$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa File: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (raw, json) Hash identifier: vmw9bcS7HYiEIqjVICRaVcatSeJQ8ZNuTTgtgTfawew= Subject key identifier: E4:33:A3:AC:1B:87:56:73:0A:6C:B0:5D:26:2F:FD:10:6B:24:A1:78 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 6A1BBC69BDC5C5A8F4EA8DF7C0FA4EBFA4B1E26E Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa Signing time: Fri 16 May 2025 04:01:43 +0000 ROA not before: Fri 16 May 2025 03:56:43 +0000 ROA not after: Fri 15 May 2026 04:01:43 +0000 asID: 142370 IP address blocks: 103.227.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1b:bc:69:bd:c5:c5:a8:f4:ea:8d:f7:c0:fa:4e:bf:a4:b1:e2:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: May 16 03:56:43 2025 GMT Not After : May 15 04:01:43 2026 GMT Subject: CN=E433A3AC1B8756730A6CB05D262FFD106B24A178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f7:2c:c4:7e:c6:1d:64:4c:13:5b:87:e4:c7: 53:e4:08:84:73:19:fd:53:9e:ff:8c:fe:ae:de:e7: c5:4f:c7:f1:72:8a:ad:14:70:a8:a9:df:35:a1:41: c6:0d:28:36:48:eb:57:40:f9:e7:36:3b:f0:54:04: 17:c1:a0:1d:77:dd:a5:62:70:28:08:38:a2:79:77: cd:b2:86:ac:72:df:90:d6:d8:bd:b8:9d:a0:80:79: 1d:77:af:dd:61:ca:5b:56:0e:77:04:4c:44:b9:31: 73:c1:0c:5a:59:b9:7a:f6:e3:c9:e5:3e:89:40:dc: 36:7b:95:a9:7a:0c:e4:2d:de:7e:f5:ca:36:23:22: db:97:8f:ea:01:06:31:6d:e0:7e:46:d6:86:67:54: d5:5e:c1:98:b0:64:e5:dc:80:ee:3f:0b:9d:84:57: 6f:dd:74:95:d4:3c:ae:44:66:7e:a8:7c:1c:2d:9f: 34:d0:68:c8:e3:d9:ae:ab:9c:da:a9:17:a5:d2:ae: c9:e2:4b:74:78:b7:ab:86:60:70:f6:aa:07:9c:66: f4:87:59:24:f7:60:0a:09:17:90:dd:0d:1f:63:99: 4a:44:a1:a6:66:c0:4d:1b:d6:d5:25:d7:2c:b3:4f: e3:43:82:3e:71:33:8c:c5:8f:7d:31:18:73:46:7e: b8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:33:A3:AC:1B:87:56:73:0A:6C:B0:5D:26:2F:FD:10:6B:24:A1:78 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.187.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:b9:9b:d6:f6:d7:05:6e:b8:37:a9:2b:77:c2:2b:53:08:3a: 78:f0:2c:d2:9b:c5:4f:a6:62:fb:64:e5:21:f6:02:d6:2f:e7: ae:2d:d4:bf:f9:f5:26:41:99:83:ea:00:23:cd:e5:77:0e:51: 06:3e:d4:8b:46:5b:64:ba:9a:19:c1:0b:70:a3:8c:4d:db:a3: 05:9b:b9:c6:a8:f0:8c:9c:e8:d5:1c:4d:fd:a3:0a:88:93:19: b1:40:3e:77:6f:20:13:06:ac:eb:18:33:39:dc:46:fd:3d:42: 3d:e9:7a:4b:1e:27:ac:f1:d4:e3:de:de:73:dc:83:be:52:1a: 7c:2a:5c:d3:f7:cf:6a:fd:1d:de:a3:05:46:d8:34:4a:10:51: a3:65:e8:10:b8:ac:32:7d:dc:c6:1f:1a:9e:74:fc:88:88:6b: 01:72:8a:81:c8:1f:77:f6:56:af:9c:fa:1e:10:fb:f6:1b:01: 7e:8f:5a:3f:0b:d3:a9:fd:c3:2d:8b:df:4c:9d:1a:9b:54:45: b0:62:5c:83:92:5b:30:65:ef:ef:c6:cd:ac:64:6a:71:3e:d6: 6f:72:9b:9c:2f:24:62:0a:f5:24:38:dc:bc:01:ae:00:57:4a: 33:cb:5f:3e:18:8e:b2:63:0b:55:6a:bc:eb:b4:72:5a:54:80: e1:f6:62:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUahu8ab3Fxaj06o33wPpOv6Sx4m4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNTA1MTYwMzU2NDNaFw0yNjA1MTUwNDAxNDNaMDMxMTAvBgNV BAMTKEU0MzNBM0FDMUI4NzU2NzMwQTZDQjA1RDI2MkZGRDEwNkIyNEExNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv9yzEfsYdZEwTW4fkx1PkCIRz Gf1Tnv+M/q7e58VPx/Fyiq0UcKip3zWhQcYNKDZI61dA+ec2O/BUBBfBoB133aVi cCgIOKJ5d82yhqxy35DW2L24naCAeR13r91hyltWDncETES5MXPBDFpZuXr248nl PolA3DZ7lal6DOQt3n71yjYjItuXj+oBBjFt4H5G1oZnVNVewZiwZOXcgO4/C52E V2/ddJXUPK5EZn6ofBwtnzTQaMjj2a6rnNqpF6XSrsniS3R4t6uGYHD2qgecZvSH WST3YAoJF5DdDR9jmUpEoaZmwE0b1tUl1yyzT+NDgj5xM4zFj30xGHNGfrjZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5DOjrBuHVnMKbLBdJi/9EGskoXgwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMzg4ZjZlLTk5NzQtNDQ1Ny1h ZjRiLTVjOWM4MmY1MGU5Ny8wLzMxMzAzMzJlMzIzMjM3MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn47swDQYJ KoZIhvcNAQELBQADggEBAIq5m9b21wVuuDepK3fCK1MIOnjwLNKbxU+mYvtk5SH2 AtYv564t1L/59SZBmYPqACPN5XcOUQY+1ItGW2S6mhnBC3CjjE3bowWbucao8Iyc 6NUcTf2jCoiTGbFAPndvIBMGrOsYMzncRv09Qj3pekseJ6zx1OPe3nPcg75SGnwq XNP3z2r9Hd6jBUbYNEoQUaNl6BC4rDJ93MYfGp50/IiIawFyioHIH3f2Vq+c+h4Q +/YbAX6PWj8L06n9wy2L30ydGptURbBiXIOSWzBl7+/GzaxkanE+1m9ym5wvJGIK 9SQ43LwBrgBXSjPLXz4YjrJjC1VqvOu0clpUgOH2Ym4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:40 2025 by rpki-client