$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa File: 3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa (raw, json) Hash identifier: 6KEFG7gOeKI7fxJfx+u8jmdjQjUOjVjYS1O6prR+8Mc= Subject key identifier: DD:D1:9F:7A:D1:D6:BD:DE:73:5A:D4:C4:4E:92:05:B5:73:32:93:74 Certificate issuer: /CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Certificate serial: 5E336E313F1E1F300A72BC356D53BD9910E05C00 Authority key identifier: 84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa Signing time: Mon 02 Jun 2025 01:02:57 +0000 ROA not before: Mon 02 Jun 2025 00:57:57 +0000 ROA not after: Mon 01 Jun 2026 01:02:57 +0000 asID: 140401 IP address blocks: 103.150.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:33:6e:31:3f:1e:1f:30:0a:72:bc:35:6d:53:bd:99:10:e0:5c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Validity Not Before: Jun 2 00:57:57 2025 GMT Not After : Jun 1 01:02:57 2026 GMT Subject: CN=DDD19F7AD1D6BDDE735AD4C44E9205B573329374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:95:95:55:f8:57:7f:d3:92:b6:9a:66:31:b1: 31:72:df:e3:6d:d0:e2:09:4d:e3:05:33:0c:73:2d: 11:4a:2a:4c:53:7c:08:91:c5:37:ef:f0:46:3f:7a: 1a:a8:cc:23:7f:53:f8:ab:28:46:d4:97:ff:70:87: 86:2e:4e:4e:fd:dc:bc:a4:16:9f:e4:a4:5e:02:46: 12:df:fa:bc:44:6d:06:9c:b0:2c:c0:8a:a6:98:42: 68:a1:51:c7:a9:91:1b:38:b5:62:7a:24:d1:58:bb: 28:70:ff:2a:24:c7:48:f7:e7:19:f1:b3:52:f9:88: 69:f1:5f:87:6d:d0:df:6e:da:98:5c:a8:70:6e:be: 21:4c:b1:60:bd:09:b2:47:fb:3f:6f:2a:f5:65:98: 51:38:49:77:77:88:0a:e3:53:f1:68:a5:29:4f:03: 50:98:19:47:3c:93:5d:7e:56:7c:58:4e:69:45:18: 45:29:7b:9d:65:7d:ad:28:b6:e5:9c:52:54:fd:a4: 90:ad:ef:75:0a:c1:20:c0:6a:5b:7d:f0:44:e2:8b: 06:9b:28:f8:f7:22:5f:6e:d3:8e:5a:3c:9c:69:f2: fc:20:63:73:cf:58:4d:94:97:92:41:49:ff:ad:76: 90:43:26:e5:d7:04:ab:89:f4:28:04:0c:28:7e:45: a6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D1:9F:7A:D1:D6:BD:DE:73:5A:D4:C4:4E:92:05:B5:73:32:93:74 X509v3 Authority Key Identifier: keyid:84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.218.0/24 Signature Algorithm: sha256WithRSAEncryption 25:02:ea:7c:1e:7e:e9:c5:c7:2b:cc:b0:c4:c7:41:f4:dc:51: 4d:2e:66:cf:87:44:e7:43:f6:45:c3:df:92:90:56:7f:2a:71: 43:c5:d4:d7:a9:39:8a:f3:43:f7:98:df:1c:3e:c3:61:f0:26: 50:a5:11:8a:b6:b7:ae:16:26:92:2b:71:52:a8:2e:5e:18:ad: 67:7a:57:4c:36:2e:64:34:7e:4f:85:6b:a0:bf:e7:af:35:b4: 4f:c6:f7:f2:44:24:5f:13:67:8d:d4:c1:d8:1c:95:1c:68:80: 46:37:c6:bc:0b:7c:ad:99:e7:0b:40:4b:c5:22:9b:36:51:9e: d0:bf:9b:22:43:61:02:08:da:93:67:9b:c6:d7:e4:ca:e3:0f: 8f:2c:19:50:33:41:7e:4a:34:b1:15:9f:43:63:a2:a4:d2:f0: 8c:c4:15:b5:eb:04:a1:40:7f:fb:fb:4a:6d:ee:64:31:97:76: 4a:74:bc:0f:ce:52:c6:71:22:2d:b4:e2:85:5d:42:d4:ef:19: 36:0b:09:bc:c7:81:4c:6b:3e:50:6a:69:95:3f:fc:71:d8:c7: b4:7f:15:da:2c:85:7e:14:b7:0d:a9:e8:be:56:f9:6e:8e:a7: 3f:aa:2e:a9:ec:f0:a1:33:1f:fc:c1:ed:03:69:26:90:c5:93: c7:d4:c3:35 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXjNuMT8eHzAKcrw1bVO9mRDgXAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNB RUYwNjdDNTAeFw0yNTA2MDIwMDU3NTdaFw0yNjA2MDEwMTAyNTdaMDMxMTAvBgNV BAMTKERERDE5RjdBRDFENkJEREU3MzVBRDRDNDRFOTIwNUI1NzMzMjkzNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXlZVV+Fd/05K2mmYxsTFy3+Nt 0OIJTeMFMwxzLRFKKkxTfAiRxTfv8EY/ehqozCN/U/irKEbUl/9wh4YuTk793Lyk Fp/kpF4CRhLf+rxEbQacsCzAiqaYQmihUcepkRs4tWJ6JNFYuyhw/yokx0j35xnx s1L5iGnxX4dt0N9u2phcqHBuviFMsWC9CbJH+z9vKvVlmFE4SXd3iArjU/FopSlP A1CYGUc8k11+VnxYTmlFGEUpe51lfa0otuWcUlT9pJCt73UKwSDAalt98ETiiwab KPj3Il9u045aPJxp8vwgY3PPWE2Ul5JBSf+tdpBDJuXXBKuJ9CgEDCh+RaYBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3dGfetHWvd5zWtTETpIFtXMyk3QwHwYDVR0j BBgwFoAUhH6+1dLVn38feRy5wN+pM67wZ8UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVkNzJmMy0yZGIyLTRiY2MtOWY3Ny1kMTQ0MmI2MzJkMDQvMC84NDdFQkVENUQy RDU5RjdGMUY3OTFDQjlDMERGQTkzM0FFRjA2N0M1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNBRUYw NjdDNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWQ3MmYzLTJkYjItNGJjYy05 Zjc3LWQxNDQyYjYzMmQwNC8wLzMxMzAzMzJlMzEzNTMwMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnltowDQYJ KoZIhvcNAQELBQADggEBACUC6nwefunFxyvMsMTHQfTcUU0uZs+HROdD9kXD35KQ Vn8qcUPF1NepOYrzQ/eY3xw+w2HwJlClEYq2t64WJpIrcVKoLl4YrWd6V0w2LmQ0 fk+Fa6C/5681tE/G9/JEJF8TZ43UwdgclRxogEY3xrwLfK2Z5wtAS8UimzZRntC/ myJDYQII2pNnm8bX5MrjD48sGVAzQX5KNLEVn0NjoqTS8IzEFbXrBKFAf/v7Sm3u ZDGXdkp0vA/OUsZxIi204oVdQtTvGTYLCbzHgUxrPlBqaZU//HHYx7R/FdoshX4U tw2p6L5W+W6Opz+qLqns8KEzH/zB7QNpJpDFk8fUwzU= -----END CERTIFICATE-----Generated at Sat Jun 7 14:04:14 2025 by rpki-client