$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa File: 3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa (raw, json) Hash identifier: 4DHvFxVV4LIBkA3x8qQp+DBWnN9OK+EeEYU9y73AnvA= Subject key identifier: AA:3A:2B:F2:64:C9:D3:6B:CD:55:2C:6E:63:82:BF:15:75:BA:CD:28 Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 06DBC3F3A1CC67C0EDBDF3B47553F99ABDE16F8D Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa Signing time: Mon 02 Jun 2025 02:03:01 +0000 ROA not before: Mon 02 Jun 2025 01:58:01 +0000 ROA not after: Mon 01 Jun 2026 02:03:01 +0000 asID: 139989 IP address blocks: 103.148.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:36:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:db:c3:f3:a1:cc:67:c0:ed:bd:f3:b4:75:53:f9:9a:bd:e1:6f:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Jun 2 01:58:01 2025 GMT Not After : Jun 1 02:03:01 2026 GMT Subject: CN=AA3A2BF264C9D36BCD552C6E6382BF1575BACD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:19:17:cd:ba:78:11:d3:de:b4:79:70:90:47: bb:39:51:4e:47:55:15:5b:c9:4c:4d:6a:86:a8:b6: d6:33:ac:41:45:38:57:1e:3c:0f:70:c0:6f:7d:f5: 38:c1:94:6c:01:d7:fc:2c:fc:9e:ff:3f:25:05:6a: 22:81:38:52:ad:a4:36:f6:ca:ac:98:6e:2e:4d:98: 20:16:e6:d2:a5:f7:68:0c:cd:68:63:33:f5:0d:a4: 1d:8a:52:96:3b:76:fe:b2:cd:57:1f:df:fb:a1:85: 3e:c1:43:3b:78:76:e2:ed:d5:e4:4d:03:6c:28:eb: f4:e2:f6:97:f3:ef:e0:36:3a:6e:06:ec:24:12:d7: f3:9f:e1:bb:f0:04:6a:95:91:6b:d3:8c:83:14:47: c5:40:1e:75:a7:47:68:2f:33:fa:8b:3a:43:87:8b: 36:c5:44:22:f2:ed:7d:02:5d:97:b3:2f:aa:53:48: 30:34:55:7a:5d:b2:85:58:fe:ca:0d:81:3c:14:6f: a4:2e:10:1d:80:23:98:18:a9:42:9d:b0:04:3b:e1: c5:35:df:ca:77:6b:66:49:75:fa:3f:bc:b8:17:bc: 77:a5:e5:f1:14:32:62:7b:a4:f9:40:0b:c0:d8:a2: 10:3e:17:5a:10:e8:be:0d:e0:e2:13:76:f7:17:37: 6e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3A:2B:F2:64:C9:D3:6B:CD:55:2C:6E:63:82:BF:15:75:BA:CD:28 X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.76.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:0c:d9:fe:9f:ef:4a:33:7c:13:bb:7d:6a:43:bc:74:5c:4d: f3:9c:ee:8a:c2:36:3c:59:f6:af:ad:11:b7:c4:a8:40:46:ef: 44:0a:7d:2d:02:15:4f:4e:bf:f2:16:ec:d9:3c:08:8a:4c:15: ec:aa:6e:e1:4e:81:de:db:23:62:ca:36:7e:13:a1:d8:b9:a5: 6e:99:0a:22:02:cb:d3:fc:d1:7b:0d:4a:90:f4:a1:99:5d:0a: 95:a1:e7:b3:fb:45:b8:60:af:13:09:d1:5d:fb:d0:e3:3e:39: 68:9d:dc:a4:a7:50:04:51:ab:f8:de:fe:ad:68:16:8c:b1:cd: 0f:4d:a7:ae:d8:a4:6b:7f:86:3b:47:95:31:f4:b0:0f:db:a9: 37:59:26:93:fd:e9:50:16:67:31:57:be:69:a0:77:c3:db:1d: 9a:ec:22:bc:db:d9:84:72:61:3e:36:e2:26:e9:39:d4:98:34: f3:74:48:9f:e7:a2:06:59:94:1c:c4:ad:a9:71:a2:b9:a9:6f: 15:46:ba:8c:d7:24:28:31:f8:73:a9:12:d8:bc:cf:9a:46:da: 6b:f4:e8:63:30:4a:cc:cf:af:db:c3:3f:66:33:dd:00:97:2a: 50:de:34:49:fe:9c:5c:8f:44:f8:53:12:aa:fd:76:48:e6:23: 3d:59:a5:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBtvD86HMZ8DtvfO0dVP5mr3hb40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yNTA2MDIwMTU4MDFaFw0yNjA2MDEwMjAzMDFaMDMxMTAvBgNV BAMTKEFBM0EyQkYyNjRDOUQzNkJDRDU1MkM2RTYzODJCRjE1NzVCQUNEMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMGRfNungR0960eXCQR7s5UU5H VRVbyUxNaoaottYzrEFFOFcePA9wwG999TjBlGwB1/ws/J7/PyUFaiKBOFKtpDb2 yqyYbi5NmCAW5tKl92gMzWhjM/UNpB2KUpY7dv6yzVcf3/uhhT7BQzt4duLt1eRN A2wo6/Ti9pfz7+A2Om4G7CQS1/Of4bvwBGqVkWvTjIMUR8VAHnWnR2gvM/qLOkOH izbFRCLy7X0CXZezL6pTSDA0VXpdsoVY/soNgTwUb6QuEB2AI5gYqUKdsAQ74cU1 38p3a2ZJdfo/vLgXvHel5fEUMmJ7pPlAC8DYohA+F1oQ6L4N4OITdvcXN27BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqjor8mTJ02vNVSxuY4K/FXW6zSgwHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMxMzAzMzJlMzEzNDM4MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RMMA0GCSqG SIb3DQEBCwUAA4IBAQCKDNn+n+9KM3wTu31qQ7x0XE3znO6KwjY8WfavrRG3xKhA Ru9ECn0tAhVPTr/yFuzZPAiKTBXsqm7hToHe2yNiyjZ+E6HYuaVumQoiAsvT/NF7 DUqQ9KGZXQqVoeez+0W4YK8TCdFd+9DjPjlondykp1AEUav43v6taBaMsc0PTaeu 2KRrf4Y7R5Ux9LAP26k3WSaT/elQFmcxV75poHfD2x2a7CK829mEcmE+NuIm6TnU mDTzdEif56IGWZQcxK2pcaK5qW8VRrqM1yQoMfhzqRLYvM+aRtpr9OhjMErMz6/b wz9mM90AlypQ3jRJ/pxcj0T4UxKq/XZI5iM9WaUy -----END CERTIFICATE-----Generated at Fri Jun 6 06:40:46 2025 by rpki-client