$ rpki-client -vvf repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa File: 3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa (raw, json) Hash identifier: +tOUCMAfkXBUrsG+mslHnjPzs7jefLznwIgLOB3xtdM= Subject key identifier: 86:54:51:EC:3D:F8:A2:5B:C5:5A:28:9D:03:56:F2:34:D4:F6:E4:D2 Certificate issuer: /CN=5715F968646EAE08576ECCEF3FABAC250A40A47B Certificate serial: 0B6D9C1D1A9CB09B6D80C15216370E4EF319E960 Authority key identifier: 57:15:F9:68:64:6E:AE:08:57:6E:CC:EF:3F:AB:AC:25:0A:40:A4:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa Signing time: Mon 02 Jun 2025 01:02:58 +0000 ROA not before: Mon 02 Jun 2025 00:57:58 +0000 ROA not after: Mon 01 Jun 2026 01:02:58 +0000 asID: 131786 IP address blocks: 103.17.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.crl rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6d:9c:1d:1a:9c:b0:9b:6d:80:c1:52:16:37:0e:4e:f3:19:e9:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5715F968646EAE08576ECCEF3FABAC250A40A47B Validity Not Before: Jun 2 00:57:58 2025 GMT Not After : Jun 1 01:02:58 2026 GMT Subject: CN=865451EC3DF8A25BC55A289D0356F234D4F6E4D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fd:45:38:f8:d6:50:1b:18:51:51:9e:ad:67: 4d:ce:8e:7c:f4:5d:0f:df:3b:b7:bf:ab:51:25:ea: 06:61:02:d4:71:cd:62:51:6b:a6:15:71:8e:7c:c0: 25:ec:52:b3:82:92:9a:fd:3b:cb:14:0f:74:1d:b1: 56:ef:e4:fa:61:aa:73:ff:04:58:c5:eb:b3:93:4b: 2e:9f:4c:01:b7:58:11:8d:1e:26:f3:f4:cc:8b:bb: 55:ab:42:53:51:70:7c:f2:0c:f7:c6:9d:a0:58:5b: 02:1c:a4:25:29:b7:6c:3d:1f:fd:70:41:eb:17:c8: aa:86:5a:7b:ea:5c:7f:46:2b:fe:c6:bd:2b:66:a2: e2:da:52:79:19:c9:60:d4:5f:fe:85:4e:11:23:12: 15:09:6c:3f:2b:33:af:54:af:fb:cb:20:95:e3:ce: 63:2d:07:11:2f:f1:bc:85:2a:3b:1f:a9:1a:ed:8e: 3f:04:a2:f6:71:bc:af:5b:02:4f:e8:1f:6c:60:c3: c8:f9:0e:a0:ef:58:a4:79:b1:9a:e5:68:aa:92:91: 0b:6a:4d:83:8b:6d:77:15:34:3e:95:13:aa:23:fe: 75:52:eb:cf:05:ef:7a:1e:bc:b1:00:22:52:f9:b0: f9:45:45:bf:85:c1:03:55:b2:67:5a:9d:1c:a2:a4: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:54:51:EC:3D:F8:A2:5B:C5:5A:28:9D:03:56:F2:34:D4:F6:E4:D2 X509v3 Authority Key Identifier: keyid:57:15:F9:68:64:6E:AE:08:57:6E:CC:EF:3F:AB:AC:25:0A:40:A4:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/5715F968646EAE08576ECCEF3FABAC250A40A47B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5715F968646EAE08576ECCEF3FABAC250A40A47B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1514d61-99ff-42a9-ba9a-5961dd68db65/0/3130332e31372e3139322e302f32342d3234203d3e20313331373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.192.0/24 Signature Algorithm: sha256WithRSAEncryption aa:dd:38:ef:84:e9:70:3f:71:38:9a:9b:2f:09:8f:88:31:3c: f6:64:c2:7c:81:d8:1b:4d:e7:df:69:dd:a0:4a:c8:25:76:ed: a8:cc:ac:9e:46:5e:27:77:83:74:01:91:b6:0a:42:9e:d2:a1: 03:9a:a6:86:d7:1b:bb:c8:f8:95:a5:44:0d:ba:7a:da:f9:95: 18:e2:79:c4:6d:26:ec:3e:48:f0:16:ed:5d:58:60:d5:06:6f: 71:44:08:01:ec:96:c1:0b:7d:b7:07:4d:38:c9:77:1a:81:f3: 62:44:4c:7a:da:7a:f9:ce:8b:a3:73:d2:51:af:6d:c2:58:3f: cd:7b:ba:75:44:32:c9:b1:42:30:f6:22:a3:d9:fc:8b:a1:4d: 32:20:86:56:bc:24:32:dc:5f:79:b2:f1:00:63:9f:45:63:52: 6d:4d:2f:79:1e:b8:02:c1:56:93:68:58:be:d7:15:92:84:3a: 45:2f:9a:7a:38:5c:d2:84:59:ca:1a:59:e7:82:a5:20:17:f4: a1:19:55:41:0e:e3:8d:d7:af:ec:5e:d1:40:18:8f:20:da:2a: 26:67:9c:a9:25:72:9f:b0:50:43:68:a3:37:fd:d0:5e:92:a9: 44:cc:7e:ed:cc:64:68:0c:7e:e8:f8:ab:62:04:b7:d8:a0:a1: 41:66:13:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC22cHRqcsJttgMFSFjcOTvMZ6WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTcxNUY5Njg2NDZFQUUwODU3NkVDQ0VGM0ZBQkFDMjUw QTQwQTQ3QjAeFw0yNTA2MDIwMDU3NThaFw0yNjA2MDEwMTAyNThaMDMxMTAvBgNV BAMTKDg2NTQ1MUVDM0RGOEEyNUJDNTVBMjg5RDAzNTZGMjM0RDRGNkU0RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq/UU4+NZQGxhRUZ6tZ03Ojnz0 XQ/fO7e/q1El6gZhAtRxzWJRa6YVcY58wCXsUrOCkpr9O8sUD3QdsVbv5PphqnP/ BFjF67OTSy6fTAG3WBGNHibz9MyLu1WrQlNRcHzyDPfGnaBYWwIcpCUpt2w9H/1w QesXyKqGWnvqXH9GK/7GvStmouLaUnkZyWDUX/6FThEjEhUJbD8rM69Ur/vLIJXj zmMtBxEv8byFKjsfqRrtjj8EovZxvK9bAk/oH2xgw8j5DqDvWKR5sZrlaKqSkQtq TYOLbXcVND6VE6oj/nVS688F73oevLEAIlL5sPlFRb+FwQNVsmdanRyipAH5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhlRR7D34olvFWiidA1byNNT25NIwHwYDVR0j BBgwFoAUVxX5aGRurghXbszvP6usJQpApHswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTUxNGQ2MS05OWZmLTQyYTktYmE5YS01OTYxZGQ2OGRiNjUvMC81NzE1Rjk2ODY0 NkVBRTA4NTc2RUNDRUYzRkFCQUMyNTBBNDBBNDdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTcxNUY5Njg2NDZFQUUwODU3NkVDQ0VGM0ZBQkFDMjUwQTQw QTQ3Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNTE0ZDYxLTk5ZmYtNDJhOS1i YTlhLTU5NjFkZDY4ZGI2NS8wLzMxMzAzMzJlMzEzNzJlMzEzOTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxHAMA0GCSqG SIb3DQEBCwUAA4IBAQCq3TjvhOlwP3E4mpsvCY+IMTz2ZMJ8gdgbTeffad2gSsgl du2ozKyeRl4nd4N0AZG2CkKe0qEDmqaG1xu7yPiVpUQNunra+ZUY4nnEbSbsPkjw Fu1dWGDVBm9xRAgB7JbBC323B004yXcagfNiREx62nr5zoujc9JRr23CWD/Ne7p1 RDLJsUIw9iKj2fyLoU0yIIZWvCQy3F95svEAY59FY1JtTS95HrgCwVaTaFi+1xWS hDpFL5p6OFzShFnKGlnngqUgF/ShGVVBDuON16/sXtFAGI8g2iomZ5ypJXKfsFBD aKM3/dBekqlEzH7tzGRoDH7o+KtiBLfYoKFBZhPY -----END CERTIFICATE-----Generated at Sat Jun 7 12:26:42 2025 by rpki-client