$ rpki-client -vvf repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa File: 3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa (raw, json) Hash identifier: 49uJeHF+k8HvLvLuvnXcFDfrAZMvN78Q5XdfyLfe2TU= Subject key identifier: D8:B0:D0:8D:9D:47:AE:FC:55:45:1D:67:E1:23:3A:62:9F:14:C2:C5 Certificate issuer: /CN=81498B85C0E2937290B9B2119B132DEADBB24A5C Certificate serial: 43999762A993DF6FD49FD0F18CD9F8A846102D8A Authority key identifier: 81:49:8B:85:C0:E2:93:72:90:B9:B2:11:9B:13:2D:EA:DB:B2:4A:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81498B85C0E2937290B9B2119B132DEADBB24A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa Signing time: Thu 22 May 2025 16:00:02 +0000 ROA not before: Thu 22 May 2025 15:55:02 +0000 ROA not after: Thu 21 May 2026 16:00:02 +0000 asID: 141147 IP address blocks: 103.159.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/81498B85C0E2937290B9B2119B132DEADBB24A5C.crl rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/81498B85C0E2937290B9B2119B132DEADBB24A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81498B85C0E2937290B9B2119B132DEADBB24A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 14:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:99:97:62:a9:93:df:6f:d4:9f:d0:f1:8c:d9:f8:a8:46:10:2d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81498B85C0E2937290B9B2119B132DEADBB24A5C Validity Not Before: May 22 15:55:02 2025 GMT Not After : May 21 16:00:02 2026 GMT Subject: CN=D8B0D08D9D47AEFC55451D67E1233A629F14C2C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:76:5e:7f:ec:a1:d4:29:56:29:06:35:7b: 13:b8:7e:3e:e5:50:e3:8f:c4:18:13:84:69:0f:a3: 36:40:3f:76:98:c3:9c:22:fb:4d:06:bc:77:8a:f8: 6f:73:44:28:c9:a1:13:d1:cf:a0:fb:46:ac:e3:95: 97:9c:bf:21:87:80:26:a7:1a:c5:b1:51:6f:cb:3f: 32:60:9f:75:08:7f:ca:15:f1:b0:c1:57:d4:ca:37: be:48:b8:8c:c5:53:35:b6:49:77:5d:32:56:de:b0: 47:48:33:02:80:fe:fc:34:3d:a3:a6:17:55:6a:03: 07:94:00:d7:d5:8b:e7:49:20:9d:d3:fc:eb:72:61: b3:e5:f9:ea:d3:76:29:ee:49:6d:e2:ec:aa:56:e4: 1d:8d:4e:47:ac:6f:1a:ad:5f:e2:6b:eb:dd:56:74: ad:dd:40:96:80:77:7c:33:0f:26:ca:12:69:f1:99: ed:dc:4d:bd:21:f6:56:31:f2:4c:ad:5b:a6:ff:c7: 99:95:97:c2:23:f1:9c:5d:9d:f9:b8:af:de:82:1d: 5e:7f:48:bf:d3:b1:16:5e:a6:13:b8:85:d2:63:55: d5:59:e7:c5:94:dc:e5:3a:76:37:3b:64:ec:65:74: c0:f7:6c:08:20:29:ea:44:da:c7:cd:5d:af:42:29: d9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B0:D0:8D:9D:47:AE:FC:55:45:1D:67:E1:23:3A:62:9F:14:C2:C5 X509v3 Authority Key Identifier: keyid:81:49:8B:85:C0:E2:93:72:90:B9:B2:11:9B:13:2D:EA:DB:B2:4A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/81498B85C0E2937290B9B2119B132DEADBB24A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81498B85C0E2937290B9B2119B132DEADBB24A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.224.0/23 Signature Algorithm: sha256WithRSAEncryption 31:3e:d1:cd:a7:4d:f4:b1:ed:6f:54:0f:d9:6e:a1:9a:d0:ee: 36:a8:ff:d7:45:9c:8d:b6:53:29:b6:b6:ff:02:67:14:73:31: b3:b8:4e:04:99:e4:2d:41:d7:1d:74:b2:af:a0:b6:c6:aa:12: 08:a2:22:5f:ab:3b:e7:d1:5e:e7:35:fe:c5:1c:19:03:81:b5: c3:42:a2:cc:ba:06:8a:c7:95:c3:12:37:b8:c2:fa:6b:97:f8: 37:09:c3:7a:09:62:bb:c0:29:f0:7e:55:c4:46:1a:11:e0:94: 11:cf:c0:7d:7d:fc:79:90:34:a8:5b:06:13:9f:6d:fa:0f:77: 5e:d3:71:5d:bc:a7:d3:82:76:d4:8d:81:21:71:a5:41:ba:e5: 4c:68:06:47:cb:55:48:61:4e:91:b4:fa:96:bd:78:14:62:71: 25:f9:69:22:28:d5:c7:9c:a1:95:01:a4:03:ce:6c:09:5d:ec: 77:58:b6:5f:42:2e:a1:e5:e6:cd:89:19:d5:7e:c6:94:56:47: ba:67:bc:c7:11:2e:24:9c:82:2a:a0:31:dc:57:5f:00:ca:9d: 5b:71:35:11:0b:a7:48:cd:f8:4c:08:22:a0:8e:92:61:dc:9e: ef:34:5e:a7:f3:10:06:06:fb:47:ad:f8:6c:d4:aa:cc:c5:62: ff:d5:fe:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ5mXYqmT32/Un9DxjNn4qEYQLYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE0OThCODVDMEUyOTM3MjkwQjlCMjExOUIxMzJERUFE QkIyNEE1QzAeFw0yNTA1MjIxNTU1MDJaFw0yNjA1MjExNjAwMDJaMDMxMTAvBgNV BAMTKEQ4QjBEMDhEOUQ0N0FFRkM1NTQ1MUQ2N0UxMjMzQTYyOUYxNEMyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz+HZef+yh1ClWKQY1exO4fj7l UOOPxBgThGkPozZAP3aYw5wi+00GvHeK+G9zRCjJoRPRz6D7RqzjlZecvyGHgCan GsWxUW/LPzJgn3UIf8oV8bDBV9TKN75IuIzFUzW2SXddMlbesEdIMwKA/vw0PaOm F1VqAweUANfVi+dJIJ3T/OtyYbPl+erTdinuSW3i7KpW5B2NTkesbxqtX+Jr691W dK3dQJaAd3wzDybKEmnxme3cTb0h9lYx8kytW6b/x5mVl8Ij8Zxdnfm4r96CHV5/ SL/TsRZephO4hdJjVdVZ58WU3OU6djc7ZOxldMD3bAggKepE2sfNXa9CKdmZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2LDQjZ1HrvxVRR1n4SM6Yp8UwsUwHwYDVR0j BBgwFoAUgUmLhcDik3KQubIRmxMt6tuySlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTQ4YjIyMi02ZGVkLTQyOGEtODg4Zi0xMDQ1NGIwODgwYzIvMC84MTQ5OEI4NUMw RTI5MzcyOTBCOUIyMTE5QjEzMkRFQURCQjI0QTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE0OThCODVDMEUyOTM3MjkwQjlCMjExOUIxMzJERUFEQkIy NEE1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhNDhiMjIyLTZkZWQtNDI4YS04 ODhmLTEwNDU0YjA4ODBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn+AwDQYJ KoZIhvcNAQELBQADggEBADE+0c2nTfSx7W9UD9luoZrQ7jao/9dFnI22Uym2tv8C ZxRzMbO4TgSZ5C1B1x10sq+gtsaqEgiiIl+rO+fRXuc1/sUcGQOBtcNCosy6BorH lcMSN7jC+muX+DcJw3oJYrvAKfB+VcRGGhHglBHPwH19/HmQNKhbBhOfbfoPd17T cV28p9OCdtSNgSFxpUG65UxoBkfLVUhhTpG0+pa9eBRicSX5aSIo1cecoZUBpAPO bAld7HdYtl9CLqHl5s2JGdV+xpRWR7pnvMcRLiScgiqgMdxXXwDKnVtxNRELp0jN +EwIIqCOkmHcnu80XqfzEAYG+0et+GzUqszFYv/V/k0= -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:15 2025 by rpki-client