$ rpki-client -vvf repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3130332e3139312e3134312e302f32342d3234203d3e20313439393232.roa File: 3130332e3139312e3134312e302f32342d3234203d3e20313439393232.roa (raw, json) Hash identifier: QZrvNrtpXCKPjhSgsC8kdyvVzWQ/ADZleC5w3ZKWFT4= Subject key identifier: 91:D3:A1:C1:C1:E2:AD:96:2C:0F:0A:93:D8:C1:F0:F4:CE:B6:62:C7 Certificate issuer: /CN=3E648E6A8623C5C5DDF001526D0FDC0FF200F613 Certificate serial: 1CC25DF45445DE3CFAF9DF8F78147FD026A30882 Authority key identifier: 3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer Subject info access: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3130332e3139312e3134312e302f32342d3234203d3e20313439393232.roa Signing time: Wed 28 May 2025 05:01:16 +0000 ROA not before: Wed 28 May 2025 04:56:16 +0000 ROA not after: Wed 27 May 2026 05:01:16 +0000 asID: 149922 IP address blocks: 103.191.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.crl rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c2:5d:f4:54:45:de:3c:fa:f9:df:8f:78:14:7f:d0:26:a3:08:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E648E6A8623C5C5DDF001526D0FDC0FF200F613 Validity Not Before: May 28 04:56:16 2025 GMT Not After : May 27 05:01:16 2026 GMT Subject: CN=91D3A1C1C1E2AD962C0F0A93D8C1F0F4CEB662C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:78:c1:3a:c2:20:9d:36:5a:dd:86:6c:73: 09:a0:26:8a:1c:82:ef:ea:76:9b:91:fe:e1:d7:6c: e1:b3:df:db:4e:85:cb:99:4a:c4:44:ed:d6:97:cd: 74:ba:cb:d5:bf:2a:f0:c2:42:e2:6e:e4:74:b7:da: 1b:cd:60:3d:b7:9c:35:92:77:1c:c6:19:b0:ee:78: a3:c5:e2:a3:ec:f1:90:1b:e2:e7:9e:22:33:3b:d2: 48:28:07:d6:02:cf:8a:97:fd:4b:d9:95:38:27:0c: 33:45:f3:11:8b:16:ea:47:f7:c4:12:a8:a4:63:08: 2a:d9:64:d1:a2:2d:aa:a7:0f:0c:5e:ec:da:48:4c: 58:90:95:19:6f:18:13:1e:38:56:3e:45:d1:d5:93: 5e:17:a0:ab:a6:2b:14:6e:e0:2d:93:19:f8:a2:f5: dc:11:a2:68:e6:df:8c:b7:55:39:b9:6d:47:7b:26: e7:e4:87:98:01:a9:88:0f:82:53:0b:01:e2:a6:8a: 60:0e:2f:f1:33:ea:03:73:c5:dd:a8:aa:56:6b:24: ff:e1:a4:2b:5f:b6:a6:ad:34:e1:26:79:63:e3:7f: 11:ae:bb:43:9c:3f:9f:40:58:7d:21:44:8f:a0:82: f4:f1:b3:e8:34:f3:06:a8:b7:86:0c:c1:6b:ad:56: de:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D3:A1:C1:C1:E2:AD:96:2C:0F:0A:93:D8:C1:F0:F4:CE:B6:62:C7 X509v3 Authority Key Identifier: keyid:3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3130332e3139312e3134312e302f32342d3234203d3e20313439393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.141.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:d3:f1:a5:b8:c2:0d:5f:55:82:56:aa:15:29:eb:65:95:d8: ce:6c:d9:40:1c:d9:dd:93:72:b0:d4:39:5d:31:1e:a5:0c:ba: f1:9a:19:a9:23:30:09:81:de:05:fc:4e:ed:7c:bb:cd:76:57: 2b:23:cc:4f:59:e6:e7:71:64:05:fa:41:6d:80:79:38:4b:8b: 00:24:74:0e:f0:65:b9:10:fe:9b:4a:9d:4b:9f:d7:b7:de:80: db:45:18:67:d2:68:c1:b0:e0:ea:c0:f3:02:5f:2b:69:bc:8a: f1:a3:57:a8:22:63:c9:e5:49:66:89:9a:e5:cf:cf:ad:73:40: 46:7a:01:94:da:f7:9f:6f:2d:8d:ac:0a:f2:39:f9:9f:68:f6: e1:ab:66:b9:75:4d:fc:83:16:d6:dc:b8:9a:cf:e9:99:24:c3: b1:ed:f3:12:68:b3:a6:5f:ab:30:0c:da:46:2b:94:7c:2c:98: 4d:87:f9:ff:73:5a:8e:63:87:39:35:73:25:72:88:bc:4b:6c: 6e:59:86:f8:cb:15:d5:ae:1a:2f:d8:83:88:be:7c:fe:56:9a: 4b:11:a8:1c:b8:88:34:1a:f5:6a:e8:b1:ea:76:45:63:11:c0: 9b:37:6e:ce:af:98:d0:36:a8:76:9c:87:e6:d3:bd:40:d9:71: 51:29:23:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHMJd9FRF3jz6+d+PeBR/0CajCIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NDhFNkE4NjIzQzVDNURERjAwMTUyNkQwRkRDMEZG MjAwRjYxMzAeFw0yNTA1MjgwNDU2MTZaFw0yNjA1MjcwNTAxMTZaMDMxMTAvBgNV BAMTKDkxRDNBMUMxQzFFMkFEOTYyQzBGMEE5M0Q4QzFGMEY0Q0VCNjYyQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/njBOsIgnTZa3YZscwmgJooc gu/qdpuR/uHXbOGz39tOhcuZSsRE7daXzXS6y9W/KvDCQuJu5HS32hvNYD23nDWS dxzGGbDueKPF4qPs8ZAb4ueeIjM70kgoB9YCz4qX/UvZlTgnDDNF8xGLFupH98QS qKRjCCrZZNGiLaqnDwxe7NpITFiQlRlvGBMeOFY+RdHVk14XoKumKxRu4C2TGfii 9dwRomjm34y3VTm5bUd7Jufkh5gBqYgPglMLAeKmimAOL/Ez6gNzxd2oqlZrJP/h pCtftqatNOEmeWPjfxGuu0OcP59AWH0hRI+ggvTxs+g08waot4YMwWutVt7RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkdOhwcHirZYsDwqT2MHw9M62YscwHwYDVR0j BBgwFoAUPmSOaoYjxcXd8AFSbQ/cD/IA9hMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjFmM2ZhZS1kMGNiLTRhMTctYTU0OC0xYmE2NjMxYjFlMDkvMC8zRTY0OEU2QTg2 MjNDNUM1RERGMDAxNTI2RDBGREMwRkYyMDBGNjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NDhFNkE4NjIzQzVDNURERjAwMTUyNkQwRkRDMEZGMjAw RjYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMWYzZmFlLWQwY2ItNGExNy1h NTQ4LTFiYTY2MzFiMWUwOS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv40wDQYJ KoZIhvcNAQELBQADggEBAAvT8aW4wg1fVYJWqhUp62WV2M5s2UAc2d2TcrDUOV0x HqUMuvGaGakjMAmB3gX8Tu18u812VysjzE9Z5udxZAX6QW2AeThLiwAkdA7wZbkQ /ptKnUuf17fegNtFGGfSaMGw4OrA8wJfK2m8ivGjV6giY8nlSWaJmuXPz61zQEZ6 AZTa959vLY2sCvI5+Z9o9uGrZrl1TfyDFtbcuJrP6Zkkw7Ht8xJos6ZfqzAM2kYr lHwsmE2H+f9zWo5jhzk1cyVyiLxLbG5ZhvjLFdWuGi/Yg4i+fP5WmksRqBy4iDQa 9Wrosep2RWMRwJs3bs6vmNA2qHach+bTvUDZcVEpIwU= -----END CERTIFICATE-----Generated at Sat Jun 7 22:51:16 2025 by rpki-client