$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa File: 3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa (raw, json) Hash identifier: BI62UO3dEBMuV7GGUm78ylThtADmbOZbryA9/QTeswk= Subject key identifier: 28:6D:B0:22:36:18:54:B6:F9:07:84:B8:13:CD:0F:6F:DE:33:E3:DE Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 1AA25C9BCC56E58BD5888729E320E509A8C6F263 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa Signing time: Tue 27 May 2025 10:00:01 +0000 ROA not before: Tue 27 May 2025 09:55:01 +0000 ROA not after: Tue 26 May 2026 10:00:01 +0000 asID: 45725 IP address blocks: 103.245.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a2:5c:9b:cc:56:e5:8b:d5:88:87:29:e3:20:e5:09:a8:c6:f2:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: May 27 09:55:01 2025 GMT Not After : May 26 10:00:01 2026 GMT Subject: CN=286DB022361854B6F90784B813CD0F6FDE33E3DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0c:e8:f6:3f:59:fe:e8:77:1a:30:8a:8c:0e: 6e:1f:6a:56:d7:a1:4c:01:a7:ef:cc:c8:e3:5e:56: f4:a8:67:df:5c:b9:52:a9:bb:e2:85:2c:99:ed:ed: f3:e8:e0:56:4e:93:fe:63:88:69:1f:a5:ef:9f:bf: 01:53:b2:70:ce:82:76:1a:9e:61:e6:c3:63:c5:ff: 85:5e:7f:9e:c9:31:f1:22:43:c4:e4:65:06:11:cb: 02:39:b4:29:33:23:0c:eb:df:a2:2b:7e:aa:43:77: aa:7f:8c:11:02:ff:14:fc:e5:36:a9:1a:a9:e2:c4: 63:be:cd:73:31:25:35:1b:32:1f:b8:f7:40:e9:d9: b6:55:f7:dd:64:e1:79:3f:5f:a3:10:5c:dd:ad:f9: b6:56:9d:0e:21:d3:48:99:e9:18:b7:d7:94:f7:7f: c2:95:3c:91:47:c0:18:94:ef:3c:15:54:91:80:e4: cc:da:e0:1e:a4:80:08:09:c3:3a:28:ed:3d:65:d8: 2c:1b:99:a3:c2:57:1c:6f:db:9e:12:86:23:e9:2f: 65:4f:7a:d0:de:d7:94:d6:c6:02:e7:a9:36:81:94: d1:1d:a7:29:84:1f:ba:16:ab:e8:2a:f8:32:cb:4b: 04:11:0f:62:a8:02:bb:61:cb:03:d3:d4:c7:38:62: ce:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6D:B0:22:36:18:54:B6:F9:07:84:B8:13:CD:0F:6F:DE:33:E3:DE X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.136.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:de:18:08:1d:1e:b1:67:02:8a:2c:33:a7:f2:fd:a0:73:1a: ff:94:8c:a0:43:af:a8:32:96:19:92:88:35:3d:bb:c7:be:6d: 2c:2f:c6:7a:2c:80:38:62:18:06:c1:54:df:67:9d:45:6f:5e: d2:3a:39:5d:ed:a4:68:c1:27:9a:fa:16:f9:d8:f5:2d:ce:6d: 65:ad:e9:2b:81:4c:12:4d:bf:4b:8a:6b:db:6d:4f:8c:9b:13: 60:31:5f:2d:c1:0c:f1:64:3f:23:f3:9b:96:07:71:21:f1:b1: 44:86:71:c1:d4:9f:53:70:e9:75:94:f2:8b:84:df:43:a5:24: ad:9c:6f:d4:c0:df:1b:65:af:d3:1d:5c:46:9a:e7:a8:d9:c6: eb:e2:58:65:53:19:a9:63:20:fc:cc:2f:28:d4:4e:7e:08:9d: 0c:2d:56:98:be:cc:32:84:5c:34:9a:05:19:09:d8:30:78:d1: bc:96:16:98:e3:48:14:66:81:47:0c:7a:1e:02:08:3f:6a:a2: cd:5b:97:58:d4:40:f2:35:2c:b0:71:f7:62:6a:26:16:0b:81: 34:29:85:19:4e:e2:5d:77:11:84:46:92:f1:29:eb:41:53:4c: 13:38:01:66:1c:8d:c9:94:93:24:47:59:f8:8a:d9:3b:7c:58: 3b:cc:ff:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGqJcm8xW5YvViIcp4yDlCajG8mMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA1MjcwOTU1MDFaFw0yNjA1MjYxMDAwMDFaMDMxMTAvBgNV BAMTKDI4NkRCMDIyMzYxODU0QjZGOTA3ODRCODEzQ0QwRjZGREUzM0UzREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHDOj2P1n+6HcaMIqMDm4falbX oUwBp+/MyONeVvSoZ99cuVKpu+KFLJnt7fPo4FZOk/5jiGkfpe+fvwFTsnDOgnYa nmHmw2PF/4Vef57JMfEiQ8TkZQYRywI5tCkzIwzr36IrfqpDd6p/jBEC/xT85Tap GqnixGO+zXMxJTUbMh+490Dp2bZV991k4Xk/X6MQXN2t+bZWnQ4h00iZ6Ri315T3 f8KVPJFHwBiU7zwVVJGA5Mza4B6kgAgJwzoo7T1l2CwbmaPCVxxv254ShiPpL2VP etDe15TWxgLnqTaBlNEdpymEH7oWq+gq+DLLSwQRD2KoArthywPT1Mc4Ys6LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKG2wIjYYVLb5B4S4E80Pb94z494wHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/WIMA0GCSqG SIb3DQEBCwUAA4IBAQCc3hgIHR6xZwKKLDOn8v2gcxr/lIygQ6+oMpYZkog1PbvH vm0sL8Z6LIA4YhgGwVTfZ51Fb17SOjld7aRowSea+hb52PUtzm1lrekrgUwSTb9L imvbbU+MmxNgMV8twQzxZD8j85uWB3Eh8bFEhnHB1J9TcOl1lPKLhN9DpSStnG/U wN8bZa/THVxGmueo2cbr4lhlUxmpYyD8zC8o1E5+CJ0MLVaYvswyhFw0mgUZCdgw eNG8lhaY40gUZoFHDHoeAgg/aqLNW5dY1EDyNSywcfdiaiYWC4E0KYUZTuJddxGE RpLxKetBU0wTOAFmHI3JlJMkR1n4itk7fFg7zP+E -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:52 2025 by rpki-client