$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa File: 3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa (raw, json) Hash identifier: obl90Ju8Uh49WHiF5evmIzEfZW09mIiXbUTRedxtitw= Subject key identifier: 81:65:AE:D7:F5:56:ED:46:A4:0B:A9:AC:66:D7:87:AF:9B:D4:DB:D4 Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 7250E96F004D797A88EF417EF11E97D5A6920915 Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa Signing time: Mon 02 Jun 2025 02:02:59 +0000 ROA not before: Mon 02 Jun 2025 01:57:59 +0000 ROA not after: Mon 01 Jun 2026 02:02:59 +0000 asID: 140442 IP address blocks: 103.152.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:50:e9:6f:00:4d:79:7a:88:ef:41:7e:f1:1e:97:d5:a6:92:09:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jun 2 01:57:59 2025 GMT Not After : Jun 1 02:02:59 2026 GMT Subject: CN=8165AED7F556ED46A40BA9AC66D787AF9BD4DBD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:24:20:9a:2a:28:50:29:04:8d:1e:52:9b:fc: e1:66:4e:05:0e:2d:29:b0:71:9a:38:ca:59:f2:5d: 26:fb:b6:2d:75:54:2e:f9:9b:a8:d3:cd:81:54:b6: ee:f7:35:5a:33:91:74:58:d7:45:e3:11:98:8b:f1: 8c:6a:05:18:84:cd:ae:8f:48:53:79:72:d0:ae:98: b3:89:ad:16:d9:1f:c3:aa:3a:ef:f8:a1:64:48:96: 0f:2a:8d:24:ff:85:05:6a:3e:81:4c:b4:78:0b:0d: 60:e4:f9:94:7c:79:3c:2b:67:a3:1d:8d:a4:07:66: ff:11:8c:fb:bc:e2:b0:6f:ce:2d:db:d9:b7:87:8e: 19:b4:58:09:42:d3:bf:fa:0d:b1:27:d6:0f:86:01: bf:02:fe:a1:cc:26:60:03:9f:90:ee:f4:82:64:58: 3f:0f:c6:70:a3:d9:f5:36:77:3d:db:33:92:e7:ab: 3e:c9:21:6b:fa:72:d9:fe:b9:bf:8f:6b:fa:10:05: f8:e0:09:3a:8d:55:93:32:a8:76:71:af:1b:4b:ee: bb:89:ca:b6:8d:e7:89:97:de:df:bd:d0:eb:df:ef: dd:62:63:21:8c:3e:a5:e7:e1:7f:79:70:18:1a:d8: 45:d1:6e:c8:00:43:6f:7f:9b:09:81:14:3f:06:53: bd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:65:AE:D7:F5:56:ED:46:A4:0B:A9:AC:66:D7:87:AF:9B:D4:DB:D4 X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.72.0/23 Signature Algorithm: sha256WithRSAEncryption 61:33:06:9f:c7:7a:94:b3:f4:2b:02:6c:4e:9f:2b:47:de:3e: 3c:fa:48:fb:7b:57:99:9c:e0:f0:c2:3e:37:0a:86:88:46:ac: 09:4e:36:7c:6d:71:c1:32:d6:ac:51:2d:c4:21:bd:a6:62:51: 7f:51:5f:5d:57:9b:b1:0d:c8:33:42:a1:0f:ef:e7:6b:f5:bd: 83:5b:49:c7:d0:d4:49:9b:1f:0a:ff:cb:9e:67:35:31:0f:c9: b5:1b:ba:d4:68:7d:78:ef:0c:47:ae:06:2d:ad:7c:dd:50:ea: 42:7c:b5:be:40:c7:3d:a1:be:ea:f7:58:03:26:6c:7b:c1:16: 75:72:6d:37:28:52:c8:4d:7c:ca:eb:ad:e3:4f:26:b3:1d:a1: 70:37:ba:84:cc:65:98:5f:d2:53:95:71:3c:b7:2b:cd:93:2b: 40:9e:62:ed:63:81:42:7d:fe:17:9a:17:d7:a6:ae:d4:69:d4: 75:7b:d7:1d:21:a7:4a:c0:25:47:66:d9:dd:b0:48:40:6d:b3: 75:aa:eb:f1:39:20:86:eb:76:df:62:98:9b:c5:b6:68:f7:f0: b8:ff:ad:38:3b:c7:b5:79:89:c7:10:f7:f0:ea:40:62:16:69: e0:bd:08:ca:41:91:94:cc:41:d0:ce:41:48:75:ce:ae:e8:bf: cd:a9:d7:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUclDpbwBNeXqI70F+8R6X1aaSCRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yNTA2MDIwMTU3NTlaFw0yNjA2MDEwMjAyNTlaMDMxMTAvBgNV BAMTKDgxNjVBRUQ3RjU1NkVENDZBNDBCQTlBQzY2RDc4N0FGOUJENERCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJCCaKihQKQSNHlKb/OFmTgUO LSmwcZo4ylnyXSb7ti11VC75m6jTzYFUtu73NVozkXRY10XjEZiL8YxqBRiEza6P SFN5ctCumLOJrRbZH8OqOu/4oWRIlg8qjST/hQVqPoFMtHgLDWDk+ZR8eTwrZ6Md jaQHZv8RjPu84rBvzi3b2beHjhm0WAlC07/6DbEn1g+GAb8C/qHMJmADn5Du9IJk WD8PxnCj2fU2dz3bM5Lnqz7JIWv6ctn+ub+Pa/oQBfjgCTqNVZMyqHZxrxtL7ruJ yraN54mX3t+90Ovf791iYyGMPqXn4X95cBga2EXRbsgAQ29/mwmBFD8GU70tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgWWu1/VW7UakC6msZteHr5vU29QwHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMxMzAzMzJlMzEzNTMyMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hIMA0GCSqG SIb3DQEBCwUAA4IBAQBhMwafx3qUs/QrAmxOnytH3j48+kj7e1eZnODwwj43CoaI RqwJTjZ8bXHBMtasUS3EIb2mYlF/UV9dV5uxDcgzQqEP7+dr9b2DW0nH0NRJmx8K /8ueZzUxD8m1G7rUaH147wxHrgYtrXzdUOpCfLW+QMc9ob7q91gDJmx7wRZ1cm03 KFLITXzK663jTyazHaFwN7qEzGWYX9JTlXE8tyvNkytAnmLtY4FCff4XmhfXpq7U adR1e9cdIadKwCVHZtndsEhAbbN1quvxOSCG63bfYpibxbZo9/C4/604O8e1eYnH EPfw6kBiFmngvQjKQZGUzEHQzkFIdc6u6L/NqdcQ -----END CERTIFICATE-----Generated at Fri Jun 6 16:53:15 2025 by rpki-client