$ rpki-client -vvf repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134392e302f32342d3234203d3e203538333639.roa File: 3130332e3132312e3134392e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: M8bRC4wiSLB6e2iwcZHOvqYaGOdNzRxUPpYTKPxu050= Subject key identifier: E9:8B:F0:33:7B:46:0B:8E:D4:C2:65:C8:CB:95:5C:46:F6:A3:4F:E3 Certificate issuer: /CN=98F94938EA9072872BE06639F79DC61C000F849C Certificate serial: 717EC87E9B6A7E0716A2702130952C8A80D8415B Authority key identifier: 98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134392e302f32342d3234203d3e203538333639.roa Signing time: Mon 02 Jun 2025 02:02:44 +0000 ROA not before: Mon 02 Jun 2025 01:57:44 +0000 ROA not after: Mon 01 Jun 2026 02:02:44 +0000 asID: 58369 IP address blocks: 103.121.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/98F94938EA9072872BE06639F79DC61C000F849C.crl rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/98F94938EA9072872BE06639F79DC61C000F849C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7e:c8:7e:9b:6a:7e:07:16:a2:70:21:30:95:2c:8a:80:d8:41:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98F94938EA9072872BE06639F79DC61C000F849C Validity Not Before: Jun 2 01:57:44 2025 GMT Not After : Jun 1 02:02:44 2026 GMT Subject: CN=E98BF0337B460B8ED4C265C8CB955C46F6A34FE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:5c:ad:e8:90:ce:30:07:5c:d7:29:68:94: 8b:bb:91:47:56:3a:fa:d3:75:e2:df:cb:59:50:21: cf:bd:eb:a4:51:75:9a:50:e7:81:64:12:48:50:83: da:6f:3c:5d:f8:93:c1:ed:01:c4:5a:21:2e:23:7f: 53:6c:5b:7f:13:f6:d6:80:df:05:3b:b9:e2:26:b6: f3:2e:c6:b9:ca:04:0e:a9:4f:ea:1b:2a:f7:02:74: 21:f7:04:ca:fc:50:9f:4c:8d:05:44:0a:9a:23:fc: a7:11:38:a7:2a:cc:c3:a8:5b:08:97:b9:4a:a3:e8: 4b:69:60:b3:cb:7e:43:af:21:29:ac:e7:5c:47:3f: 94:74:d2:1b:7d:8c:71:18:67:26:28:ac:35:80:83: 80:ac:4c:a6:50:6c:01:b9:00:e8:cd:b6:05:5f:d3: b6:77:cd:2f:9e:dd:b6:bc:0e:34:77:86:fb:d3:9c: 26:07:d2:34:c9:24:f5:b8:62:36:85:55:5a:ca:b1: 17:d1:d9:9b:93:e7:e5:84:bc:0a:c3:30:9a:4a:d5: ae:a6:bb:8d:2d:00:7f:a8:e5:36:52:14:58:d2:76: 21:94:36:d7:35:57:51:da:e6:47:82:34:2b:0d:75: 80:cf:bd:3e:ac:1b:4c:7b:99:ae:e7:0c:6a:f2:c8: 74:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8B:F0:33:7B:46:0B:8E:D4:C2:65:C8:CB:95:5C:46:F6:A3:4F:E3 X509v3 Authority Key Identifier: keyid:98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/98F94938EA9072872BE06639F79DC61C000F849C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134392e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.149.0/24 Signature Algorithm: sha256WithRSAEncryption 25:22:50:b0:8c:14:04:97:9a:fc:63:4f:8b:4c:79:20:02:2b: 29:b3:bc:ac:b7:a8:da:3d:68:fe:af:93:54:26:80:ad:b0:36: 55:5b:eb:7b:02:92:49:4d:6f:7c:b6:a9:26:d8:f5:4d:a5:d7: ec:65:87:ae:63:5f:5c:c3:23:7c:e4:11:a8:b5:16:79:09:88: cc:7c:2b:2b:a5:53:d0:d3:67:26:47:0b:d3:0c:05:4f:04:1f: 3f:a2:ca:d8:cd:0f:3d:b3:1d:0d:a7:e7:04:da:55:79:b8:d1: 82:97:8e:cc:7d:6a:5d:af:aa:2b:48:f7:63:5c:9b:26:83:7e: db:d6:7b:84:1f:71:f1:9b:61:11:76:d7:83:ee:8d:f4:20:de: fc:8a:77:d1:af:b3:cb:24:19:62:bf:f0:76:cd:e8:d1:47:d6: d9:bb:93:f8:12:af:32:a6:2b:0f:f1:97:e4:c2:5c:d9:fb:db: 36:4b:92:39:3f:42:32:cf:72:83:a3:91:88:3c:1b:ed:43:1e: e9:f5:0a:67:6c:cb:cf:26:6d:10:0c:3b:d6:ed:b1:d0:44:7f: 44:3a:8f:a7:65:a4:e9:0a:a6:a2:15:66:3b:38:32:f4:d2:50: 1e:5e:03:be:66:37:82:50:0c:e2:a3:7a:37:ab:5e:17:8d:81: 78:b1:a0:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcX7IfptqfgcWonAhMJUsioDYQVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGOTQ5MzhFQTkwNzI4NzJCRTA2NjM5Rjc5REM2MUMw MDBGODQ5QzAeFw0yNTA2MDIwMTU3NDRaFw0yNjA2MDEwMjAyNDRaMDMxMTAvBgNV BAMTKEU5OEJGMDMzN0I0NjBCOEVENEMyNjVDOENCOTU1QzQ2RjZBMzRGRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCumVyt6JDOMAdc1ylolIu7kUdW OvrTdeLfy1lQIc+966RRdZpQ54FkEkhQg9pvPF34k8HtAcRaIS4jf1NsW38T9taA 3wU7ueImtvMuxrnKBA6pT+obKvcCdCH3BMr8UJ9MjQVECpoj/KcROKcqzMOoWwiX uUqj6EtpYLPLfkOvISms51xHP5R00ht9jHEYZyYorDWAg4CsTKZQbAG5AOjNtgVf 07Z3zS+e3ba8DjR3hvvTnCYH0jTJJPW4YjaFVVrKsRfR2ZuT5+WEvArDMJpK1a6m u40tAH+o5TZSFFjSdiGUNtc1V1Ha5keCNCsNdYDPvT6sG0x7ma7nDGryyHRrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6YvwM3tGC47UwmXIy5VcRvajT+MwHwYDVR0j BBgwFoAUmPlJOOqQcocr4GY5953GHAAPhJwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 M2IxNDZhMi03NzE1LTQ1OWYtODI0NC04YjMyYTM2NDY2M2MvMC85OEY5NDkzOEVB OTA3Mjg3MkJFMDY2MzlGNzlEQzYxQzAwMEY4NDlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGOTQ5MzhFQTkwNzI4NzJCRTA2NjM5Rjc5REM2MUMwMDBG ODQ5Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzYjE0NmEyLTc3MTUtNDU5Zi04 MjQ0LThiMzJhMzY0NjYzYy8wLzMxMzAzMzJlMzEzMjMxMmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3mVMA0GCSqG SIb3DQEBCwUAA4IBAQAlIlCwjBQEl5r8Y0+LTHkgAisps7yst6jaPWj+r5NUJoCt sDZVW+t7ApJJTW98tqkm2PVNpdfsZYeuY19cwyN85BGotRZ5CYjMfCsrpVPQ02cm RwvTDAVPBB8/osrYzQ89sx0Np+cE2lV5uNGCl47MfWpdr6orSPdjXJsmg37b1nuE H3Hxm2ERdteD7o30IN78infRr7PLJBliv/B2zejRR9bZu5P4Eq8ypisP8ZfkwlzZ +9s2S5I5P0Iyz3KDo5GIPBvtQx7p9QpnbMvPJm0QDDvW7bHQRH9EOo+nZaTpCqai FWY7ODL00lAeXgO+ZjeCUAzio3o3q14XjYF4saBv -----END CERTIFICATE-----Generated at Sat Jun 7 12:23:48 2025 by rpki-client