$ rpki-client -vvf repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa File: 3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa (raw, json) Hash identifier: sI3bqifKZVIOhDY6Sh1Zbn3Bg29Wg0wSaItyUUWUok4= Subject key identifier: ED:29:3A:18:5F:38:05:3E:DB:57:67:9D:60:38:F2:C8:F9:97:2A:C4 Certificate issuer: /CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B Certificate serial: 0B62AAB86C7E2B4D9E148B02C5DBA86940B9FF8B Authority key identifier: C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa Signing time: Mon 02 Jun 2025 01:02:26 +0000 ROA not before: Mon 02 Jun 2025 00:57:26 +0000 ROA not after: Mon 01 Jun 2026 01:02:26 +0000 asID: 141064 IP address blocks: 103.155.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.crl rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:62:aa:b8:6c:7e:2b:4d:9e:14:8b:02:c5:db:a8:69:40:b9:ff:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B Validity Not Before: Jun 2 00:57:26 2025 GMT Not After : Jun 1 01:02:26 2026 GMT Subject: CN=ED293A185F38053EDB57679D6038F2C8F9972AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e1:a9:37:15:01:e8:2d:7d:42:0b:aa:be:61: 68:1a:5e:08:6f:dc:f9:7c:87:7a:23:0f:a7:b7:04: 7c:59:ac:fb:90:69:01:eb:6f:cb:e5:77:07:39:ca: ba:20:b8:57:ef:83:02:8d:6e:72:d4:0c:25:67:80: 10:27:c1:f5:ac:c7:68:c9:d9:0f:ed:e2:df:5a:52: 25:d4:83:70:b1:19:4a:d5:98:45:38:e5:91:2b:d9: 9b:f8:16:04:b0:40:1c:86:45:4e:57:19:d9:80:5d: 91:5a:b2:2d:5f:7c:7f:8d:1f:d6:a7:42:34:08:b2: ac:01:ef:29:db:a0:68:61:44:38:2c:08:6b:56:f5: c2:47:c8:39:e6:cc:36:44:b0:37:0d:32:39:04:cc: aa:e5:28:8b:dd:91:37:a0:a5:76:b4:a7:72:ea:75: d1:75:4f:8d:c5:d6:cf:aa:04:ef:f2:ee:05:85:19: 4b:d8:00:97:88:76:6b:cd:26:13:7b:aa:48:01:2e: 24:d9:00:57:71:7d:6d:0b:09:55:14:8c:08:cf:f6: b5:5d:73:77:87:d3:47:68:8f:92:09:a4:17:b9:3f: 03:d4:f1:51:f0:6f:af:b4:15:f1:0c:4e:56:85:2a: 15:85:fc:48:0d:a4:2e:1c:69:a8:a2:b1:0c:2d:28: 5b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:29:3A:18:5F:38:05:3E:DB:57:67:9D:60:38:F2:C8:F9:97:2A:C4 X509v3 Authority Key Identifier: keyid:C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.166.0/24 Signature Algorithm: sha256WithRSAEncryption 67:a3:f2:68:04:4b:43:7b:02:39:1d:dc:4c:c0:8d:98:1e:55: f6:19:b4:cb:b6:13:a9:95:31:c6:08:d3:04:79:02:29:b6:db: c7:f6:1e:88:15:d5:ec:0f:9b:24:3c:4e:45:8f:70:a7:a0:05: 3f:58:fd:f8:85:81:7f:a4:a0:42:05:41:98:7b:58:d7:af:d6: fb:f5:63:93:0c:5d:8e:e3:dd:70:d1:fa:e9:b1:17:28:6a:10: 14:44:6d:14:57:6c:9e:22:85:45:02:34:4a:78:64:e3:d0:50: d4:b7:aa:6f:39:53:2f:41:0f:d3:18:52:87:43:31:ef:97:8b: 76:f5:bd:04:f6:88:31:ee:0c:d4:d8:93:2d:56:5c:a3:f0:9b: 72:44:8e:34:d6:63:1f:00:24:5d:67:79:1e:f1:6d:de:bb:aa: 0b:1b:32:a9:0d:4e:71:04:ab:ce:be:83:4e:db:11:15:1e:94: 1f:2c:c1:75:f3:4f:72:e2:34:7e:bd:a4:c6:8a:ac:00:f2:0d: 20:aa:5e:36:46:18:ff:22:6f:ba:b3:22:8e:36:a1:51:e9:3e: 3b:63:f0:57:33:c0:38:c8:a0:9c:9f:b8:ce:12:eb:5c:06:f7: 6c:c6:e9:43:1c:1e:bc:25:8e:8f:19:1b:a4:99:e5:2e:e5:aa: e3:01:c5:ac -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC2KquGx+K02eFIsCxduoaUC5/4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRDRTFCRDNDQkZCMDE1RTYwOTY1QTY1RTJGQjMxQTZC QTI2MTg5QjAeFw0yNTA2MDIwMDU3MjZaFw0yNjA2MDEwMTAyMjZaMDMxMTAvBgNV BAMTKEVEMjkzQTE4NUYzODA1M0VEQjU3Njc5RDYwMzhGMkM4Rjk5NzJBQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH4ak3FQHoLX1CC6q+YWgaXghv 3Pl8h3ojD6e3BHxZrPuQaQHrb8vldwc5yroguFfvgwKNbnLUDCVngBAnwfWsx2jJ 2Q/t4t9aUiXUg3CxGUrVmEU45ZEr2Zv4FgSwQByGRU5XGdmAXZFasi1ffH+NH9an QjQIsqwB7ynboGhhRDgsCGtW9cJHyDnmzDZEsDcNMjkEzKrlKIvdkTegpXa0p3Lq ddF1T43F1s+qBO/y7gWFGUvYAJeIdmvNJhN7qkgBLiTZAFdxfW0LCVUUjAjP9rVd c3eH00doj5IJpBe5PwPU8VHwb6+0FfEMTlaFKhWF/EgNpC4caaiisQwtKFudAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7Sk6GF84BT7bV2edYDjyyPmXKsQwHwYDVR0j BBgwFoAUxM4b08v7AV5gllpl4vsxpromGJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzZiMmJkNy1kN2YxLTQ4MTUtYTYwYS1jYWQ1NDAyOWNlODgvMC9DNENFMUJEM0NC RkIwMTVFNjA5NjVBNjVFMkZCMzFBNkJBMjYxODlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzRDRTFCRDNDQkZCMDE1RTYwOTY1QTY1RTJGQjMxQTZCQTI2 MTg5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNmIyYmQ3LWQ3ZjEtNDgxNS1h NjBhLWNhZDU0MDI5Y2U4OC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm6YwDQYJ KoZIhvcNAQELBQADggEBAGej8mgES0N7Ajkd3EzAjZgeVfYZtMu2E6mVMcYI0wR5 Aim228f2HogV1ewPmyQ8TkWPcKegBT9Y/fiFgX+koEIFQZh7WNev1vv1Y5MMXY7j 3XDR+umxFyhqEBREbRRXbJ4ihUUCNEp4ZOPQUNS3qm85Uy9BD9MYUodDMe+Xi3b1 vQT2iDHuDNTYky1WXKPwm3JEjjTWYx8AJF1neR7xbd67qgsbMqkNTnEEq86+g07b ERUelB8swXXzT3LiNH69pMaKrADyDSCqXjZGGP8ib7qzIo42oVHpPjtj8FczwDjI oJyfuM4S61wG92zG6UMcHrwljo8ZG6SZ5S7lquMBxaw= -----END CERTIFICATE-----Generated at Thu Jun 5 18:18:45 2025 by rpki-client