$ rpki-client -vvf repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa File: 3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa (raw, json) Hash identifier: DTA7XaMvO6/yJH95Q2H4dcuyJyFkTQZvJ4qtwIMhRBo= Subject key identifier: 76:68:05:B6:80:CD:49:2E:9C:76:73:2B:CF:1F:2B:17:5A:35:18:16 Certificate issuer: /CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66 Certificate serial: 5BEC9DBF35823A0BBC1B66FB4B5BD7240EBBEA80 Authority key identifier: A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa Signing time: Fri 23 May 2025 10:01:50 +0000 ROA not before: Fri 23 May 2025 09:56:50 +0000 ROA not after: Fri 22 May 2026 10:01:50 +0000 asID: 141602 IP address blocks: 103.159.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.crl rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 21:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ec:9d:bf:35:82:3a:0b:bc:1b:66:fb:4b:5b:d7:24:0e:bb:ea:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66 Validity Not Before: May 23 09:56:50 2025 GMT Not After : May 22 10:01:50 2026 GMT Subject: CN=766805B680CD492E9C76732BCF1F2B175A351816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bf:dd:35:23:7a:ed:39:85:16:9a:00:20:bf: 33:d5:7a:0c:eb:70:ba:02:1c:84:b5:bc:aa:f4:70: 1f:32:dc:9d:6d:84:38:6e:5a:de:28:ad:01:f7:6d: 8e:2b:ee:c4:9f:0a:b6:01:db:bf:4e:01:42:0e:33: 16:41:27:11:43:56:92:8f:28:c9:2f:37:29:d9:78: a0:cb:b3:65:fa:cb:3c:e4:7a:ff:1e:68:d4:ff:e9: cc:03:5c:f8:3e:68:b3:4c:7a:dd:34:32:ba:33:f4: 9e:15:74:6e:6e:b2:29:66:85:a3:53:6f:33:0d:85: 05:1c:4e:34:99:c6:d2:9b:d0:8c:6f:81:29:66:a9: 5e:74:71:1d:1b:6b:d7:8d:ed:4c:a5:eb:bb:a1:15: ed:72:7c:75:ea:75:f7:6e:8b:b3:6e:00:3e:e9:55: b3:02:59:ea:ff:a5:97:ea:8e:bb:f7:46:48:c1:6e: 70:09:8c:55:d4:3d:1c:28:b5:8b:42:5a:aa:b6:a5: 93:36:90:63:e8:da:2a:2d:24:e3:36:fd:cb:a3:a9: 71:1e:68:59:81:35:10:95:83:8d:6a:57:e0:a7:23: 7a:6d:b5:6a:5e:34:1f:fb:4a:b6:5e:ea:fa:e5:28: c6:94:ef:86:29:10:14:16:b6:4f:e6:40:ba:e7:a4: fc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:68:05:B6:80:CD:49:2E:9C:76:73:2B:CF:1F:2B:17:5A:35:18:16 X509v3 Authority Key Identifier: keyid:A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131332e302f32342d3234203d3e20313431363032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.113.0/24 Signature Algorithm: sha256WithRSAEncryption a8:ca:7e:28:8f:86:5d:5f:4c:e4:b6:fa:85:4b:56:39:d2:cf: f6:b0:91:21:9c:c0:60:ab:25:5a:d4:23:37:b2:88:3a:5c:f2: 4d:7f:42:b8:15:a1:3d:d7:49:aa:5a:90:af:f5:5a:0b:5a:d0: c0:d4:e2:cc:77:b1:2a:cc:65:fc:b7:92:f7:cc:2a:37:23:36: 62:14:78:2a:3e:d8:37:fa:86:0b:7d:03:4e:58:b0:37:cc:7f: e9:20:38:70:19:e0:6d:a4:5f:86:f9:c6:a5:b2:ee:5e:00:67: e2:32:a4:bc:61:93:f5:a1:02:5d:f0:d6:d2:e1:33:70:77:87: a2:ef:ae:74:23:f9:1d:bb:b1:5c:07:3d:2d:8e:67:c6:dc:89: 60:61:1d:ac:6c:ff:0d:54:00:b1:16:57:07:af:a3:4d:33:c2: 2b:45:22:3a:d6:90:e5:dc:53:55:19:5e:1b:0b:0f:08:d5:d6: 7f:f3:51:b4:d6:48:db:37:92:53:39:3f:81:40:f1:5a:52:c1: 6a:64:19:9a:eb:99:76:31:c7:45:4a:ae:ea:b9:ef:66:c1:7d: 5a:33:3b:c7:bc:6a:a4:e2:26:c3:57:fd:7e:6e:88:30:bc:56: 43:7a:91:24:55:ee:7f:fa:72:0e:5f:59:9e:fa:75:e5:1b:c0: 03:d0:a7:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW+ydvzWCOgu8G2b7S1vXJA676oAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwRTlFMjFFRTkzMjdGMDU5MzBBRjlERDU4NDdBOThC Q0UyNkM2NjAeFw0yNTA1MjMwOTU2NTBaFw0yNjA1MjIxMDAxNTBaMDMxMTAvBgNV BAMTKDc2NjgwNUI2ODBDRDQ5MkU5Qzc2NzMyQkNGMUYyQjE3NUEzNTE4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdv901I3rtOYUWmgAgvzPVegzr cLoCHIS1vKr0cB8y3J1thDhuWt4orQH3bY4r7sSfCrYB279OAUIOMxZBJxFDVpKP KMkvNynZeKDLs2X6yzzkev8eaNT/6cwDXPg+aLNMet00Mroz9J4VdG5usilmhaNT bzMNhQUcTjSZxtKb0IxvgSlmqV50cR0ba9eN7Uyl67uhFe1yfHXqdfdui7NuAD7p VbMCWer/pZfqjrv3RkjBbnAJjFXUPRwotYtCWqq2pZM2kGPo2iotJOM2/cujqXEe aFmBNRCVg41qV+CnI3pttWpeNB/7SrZe6vrlKMaU74YpEBQWtk/mQLrnpPyFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdmgFtoDNSS6cdnMrzx8rF1o1GBYwHwYDVR0j BBgwFoAUoA6eIe6TJ/BZMK+d1YR6mLzibGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTk4ZjdmOC1lNzE1LTRiNzktYWYzMi0yZTUxNTQxYTM0ZmYvMC9BMDBFOUUyMUVF OTMyN0YwNTkzMEFGOURENTg0N0E5OEJDRTI2QzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwRTlFMjFFRTkzMjdGMDU5MzBBRjlERDU4NDdBOThCQ0Uy NkM2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExOThmN2Y4LWU3MTUtNGI3OS1h ZjMyLTJlNTE1NDFhMzRmZi8wLzMxMzAzMzJlMzEzNTM5MmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn3EwDQYJ KoZIhvcNAQELBQADggEBAKjKfiiPhl1fTOS2+oVLVjnSz/awkSGcwGCrJVrUIzey iDpc8k1/QrgVoT3XSapakK/1Wgta0MDU4sx3sSrMZfy3kvfMKjcjNmIUeCo+2Df6 hgt9A05YsDfMf+kgOHAZ4G2kX4b5xqWy7l4AZ+IypLxhk/WhAl3w1tLhM3B3h6Lv rnQj+R27sVwHPS2OZ8bciWBhHaxs/w1UALEWVwevo00zwitFIjrWkOXcU1UZXhsL DwjV1n/zUbTWSNs3klM5P4FA8VpSwWpkGZrrmXYxx0VKruq572bBfVozO8e8aqTi JsNX/X5uiDC8VkN6kSRV7n/6cg5fWZ76deUbwAPQp74= -----END CERTIFICATE-----Generated at Thu Jun 5 19:43:34 2025 by rpki-client