$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133382e302f32342d3234203d3e203137363731.roa File: 3130332e31302e3133382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: F7+gl+f8MbuTtbMVTsg+YacNdPLM9/YHfdjl7w3FJYk= Subject key identifier: 6C:BD:C5:57:E6:BF:76:57:FE:2E:CE:D0:36:4D:E0:25:0F:2D:9B:59 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 257DA37C0543D39C70C33C78672F95F05B5515B6 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133382e302f32342d3234203d3e203137363731.roa Signing time: Thu 15 May 2025 12:00:02 +0000 ROA not before: Thu 15 May 2025 11:55:02 +0000 ROA not after: Thu 14 May 2026 12:00:02 +0000 asID: 17671 IP address blocks: 103.10.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7d:a3:7c:05:43:d3:9c:70:c3:3c:78:67:2f:95:f0:5b:55:15:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 15 11:55:02 2025 GMT Not After : May 14 12:00:02 2026 GMT Subject: CN=6CBDC557E6BF7657FE2ECED0364DE0250F2D9B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:36:0d:2a:5d:9a:4d:7e:18:89:92:ad:e2: 3f:66:70:c1:f8:d9:b0:6f:28:69:0b:47:a5:e1:9f: f1:24:ea:8c:62:0f:8a:3d:f9:76:08:c8:c2:c4:3e: 86:ae:3d:8c:9d:dc:5e:b8:3b:36:37:7d:40:13:4a: cc:b0:12:c2:e5:29:5a:a8:e3:fc:a6:de:bd:2f:97: 7a:de:a2:e5:76:24:7a:9f:a6:32:86:52:ae:2d:62: e3:60:dc:7f:5d:b5:0b:5d:bd:39:4b:63:44:1f:90: 1a:0a:d8:f4:55:6b:ea:e0:78:06:24:1a:8e:42:ef: a6:26:e9:2c:83:e7:3e:10:a4:f3:ab:68:ee:3e:7c: 56:e5:49:6c:59:4f:a0:1f:bb:ba:51:a8:34:bb:2d: c9:29:34:7a:50:6c:9b:9f:ec:2a:35:e6:c3:46:77: 9b:3d:93:b7:21:38:a0:20:ea:dc:13:3e:a7:f6:ce: 32:fe:67:8a:9f:79:21:3a:68:0b:0e:6b:73:d8:79: de:2c:7a:43:2d:06:f0:5e:23:2c:96:0d:26:88:58: 56:a5:5e:86:7c:10:a1:68:b7:26:79:ad:45:a1:42: b9:3a:33:27:29:28:6d:60:25:34:e7:f4:26:fa:e0: fb:c1:28:fa:eb:7a:aa:f0:8f:14:53:63:47:8f:01: 1a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BD:C5:57:E6:BF:76:57:FE:2E:CE:D0:36:4D:E0:25:0F:2D:9B:59 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.138.0/24 Signature Algorithm: sha256WithRSAEncryption a2:16:f0:fa:35:7b:04:5a:52:ad:a7:7c:3c:21:da:e8:8d:3c: ec:61:6f:66:71:18:10:c6:a6:7d:1b:8c:d6:63:72:05:ee:1a: ce:6e:99:33:20:69:9d:8b:00:b6:a5:50:d3:00:1c:39:c5:64: 41:c3:05:80:a7:5f:b4:d6:56:67:7e:a8:b2:b1:07:c9:5f:ac: 6e:9a:1e:e4:c4:1f:d5:d4:bf:2d:c9:9e:b8:3d:f4:e2:d3:33: dc:d1:a6:06:6a:68:e4:ba:0e:ff:cd:49:ac:8b:89:60:bc:7a: ac:13:73:58:5f:fd:c2:4e:db:1e:55:4b:c8:ee:11:54:8f:5f: c3:6e:f4:4b:97:bc:2a:a1:d6:bc:e2:5e:52:17:38:3c:83:cc: 29:3e:d7:37:3d:80:df:3d:8a:aa:9d:8e:80:a3:69:b9:6c:64: a6:d2:69:40:0e:41:72:dc:80:85:a4:b3:ce:f4:ac:7d:97:4b: d6:28:fd:10:65:16:09:fb:61:83:99:bf:b7:e6:43:20:67:88: 74:a6:96:25:81:b9:1c:42:a9:42:ea:9c:bd:f0:1d:07:36:2d: 5d:71:de:0b:91:c8:b0:53:b3:d2:a7:78:bf:1d:9b:31:9c:7d: 07:d1:39:46:04:9d:0e:c4:b9:bd:b7:0c:c2:16:1c:cf:50:93: f3:4a:73:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJX2jfAVD05xwwzx4Zy+V8FtVFbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTUxMTU1MDJaFw0yNjA1MTQxMjAwMDJaMDMxMTAvBgNV BAMTKDZDQkRDNTU3RTZCRjc2NTdGRTJFQ0VEMDM2NERFMDI1MEYyRDlCNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKvDYNKl2aTX4YiZKt4j9mcMH4 2bBvKGkLR6Xhn/Ek6oxiD4o9+XYIyMLEPoauPYyd3F64OzY3fUATSsywEsLlKVqo 4/ym3r0vl3reouV2JHqfpjKGUq4tYuNg3H9dtQtdvTlLY0QfkBoK2PRVa+rgeAYk Go5C76Ym6SyD5z4QpPOraO4+fFblSWxZT6Afu7pRqDS7LckpNHpQbJuf7Co15sNG d5s9k7chOKAg6twTPqf2zjL+Z4qfeSE6aAsOa3PYed4sekMtBvBeIyyWDSaIWFal XoZ8EKFotyZ5rUWhQrk6MycpKG1gJTTn9Cb64PvBKPrreqrwjxRTY0ePARrzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbL3FV+a/dlf+Ls7QNk3gJQ8tm1kwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKijANBgkqhkiG 9w0BAQsFAAOCAQEAohbw+jV7BFpSrad8PCHa6I087GFvZnEYEMamfRuM1mNyBe4a zm6ZMyBpnYsAtqVQ0wAcOcVkQcMFgKdftNZWZ36osrEHyV+sbpoe5MQf1dS/Lcme uD304tMz3NGmBmpo5LoO/81JrIuJYLx6rBNzWF/9wk7bHlVLyO4RVI9fw270S5e8 KqHWvOJeUhc4PIPMKT7XNz2A3z2Kqp2OgKNpuWxkptJpQA5BctyAhaSzzvSsfZdL 1ij9EGUWCfthg5m/t+ZDIGeIdKaWJYG5HEKpQuqcvfAdBzYtXXHeC5HIsFOz0qd4 vx2bMZx9B9E5RgSdDsS5vbcMwhYcz1CT80pzfA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:22 2025 by rpki-client