eb:62:a8:03:97:66:5a:f8:0f:06:04:17:e2: 11:c7:16:41:ad:9f:62:4a:a8:63:9d:96:30:89:87:cd:66:8f: 4a:20:d7:78 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYdRdOo8u9ErjStBxUk5Ggh0W+N4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA2MDIwMDU3MjlaFw0yNjA2MDEwMTAyMjlaMDMxMTAvBgNV BAMTKEUxNUQwMTcwRkU3RDdDMzJDMDYyOERCQjFCMDMxRjU3QzUyQUJFNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7s7WS6ApCQ4E31r6Rg/SBxf64 JeRVxrc+IJuhCIh3HFP6xWQXmAWNyCfz4oeBdYoMvn6zaPjPRzDEhlf5Qs3muICw lY6xe+kEo6WxTi9KExbsUU3kf/mLcNA/Ln1KnafIzGkSjn3eMZd5FL1p0+bwJcFf ajW71BwFse75Nhd3EWEaOzQ+5O/avOcKICgrENRXeh9uLGHTII9N3oegTXkS58Yj XgRYWDvWGI9N1Sz9sHdsSFEXHN1XD4Ya211bMnRBS3OomzYOqbQxuT4JeABk20we WVEAi8CUj4UMN/CgGMnBS4tL43uwLaqf7942PqdtwUnMKUo3nRaTl2CjeP85AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4V0BcP59fDLAYo27GwMfV8UqvnAwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMxMzAzMzJlMzEzNTM1MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm3UwDQYJ KoZIhvcNAQELBQADggEBAH0H+Oh/BN9EAZUQ4qhW77ORULkVPPPHA1JiXRKJRzYV kdf5/N3/i5scnvDrOiRBX3UxBECkl44Tmtl3KEVDzRw6xqa294s6DXmWwLAKPXH8 Bk49Oef/daziXEmlgo2dbrepvKEgzduT4VxXJZMc77BvO+PJi5uKIGkOe+DLUqy0 XI4JNSVgkd3hMMev+zxLLTo4qbZxU+pajUBtABCsJg/P3Nki1qIkcap6ko1JU9zG ETpzMp5PYhWeQTc5ZNzgAGom3gu7Sh1q0dS66wmYEqsVbPspL3nozmfl6VNE62Ko A5dmWvgPBgQX4hHHFkGtn2JKqGOdljCJh81mj0og13g= -----END CERTIFICATE-----Generated at Sat Jun 7 14:05:52 2025 by rpki-client