$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: lpElssmpxfbgKNNgmUzWoL87GOZos951RTYVyi3dLoQ= Subject key identifier: 6E:9E:88:B4:01:D3:D1:01:C5:1F:D9:36:ED:58:6E:CB:E3:B4:35:BB Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 43839F43114218B064D39DD4E7E3B1B91492D1FB Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa Signing time: Thu 05 Jun 2025 05:02:52 +0000 ROA not before: Thu 05 Jun 2025 04:57:52 +0000 ROA not after: Thu 04 Jun 2026 05:02:52 +0000 asID: 141126 IP address blocks: 103.158.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 09:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:83:9f:43:11:42:18:b0:64:d3:9d:d4:e7:e3:b1:b9:14:92:d1:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jun 5 04:57:52 2025 GMT Not After : Jun 4 05:02:52 2026 GMT Subject: CN=6E9E88B401D3D101C51FD936ED586ECBE3B435BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:41:d9:30:26:f5:f1:eb:be:67:08:a2:2f: e3:5d:20:6a:d3:77:ca:48:35:86:5f:cf:61:22:32: b1:17:c5:af:41:5f:1c:02:19:12:c9:65:e3:23:1e: 50:44:4f:f5:4a:05:7b:2c:e7:b1:a2:f5:32:fb:6c: 0f:ef:37:00:cd:44:b1:98:78:07:33:65:b5:f3:bd: 55:e0:a7:09:95:38:ca:53:c9:6d:54:21:f0:43:8c: 5f:df:0f:e0:74:64:be:01:b0:ea:e3:02:1c:93:8a: 7f:a9:85:02:a6:39:5d:be:ff:7a:12:9a:64:7c:53: 33:a6:30:82:4c:de:6e:ad:0f:4c:b2:8b:4b:d9:43: d3:6d:8b:f3:ac:28:93:1b:1c:58:3c:a5:00:ed:37: 3d:81:95:79:57:53:d7:01:eb:a2:8d:1b:78:b0:da: 19:55:8e:6b:37:bb:f2:e0:3b:df:cd:47:7f:32:66: 23:cd:87:5f:99:f5:bb:c7:fa:39:b8:81:3b:92:73: 8e:0b:03:35:0b:0e:44:03:9d:a2:88:b2:17:82:94: 52:7a:bb:40:a3:5d:95:26:7f:13:89:1b:d7:93:a0: d8:82:9c:e6:7a:8e:ca:5c:cf:6b:fb:6e:99:bd:ff: 30:f6:13:00:40:a6:a2:ab:22:8b:d3:b8:96:dc:20: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9E:88:B4:01:D3:D1:01:C5:1F:D9:36:ED:58:6E:CB:E3:B4:35:BB X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ce:27:a0:e9:97:e9:13:2a:87:bd:68:ea:bc:23:de:da:6e: fd:cb:96:3d:84:a3:da:21:46:21:ed:7a:e1:62:3d:2f:ba:5f: 5d:88:b9:88:c9:1e:0a:0a:a1:d8:21:a1:8f:c9:8c:d1:39:12: eb:a2:a0:76:83:13:48:07:13:6e:be:bc:f9:33:fd:1f:74:67: 49:2b:70:92:97:79:dc:f0:1d:d2:5d:e7:12:d0:41:a8:45:e4: 54:85:62:c8:ab:09:5b:e7:c4:ad:12:8a:f2:e6:50:03:2c:ea: 9d:36:44:35:12:06:bb:92:4a:e2:a6:19:cd:00:99:dd:24:83: 3d:37:bf:af:6f:d9:4d:90:f3:25:fb:10:fe:1c:b2:c8:b4:4f: 20:cb:d6:52:4c:e9:72:84:d3:1e:2b:04:5b:10:5a:82:0a:d1: f1:18:1b:1b:b0:0d:b4:3a:90:61:a2:15:b3:6f:14:69:99:8e: 39:ff:fa:96:17:d0:66:35:a9:53:55:f4:36:3e:91:f1:62:b0: eb:f7:e1:4a:e7:3c:48:e4:8e:49:57:b1:c4:8f:7e:f0:a7:43: 7a:f2:ce:b8:40:58:10:34:71:a1:5c:89:47:ee:a1:28:ba:a4: b7:7c:be:57:d3:4c:69:7f:ee:72:d0:0d:f0:cf:87:04:d0:18: 21:fe:e2:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ4OfQxFCGLBk053U5+OxuRSS0fswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNTA2MDUwNDU3NTJaFw0yNjA2MDQwNTAyNTJaMDMxMTAvBgNV BAMTKDZFOUU4OEI0MDFEM0QxMDFDNTFGRDkzNkVENTg2RUNCRTNCNDM1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/kHZMCb18eu+ZwiiL+NdIGrT d8pINYZfz2EiMrEXxa9BXxwCGRLJZeMjHlBET/VKBXss57Gi9TL7bA/vNwDNRLGY eAczZbXzvVXgpwmVOMpTyW1UIfBDjF/fD+B0ZL4BsOrjAhyTin+phQKmOV2+/3oS mmR8UzOmMIJM3m6tD0yyi0vZQ9Nti/OsKJMbHFg8pQDtNz2BlXlXU9cB66KNG3iw 2hlVjms3u/LgO9/NR38yZiPNh1+Z9bvH+jm4gTuSc44LAzULDkQDnaKIsheClFJ6 u0CjXZUmfxOJG9eToNiCnOZ6jspcz2v7bpm9/zD2EwBApqKrIovTuJbcIIjFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbp6ItAHT0QHFH9k27Vhuy+O0NbswHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpowDQYJ KoZIhvcNAQELBQADggEBAB7OJ6Dpl+kTKoe9aOq8I97abv3Llj2Eo9ohRiHteuFi PS+6X12IuYjJHgoKodghoY/JjNE5EuuioHaDE0gHE26+vPkz/R90Z0krcJKXedzw HdJd5xLQQahF5FSFYsirCVvnxK0SivLmUAMs6p02RDUSBruSSuKmGc0Amd0kgz03 v69v2U2Q8yX7EP4cssi0TyDL1lJM6XKE0x4rBFsQWoIK0fEYGxuwDbQ6kGGiFbNv FGmZjjn/+pYX0GY1qVNV9DY+kfFisOv34UrnPEjkjklXscSPfvCnQ3ryzrhAWBA0 caFciUfuoSi6pLd8vlfTTGl/7nLQDfDPhwTQGCH+4ic= -----END CERTIFICATE-----Generated at Sat Jun 7 04:17:34 2025 by rpki-client