$ rpki-client -vvf repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/3130332e3134382e34342e302f32332d3234203d3e20313339393832.roa File: 3130332e3134382e34342e302f32332d3234203d3e20313339393832.roa (raw, json) Hash identifier: HfUy1Uhb3h99FOMvLMDprgyPmVmWuM8DW9xncpfi5EY= Subject key identifier: D7:E9:93:DB:74:83:2D:F8:C5:B4:A2:2D:4F:29:DF:CA:69:0C:74:4A Certificate issuer: /CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Certificate serial: 2F00C656FE58A6AC32C37B62938112CF5A2E586F Authority key identifier: 36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/3130332e3134382e34342e302f32332d3234203d3e20313339393832.roa Signing time: Mon 02 Jun 2025 02:03:10 +0000 ROA not before: Mon 02 Jun 2025 01:58:10 +0000 ROA not after: Mon 01 Jun 2026 02:03:10 +0000 asID: 139982 IP address blocks: 103.148.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:00:c6:56:fe:58:a6:ac:32:c3:7b:62:93:81:12:cf:5a:2e:58:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Validity Not Before: Jun 2 01:58:10 2025 GMT Not After : Jun 1 02:03:10 2026 GMT Subject: CN=D7E993DB74832DF8C5B4A22D4F29DFCA690C744A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:8e:d8:0e:7b:7d:7e:2c:9e:89:ad:17:1f: 90:35:14:8d:ba:1a:69:0c:63:5e:78:42:fd:4e:4d: 1b:95:3e:0a:d4:0d:8d:b8:84:33:0e:d7:10:58:45: ef:40:5d:17:78:dc:cc:80:96:6d:b4:a7:1f:0c:83: e1:cf:af:54:07:67:76:47:78:ec:29:fd:0b:08:88: 7b:18:bd:a1:97:1b:83:7a:b8:94:f3:f1:a2:61:68: 75:ab:78:4b:b6:66:ed:e3:66:d4:e7:37:44:5a:4d: d5:43:25:db:72:52:e2:83:90:b0:83:f9:ed:d1:a7: d0:a5:05:91:de:48:a3:c7:85:e7:36:be:fb:70:6c: f4:ff:1a:24:5c:f1:34:ad:09:ac:f1:fd:b4:03:6f: a6:45:64:02:59:bb:3e:e6:f5:43:86:b0:e3:e0:56: 52:13:e3:bd:50:9c:c1:b7:80:0d:b4:ee:68:ee:04: 8d:de:7a:f3:05:71:76:4c:95:b5:9d:ea:ce:53:4b: 72:34:d0:ab:2c:ac:ca:4e:37:ea:3a:e0:c7:bf:86: e0:7a:83:55:34:85:52:8f:5f:2e:20:d2:06:4a:fa: f3:6b:ee:b5:36:47:ee:b1:cc:4a:46:a5:89:49:3e: 07:88:1f:c7:e8:04:89:d0:03:49:87:3a:ee:bb:de: 36:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E9:93:DB:74:83:2D:F8:C5:B4:A2:2D:4F:29:DF:CA:69:0C:74:4A X509v3 Authority Key Identifier: keyid:36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/3130332e3134382e34342e302f32332d3234203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.44.0/23 Signature Algorithm: sha256WithRSAEncryption 18:58:71:6a:fc:19:e9:11:64:52:0c:af:08:17:09:e8:94:28: e5:de:ec:5c:55:9b:46:bd:22:76:6e:b7:59:d1:27:76:b1:24: 0b:20:d3:46:5d:61:78:bc:82:ae:04:52:de:dc:ff:aa:d4:39: bf:77:e8:00:39:11:99:b7:07:12:81:4e:1a:9b:29:30:02:d5: f2:e4:78:1a:79:4b:db:5f:5c:b2:74:27:31:4f:00:70:1c:b0: 15:3d:0b:b9:04:97:6a:a5:5b:33:f9:52:bf:e8:90:6f:ce:77: a8:f7:b8:8b:03:2f:ce:c2:f9:1d:c7:ee:53:46:ee:f2:cf:a8: 71:70:74:d5:f2:47:e5:3b:65:03:a6:12:a5:29:b3:53:e0:69: c9:49:0d:d8:cd:d1:d9:2b:79:c9:ed:2c:d9:88:42:c4:cc:6c: 0e:cc:f0:34:12:23:ea:82:c5:dd:9f:2d:a4:b6:e5:84:2a:30: 4f:51:f3:7e:36:b5:0e:f2:f4:44:5d:e2:1b:5b:89:ce:b6:0d: a2:02:0f:f7:5e:b5:f8:e8:83:8f:ea:a3:82:fd:cf:58:3a:42: 70:23:07:ec:8e:c0:fe:39:51:06:1c:01:8d:a7:0d:73:09:a1: b7:fe:f4:fe:e0:7a:4d:91:0a:07:3d:05:ce:1d:3f:82:00:d6: e3:63:e0:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULwDGVv5Ypqwyw3tik4ESz1ouWG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4 QTNCQjZENDAeFw0yNTA2MDIwMTU4MTBaFw0yNjA2MDEwMjAzMTBaMDMxMTAvBgNV BAMTKEQ3RTk5M0RCNzQ4MzJERjhDNUI0QTIyRDRGMjlERkNBNjkwQzc0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBR47YDnt9fiyeia0XH5A1FI26 GmkMY154Qv1OTRuVPgrUDY24hDMO1xBYRe9AXRd43MyAlm20px8Mg+HPr1QHZ3ZH eOwp/QsIiHsYvaGXG4N6uJTz8aJhaHWreEu2Zu3jZtTnN0RaTdVDJdtyUuKDkLCD +e3Rp9ClBZHeSKPHhec2vvtwbPT/GiRc8TStCazx/bQDb6ZFZAJZuz7m9UOGsOPg VlIT471QnMG3gA207mjuBI3eevMFcXZMlbWd6s5TS3I00KssrMpON+o64Me/huB6 g1U0hVKPXy4g0gZK+vNr7rU2R+6xzEpGpYlJPgeIH8foBInQA0mHOu673jbbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1+mT23SDLfjFtKItTynfymkMdEowHwYDVR0j BBgwFoAUNoNp0JbOCYLM8fERAB8qLoo7ttQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWYyNmZiOC03MmM0LTQ5ZDktOWNiZS04MjI2Mzk3MjcxYTIvMC8zNjgzNjlEMDk2 Q0UwOTgyQ0NGMUYxMTEwMDFGMkEyRThBM0JCNkQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4QTNC QjZENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ZjI2ZmI4LTcyYzQtNDlkOS05 Y2JlLTgyMjYzOTcyNzFhMi8wLzMxMzAzMzJlMzEzNDM4MmUzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5QsMA0GCSqG SIb3DQEBCwUAA4IBAQAYWHFq/BnpEWRSDK8IFwnolCjl3uxcVZtGvSJ2brdZ0Sd2 sSQLINNGXWF4vIKuBFLe3P+q1Dm/d+gAORGZtwcSgU4amykwAtXy5HgaeUvbX1yy dCcxTwBwHLAVPQu5BJdqpVsz+VK/6JBvzneo97iLAy/Owvkdx+5TRu7yz6hxcHTV 8kflO2UDphKlKbNT4GnJSQ3YzdHZK3nJ7SzZiELEzGwOzPA0EiPqgsXdny2ktuWE KjBPUfN+NrUO8vREXeIbW4nOtg2iAg/3XrX46IOP6qOC/c9YOkJwIwfsjsD+OVEG HAGNpw1zCaG3/vT+4HpNkQoHPQXOHT+CANbjY+De -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:21 2025 by rpki-client