$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa (raw, json) Hash identifier: KoxYk2ZRPcbgpF7xh9ACZAj2oe0zktHzsGiH4v0qag8= Subject key identifier: 17:87:BC:95:0A:04:89:C8:08:83:BD:4E:6E:91:A3:37:73:63:16:9B Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 184164A1B6429A54FF916AAF7CE4584D531EF420 Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa Signing time: Thu 05 Jun 2025 05:02:52 +0000 ROA not before: Thu 05 Jun 2025 04:57:52 +0000 ROA not after: Thu 04 Jun 2026 05:02:52 +0000 asID: 141126 IP address blocks: 103.158.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 09:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:41:64:a1:b6:42:9a:54:ff:91:6a:af:7c:e4:58:4d:53:1e:f4:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jun 5 04:57:52 2025 GMT Not After : Jun 4 05:02:52 2026 GMT Subject: CN=1787BC950A0489C80883BD4E6E91A3377363169B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:68:3e:74:b6:0a:3d:51:78:f1:5e:e4:fb:b9: ca:f7:2b:d2:3e:50:04:30:4e:54:71:b1:cd:0a:c6: b7:3f:94:94:ce:ea:7d:b3:f0:3c:dd:17:cf:86:44: c0:fb:38:be:06:96:0f:50:15:c5:44:21:35:c7:5d: 20:73:4b:ab:ee:7a:4e:6e:c8:ad:73:7e:c7:78:3e: df:01:8a:32:24:34:2d:f2:f9:3e:1a:ad:07:3f:78: 6d:0b:5b:32:b4:33:50:86:9a:f7:37:99:22:fa:49: 96:c3:a5:4b:06:17:d2:2b:13:f4:8d:9e:7f:77:73: f4:a1:6b:3a:d2:5e:20:5b:83:67:d4:65:64:22:ee: 38:7b:8a:6e:71:36:a9:3a:1e:16:77:f3:92:ca:d1: cd:2f:c4:e9:25:6f:6e:52:a4:c5:b1:58:1d:27:59: 66:fc:35:82:7e:87:5b:09:b8:28:35:8f:e0:66:c4: 4a:59:bd:23:58:d9:49:2d:0c:6f:cd:3b:ee:e8:5a: 48:c6:28:4f:37:dc:36:29:bf:d6:34:d5:41:42:49: 36:23:db:47:98:35:01:3d:4d:eb:74:93:cf:a0:b1: 4a:5d:53:22:d1:ce:f3:7f:d5:52:a1:d6:7a:c1:37: cd:ff:51:e8:48:11:9c:04:0d:45:84:ad:41:bc:e7: 24:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:87:BC:95:0A:04:89:C8:08:83:BD:4E:6E:91:A3:37:73:63:16:9B X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/23 Signature Algorithm: sha256WithRSAEncryption 39:ea:a4:33:5e:50:0c:e6:21:5a:bb:2a:6a:34:9f:fb:c5:b0: 25:0f:31:45:40:c0:00:3b:75:4f:3b:96:30:9d:e7:c6:a7:7f: ff:95:f5:9d:40:fd:a4:7d:c6:51:48:9e:84:a4:5f:31:a4:e6: 72:2f:20:84:8d:fd:f3:60:ba:a5:65:4e:33:7d:e8:85:c9:78: 2e:70:11:3b:56:af:c7:ab:69:33:98:e8:0d:1c:80:35:d2:2b: 22:52:31:6d:cd:54:18:42:d9:1e:9f:3d:de:91:a8:2a:fb:83: 4e:0d:be:dc:44:35:98:b1:de:a0:8f:3b:a4:54:67:45:27:68: a5:1c:a8:b8:7a:bc:a7:f2:d1:7b:97:e4:15:52:86:06:4a:50: 6e:93:4f:c2:31:78:9b:bd:33:8b:e0:28:e5:b1:b0:94:48:32: f6:52:97:8c:9c:71:1c:9d:9e:02:17:92:39:8d:db:1d:d3:d7: ba:d2:a1:57:c9:b1:2c:b7:07:79:60:6c:40:2c:97:86:3e:44: c3:e6:7a:55:63:bd:f2:9c:d9:3d:f0:3c:1e:f9:92:42:59:4f: f8:8e:9a:f7:3b:11:1c:f9:94:56:58:14:03:07:f4:ff:13:9f: 9d:1a:0c:6b:0d:12:25:9d:fb:6a:c8:4d:c7:2f:a8:53:47:23: e2:7d:cf:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGEFkobZCmlT/kWqvfORYTVMe9CAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNTA2MDUwNDU3NTJaFw0yNjA2MDQwNTAyNTJaMDMxMTAvBgNV BAMTKDE3ODdCQzk1MEEwNDg5QzgwODgzQkQ0RTZFOTFBMzM3NzM2MzE2OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYaD50tgo9UXjxXuT7ucr3K9I+ UAQwTlRxsc0Kxrc/lJTO6n2z8DzdF8+GRMD7OL4Glg9QFcVEITXHXSBzS6vuek5u yK1zfsd4Pt8BijIkNC3y+T4arQc/eG0LWzK0M1CGmvc3mSL6SZbDpUsGF9IrE/SN nn93c/ShazrSXiBbg2fUZWQi7jh7im5xNqk6HhZ385LK0c0vxOklb25SpMWxWB0n WWb8NYJ+h1sJuCg1j+BmxEpZvSNY2UktDG/NO+7oWkjGKE833DYpv9Y01UFCSTYj 20eYNQE9Tet0k8+gsUpdUyLRzvN/1VKh1nrBN83/UehIEZwEDUWErUG85yQJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUF4e8lQoEicgIg71ObpGjN3NjFpswHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnpowDQYJ KoZIhvcNAQELBQADggEBADnqpDNeUAzmIVq7Kmo0n/vFsCUPMUVAwAA7dU87ljCd 58anf/+V9Z1A/aR9xlFInoSkXzGk5nIvIISN/fNguqVlTjN96IXJeC5wETtWr8er aTOY6A0cgDXSKyJSMW3NVBhC2R6fPd6RqCr7g04NvtxENZix3qCPO6RUZ0UnaKUc qLh6vKfy0XuX5BVShgZKUG6TT8IxeJu9M4vgKOWxsJRIMvZSl4yccRydngIXkjmN 2x3T17rSoVfJsSy3B3lgbEAsl4Y+RMPmelVjvfKc2T3wPB75kkJZT/iOmvc7ERz5 lFZYFAMH9P8Tn50aDGsNEiWd+2rITccvqFNHI+J9zyA= -----END CERTIFICATE-----Generated at Sat Jun 7 04:07:38 2025 by rpki-client