$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa File: 3130332e31302e3133392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: C9aeBtgr/OnDZJouAlW2wzdcSxs3qGDuh0UEN8xtu8g= Subject key identifier: 10:99:1A:B5:F7:56:60:95:1A:65:A1:59:BC:E4:09:57:BA:44:B8:E5 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 351569ADD110CBBDB23531960121D3BD1464A110 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa Signing time: Thu 15 May 2025 11:00:02 +0000 ROA not before: Thu 15 May 2025 10:55:02 +0000 ROA not after: Thu 14 May 2026 11:00:02 +0000 asID: 17671 IP address blocks: 103.10.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:15:69:ad:d1:10:cb:bd:b2:35:31:96:01:21:d3:bd:14:64:a1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: May 15 10:55:02 2025 GMT Not After : May 14 11:00:02 2026 GMT Subject: CN=10991AB5F75660951A65A159BCE40957BA44B8E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9c:1f:0e:42:62:15:73:56:6b:02:2b:38:16: 85:3d:2d:7c:fb:2c:71:27:8d:ea:2b:20:12:ad:f5: 8a:17:05:d5:29:fc:43:19:77:26:3a:a7:8e:30:77: 9e:36:94:c5:08:68:fd:3f:d1:c8:99:8a:b2:c2:fd: b6:7d:ab:a6:40:ce:46:cb:ba:44:19:63:05:17:1c: 4f:2e:4a:4a:8a:1f:5f:c8:3a:e7:9f:a7:8b:cc:39: c1:6f:c8:54:53:f5:da:35:97:95:70:28:fc:cc:df: 27:6b:0f:08:a3:0c:f9:1c:e2:78:80:dd:c1:8b:f6: 3b:c4:4d:7b:24:57:70:f2:b8:dd:38:a3:a7:ba:fd: a0:3f:60:5f:ad:ec:dd:54:f2:1b:59:e2:eb:08:fd: b7:b0:59:c8:70:52:22:2b:2f:16:60:40:ca:9f:03: 87:0c:20:49:67:05:77:49:8b:cf:c3:67:d3:6f:4c: b7:62:f4:73:d6:15:ea:ba:c7:6c:35:3f:3c:70:af: ab:07:34:b3:9d:58:80:cf:b7:63:bf:bd:d7:d1:dd: 6c:37:3d:5a:94:ac:86:6d:d6:49:ef:f4:48:35:e3: a4:0a:b5:94:01:b7:8b:07:96:b0:da:0f:03:bc:14: 33:cd:8f:54:8d:9b:a9:2d:0e:a1:32:de:d4:76:36: 65:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:99:1A:B5:F7:56:60:95:1A:65:A1:59:BC:E4:09:57:BA:44:B8:E5 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.139.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9d:34:ba:cd:b8:91:e9:57:9d:e2:86:76:dc:84:fb:7e:b2: 3e:8c:8f:26:ac:13:0b:a0:10:9c:a1:9b:79:7f:59:0f:c4:c7: cf:60:f1:68:c2:61:73:0d:36:74:cd:7d:97:8c:3a:ae:10:6d: 4f:56:72:d5:17:30:9b:ab:69:1c:88:24:fb:05:ce:fe:78:5d: 63:c7:39:5e:de:27:3d:4f:27:16:b1:53:5b:00:57:6e:c1:0c: bc:56:b6:63:90:16:be:71:cc:9d:f8:cf:b1:b0:39:c2:71:bc: 34:0b:50:8f:07:21:77:6e:03:1d:1a:9a:49:39:86:7e:f5:e6: bb:18:fc:6d:d3:cd:58:8c:7d:e9:2e:d7:1f:dc:20:80:51:73: 1c:56:2e:5e:48:31:9c:de:d7:ab:8e:a3:24:3e:f9:7e:79:b3: 34:7a:21:a7:18:fc:c2:87:d2:73:fe:9a:28:d3:8a:e5:91:53: 54:e6:c5:48:18:4e:db:57:6d:8c:f5:9d:5d:97:cf:55:30:ed: 11:a3:dc:f2:c7:a3:39:4a:59:4d:67:f3:5f:bf:af:2a:43:22: d4:5f:32:e3:a7:6a:0e:98:aa:54:de:b4:dc:10:de:19:e7:94: d9:e7:c2:66:d4:97:84:56:c6:26:87:01:a4:cd:fb:b7:73:62: 34:41:e4:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNRVprdEQy72yNTGWASHTvRRkoRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNTA1MTUxMDU1MDJaFw0yNjA1MTQxMTAwMDJaMDMxMTAvBgNV BAMTKDEwOTkxQUI1Rjc1NjYwOTUxQTY1QTE1OUJDRTQwOTU3QkE0NEI4RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnB8OQmIVc1ZrAis4FoU9LXz7 LHEnjeorIBKt9YoXBdUp/EMZdyY6p44wd542lMUIaP0/0ciZirLC/bZ9q6ZAzkbL ukQZYwUXHE8uSkqKH1/IOuefp4vMOcFvyFRT9do1l5VwKPzM3ydrDwijDPkc4niA 3cGL9jvETXskV3DyuN04o6e6/aA/YF+t7N1U8htZ4usI/bewWchwUiIrLxZgQMqf A4cMIElnBXdJi8/DZ9NvTLdi9HPWFeq6x2w1Pzxwr6sHNLOdWIDPt2O/vdfR3Ww3 PVqUrIZt1knv9Eg146QKtZQBt4sHlrDaDwO8FDPNj1SNm6ktDqEy3tR2NmUfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEJkatfdWYJUaZaFZvOQJV7pEuOUwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKizANBgkqhkiG 9w0BAQsFAAOCAQEAUJ00us24kelXneKGdtyE+36yPoyPJqwTC6AQnKGbeX9ZD8TH z2DxaMJhcw02dM19l4w6rhBtT1Zy1Rcwm6tpHIgk+wXO/nhdY8c5Xt4nPU8nFrFT WwBXbsEMvFa2Y5AWvnHMnfjPsbA5wnG8NAtQjwchd24DHRqaSTmGfvXmuxj8bdPN WIx96S7XH9wggFFzHFYuXkgxnN7Xq46jJD75fnmzNHohpxj8wofSc/6aKNOK5ZFT VObFSBhO21dtjPWdXZfPVTDtEaPc8sejOUpZTWfzX7+vKkMi1F8y46dqDpiqVN60 3BDeGeeU2efCZtSXhFbGJocBpM37t3NiNEHknw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:49:35 2025 by rpki-client