$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa File: 3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: JSKYuA8fJ4y0Rjc8zV/6efFq5nxlIBAvEr6kwWaUKJw= Subject key identifier: 91:66:25:FE:91:4D:60:FF:B9:42:51:91:30:38:E3:17:AA:BB:1E:19 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 04FA242220454D6F72A4B94F3EB25646377D4B67 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa Signing time: Fri 16 May 2025 06:00:01 +0000 ROA not before: Fri 16 May 2025 05:55:01 +0000 ROA not after: Fri 15 May 2026 06:00:01 +0000 asID: 23679 IP address blocks: 103.103.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 11:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:fa:24:22:20:45:4d:6f:72:a4:b9:4f:3e:b2:56:46:37:7d:4b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: May 16 05:55:01 2025 GMT Not After : May 15 06:00:01 2026 GMT Subject: CN=916625FE914D60FFB94251913038E317AABB1E19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:02:40:fb:f0:7e:1b:f4:2c:c3:12:2e:3b:2a: a7:37:49:7b:91:17:fe:35:5e:e1:e5:52:f4:88:52: f6:00:3e:79:8b:39:9a:97:4a:89:7f:79:ce:39:6e: 16:04:73:ea:32:34:70:ed:c0:7b:a4:66:c6:27:9c: a1:f9:8e:18:b4:8b:b8:96:74:0f:9a:f8:ee:ea:cb: 15:92:5a:ed:42:bb:9f:b9:ef:b2:37:d3:c1:cc:e7: 06:24:d9:99:80:3a:82:c6:e6:26:c2:ea:46:62:9e: e4:77:72:93:13:c3:2b:99:a9:ab:15:69:f3:c0:a3: ab:5d:16:76:de:0e:59:a2:59:c3:09:9c:66:da:b9: dd:6b:8a:c7:0c:3f:23:9c:20:0e:25:37:30:ef:e5: 84:66:e8:c7:76:04:c6:45:1c:a9:6a:ea:bb:59:c6: c7:58:51:ab:19:d4:13:1c:48:4b:20:28:05:74:a9: d5:66:9c:ea:66:0a:07:3c:16:41:13:14:a2:75:61: 9f:a4:6f:4b:f7:78:d4:24:7e:51:93:99:0f:ad:6c: b2:b9:0f:50:5a:d2:e5:ae:0f:bb:5e:20:77:4a:f0: 59:e2:ac:5d:7d:3f:ec:bb:b5:80:73:02:c2:d8:c8: da:bc:4a:91:33:cf:a3:6d:a0:39:71:37:af:1d:f1: a6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:66:25:FE:91:4D:60:FF:B9:42:51:91:30:38:E3:17:AA:BB:1E:19 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133372e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.137.0/24 Signature Algorithm: sha256WithRSAEncryption 32:18:a1:a9:29:03:3d:92:50:01:7d:3c:c6:0e:04:47:f6:73: 6c:71:ea:31:24:fb:4f:3a:a0:05:9f:7e:89:a0:de:50:15:91: a5:e2:2d:a3:00:44:22:a7:56:05:64:7d:25:56:ff:9c:cd:cc: cf:28:7c:b8:82:07:0f:73:66:0f:f9:31:a5:90:ad:7d:c2:bb: b3:6a:30:2f:98:22:92:66:7e:bf:70:29:53:e0:13:3f:a9:3f: dd:01:d5:d3:27:ab:0a:08:00:0a:b0:3d:b3:fa:3e:79:7b:63: 02:45:9a:5a:8b:25:fa:8c:6a:7f:b8:19:4e:f0:c7:8f:2a:70: 6b:60:c8:61:e6:8d:2d:4e:fe:a3:2b:9a:ae:f7:62:ac:f7:b5: d4:de:85:0a:a6:dc:74:8d:f5:43:b7:2b:18:af:51:65:16:6c: d2:9f:f4:41:df:7b:bf:7c:91:c5:9a:de:7c:c3:f9:f9:66:0f: d8:09:1c:77:ec:de:e1:f3:30:f6:d3:fc:0d:2e:63:3c:9d:d7: 09:f1:55:42:96:59:87:18:93:76:4b:0b:03:86:53:4b:2a:ad: 2e:f9:24:f7:f6:1b:e3:4c:95:d0:1d:f0:e6:54:f3:43:cd:d2: 3f:f3:ab:c0:c3:80:04:93:8f:ab:2f:44:79:35:82:42:8b:2e: 86:64:e1:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBPokIiBFTW9ypLlPPrJWRjd9S2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNTA1MTYwNTU1MDFaFw0yNjA1MTUwNjAwMDFaMDMxMTAvBgNV BAMTKDkxNjYyNUZFOTE0RDYwRkZCOTQyNTE5MTMwMzhFMzE3QUFCQjFFMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvAkD78H4b9CzDEi47Kqc3SXuR F/41XuHlUvSIUvYAPnmLOZqXSol/ec45bhYEc+oyNHDtwHukZsYnnKH5jhi0i7iW dA+a+O7qyxWSWu1Cu5+577I308HM5wYk2ZmAOoLG5ibC6kZinuR3cpMTwyuZqasV afPAo6tdFnbeDlmiWcMJnGbaud1riscMPyOcIA4lNzDv5YRm6Md2BMZFHKlq6rtZ xsdYUasZ1BMcSEsgKAV0qdVmnOpmCgc8FkETFKJ1YZ+kb0v3eNQkflGTmQ+tbLK5 D1Ba0uWuD7teIHdK8FnirF19P+y7tYBzAsLYyNq8SpEzz6NtoDlxN68d8ab1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkWYl/pFNYP+5QlGRMDjjF6q7HhkwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2eJMA0GCSqG SIb3DQEBCwUAA4IBAQAyGKGpKQM9klABfTzGDgRH9nNsceoxJPtPOqAFn36JoN5Q FZGl4i2jAEQip1YFZH0lVv+czczPKHy4ggcPc2YP+TGlkK19wruzajAvmCKSZn6/ cClT4BM/qT/dAdXTJ6sKCAAKsD2z+j55e2MCRZpaiyX6jGp/uBlO8MePKnBrYMhh 5o0tTv6jK5qu92Ks97XU3oUKptx0jfVDtysYr1FlFmzSn/RB33u/fJHFmt58w/n5 Zg/YCRx37N7h8zD20/wNLmM8ndcJ8VVCllmHGJN2SwsDhlNLKq0u+ST39hvjTJXQ HfDmVPNDzdI/86vAw4AEk4+rL0R5NYJCiy6GZOE6 -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:28 2025 by rpki-client