$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa File: 3130332e31302e3132302e302f32332d3233203d3e203536323436.roa (raw, json) Hash identifier: tNIciW1i86c1AN45Q7ibu9fM63dfe7vtSBE+NUt5ADY= Subject key identifier: 15:0C:C9:6A:A4:DF:B4:F1:36:55:41:EF:5A:E9:FC:48:E8:A6:1F:4F Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 52E8EF6C5454BF8D9FD92CD264E26AC59A5245C8 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa Signing time: Mon 02 Jun 2025 01:03:11 +0000 ROA not before: Mon 02 Jun 2025 00:58:11 +0000 ROA not after: Mon 01 Jun 2026 01:03:11 +0000 asID: 56246 IP address blocks: 103.10.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e8:ef:6c:54:54:bf:8d:9f:d9:2c:d2:64:e2:6a:c5:9a:52:45:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:11 2025 GMT Not After : Jun 1 01:03:11 2026 GMT Subject: CN=150CC96AA4DFB4F1365541EF5AE9FC48E8A61F4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e3:8b:96:8e:20:af:6f:29:05:d5:e0:28:5a: c4:d2:58:97:9b:4f:46:73:06:28:fa:4c:aa:b3:93: 0e:b7:5a:df:ce:b3:a4:60:47:97:ff:5e:77:a6:10: 96:2a:4e:bc:11:a0:64:91:ef:6e:ca:6e:8d:21:a7: 15:f8:aa:57:66:0d:d8:73:4b:2d:57:73:34:3a:a3: 3a:b9:fa:26:b2:3d:c9:0e:75:09:84:c4:33:d3:ca: 79:3a:d2:3e:c7:c9:9a:ad:e1:b0:15:56:ed:d3:29: 37:7a:13:20:58:49:6f:47:8b:ae:31:5a:b5:45:9c: bb:19:98:9d:f1:84:9b:76:2d:fc:96:b6:70:62:f4: 87:2a:16:27:76:c5:71:73:4f:5c:c4:f5:bc:b3:6f: 7d:c7:1b:02:a6:6a:7f:b8:41:f6:8e:f4:a7:68:4a: e5:d8:5d:4f:f4:d2:76:aa:f5:01:56:13:28:f9:3d: 9a:69:a7:4e:c7:9c:b8:b8:4f:66:bb:9a:d3:5e:51: 22:4e:15:86:4b:34:7d:cc:31:4a:61:13:9b:f4:29: dc:cf:17:47:80:a4:aa:c0:0a:75:07:fc:6a:b6:ae: 96:a2:23:0d:00:1b:a6:4d:40:13:68:3a:0f:ae:15: dc:a5:37:d1:5a:d5:60:c2:02:19:d5:6e:5d:54:b7: 99:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0C:C9:6A:A4:DF:B4:F1:36:55:41:EF:5A:E9:FC:48:E8:A6:1F:4F X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.120.0/23 Signature Algorithm: sha256WithRSAEncryption 84:be:57:65:82:22:6a:f9:31:dc:39:14:7a:1c:40:d2:42:bf: 9e:25:d3:45:a4:8c:97:c5:ce:b3:4a:a6:e3:2f:3b:f9:e2:08: 41:a5:62:c3:28:66:02:32:ef:cf:ac:6c:e4:df:64:83:9b:6d: ea:66:f4:66:63:0d:fe:8c:e7:93:e9:d0:31:a8:3c:31:a4:87: a9:31:65:63:68:14:48:af:78:ef:58:60:66:11:41:2b:c5:df: ec:c1:19:79:17:e5:30:c4:d7:44:06:1e:a0:a4:a6:f6:d5:11: ce:af:c5:ca:48:b6:2e:b3:4d:59:40:ef:63:42:38:8e:72:0c: 8b:15:f4:88:12:1f:ee:87:5d:6e:98:84:a9:71:19:19:e2:4e: 7b:f2:57:14:06:33:d3:5a:69:fa:9b:06:de:fc:b7:e0:80:70: 45:d9:07:f4:6d:42:88:b0:35:55:c4:df:30:01:a1:bd:2e:2f: e7:13:c7:01:c0:9a:62:5c:64:85:3c:d2:36:cf:9d:65:f6:1b: 16:a8:29:72:d9:b6:5d:b1:c5:f2:ef:82:96:62:b4:76:27:92: fc:c5:ed:d7:c5:fe:7b:95:53:d9:ed:5e:eb:c2:e2:b2:a3:95: 3c:ef:8b:ec:0f:58:17:f2:5d:c7:b4:65:5a:19:25:6c:bd:ec: 4f:b3:3b:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUujvbFRUv42f2SzSZOJqxZpSRcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MTFaFw0yNjA2MDEwMTAzMTFaMDMxMTAvBgNV BAMTKDE1MENDOTZBQTRERkI0RjEzNjU1NDFFRjVBRTlGQzQ4RThBNjFGNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN44uWjiCvbykF1eAoWsTSWJeb T0ZzBij6TKqzkw63Wt/Os6RgR5f/XnemEJYqTrwRoGSR727Kbo0hpxX4qldmDdhz Sy1XczQ6ozq5+iayPckOdQmExDPTynk60j7HyZqt4bAVVu3TKTd6EyBYSW9Hi64x WrVFnLsZmJ3xhJt2LfyWtnBi9IcqFid2xXFzT1zE9byzb33HGwKman+4QfaO9Kdo SuXYXU/00naq9QFWEyj5PZppp07HnLi4T2a7mtNeUSJOFYZLNH3MMUphE5v0KdzP F0eApKrACnUH/Gq2rpaiIw0AG6ZNQBNoOg+uFdylN9Fa1WDCAhnVbl1Ut5khAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFQzJaqTftPE2VUHvWun8SOimH08wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcKeDANBgkqhkiG 9w0BAQsFAAOCAQEAhL5XZYIiavkx3DkUehxA0kK/niXTRaSMl8XOs0qm4y87+eII QaViwyhmAjLvz6xs5N9kg5tt6mb0ZmMN/oznk+nQMag8MaSHqTFlY2gUSK9471hg ZhFBK8Xf7MEZeRflMMTXRAYeoKSm9tURzq/Fyki2LrNNWUDvY0I4jnIMixX0iBIf 7oddbpiEqXEZGeJOe/JXFAYz01pp+psG3vy34IBwRdkH9G1CiLA1VcTfMAGhvS4v 5xPHAcCaYlxkhTzSNs+dZfYbFqgpctm2XbHF8u+ClmK0dieS/MXt18X+e5VT2e1e 68LisqOVPO+L7A9YF/Jdx7RlWhklbL3sT7M7Jw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:24 2025 by rpki-client