$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa File: 3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa (raw, json) Hash identifier: vYLyQrACcRO6ie/Wp6rrQI2WVCD+CROuBHLk0caAF98= Subject key identifier: AA:97:22:B5:57:95:44:CD:92:2F:85:5C:08:E2:E0:6A:E9:CD:A4:DD Certificate issuer: /CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Certificate serial: 6CA637BCD7CD4E602D1B487F880E99714CE5A0A5 Authority key identifier: 84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa Signing time: Mon 02 Jun 2025 01:02:56 +0000 ROA not before: Mon 02 Jun 2025 00:57:56 +0000 ROA not after: Mon 01 Jun 2026 01:02:56 +0000 asID: 140401 IP address blocks: 103.150.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a6:37:bc:d7:cd:4e:60:2d:1b:48:7f:88:0e:99:71:4c:e5:a0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Validity Not Before: Jun 2 00:57:56 2025 GMT Not After : Jun 1 01:02:56 2026 GMT Subject: CN=AA9722B5579544CD922F855C08E2E06AE9CDA4DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:11:b8:81:8e:97:1a:c1:02:e4:3d:17:f4:51: 6c:a8:04:b3:34:d7:b2:aa:69:44:46:b1:96:48:86: a2:5f:5f:ad:9d:da:1a:88:44:51:d0:2d:1e:07:a2: 68:79:37:67:42:11:3a:9e:99:8d:80:f4:cd:33:c3: 65:8a:0f:a0:22:20:58:b2:b5:45:1a:f9:b9:ef:4e: bd:e0:19:4a:d9:f7:52:bc:5c:b3:63:43:dc:ba:d6: 9f:b6:07:a1:dc:73:7b:0b:22:09:8c:60:ac:c5:c4: 6b:1f:c8:ac:cb:3b:3c:f4:87:8f:d0:e7:fb:8e:f0: 0d:c3:24:66:0e:0d:11:d4:92:47:af:80:9a:15:dd: dd:75:89:63:c4:02:bd:d1:87:98:1e:70:77:1b:92: f8:75:47:e9:05:9c:40:1f:d9:24:04:79:0f:55:75: 81:5e:10:f1:7c:90:82:f7:5a:ab:f5:03:fc:da:be: 13:c8:5c:e6:fe:29:7b:50:d6:cf:38:1f:9f:a3:63: d0:55:a0:20:92:95:b9:35:2e:37:9f:6f:86:93:46: 9b:fd:c6:6c:59:4a:18:e6:86:39:85:55:14:37:51: 15:33:fc:f4:fa:77:b9:a8:84:22:4c:41:f7:99:a3: b1:14:01:aa:c1:8b:77:d6:bb:b3:28:a1:98:60:12: 9b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:97:22:B5:57:95:44:CD:92:2F:85:5C:08:E2:E0:6A:E9:CD:A4:DD X509v3 Authority Key Identifier: keyid:84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.219.0/24 Signature Algorithm: sha256WithRSAEncryption 77:53:3a:3c:2c:00:0d:8b:8a:99:f1:0c:6e:18:8e:6f:69:45: f5:4b:e6:7c:35:3e:dc:46:7b:c6:52:8a:4a:38:5d:7d:94:5c: cc:ab:0b:18:e1:df:be:ea:e4:95:4f:11:d2:37:da:0b:6d:59: 0c:e8:87:a5:c8:a8:cb:30:5a:04:99:06:4f:98:e0:33:40:8d: 83:13:65:bc:9b:97:dc:08:81:17:d5:3f:08:3c:34:db:6c:a0: af:72:d5:09:a6:49:43:aa:ea:48:a5:6d:95:72:af:89:b2:a6: 4b:5b:7f:c4:13:1f:a5:40:70:ec:f5:56:22:47:f8:1f:c3:03: ab:15:a1:67:db:c2:ed:38:a5:bd:d4:96:97:16:1d:00:4c:d3: f0:7e:69:f6:5a:27:d1:9a:26:d6:21:56:cf:29:62:81:8e:d8: f0:5f:0f:87:dd:fc:fc:57:cc:6a:87:e5:f5:0b:40:f0:5a:a1: 05:3b:af:b3:43:d3:2b:93:83:5a:fd:1c:13:87:49:df:c6:50: 68:5a:f8:86:30:91:5c:26:4d:8d:5c:4e:62:14:00:f1:66:71: 5e:0b:9a:c7:b6:af:a2:7f:c4:1e:f3:14:52:32:65:4f:75:e8: 6c:12:af:1e:28:b4:e8:1b:6a:73:8e:61:90:ca:a1:b3:19:94: 8b:9b:9f:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbKY3vNfNTmAtG0h/iA6ZcUzloKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNB RUYwNjdDNTAeFw0yNTA2MDIwMDU3NTZaFw0yNjA2MDEwMTAyNTZaMDMxMTAvBgNV BAMTKEFBOTcyMkI1NTc5NTQ0Q0Q5MjJGODU1QzA4RTJFMDZBRTlDREE0REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJEbiBjpcawQLkPRf0UWyoBLM0 17KqaURGsZZIhqJfX62d2hqIRFHQLR4Homh5N2dCETqemY2A9M0zw2WKD6AiIFiy tUUa+bnvTr3gGUrZ91K8XLNjQ9y61p+2B6Hcc3sLIgmMYKzFxGsfyKzLOzz0h4/Q 5/uO8A3DJGYODRHUkkevgJoV3d11iWPEAr3Rh5gecHcbkvh1R+kFnEAf2SQEeQ9V dYFeEPF8kIL3Wqv1A/zavhPIXOb+KXtQ1s84H5+jY9BVoCCSlbk1Ljefb4aTRpv9 xmxZShjmhjmFVRQ3URUz/PT6d7mohCJMQfeZo7EUAarBi3fWu7MooZhgEpsLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqpcitVeVRM2SL4VcCOLgaunNpN0wHwYDVR0j BBgwFoAUhH6+1dLVn38feRy5wN+pM67wZ8UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVkNzJmMy0yZGIyLTRiY2MtOWY3Ny1kMTQ0MmI2MzJkMDQvMC84NDdFQkVENUQy RDU5RjdGMUY3OTFDQjlDMERGQTkzM0FFRjA2N0M1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNBRUYw NjdDNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWQ3MmYzLTJkYjItNGJjYy05 Zjc3LWQxNDQyYjYzMmQwNC8wLzMxMzAzMzJlMzEzNTMwMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnltswDQYJ KoZIhvcNAQELBQADggEBAHdTOjwsAA2LipnxDG4Yjm9pRfVL5nw1PtxGe8ZSiko4 XX2UXMyrCxjh377q5JVPEdI32gttWQzoh6XIqMswWgSZBk+Y4DNAjYMTZbybl9wI gRfVPwg8NNtsoK9y1QmmSUOq6kilbZVyr4mypktbf8QTH6VAcOz1ViJH+B/DA6sV oWfbwu04pb3UlpcWHQBM0/B+afZaJ9GaJtYhVs8pYoGO2PBfD4fd/PxXzGqH5fUL QPBaoQU7r7ND0yuTg1r9HBOHSd/GUGha+IYwkVwmTY1cTmIUAPFmcV4Lmse2r6J/ xB7zFFIyZU916GwSrx4otOgbanOOYZDKobMZlIubnxc= -----END CERTIFICATE-----Generated at Sat Jun 7 14:02:00 2025 by rpki-client