$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa File: 3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: FWaIS2C5y+tF+eXrrfhUKvMiaO2hbKHJ6PXu+XjlFjU= Subject key identifier: 51:CA:35:08:1D:5B:9B:41:7B:15:37:B5:A9:E4:10:DD:64:33:DC:8A Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 2704B35AFB8C93DBBAFBA62E88721C619EE5F903 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa Signing time: Sun 18 May 2025 10:02:24 +0000 ROA not before: Sun 18 May 2025 09:57:24 +0000 ROA not after: Sun 17 May 2026 10:02:24 +0000 asID: 138866 IP address blocks: 103.140.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 07:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:04:b3:5a:fb:8c:93:db:ba:fb:a6:2e:88:72:1c:61:9e:e5:f9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: May 18 09:57:24 2025 GMT Not After : May 17 10:02:24 2026 GMT Subject: CN=51CA35081D5B9B417B1537B5A9E410DD6433DC8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:b4:80:61:56:05:a8:e6:d8:4e:a9:35:05: 58:33:9c:c6:51:41:da:fe:9f:6c:37:02:3e:64:26: eb:c8:fb:aa:3e:40:18:07:81:d0:3e:ce:63:0f:45: 09:a5:58:8b:53:fe:ea:3a:a6:bf:8e:b3:80:59:0d: fc:0a:a7:36:41:33:38:27:60:d6:c5:d3:a3:3c:a3: e3:4f:2f:6b:7f:a8:ec:07:43:66:c6:3c:3f:f9:d3: 31:e9:45:b2:b4:9f:7d:9a:a7:fc:c2:f9:cb:e4:67: 75:a3:8b:eb:28:4b:cd:48:c1:8a:4d:9c:ff:57:b0: 3b:c3:57:1a:74:f6:4d:f4:34:54:dc:b3:5f:29:49: 37:7d:a1:7c:2d:b0:46:c3:cf:ec:85:85:26:86:9f: 91:36:4a:77:1e:5e:3a:13:f2:1c:70:f2:95:3b:1f: 92:2c:b6:81:10:e8:9f:96:c5:5f:1e:99:f6:fc:c9: 62:7f:23:a8:96:4f:a0:e4:81:05:76:78:bc:6a:29: c7:f2:ba:f7:52:7d:8b:b5:fd:45:42:b1:e0:e4:a6: 0f:37:b1:69:af:4b:c4:d8:2d:d2:72:06:54:2b:a6: f9:5a:93:71:66:1c:af:37:31:a5:ea:e9:bc:67:cf: f5:ed:07:95:b6:c8:4f:5e:2e:c5:f6:9e:b2:66:2f: 09:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CA:35:08:1D:5B:9B:41:7B:15:37:B5:A9:E4:10:DD:64:33:DC:8A X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133312e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.131.0/24 Signature Algorithm: sha256WithRSAEncryption cc:b1:dd:b1:1b:f3:db:79:33:57:4c:f9:4b:8f:5e:74:a8:f1: b6:76:33:69:d7:d3:ba:9a:14:6a:0e:8f:21:6d:fe:93:2a:1a: 1d:0d:de:18:7f:3b:c1:2f:00:10:fb:fe:3f:11:db:2a:f7:68: cc:2d:37:ab:5f:d4:06:11:23:92:01:60:0e:60:62:98:2d:76: f0:6b:cb:5b:73:1f:3c:73:e2:14:5d:04:97:99:6c:99:1c:c1: 3c:ea:0b:77:5e:a4:29:22:9a:58:6d:b3:a0:34:5e:a0:ce:c4: 07:f4:59:1a:2c:a0:5d:49:a3:c3:b7:85:97:73:29:e5:62:71: ef:2d:04:35:ff:b4:9a:2b:a0:09:d1:d4:a1:05:d2:9d:77:f8: d2:b6:31:e5:ca:0b:b6:3a:66:d1:0c:b8:e1:b7:50:68:bb:3a: 3d:83:a3:09:f0:26:79:2f:d4:a1:3d:b5:08:86:55:5a:bb:47: 65:aa:30:8a:4c:4a:9f:3b:08:34:63:d0:8c:b5:2b:a5:cf:41: 13:a0:20:bd:6d:cc:fa:14:10:fc:ef:11:91:76:2f:e4:92:c8: d1:2d:8a:ca:c1:06:09:28:a6:a8:73:49:2c:a6:28:f7:89:09: a5:ca:70:12:e2:dd:48:09:cd:84:1a:6a:28:3f:ce:0c:5a:ef: ec:64:4d:63 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJwSzWvuMk9u6+6YuiHIcYZ7l+QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA1MTgwOTU3MjRaFw0yNjA1MTcxMDAyMjRaMDMxMTAvBgNV BAMTKDUxQ0EzNTA4MUQ1QjlCNDE3QjE1MzdCNUE5RTQxMERENjQzM0RDOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCypbSAYVYFqObYTqk1BVgznMZR Qdr+n2w3Aj5kJuvI+6o+QBgHgdA+zmMPRQmlWItT/uo6pr+Os4BZDfwKpzZBMzgn YNbF06M8o+NPL2t/qOwHQ2bGPD/50zHpRbK0n32ap/zC+cvkZ3Wji+soS81IwYpN nP9XsDvDVxp09k30NFTcs18pSTd9oXwtsEbDz+yFhSaGn5E2SnceXjoT8hxw8pU7 H5IstoEQ6J+WxV8emfb8yWJ/I6iWT6DkgQV2eLxqKcfyuvdSfYu1/UVCseDkpg83 sWmvS8TYLdJyBlQrpvlak3FmHK83MaXq6bxnz/XtB5W2yE9eLsX2nrJmLwlhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUco1CB1bm0F7FTe1qeQQ3WQz3IowHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjIMwDQYJ KoZIhvcNAQELBQADggEBAMyx3bEb89t5M1dM+UuPXnSo8bZ2M2nX07qaFGoOjyFt /pMqGh0N3hh/O8EvABD7/j8R2yr3aMwtN6tf1AYRI5IBYA5gYpgtdvBry1tzHzxz 4hRdBJeZbJkcwTzqC3depCkimlhts6A0XqDOxAf0WRosoF1Jo8O3hZdzKeVice8t BDX/tJoroAnR1KEF0p13+NK2MeXKC7Y6ZtEMuOG3UGi7Oj2DownwJnkv1KE9tQiG VVq7R2WqMIpMSp87CDRj0Iy1K6XPQROgIL1tzPoUEPzvEZF2L+SSyNEtisrBBgko pqhzSSymKPeJCaXKcBLi3UgJzYQaaig/zgxa7+xkTWM= -----END CERTIFICATE-----Generated at Wed Oct 29 13:49:55 2025 by rpki-client