$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa File: 3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa (raw, json) Hash identifier: 7A1iTDrwk8kXb580V7UHZYGVNfXcQ2O63NbSELLsFpc= Subject key identifier: DC:9D:5F:5E:56:ED:16:65:06:B6:2D:95:39:B6:79:A9:71:78:76:2E Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 1D46CC570706FFF204474AF3F843E221E15D496C Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa Signing time: Mon 02 Jun 2025 02:02:52 +0000 ROA not before: Mon 02 Jun 2025 01:57:52 +0000 ROA not after: Mon 01 Jun 2026 02:02:52 +0000 asID: 140404 IP address blocks: 103.151.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:46:cc:57:07:06:ff:f2:04:47:4a:f3:f8:43:e2:21:e1:5d:49:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jun 2 01:57:52 2025 GMT Not After : Jun 1 02:02:52 2026 GMT Subject: CN=DC9D5F5E56ED166506B62D9539B679A97178762E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b9:b8:93:64:91:80:84:dc:b6:57:e6:79:56: 3c:9b:a7:45:a5:87:52:3e:32:74:33:5c:15:78:a5: 36:26:2c:b2:50:9c:16:30:6a:a8:0d:25:ab:61:ec: 35:19:31:23:31:25:68:fa:99:66:4d:60:f6:88:e1: d7:a7:76:81:84:1b:b5:e3:78:93:54:45:71:b0:60: 55:fa:a0:47:f3:d4:75:1e:4a:5a:43:6f:a0:2e:4b: a1:b5:ac:08:8c:86:c6:1a:00:16:25:81:ea:75:54: 68:39:77:9d:74:f6:75:96:83:f1:38:48:b3:e0:a8: 01:01:09:9a:85:a2:d7:29:34:c0:42:c1:c1:2e:07: 52:b0:af:24:c7:18:df:9e:d3:97:3b:32:9f:6c:b8: f5:cd:87:90:e7:b3:87:59:11:e8:e9:af:cf:b4:46: 5b:69:6c:fd:c8:48:b7:7c:90:1c:b3:05:9e:b2:d8: 17:05:a8:9d:c9:94:55:5a:32:07:7f:a0:37:ca:16: e3:d7:2b:c8:a5:a2:ce:47:7b:46:6b:c4:9b:04:29: db:33:69:ec:16:1f:40:46:c8:06:da:8f:b0:ce:bc: b5:46:b8:ff:ee:38:88:96:9a:57:45:7d:62:c9:ff: 27:40:e4:09:08:b9:1d:13:5c:09:32:51:56:83:eb: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9D:5F:5E:56:ED:16:65:06:B6:2D:95:39:B6:79:A9:71:78:76:2E X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.22.0/23 Signature Algorithm: sha256WithRSAEncryption de:4f:df:8f:7f:bf:46:1b:02:78:44:91:bf:11:03:95:da:5e: 99:a8:b7:f5:c3:62:17:94:5e:44:5d:5f:8c:0e:41:11:b5:84: 33:b6:ee:46:33:c3:bb:48:22:f9:3f:54:e9:3c:b8:06:2d:5a: c1:04:b1:59:2f:bc:99:3c:3c:e8:54:97:8f:cc:00:3e:6c:c4: 2d:22:7b:d9:e2:fd:3a:e2:f0:47:05:f6:0c:d6:41:72:87:15: f3:4e:d3:57:5b:84:33:ef:b3:7e:68:0a:86:40:4e:38:fa:ed: 6e:c5:bd:6a:e9:77:a3:21:b6:3a:7e:a3:52:aa:49:03:46:8c: 04:23:b5:f0:fe:5d:4f:cc:84:f6:8e:f0:6a:a8:de:b1:48:e0: 64:ad:7d:2f:f6:dc:c5:44:a9:34:a0:26:7f:6f:bc:26:9b:81: ee:f3:ed:04:eb:c4:db:14:9d:20:80:90:f9:1e:17:a9:6c:88: 1b:f4:34:3e:5e:5a:1e:9d:71:68:41:8d:db:fc:33:09:46:f0: 8b:25:8b:6b:71:5d:54:f0:09:0b:b7:8e:19:3b:3b:1f:71:ad: 31:16:78:13:06:ca:92:04:2c:13:b5:a0:23:f6:ad:90:40:ae: 3d:d7:0e:b4:56:dd:0d:dd:96:6a:e9:09:1f:d7:28:b7:b9:11: 66:82:02:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHUbMVwcG//IER0rz+EPiIeFdSWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yNTA2MDIwMTU3NTJaFw0yNjA2MDEwMjAyNTJaMDMxMTAvBgNV BAMTKERDOUQ1RjVFNTZFRDE2NjUwNkI2MkQ5NTM5QjY3OUE5NzE3ODc2MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjubiTZJGAhNy2V+Z5Vjybp0Wl h1I+MnQzXBV4pTYmLLJQnBYwaqgNJath7DUZMSMxJWj6mWZNYPaI4dendoGEG7Xj eJNURXGwYFX6oEfz1HUeSlpDb6AuS6G1rAiMhsYaABYlgep1VGg5d5109nWWg/E4 SLPgqAEBCZqFotcpNMBCwcEuB1KwryTHGN+e05c7Mp9suPXNh5Dns4dZEejpr8+0 RltpbP3ISLd8kByzBZ6y2BcFqJ3JlFVaMgd/oDfKFuPXK8ilos5He0ZrxJsEKdsz aewWH0BGyAbaj7DOvLVGuP/uOIiWmldFfWLJ/ydA5AkIuR0TXAkyUVaD6wgJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3J1fXlbtFmUGti2VObZ5qXF4di4wHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5cWMA0GCSqG SIb3DQEBCwUAA4IBAQDeT9+Pf79GGwJ4RJG/EQOV2l6ZqLf1w2IXlF5EXV+MDkER tYQztu5GM8O7SCL5P1TpPLgGLVrBBLFZL7yZPDzoVJePzAA+bMQtInvZ4v064vBH BfYM1kFyhxXzTtNXW4Qz77N+aAqGQE44+u1uxb1q6XejIbY6fqNSqkkDRowEI7Xw /l1PzIT2jvBqqN6xSOBkrX0v9tzFRKk0oCZ/b7wmm4Hu8+0E68TbFJ0ggJD5Hhep bIgb9DQ+XloenXFoQY3b/DMJRvCLJYtrcV1U8AkLt44ZOzsfca0xFngTBsqSBCwT taAj9q2QQK491w60Vt0N3ZZq6Qkf1yi3uRFmggKp -----END CERTIFICATE-----Generated at Thu Jun 5 18:23:57 2025 by rpki-client