$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa File: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (raw, json) Hash identifier: D5hukbaY+N3AjWmkuBGFFTwqc+CzamYmFL0amMEyMMM= Subject key identifier: A5:BF:A0:60:A9:1E:93:9C:75:6C:37:7E:E8:90:DC:60:76:46:EA:E0 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 35B7271F5DA131456A02ECB89E2EF8BF60CECDA0 Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa Signing time: Fri 16 May 2025 04:01:44 +0000 ROA not before: Fri 16 May 2025 03:56:44 +0000 ROA not after: Fri 15 May 2026 04:01:44 +0000 asID: 142370 IP address blocks: 103.227.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b7:27:1f:5d:a1:31:45:6a:02:ec:b8:9e:2e:f8:bf:60:ce:cd:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: May 16 03:56:44 2025 GMT Not After : May 15 04:01:44 2026 GMT Subject: CN=A5BFA060A91E939C756C377EE890DC607646EAE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:cf:ca:01:69:61:38:80:b5:24:28:49:cf: ec:44:33:43:62:91:f1:03:51:92:55:71:60:5b:b1: ec:b5:23:4d:cc:4d:a3:dd:2e:f2:f9:32:98:91:f5: 96:70:f0:0f:14:86:92:99:23:95:07:2d:0d:f9:be: a0:d6:2d:ff:10:7a:ef:71:c8:bf:9a:e7:ea:64:d7: 3c:60:d9:d3:5b:4c:69:cf:ae:ca:da:ad:82:ed:31: 45:3e:32:90:2f:02:b8:f8:85:36:60:03:77:86:76: e2:86:f4:23:4c:7f:11:18:08:1c:73:31:1f:f5:27: 95:62:3a:78:ef:0c:f1:d6:88:85:79:5d:6f:49:09: a6:96:38:01:e7:65:6d:38:d8:03:ac:fe:50:57:5e: 3e:da:bc:6a:53:35:8e:54:57:94:4d:71:3c:68:8a: 36:a5:d8:72:6f:75:3a:fd:6a:87:d1:c0:bd:0a:47: 93:c7:73:7d:66:41:71:c8:ee:09:2c:f8:cf:33:f9: 23:72:ca:d3:a8:a6:22:8e:0e:d8:ab:ee:c3:ab:ff: 54:86:5b:d6:6a:87:cf:88:b6:22:81:5c:89:74:1b: b5:c1:23:d7:15:9a:94:32:d0:de:47:f0:19:8c:fc: 46:5b:8f:5c:c8:19:ff:79:c7:c5:ad:aa:d3:ee:ed: 72:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BF:A0:60:A9:1E:93:9C:75:6C:37:7E:E8:90:DC:60:76:46:EA:E0 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.186.0/23 Signature Algorithm: sha256WithRSAEncryption b1:2f:8e:52:1c:09:34:be:52:f2:7b:33:31:71:36:62:65:be: 3c:6e:64:ab:80:85:1f:bf:3e:86:2d:49:7a:51:17:8f:73:3a: ec:06:41:d3:ad:a4:f7:6a:ec:00:1f:1a:8f:2d:52:33:bb:c6: b7:77:3b:fe:0a:fb:20:76:1a:05:8c:bf:63:b6:94:ff:40:d2: 0f:3c:24:aa:c5:3e:84:f8:f4:43:41:29:b1:be:df:dd:0a:d2: 4a:d6:00:e5:8c:ea:68:13:5e:d0:05:38:00:db:38:79:1f:20: 16:a3:d7:83:db:19:40:d4:67:38:f2:ae:8c:b6:da:66:d3:9d: 4b:a7:8c:cb:ac:c1:1c:8b:63:29:45:5d:e4:f3:f9:4c:4b:2c: 0d:f7:eb:36:36:9e:df:38:f0:6d:62:b9:2c:bf:58:84:95:3e: ff:34:20:af:0d:8d:cc:3f:b8:5d:20:9a:0e:24:7f:76:b7:47: b1:24:5f:60:08:5f:55:bb:91:13:c8:b3:93:f9:04:b5:78:94: 14:f9:c9:c1:d1:d6:de:f1:be:4e:2f:48:6a:d7:c6:c5:d2:39: d2:26:cb:37:fc:ab:4a:75:07:6d:c9:fd:df:29:49:79:2f:30: 3e:2e:a4:e6:f4:b9:4c:95:99:c5:12:62:67:95:a2:b5:20:80: ce:e1:dd:ea -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNbcnH12hMUVqAuy4ni74v2DOzaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNTA1MTYwMzU2NDRaFw0yNjA1MTUwNDAxNDRaMDMxMTAvBgNV BAMTKEE1QkZBMDYwQTkxRTkzOUM3NTZDMzc3RUU4OTBEQzYwNzY0NkVBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgr8/KAWlhOIC1JChJz+xEM0Ni kfEDUZJVcWBbsey1I03MTaPdLvL5MpiR9ZZw8A8UhpKZI5UHLQ35vqDWLf8Qeu9x yL+a5+pk1zxg2dNbTGnPrsrarYLtMUU+MpAvArj4hTZgA3eGduKG9CNMfxEYCBxz MR/1J5ViOnjvDPHWiIV5XW9JCaaWOAHnZW042AOs/lBXXj7avGpTNY5UV5RNcTxo ijal2HJvdTr9aofRwL0KR5PHc31mQXHI7gks+M8z+SNyytOopiKODtir7sOr/1SG W9Zqh8+ItiKBXIl0G7XBI9cVmpQy0N5H8BmM/EZbj1zIGf95x8WtqtPu7XI/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpb+gYKkek5x1bDd+6JDcYHZG6uAwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMzg4ZjZlLTk5NzQtNDQ1Ny1h ZjRiLTVjOWM4MmY1MGU5Ny8wLzMxMzAzMzJlMzIzMjM3MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn47owDQYJ KoZIhvcNAQELBQADggEBALEvjlIcCTS+UvJ7MzFxNmJlvjxuZKuAhR+/PoYtSXpR F49zOuwGQdOtpPdq7AAfGo8tUjO7xrd3O/4K+yB2GgWMv2O2lP9A0g88JKrFPoT4 9ENBKbG+390K0krWAOWM6mgTXtAFOADbOHkfIBaj14PbGUDUZzjyroy22mbTnUun jMuswRyLYylFXeTz+UxLLA336zY2nt848G1iuSy/WISVPv80IK8Njcw/uF0gmg4k f3a3R7EkX2AIX1W7kRPIs5P5BLV4lBT5ycHR1t7xvk4vSGrXxsXSOdImyzf8q0p1 B23J/d8pSXkvMD4upOb0uUyVmcUSYmeVorUggM7h3eo= -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:46 2025 by rpki-client