$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa File: 3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: naME29BjJNXWcG5xS5OYZKvtjsmmITu0eSf0OkwWWqI= Subject key identifier: 8F:DD:7A:55:1B:C2:3F:95:48:E5:11:E0:23:45:E9:37:CD:4D:77:CE Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 77A251323D5A2D4C723338B434B5B2288F199565 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa Signing time: Sun 18 May 2025 10:02:24 +0000 ROA not before: Sun 18 May 2025 09:57:24 +0000 ROA not after: Sun 17 May 2026 10:02:24 +0000 asID: 138866 IP address blocks: 103.140.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 13:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a2:51:32:3d:5a:2d:4c:72:33:38:b4:34:b5:b2:28:8f:19:95:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: May 18 09:57:24 2025 GMT Not After : May 17 10:02:24 2026 GMT Subject: CN=8FDD7A551BC23F9548E511E02345E937CD4D77CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a6:ec:14:1a:66:28:92:ca:5e:ff:22:ec:69: 89:a0:5d:1a:a3:f6:29:3b:88:4e:97:41:a7:f4:0d: a8:fe:38:dd:ae:b8:1d:04:3c:b4:f7:96:17:75:c9: b2:a8:aa:e9:2e:c9:73:df:82:25:79:f1:4b:76:8e: 78:52:85:07:d2:c2:27:1a:d0:a5:91:fa:ce:ab:42: 46:a5:68:27:ef:81:1c:4b:97:0b:02:14:94:fc:af: 07:33:88:d5:62:af:1c:b2:b4:0e:d8:cc:41:5b:d3: 98:e0:da:92:36:3a:be:6f:7a:da:86:f4:e4:ae:14: f2:8e:08:74:9b:a7:77:b5:9f:0a:ca:1f:ac:07:1b: 8a:53:90:d8:68:b2:e6:81:08:69:53:e0:5b:64:93: fd:27:6f:41:7d:f5:c3:53:c0:08:db:c4:79:c3:b0: 68:61:8c:d6:c5:7e:84:4c:b5:d9:c0:60:4c:32:7c: 01:8b:7d:ec:5b:1c:a6:0f:53:77:25:d1:06:7f:1f: 00:f5:c9:1d:d9:fb:3b:0a:0c:12:8d:92:6e:7f:a0: 89:48:d4:9d:4c:d3:dd:20:8c:85:84:db:b0:64:17: 19:25:05:e5:f8:9d:f0:04:9f:19:42:30:c7:2c:9c: 60:31:d2:e6:a9:12:54:43:bc:32:5c:84:a3:33:19: e8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DD:7A:55:1B:C2:3F:95:48:E5:11:E0:23:45:E9:37:CD:4D:77:CE X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.130.0/24 Signature Algorithm: sha256WithRSAEncryption 09:a0:c4:d2:1f:10:12:ff:23:b3:d8:36:d9:66:60:d1:c3:e8: 13:92:68:c4:bb:f0:17:1d:05:2c:13:35:a1:3d:a6:47:73:e2: d6:ba:96:85:9a:ec:94:b7:28:cd:f4:de:cc:53:c1:43:11:80: a7:d7:e8:e4:8f:5d:6e:cc:b9:f2:36:8e:76:da:7c:e2:38:22: f4:1b:0a:42:51:af:d1:12:b2:63:2d:f4:83:64:55:f3:d2:07: c4:63:3a:5c:a3:ac:68:f3:1a:d9:9d:b8:6e:fb:65:cd:87:f6: e4:03:e8:92:35:eb:c6:96:dd:63:04:c1:3d:cc:6f:08:c5:01: 25:7b:c9:96:b9:8a:e5:b0:1c:30:a6:05:7a:2e:be:30:94:fd: b8:11:49:2e:7f:6d:4c:02:3f:cf:3b:32:aa:4b:47:ce:33:63: f4:45:86:39:a9:fe:20:8e:61:e9:e8:e2:81:ad:78:c3:e6:5f: 2c:ff:f3:ee:76:94:b5:55:7e:13:55:32:0e:78:dd:2c:41:6e: 6c:d4:44:94:fe:4d:dd:fb:b9:cf:fe:80:26:8d:e8:e2:64:dc: d4:72:f0:e0:84:13:ae:21:16:11:09:f4:71:bf:4c:9e:17:3b: 11:49:63:24:c1:48:69:8a:45:23:0c:40:61:8b:f7:e8:44:79: 04:01:53:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd6JRMj1aLUxyMzi0NLWyKI8ZlWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA1MTgwOTU3MjRaFw0yNjA1MTcxMDAyMjRaMDMxMTAvBgNV BAMTKDhGREQ3QTU1MUJDMjNGOTU0OEU1MTFFMDIzNDVFOTM3Q0Q0RDc3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3puwUGmYokspe/yLsaYmgXRqj 9ik7iE6XQaf0Daj+ON2uuB0EPLT3lhd1ybKoqukuyXPfgiV58Ut2jnhShQfSwica 0KWR+s6rQkalaCfvgRxLlwsCFJT8rwcziNVirxyytA7YzEFb05jg2pI2Or5vetqG 9OSuFPKOCHSbp3e1nwrKH6wHG4pTkNhosuaBCGlT4Ftkk/0nb0F99cNTwAjbxHnD sGhhjNbFfoRMtdnAYEwyfAGLfexbHKYPU3cl0QZ/HwD1yR3Z+zsKDBKNkm5/oIlI 1J1M090gjIWE27BkFxklBeX4nfAEnxlCMMcsnGAx0uapElRDvDJchKMzGeiFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj916VRvCP5VI5RHgI0XpN81Nd84wHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjIIwDQYJ KoZIhvcNAQELBQADggEBAAmgxNIfEBL/I7PYNtlmYNHD6BOSaMS78BcdBSwTNaE9 pkdz4ta6loWa7JS3KM303sxTwUMRgKfX6OSPXW7MufI2jnbafOI4IvQbCkJRr9ES smMt9INkVfPSB8RjOlyjrGjzGtmduG77Zc2H9uQD6JI168aW3WMEwT3MbwjFASV7 yZa5iuWwHDCmBXouvjCU/bgRSS5/bUwCP887MqpLR84zY/RFhjmp/iCOYeno4oGt eMPmXyz/8+52lLVVfhNVMg543SxBbmzURJT+Td37uc/+gCaN6OJk3NRy8OCEE64h FhEJ9HG/TJ4XOxFJYyTBSGmKRSMMQGGL9+hEeQQBU4Q= -----END CERTIFICATE-----Generated at Thu Jun 5 19:15:44 2025 by rpki-client