$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa File: 3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa (raw, json) Hash identifier: 2DJXbY7xN8WlOd/aLrW1rEx9vxnt9jS/uQOEXM2RB4s= Subject key identifier: C2:59:D8:0A:FC:B3:EA:E9:CC:AA:90:E4:6B:B3:B0:64:7D:24:DD:B9 Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 26B65C3DD2DE9BE3F652D1B9EE5B65A3E2CE5FA3 Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa Signing time: Mon 02 Jun 2025 02:02:52 +0000 ROA not before: Mon 02 Jun 2025 01:57:52 +0000 ROA not after: Mon 01 Jun 2026 02:02:52 +0000 asID: 140404 IP address blocks: 103.151.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b6:5c:3d:d2:de:9b:e3:f6:52:d1:b9:ee:5b:65:a3:e2:ce:5f:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jun 2 01:57:52 2025 GMT Not After : Jun 1 02:02:52 2026 GMT Subject: CN=C259D80AFCB3EAE9CCAA90E46BB3B0647D24DDB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7b:49:36:32:3e:7f:7e:b5:f0:6d:04:27:3d: 20:23:88:2b:1a:ac:94:48:fe:e8:8f:60:ef:4b:50: 5d:a8:37:34:f7:c3:57:fb:3b:3e:36:57:10:1b:6d: 07:b8:32:36:30:74:da:04:fc:73:4b:a4:70:55:4b: a8:f6:37:80:2a:b4:52:04:05:34:7b:06:c2:3d:70: 7d:bc:b6:77:4e:36:37:4e:78:8a:df:4f:bb:3f:af: b2:7c:1b:97:8b:42:82:47:87:01:4d:5c:92:35:9c: 1d:bb:b5:a8:27:95:31:23:1b:ab:e4:3d:ed:60:58: ea:09:99:7a:50:ca:bd:20:fa:dc:f3:ed:48:10:93: 34:2e:73:18:9e:26:8e:a9:28:f0:9d:db:5a:aa:77: ad:f3:a9:cf:82:df:10:44:ed:82:7d:4a:c6:be:98: cd:33:f1:38:40:c9:0d:bc:55:75:0a:5e:77:cc:17: 37:ba:a2:2c:dd:92:20:df:53:25:6d:24:72:e8:8e: d3:53:aa:e1:21:b9:16:7f:6e:b2:97:0b:88:58:e8: be:ac:6a:af:70:9e:5b:49:26:84:e0:7e:7b:fa:8f: e1:d0:e1:9b:09:01:42:e4:59:b6:4c:be:56:65:a1: 60:ab:d0:82:e7:da:20:f1:82:be:23:7d:aa:da:0d: 4e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:59:D8:0A:FC:B3:EA:E9:CC:AA:90:E4:6B:B3:B0:64:7D:24:DD:B9 X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.22.0/24 Signature Algorithm: sha256WithRSAEncryption d9:12:5a:ee:83:da:71:c5:56:61:6f:53:60:c8:24:2c:aa:ff: 66:3d:fd:05:b1:fb:4f:c2:61:06:a1:7b:9e:d4:52:82:bb:6f: 9e:40:d0:3a:b2:ef:24:2e:2c:64:6d:e1:57:b3:0f:41:5a:ba: f5:e1:1d:3b:cb:8d:d1:29:6d:3f:88:1a:07:20:27:2f:bd:01: b6:b3:90:35:c8:48:11:ea:95:03:31:14:7a:fb:b0:d2:ef:9f: 20:2a:6d:46:bf:fe:bd:3f:9c:77:5e:34:6e:8a:f1:f2:f6:ac: 6d:c4:03:e6:c9:1c:02:53:40:1b:9e:dd:91:bb:cd:d1:01:08: 7b:0f:5a:8c:3f:47:02:b0:f7:8a:9d:d2:db:01:33:df:94:69: 4a:0a:2f:be:ca:af:11:6b:3c:a5:fe:79:67:8f:e6:6a:ab:e9: 88:ac:35:ce:d4:c9:c7:c1:5e:eb:37:d9:44:62:54:32:ef:55: ed:ae:f4:40:3d:8f:fa:bf:51:c2:25:b9:9b:08:9f:f0:d1:9a: 26:3e:46:49:d0:59:b7:62:ff:17:50:41:ce:e9:a9:2d:8e:8a: 6b:52:88:0d:7b:0c:39:55:41:60:cb:0d:2a:6d:46:06:56:fb: 57:1c:d7:99:07:88:4d:50:c3:43:20:d2:74:4a:af:43:cd:6d: dd:2f:1e:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJrZcPdLem+P2UtG57ltlo+LOX6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yNTA2MDIwMTU3NTJaFw0yNjA2MDEwMjAyNTJaMDMxMTAvBgNV BAMTKEMyNTlEODBBRkNCM0VBRTlDQ0FBOTBFNDZCQjNCMDY0N0QyNEREQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCue0k2Mj5/frXwbQQnPSAjiCsa rJRI/uiPYO9LUF2oNzT3w1f7Oz42VxAbbQe4MjYwdNoE/HNLpHBVS6j2N4AqtFIE BTR7BsI9cH28tndONjdOeIrfT7s/r7J8G5eLQoJHhwFNXJI1nB27tagnlTEjG6vk Pe1gWOoJmXpQyr0g+tzz7UgQkzQucxieJo6pKPCd21qqd63zqc+C3xBE7YJ9Ssa+ mM0z8ThAyQ28VXUKXnfMFze6oizdkiDfUyVtJHLojtNTquEhuRZ/brKXC4hY6L6s aq9wnltJJoTgfnv6j+HQ4ZsJAULkWbZMvlZloWCr0ILn2iDxgr4jfaraDU4rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwlnYCvyz6unMqpDka7OwZH0k3bkwHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cWMA0GCSqG SIb3DQEBCwUAA4IBAQDZElrug9pxxVZhb1NgyCQsqv9mPf0FsftPwmEGoXue1FKC u2+eQNA6su8kLixkbeFXsw9BWrr14R07y43RKW0/iBoHICcvvQG2s5A1yEgR6pUD MRR6+7DS758gKm1Gv/69P5x3XjRuivHy9qxtxAPmyRwCU0Abnt2Ru83RAQh7D1qM P0cCsPeKndLbATPflGlKCi++yq8Razyl/nlnj+Zqq+mIrDXO1MnHwV7rN9lEYlQy 71XtrvRAPY/6v1HCJbmbCJ/w0ZomPkZJ0Fm3Yv8XUEHO6aktjoprUogNeww5VUFg yw0qbUYGVvtXHNeZB4hNUMNDINJ0Sq9DzW3dLx5N -----END CERTIFICATE-----Generated at Thu Jun 5 18:31:10 2025 by rpki-client