$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32332d3233203d3e20313430343031.roa File: 3130332e3135302e3231382e302f32332d3233203d3e20313430343031.roa (raw, json) Hash identifier: fUNLn/gqrM2Xntbspu+zD9nUYetH3QwyuJY+iLTQn+0= Subject key identifier: 2D:3F:34:C7:BD:8B:D5:A9:C1:47:43:78:0E:72:F4:A6:87:9A:ED:E4 Certificate issuer: /CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Certificate serial: 0BB9AFAA9CCBCE3060A006591FA7FE3BF0D50819 Authority key identifier: 84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32332d3233203d3e20313430343031.roa Signing time: Mon 02 Jun 2025 01:02:56 +0000 ROA not before: Mon 02 Jun 2025 00:57:56 +0000 ROA not after: Mon 01 Jun 2026 01:02:56 +0000 asID: 140401 IP address blocks: 103.150.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b9:af:aa:9c:cb:ce:30:60:a0:06:59:1f:a7:fe:3b:f0:d5:08:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Validity Not Before: Jun 2 00:57:56 2025 GMT Not After : Jun 1 01:02:56 2026 GMT Subject: CN=2D3F34C7BD8BD5A9C14743780E72F4A6879AEDE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6d:cd:c3:0a:61:c3:29:8f:f0:a1:dd:46:b4: 73:7a:ef:01:19:e4:ad:34:d0:3e:d9:2f:1d:ac:40: 96:e6:98:e1:63:11:32:aa:e6:5a:05:2a:41:c0:d4: 0e:14:68:08:a9:72:b2:35:8e:b9:82:51:08:c1:55: 95:d3:bf:74:1b:c8:f5:cd:1c:8d:b6:62:db:d1:5b: 9b:7e:15:7e:46:11:1b:ac:dd:80:cb:75:23:1a:ec: 66:90:26:60:71:9b:10:6e:3f:cd:5d:45:b6:e2:03: 8e:10:41:28:3c:9f:07:eb:b0:4c:67:70:5c:cf:73: e4:54:db:70:88:9e:d7:32:1c:d8:46:37:4e:d4:95: ca:87:be:da:31:32:9a:a4:e5:31:5a:12:e1:91:7d: 86:96:b5:b8:7b:54:5b:ee:97:55:f0:7a:5e:09:6c: 95:b6:61:a5:e2:66:fc:f5:8c:78:6d:08:d6:b7:15: 89:b2:fc:3d:fa:aa:33:b7:21:b9:09:2e:18:06:86: dc:de:4f:c7:0b:c2:76:c8:d7:f4:75:a5:8c:d7:fa: 2f:7a:ec:5c:6a:ae:23:df:1d:a3:0e:b9:4b:11:73: 4c:28:dc:99:1c:de:0c:0e:d1:a6:ff:fa:d8:85:00: 33:c7:20:54:d5:57:57:fd:67:0f:52:64:96:64:ba: 23:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3F:34:C7:BD:8B:D5:A9:C1:47:43:78:0E:72:F4:A6:87:9A:ED:E4 X509v3 Authority Key Identifier: keyid:84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32332d3233203d3e20313430343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.218.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:28:71:aa:04:3b:26:7c:38:b6:cb:b3:f5:b6:2f:2a:24:38: 06:3d:a5:91:28:4f:8c:7e:32:0b:1d:d5:da:2a:b6:b8:7f:96: 7a:2b:8a:d8:49:78:32:08:79:eb:e4:b3:3e:54:34:e1:e9:43: 40:50:e2:21:00:cf:28:b4:63:cb:0b:83:37:33:47:cf:a5:0a: 5c:b3:98:6c:a2:3a:58:9e:dc:7b:71:a8:7c:18:a8:dc:e1:05: ec:42:21:ff:41:ae:92:8d:3a:e2:37:df:86:4e:ef:64:14:a5: 30:53:13:e4:52:5c:8b:58:dd:f9:c4:54:e2:32:9e:aa:2c:af: 81:b9:ee:a6:d3:7b:e1:ac:97:c6:e2:2c:e8:14:50:43:16:27: 89:1b:e7:21:a6:90:a2:e9:6f:ea:78:f8:54:41:be:1c:da:23: 05:e0:ce:d2:ce:84:f6:2c:55:aa:b0:6b:b8:bb:24:b5:fa:4b: 8f:19:7c:a9:48:37:2c:f4:b7:a3:df:cf:59:6c:a2:3d:52:43: e1:58:bd:2a:31:c8:41:58:13:f5:53:5e:2e:b4:0d:e3:d9:ab: 7e:76:28:a9:e4:36:d2:e8:b1:c3:6f:dc:bd:fc:45:4f:3b:f3: 8c:57:6a:ed:b7:3b:97:56:7f:4f:98:73:f9:f2:c1:5e:de:02: e8:25:80:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC7mvqpzLzjBgoAZZH6f+O/DVCBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNB RUYwNjdDNTAeFw0yNTA2MDIwMDU3NTZaFw0yNjA2MDEwMTAyNTZaMDMxMTAvBgNV BAMTKDJEM0YzNEM3QkQ4QkQ1QTlDMTQ3NDM3ODBFNzJGNEE2ODc5QUVERTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDebc3DCmHDKY/wod1GtHN67wEZ 5K000D7ZLx2sQJbmmOFjETKq5loFKkHA1A4UaAipcrI1jrmCUQjBVZXTv3QbyPXN HI22YtvRW5t+FX5GERus3YDLdSMa7GaQJmBxmxBuP81dRbbiA44QQSg8nwfrsExn cFzPc+RU23CIntcyHNhGN07UlcqHvtoxMpqk5TFaEuGRfYaWtbh7VFvul1Xwel4J bJW2YaXiZvz1jHhtCNa3FYmy/D36qjO3IbkJLhgGhtzeT8cLwnbI1/R1pYzX+i96 7FxqriPfHaMOuUsRc0wo3Jkc3gwO0ab/+tiFADPHIFTVV1f9Zw9SZJZkuiOrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULT80x72L1anBR0N4DnL0poea7eQwHwYDVR0j BBgwFoAUhH6+1dLVn38feRy5wN+pM67wZ8UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVkNzJmMy0yZGIyLTRiY2MtOWY3Ny1kMTQ0MmI2MzJkMDQvMC84NDdFQkVENUQy RDU5RjdGMUY3OTFDQjlDMERGQTkzM0FFRjA2N0M1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNBRUYw NjdDNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWQ3MmYzLTJkYjItNGJjYy05 Zjc3LWQxNDQyYjYzMmQwNC8wLzMxMzAzMzJlMzEzNTMwMmUzMjMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnltowDQYJ KoZIhvcNAQELBQADggEBAC0ocaoEOyZ8OLbLs/W2LyokOAY9pZEoT4x+Mgsd1doq trh/lnorithJeDIIeevksz5UNOHpQ0BQ4iEAzyi0Y8sLgzczR8+lClyzmGyiOlie 3HtxqHwYqNzhBexCIf9BrpKNOuI334ZO72QUpTBTE+RSXItY3fnEVOIynqosr4G5 7qbTe+Gsl8biLOgUUEMWJ4kb5yGmkKLpb+p4+FRBvhzaIwXgztLOhPYsVaqwa7i7 JLX6S48ZfKlINyz0t6Pfz1lsoj1SQ+FYvSoxyEFYE/VTXi60DePZq352KKnkNtLo scNv3L38RU8784xXau23O5dWf0+Yc/nywV7eAuglgCI= -----END CERTIFICATE-----Generated at Sat Jun 7 11:37:10 2025 by rpki-client