$ rpki-client -vvf repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa File: 3130332e38362e3132382e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: D4xO8SkIE8jeNebf9M5hiqlhcLrsrkGAhopy0O7d3p0= Subject key identifier: D7:D0:6B:04:8D:7D:A2:62:82:46:20:03:25:2E:82:20:74:9C:AB:D4 Certificate issuer: /CN=4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50 Certificate serial: 1FFFFF2AAB238BFD56216D79D547502EDCE52404 Authority key identifier: 4B:E0:EB:AF:EF:1E:20:6C:AD:8B:4E:AD:6D:6A:08:D3:A8:C0:1B:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa Signing time: Wed 14 May 2025 09:00:01 +0000 ROA not before: Wed 14 May 2025 08:55:01 +0000 ROA not after: Wed 13 May 2026 09:00:01 +0000 asID: 4800 IP address blocks: 103.86.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.crl rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 09:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ff:ff:2a:ab:23:8b:fd:56:21:6d:79:d5:47:50:2e:dc:e5:24:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50 Validity Not Before: May 14 08:55:01 2025 GMT Not After : May 13 09:00:01 2026 GMT Subject: CN=D7D06B048D7DA26282462003252E8220749CABD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f9:0c:ad:e5:d4:da:d2:87:21:43:ce:6e:f3: ed:39:89:cf:1e:41:d2:25:19:7a:b1:ba:ec:e1:6c: 6f:d0:b4:5c:f9:d3:90:89:33:e0:ec:fa:90:c2:15: ed:dc:84:a3:7e:8e:65:b1:eb:c1:6f:9f:8e:e2:d4: 68:3c:e9:08:1b:41:22:53:bf:75:91:bc:d8:d7:3c: ef:b4:d7:99:1b:2e:f0:1e:0c:92:c6:54:38:58:56: d6:c6:b9:da:2e:7e:23:89:b8:3a:d4:67:9a:b7:61: 87:5a:2b:c7:a1:84:c8:87:2a:e9:a3:29:a8:95:71: 34:45:10:3e:cc:68:62:b3:48:89:11:e7:a6:ef:79: cb:f4:7a:bf:40:4a:ec:df:86:8a:f7:03:a9:21:54: 0f:e6:91:e5:6e:59:53:09:02:d4:2e:d0:20:d6:bb: c8:e5:5c:bd:17:5d:7c:05:2a:0b:a2:2e:e9:93:b9: 8d:52:57:95:75:7a:e4:22:82:93:ce:87:b6:6a:8f: a1:ea:70:57:53:ab:d9:9d:be:b6:ae:d2:6d:15:eb: 58:f0:bf:56:9e:9c:93:63:fb:ce:85:38:32:65:1f: 5b:6a:58:e9:54:93:69:30:12:4c:fd:45:2e:f0:fb: e4:97:d6:9a:75:7b:9a:6b:09:05:52:dc:7d:75:5f: 8a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D0:6B:04:8D:7D:A2:62:82:46:20:03:25:2E:82:20:74:9C:AB:D4 X509v3 Authority Key Identifier: keyid:4B:E0:EB:AF:EF:1E:20:6C:AD:8B:4E:AD:6D:6A:08:D3:A8:C0:1B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.128.0/23 Signature Algorithm: sha256WithRSAEncryption 42:81:28:70:0e:78:d8:a7:b9:0f:eb:1f:04:0d:1d:44:79:90: 54:a8:cc:28:0e:c5:d2:88:b0:66:7f:3c:b3:37:77:6c:7e:46: d6:a6:81:52:55:79:f2:57:d7:47:83:7c:c0:83:ef:94:18:d6: 36:dd:de:68:d0:05:ca:3e:66:93:65:0a:e2:80:3b:12:22:bf: b7:2c:14:51:48:f1:48:ff:92:83:97:25:fd:52:9b:3a:fb:06: 30:0f:b9:48:cb:2b:62:1e:e1:80:6f:b8:08:84:7c:29:2b:71: 4f:d4:8a:4e:88:b7:0d:de:0d:cb:5a:e5:dd:71:db:44:22:62: 08:fa:61:5b:bb:39:75:54:22:80:44:8b:2b:f0:dc:2a:e8:85: 6e:49:01:1f:3e:f1:6d:2f:dd:be:8e:8a:f0:db:fb:aa:5a:71: ce:d7:22:72:2a:de:38:2a:8b:35:8d:97:64:29:f4:b8:4f:2c: 20:b0:35:25:bd:03:7e:1f:69:4c:64:89:81:2b:17:87:10:6e: c4:68:30:b2:3b:71:24:bd:6c:35:6e:22:fa:e0:5a:0b:f7:9e: 99:11:2d:ec:0c:55:7b:c7:44:39:ea:dc:0b:81:9e:23:25:81: 3b:14:63:01:d5:45:3c:c6:7c:b3:de:ef:e7:03:09:cb:6f:c5: b0:89:b2:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH///Kqsji/1WIW151UdQLtzlJAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJFMEVCQUZFRjFFMjA2Q0FEOEI0RUFENkQ2QTA4RDNB OEMwMUI1MDAeFw0yNTA1MTQwODU1MDFaFw0yNjA1MTMwOTAwMDFaMDMxMTAvBgNV BAMTKEQ3RDA2QjA0OEQ3REEyNjI4MjQ2MjAwMzI1MkU4MjIwNzQ5Q0FCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh+Qyt5dTa0ochQ85u8+05ic8e QdIlGXqxuuzhbG/QtFz505CJM+Ds+pDCFe3chKN+jmWx68Fvn47i1Gg86QgbQSJT v3WRvNjXPO+015kbLvAeDJLGVDhYVtbGudoufiOJuDrUZ5q3YYdaK8ehhMiHKumj KaiVcTRFED7MaGKzSIkR56bvecv0er9ASuzfhor3A6khVA/mkeVuWVMJAtQu0CDW u8jlXL0XXXwFKguiLumTuY1SV5V1euQigpPOh7Zqj6HqcFdTq9mdvrau0m0V61jw v1aenJNj+86FODJlH1tqWOlUk2kwEkz9RS7w++SX1pp1e5prCQVS3H11X4rXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU19BrBI19omKCRiADJS6CIHScq9QwHwYDVR0j BBgwFoAUS+Drr+8eIGyti06tbWoI06jAG1AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OGE3ZjM1NS1mMjI1LTQ4ZjMtODdmOC0wYmZiMGM4ZTU4ZjAvMC80QkUwRUJBRkVG MUUyMDZDQUQ4QjRFQUQ2RDZBMDhEM0E4QzAxQjUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJFMEVCQUZFRjFFMjA2Q0FEOEI0RUFENkQ2QTA4RDNBOEMw MUI1MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4YTdmMzU1LWYyMjUtNDhmMy04 N2Y4LTBiZmIwYzhlNThmMC8wLzMxMzAzMzJlMzgzNjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnVoAwDQYJKoZIhvcN AQELBQADggEBAEKBKHAOeNinuQ/rHwQNHUR5kFSozCgOxdKIsGZ/PLM3d2x+Rtam gVJVefJX10eDfMCD75QY1jbd3mjQBco+ZpNlCuKAOxIiv7csFFFI8Uj/koOXJf1S mzr7BjAPuUjLK2Ie4YBvuAiEfCkrcU/Uik6Itw3eDcta5d1x20QiYgj6YVu7OXVU IoBEiyvw3CrohW5JAR8+8W0v3b6OivDb+6pacc7XInIq3jgqizWNl2Qp9LhPLCCw NSW9A34faUxkiYErF4cQbsRoMLI7cSS9bDVuIvrgWgv3npkRLewMVXvHRDnq3AuB niMlgTsUYwHVRTzGfLPe7+cDCctvxbCJshM= -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:26 2025 by rpki-client