$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: OpAGSXy4nDXjC/N8zkYIDwXuoKZWJrsqeYGg4c9hm6U= Subject key identifier: 95:7C:CE:5D:84:C4:B6:B0:0C:B3:28:AC:6F:CE:FF:45:56:D3:73:93 Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 58EC15E8244329FAF68F10E11A0430D33B0E0113 Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa Signing time: Thu 05 Jun 2025 05:02:52 +0000 ROA not before: Thu 05 Jun 2025 04:57:52 +0000 ROA not after: Thu 04 Jun 2026 05:02:52 +0000 asID: 141126 IP address blocks: 103.158.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 09:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ec:15:e8:24:43:29:fa:f6:8f:10:e1:1a:04:30:d3:3b:0e:01:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jun 5 04:57:52 2025 GMT Not After : Jun 4 05:02:52 2026 GMT Subject: CN=957CCE5D84C4B6B00CB328AC6FCEFF4556D37393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:84:3d:fb:3b:3b:03:ab:2c:f5:fe:fb:d9: 99:69:20:db:2e:8f:b4:cc:94:dc:b2:d9:f5:e3:d6: fc:bb:6b:36:06:77:09:33:10:65:05:50:41:aa:4e: dc:4c:8a:d2:11:75:2d:b9:ee:06:40:9b:a6:dd:4c: 1b:21:36:a4:30:1b:3e:a6:10:8e:15:23:12:fb:53: ad:0e:c1:63:0d:e0:4c:f7:4e:d1:bb:07:db:55:d3: 3a:12:46:e1:54:a9:e2:41:86:02:4f:06:f5:b7:43: cb:3f:6a:ed:5f:c4:50:12:62:f0:28:89:a0:93:7e: 6b:d9:48:30:1f:59:7a:d1:48:0d:b3:d6:bb:65:bc: a2:6a:09:25:00:b8:f9:32:9c:11:a0:f9:3a:40:1b: 55:9a:0a:77:01:55:50:53:21:cd:87:89:ba:11:fe: d8:7d:f9:ed:07:4e:e4:85:95:2d:ab:16:8c:6e:d4: 1e:92:5d:57:b6:f3:ef:aa:5e:03:5d:dc:55:db:a5: 96:89:46:91:16:80:b7:08:b1:6c:ed:8c:2e:e6:80: 84:90:38:50:ed:c8:5f:4c:22:33:a6:3d:7c:dd:b5: a0:03:f2:8e:54:a8:4c:c9:b6:60:1c:4f:c8:f3:5c: 23:e7:a9:1e:a0:8a:47:dc:df:f7:5e:a9:ab:a7:57: ed:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7C:CE:5D:84:C4:B6:B0:0C:B3:28:AC:6F:CE:FF:45:56:D3:73:93 X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.155.0/24 Signature Algorithm: sha256WithRSAEncryption 12:98:de:5d:c9:2d:af:34:e3:7d:30:83:24:d9:03:00:7d:da: 49:81:a0:1f:ea:14:33:08:b9:f6:c5:ba:70:41:4e:b3:ef:0b: 1f:b4:80:93:70:d1:7a:1a:f4:fd:27:cb:4f:69:4d:98:23:9a: 39:c4:ee:9b:64:ac:4f:72:f1:be:44:87:e4:08:2d:8f:2c:0c: a3:15:60:fa:bc:ec:d9:ce:d8:89:21:ae:23:06:6e:ed:da:54: ac:cf:b6:4b:55:82:1f:e0:16:33:fd:ed:d7:e2:4a:eb:ea:f5: 3f:15:b1:b7:53:14:b1:1d:85:71:35:8c:17:73:2e:66:ec:e5: d8:57:ac:22:05:6c:93:31:35:df:2b:0e:78:54:a4:32:44:80: 6a:1e:1c:57:c7:52:bc:de:99:01:d5:64:24:cd:a9:df:f5:ec: cb:3c:1d:5b:12:f3:88:34:f0:c0:fd:ca:68:8c:58:2c:3e:fe: db:82:d8:51:6a:79:4a:10:29:26:c3:d7:e5:fd:75:ae:c8:ce: 62:3f:39:72:db:1a:3c:9a:27:c6:3e:51:5e:eb:5a:48:2c:61: 07:37:a3:5a:4e:c6:9a:64:45:cd:25:98:8a:7b:a6:e3:13:ac: 17:01:e5:e8:b7:ee:38:84:b8:9b:db:6d:e9:85:44:6a:40:aa: 67:fb:ca:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWOwV6CRDKfr2jxDhGgQw0zsOARMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNTA2MDUwNDU3NTJaFw0yNjA2MDQwNTAyNTJaMDMxMTAvBgNV BAMTKDk1N0NDRTVEODRDNEI2QjAwQ0IzMjhBQzZGQ0VGRjQ1NTZEMzczOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9CIQ9+zs7A6ss9f772ZlpINsu j7TMlNyy2fXj1vy7azYGdwkzEGUFUEGqTtxMitIRdS257gZAm6bdTBshNqQwGz6m EI4VIxL7U60OwWMN4Ez3TtG7B9tV0zoSRuFUqeJBhgJPBvW3Q8s/au1fxFASYvAo iaCTfmvZSDAfWXrRSA2z1rtlvKJqCSUAuPkynBGg+TpAG1WaCncBVVBTIc2HiboR /th9+e0HTuSFlS2rFoxu1B6SXVe28++qXgNd3FXbpZaJRpEWgLcIsWztjC7mgISQ OFDtyF9MIjOmPXzdtaAD8o5UqEzJtmAcT8jzXCPnqR6gikfc3/deqaunV+1lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlXzOXYTEtrAMsyisb87/RVbTc5MwHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpswDQYJ KoZIhvcNAQELBQADggEBABKY3l3JLa80430wgyTZAwB92kmBoB/qFDMIufbFunBB TrPvCx+0gJNw0Xoa9P0ny09pTZgjmjnE7ptkrE9y8b5Eh+QILY8sDKMVYPq87NnO 2IkhriMGbu3aVKzPtktVgh/gFjP97dfiSuvq9T8VsbdTFLEdhXE1jBdzLmbs5dhX rCIFbJMxNd8rDnhUpDJEgGoeHFfHUrzemQHVZCTNqd/17Ms8HVsS84g08MD9ymiM WCw+/tuC2FFqeUoQKSbD1+X9da7IzmI/OXLbGjyaJ8Y+UV7rWkgsYQc3o1pOxppk Rc0lmIp7puMTrBcB5ei37jiEuJvbbemFRGpAqmf7yl0= -----END CERTIFICATE-----Generated at Sat Jun 7 04:27:59 2025 by rpki-client