$ rpki-client -vvf repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa File: 3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa (raw, json) Hash identifier: bjlsGk5J7SvEO5IoZ47H9V39bFhtmZq3wwyih52cSks= Subject key identifier: 8E:31:52:3F:09:09:4C:22:A0:D6:12:AF:E5:DC:57:24:42:84:6E:A7 Certificate issuer: /CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B Certificate serial: 5EE6582896DDA59FE7E977802E4FAF3C31255AD9 Authority key identifier: C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa Signing time: Mon 02 Jun 2025 01:02:26 +0000 ROA not before: Mon 02 Jun 2025 00:57:26 +0000 ROA not after: Mon 01 Jun 2026 01:02:26 +0000 asID: 141064 IP address blocks: 103.155.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.crl rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e6:58:28:96:dd:a5:9f:e7:e9:77:80:2e:4f:af:3c:31:25:5a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B Validity Not Before: Jun 2 00:57:26 2025 GMT Not After : Jun 1 01:02:26 2026 GMT Subject: CN=8E31523F09094C22A0D612AFE5DC572442846EA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:47:bf:90:48:75:43:b1:78:f4:f1:8b:47:e3: 7a:26:a6:53:63:d7:cd:ff:67:57:be:8b:19:fa:c6: ca:a9:0b:47:a7:17:48:a8:af:8f:29:63:fc:bf:fc: 99:f6:03:e6:c4:db:14:83:2e:6a:07:03:6a:25:16: 11:1e:6b:43:1b:5a:62:f1:d3:e7:a3:ac:73:a8:dd: a9:b2:1b:d9:f7:2e:80:b3:c3:94:42:ad:20:6f:ae: 9e:fe:aa:0e:c5:ea:c1:5c:57:57:2d:d3:f3:d5:64: 7c:4d:2c:a6:57:e5:81:55:74:d1:41:17:a3:b4:be: 04:d1:dd:82:61:75:ca:22:75:b2:48:0c:a2:13:11: f3:a1:86:a4:21:81:26:fe:0e:33:b8:9c:a3:cf:d8: 83:9b:7a:fb:3d:fe:54:38:f8:4a:13:7f:a8:80:d1: 40:80:70:34:bf:63:5d:00:62:b7:56:58:18:77:77: 13:b1:14:03:a4:7a:e0:a8:a5:65:a5:48:e4:bf:bb: 69:85:c2:9a:c7:71:67:12:91:a0:97:a7:7f:ab:b1: 0a:0d:39:0e:87:07:92:88:7b:69:34:16:8b:bb:75: cf:dd:56:4c:8b:9f:31:e3:a1:6e:13:34:7a:f9:10: 90:e8:92:e4:3d:aa:d1:cb:0a:1c:d7:13:22:0a:cb: 7a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:31:52:3F:09:09:4C:22:A0:D6:12:AF:E5:DC:57:24:42:84:6E:A7 X509v3 Authority Key Identifier: keyid:C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.167.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:b7:6f:6e:1a:75:08:6c:df:64:62:3c:13:39:bd:c9:68:ff: ab:70:84:0d:2b:e7:28:94:bc:9c:16:b1:0e:e1:0a:66:d0:4e: c6:c9:d3:46:df:99:c8:49:67:ed:d8:95:4d:41:f0:e5:34:1f: 2c:59:ee:c0:05:d0:d1:8b:0f:3b:b5:60:09:f1:e9:3e:3a:7e: a1:5d:a7:fb:32:ea:7b:f5:47:6a:54:37:c5:f5:d1:44:a4:bb: 1f:ce:43:78:35:cb:be:0f:cb:4e:f5:10:fe:50:8a:84:f2:f9: 8d:a8:ef:ba:92:4f:6f:87:39:53:1c:f0:4e:1a:f2:1b:0d:27: fe:cf:38:f1:d3:09:83:28:a3:f1:29:1f:ad:d6:52:c3:20:5d: cd:a9:01:f8:82:59:69:45:01:0d:d8:e6:1b:3f:16:69:fc:44: 0b:a6:08:64:2d:74:46:36:63:70:2b:88:18:93:44:61:0c:46: cb:91:47:9d:a6:02:bd:56:24:cb:39:06:1e:33:06:0c:4a:40: b1:20:c7:6b:ae:49:5a:d4:8b:ed:cb:2c:95:33:16:fc:ff:a3: 75:ab:f8:22:9f:b9:a8:d8:00:c9:a3:41:c1:a2:61:f0:29:54: 63:a7:ce:e1:99:39:b2:b7:5a:8f:7e:47:33:df:c3:75:44:e9: 54:7e:90:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXuZYKJbdpZ/n6XeALk+vPDElWtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRDRTFCRDNDQkZCMDE1RTYwOTY1QTY1RTJGQjMxQTZC QTI2MTg5QjAeFw0yNTA2MDIwMDU3MjZaFw0yNjA2MDEwMTAyMjZaMDMxMTAvBgNV BAMTKDhFMzE1MjNGMDkwOTRDMjJBMEQ2MTJBRkU1REM1NzI0NDI4NDZFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbR7+QSHVDsXj08YtH43omplNj 183/Z1e+ixn6xsqpC0enF0ior48pY/y//Jn2A+bE2xSDLmoHA2olFhEea0MbWmLx 0+ejrHOo3amyG9n3LoCzw5RCrSBvrp7+qg7F6sFcV1ct0/PVZHxNLKZX5YFVdNFB F6O0vgTR3YJhdcoidbJIDKITEfOhhqQhgSb+DjO4nKPP2IObevs9/lQ4+EoTf6iA 0UCAcDS/Y10AYrdWWBh3dxOxFAOkeuCopWWlSOS/u2mFwprHcWcSkaCXp3+rsQoN OQ6HB5KIe2k0Fou7dc/dVkyLnzHjoW4TNHr5EJDokuQ9qtHLChzXEyIKy3o7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjjFSPwkJTCKg1hKv5dxXJEKEbqcwHwYDVR0j BBgwFoAUxM4b08v7AV5gllpl4vsxpromGJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzZiMmJkNy1kN2YxLTQ4MTUtYTYwYS1jYWQ1NDAyOWNlODgvMC9DNENFMUJEM0NC RkIwMTVFNjA5NjVBNjVFMkZCMzFBNkJBMjYxODlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzRDRTFCRDNDQkZCMDE1RTYwOTY1QTY1RTJGQjMxQTZCQTI2 MTg5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNmIyYmQ3LWQ3ZjEtNDgxNS1h NjBhLWNhZDU0MDI5Y2U4OC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm6cwDQYJ KoZIhvcNAQELBQADggEBAAy3b24adQhs32RiPBM5vclo/6twhA0r5yiUvJwWsQ7h CmbQTsbJ00bfmchJZ+3YlU1B8OU0HyxZ7sAF0NGLDzu1YAnx6T46fqFdp/sy6nv1 R2pUN8X10USkux/OQ3g1y74Py071EP5QioTy+Y2o77qST2+HOVMc8E4a8hsNJ/7P OPHTCYMoo/EpH63WUsMgXc2pAfiCWWlFAQ3Y5hs/Fmn8RAumCGQtdEY2Y3AriBiT RGEMRsuRR52mAr1WJMs5Bh4zBgxKQLEgx2uuSVrUi+3LLJUzFvz/o3Wr+CKfuajY AMmjQcGiYfApVGOnzuGZObK3Wo9+RzPfw3VE6VR+kOk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:17:04 2025 by rpki-client