$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa File: 3130332e31302e3133362e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: 5YpGxbntRalodhdbzlYCNtjpBYFDZO05yo+Rh10i0pc= Subject key identifier: 86:09:51:08:6E:BB:E5:82:77:2D:11:06:E9:68:C9:40:EB:40:13:4A Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 30441A2B5E2B74E238D3CC86A897241683E9AA18 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa Signing time: Fri 16 May 2025 03:00:02 +0000 ROA not before: Fri 16 May 2025 02:55:02 +0000 ROA not after: Fri 15 May 2026 03:00:02 +0000 asID: 17671 IP address blocks: 103.10.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:44:1a:2b:5e:2b:74:e2:38:d3:cc:86:a8:97:24:16:83:e9:aa:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 16 02:55:02 2025 GMT Not After : May 15 03:00:02 2026 GMT Subject: CN=860951086EBBE582772D1106E968C940EB40134A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:6f:52:66:cd:c0:ff:fa:23:22:ea:0b:76: 59:a9:f7:28:86:32:d2:5d:ea:a0:de:63:4e:90:c9: cb:30:6a:cb:7b:07:c0:b2:80:0a:ef:b4:76:8b:bb: 28:d9:5a:64:d5:a5:ca:f0:34:77:6b:c4:07:36:d5: 21:02:ac:11:b9:7f:8b:62:13:43:95:27:7d:23:76: 88:50:5b:72:9e:d9:8d:da:f1:ef:67:59:8d:5e:18: 41:f0:ec:c2:57:76:96:2a:ec:9b:1f:f6:32:59:df: 04:76:91:f4:b3:2e:7a:86:02:f2:fc:a8:3c:28:70: e3:dc:bf:dc:18:5f:34:48:ba:0d:e6:91:56:02:3a: b6:90:9f:26:21:5f:23:1e:3f:9d:58:a8:1b:2b:6b: 4b:81:18:84:45:65:b3:8e:29:d6:55:29:37:c4:6b: 24:18:63:15:f6:d4:c2:96:85:d6:29:9e:a1:5b:81: b8:f5:2c:bd:5b:9a:ad:23:bd:a0:4e:dd:96:5a:8c: d2:df:86:d8:56:22:34:ab:c8:d6:80:de:cc:53:9e: 28:84:3e:0f:81:32:07:1b:eb:99:8f:5b:dc:96:f8: c1:b0:ba:fa:03:e3:a6:b0:6f:98:dd:4c:d7:48:b2: 04:dd:30:9c:e4:c3:8f:76:e9:be:8c:f2:ba:75:e9: dd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:09:51:08:6E:BB:E5:82:77:2D:11:06:E9:68:C9:40:EB:40:13:4A X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.136.0/22 Signature Algorithm: sha256WithRSAEncryption 09:55:f8:3e:67:b8:d4:cb:c5:ec:ef:20:41:58:cc:a9:8a:46: 07:9a:2d:87:aa:1e:4e:4b:8d:c7:d2:e8:cd:f9:66:2d:e5:1b: 49:c3:e9:b0:c9:06:77:2c:be:1c:c7:71:54:43:4a:8c:d1:24: d7:17:73:9f:ba:f7:2d:9b:a1:2b:8d:bf:8b:43:14:3c:d4:68: 1c:ce:26:6c:80:a1:47:d6:f5:38:21:25:25:f3:a7:dd:5d:29: 1f:04:1b:a3:54:84:ad:c5:49:67:ac:39:e4:43:bf:3c:ff:24: 71:c4:0d:0c:5e:0b:0f:df:10:39:95:7a:85:bd:32:06:f2:d5: ad:2b:fb:da:30:31:18:4f:63:c1:fd:47:7c:47:97:00:7a:98: c1:df:ea:d9:f9:c4:2f:aa:53:8e:33:10:83:7f:8b:4a:04:91: 96:a7:a3:14:57:d0:1f:54:f0:82:6a:05:fd:7b:d8:ea:52:16: 3a:a2:7c:3a:13:76:77:64:3d:25:55:fd:24:70:28:6d:29:cc: 2a:80:a9:91:e8:b5:a1:17:4c:de:cd:19:ba:f8:ba:31:14:32: 70:f6:f2:66:81:f0:b6:ec:eb:0e:c9:87:d3:15:6f:2a:7c:53: 43:a3:44:d4:7e:03:1f:b1:11:c6:97:56:2f:70:59:3b:c4:b5: 41:f3:3d:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMEQaK14rdOI408yGqJckFoPpqhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTYwMjU1MDJaFw0yNjA1MTUwMzAwMDJaMDMxMTAvBgNV BAMTKDg2MDk1MTA4NkVCQkU1ODI3NzJEMTEwNkU5NjhDOTQwRUI0MDEzNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFDW9SZs3A//ojIuoLdlmp9yiG MtJd6qDeY06Qycswast7B8CygArvtHaLuyjZWmTVpcrwNHdrxAc21SECrBG5f4ti E0OVJ30jdohQW3Ke2Y3a8e9nWY1eGEHw7MJXdpYq7Jsf9jJZ3wR2kfSzLnqGAvL8 qDwocOPcv9wYXzRIug3mkVYCOraQnyYhXyMeP51YqBsra0uBGIRFZbOOKdZVKTfE ayQYYxX21MKWhdYpnqFbgbj1LL1bmq0jvaBO3ZZajNLfhthWIjSryNaA3sxTniiE Pg+BMgcb65mPW9yW+MGwuvoD46awb5jdTNdIsgTdMJzkw4926b6M8rp16d29AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhglRCG675YJ3LREG6WjJQOtAE0owHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcKiDANBgkqhkiG 9w0BAQsFAAOCAQEACVX4Pme41MvF7O8gQVjMqYpGB5oth6oeTkuNx9LozflmLeUb ScPpsMkGdyy+HMdxVENKjNEk1xdzn7r3LZuhK42/i0MUPNRoHM4mbIChR9b1OCEl JfOn3V0pHwQbo1SErcVJZ6w55EO/PP8kccQNDF4LD98QOZV6hb0yBvLVrSv72jAx GE9jwf1HfEeXAHqYwd/q2fnEL6pTjjMQg3+LSgSRlqejFFfQH1TwgmoF/XvY6lIW OqJ8OhN2d2Q9JVX9JHAobSnMKoCpkei1oRdM3s0Zuvi6MRQycPbyZoHwtuzrDsmH 0xVvKnxTQ6NE1H4DH7ERxpdWL3BZO8S1QfM9rA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:49 2025 by rpki-client