$ rpki-client -vvf repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa File: 3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa (raw, json) Hash identifier: KkOi57cp3QYrSPg3L4piWw9fN5UZON52i91Hq3Yxv3k= Subject key identifier: D3:77:97:87:28:5D:5C:73:44:05:4D:20:20:65:07:06:DF:D4:6F:CD Certificate issuer: /CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66 Certificate serial: 6C7F2022A4E4AF24A6E602731D46798234FDE6D5 Authority key identifier: A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa Signing time: Fri 23 May 2025 10:01:50 +0000 ROA not before: Fri 23 May 2025 09:56:50 +0000 ROA not after: Fri 22 May 2026 10:01:50 +0000 asID: 141602 IP address blocks: 103.159.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.crl rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7f:20:22:a4:e4:af:24:a6:e6:02:73:1d:46:79:82:34:fd:e6:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66 Validity Not Before: May 23 09:56:50 2025 GMT Not After : May 22 10:01:50 2026 GMT Subject: CN=D3779787285D5C7344054D2020650706DFD46FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:9f:e5:88:68:23:0d:b1:6f:6b:22:39:63: bb:90:ad:20:a9:3f:29:47:44:67:fb:2a:df:f5:a8: de:c1:5a:64:c9:dc:e9:da:ef:f4:39:26:87:1f:f1: e3:48:35:f9:51:a1:af:0c:24:14:0a:36:26:11:6f: a6:29:46:b7:22:f8:56:c2:2e:58:f1:da:02:82:7e: cd:48:5f:95:8f:27:ae:d8:27:22:bd:19:35:dc:90: 95:38:0e:7b:c2:23:b2:1c:a5:3c:d7:37:5b:d6:77: c6:af:2e:77:b6:b3:e0:27:b6:9c:65:7d:3b:11:b3: 75:ba:9b:ae:66:1b:bc:38:61:1c:2b:20:80:6b:f1: 77:d1:c8:24:ad:87:17:2e:59:98:ac:99:97:58:b2: 0e:dd:12:fa:64:56:1f:f1:e0:1e:33:67:e6:54:b8: d7:f9:7e:46:d6:cc:7e:85:39:82:ca:25:f7:fe:1f: fd:67:a8:25:76:cf:8f:f8:45:48:6c:e3:4b:81:43: 2c:f6:15:3c:8a:ff:22:73:a7:f6:1b:be:6d:cb:68: b3:a4:f3:d9:94:03:e9:ef:db:17:7f:d9:fd:ba:32: d0:25:b9:eb:65:af:32:ba:b6:23:5b:0b:66:78:f6: f8:05:ec:03:33:f7:5b:94:9f:40:c8:a8:ac:c8:84: 26:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:77:97:87:28:5D:5C:73:44:05:4D:20:20:65:07:06:DF:D4:6F:CD X509v3 Authority Key Identifier: keyid:A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.112.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:6f:fe:43:da:ba:29:78:c7:87:05:62:13:d0:44:3f:0a:b9: c8:2e:01:5a:6c:ae:0b:cd:6b:0c:d6:37:05:0d:02:03:3e:17: 04:49:99:d4:3d:32:b0:e1:64:8d:a1:78:76:ed:4d:4e:59:ba: 3a:41:3f:fc:b7:b8:10:d4:22:23:f9:6a:01:b9:c1:f9:56:56: e5:a5:5f:a1:01:1a:13:57:84:a7:79:3e:1e:f0:f9:6b:44:82: cb:cc:6e:12:38:be:e6:5c:a4:5b:3d:78:9e:9f:f8:f1:91:81: b6:4c:c3:e6:a9:75:b2:84:57:e7:14:c2:33:8f:ab:c7:63:61: 48:dd:3a:4b:ab:c5:3d:b1:7d:7c:29:37:0d:9f:ed:26:78:cb: 72:c2:fc:14:aa:1d:34:50:df:40:9b:d0:68:94:d3:a6:1e:12: 21:db:0a:6e:18:82:f6:30:f6:8b:9c:74:48:22:5d:3e:83:13: 79:41:0e:4c:bb:74:aa:1f:88:59:83:b1:1d:10:2a:54:9b:74: d1:49:60:7f:7b:a4:5c:f7:2f:01:9e:6e:06:17:be:65:3a:9c: 29:36:7b:ec:cd:cf:2f:85:8f:d3:be:d8:84:f7:db:39:a3:7d: 9f:b9:87:d9:a2:ca:67:03:c3:6d:d5:e8:9e:68:06:c0:2d:ca: 25:dd:90:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbH8gIqTkrySm5gJzHUZ5gjT95tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwRTlFMjFFRTkzMjdGMDU5MzBBRjlERDU4NDdBOThC Q0UyNkM2NjAeFw0yNTA1MjMwOTU2NTBaFw0yNjA1MjIxMDAxNTBaMDMxMTAvBgNV BAMTKEQzNzc5Nzg3Mjg1RDVDNzM0NDA1NEQyMDIwNjUwNzA2REZENDZGQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4hp/liGgjDbFvayI5Y7uQrSCp PylHRGf7Kt/1qN7BWmTJ3Ona7/Q5Jocf8eNINflRoa8MJBQKNiYRb6YpRrci+FbC Lljx2gKCfs1IX5WPJ67YJyK9GTXckJU4DnvCI7IcpTzXN1vWd8avLne2s+Antpxl fTsRs3W6m65mG7w4YRwrIIBr8XfRyCSthxcuWZismZdYsg7dEvpkVh/x4B4zZ+ZU uNf5fkbWzH6FOYLKJff+H/1nqCV2z4/4RUhs40uBQyz2FTyK/yJzp/Ybvm3LaLOk 89mUA+nv2xd/2f26MtAluetlrzK6tiNbC2Z49vgF7AMz91uUn0DIqKzIhCbJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU03eXhyhdXHNEBU0gIGUHBt/Ub80wHwYDVR0j BBgwFoAUoA6eIe6TJ/BZMK+d1YR6mLzibGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTk4ZjdmOC1lNzE1LTRiNzktYWYzMi0yZTUxNTQxYTM0ZmYvMC9BMDBFOUUyMUVF OTMyN0YwNTkzMEFGOURENTg0N0E5OEJDRTI2QzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwRTlFMjFFRTkzMjdGMDU5MzBBRjlERDU4NDdBOThCQ0Uy NkM2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExOThmN2Y4LWU3MTUtNGI3OS1h ZjMyLTJlNTE1NDFhMzRmZi8wLzMxMzAzMzJlMzEzNTM5MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn3AwDQYJ KoZIhvcNAQELBQADggEBAF5v/kPauil4x4cFYhPQRD8KucguAVpsrgvNawzWNwUN AgM+FwRJmdQ9MrDhZI2heHbtTU5ZujpBP/y3uBDUIiP5agG5wflWVuWlX6EBGhNX hKd5Ph7w+WtEgsvMbhI4vuZcpFs9eJ6f+PGRgbZMw+apdbKEV+cUwjOPq8djYUjd OkurxT2xfXwpNw2f7SZ4y3LC/BSqHTRQ30Cb0GiU06YeEiHbCm4YgvYw9oucdEgi XT6DE3lBDky7dKofiFmDsR0QKlSbdNFJYH97pFz3LwGebgYXvmU6nCk2e+zNzy+F j9O+2IT32zmjfZ+5h9miymcDw23V6J5oBsAtyiXdkEQ= -----END CERTIFICATE-----Generated at Sat Jun 7 04:26:09 2025 by rpki-client