$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa File: 3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa (raw, json) Hash identifier: 1CN+jedfVpNb+gZQPhjGcg8dCw8FunfSINnOV1cGtHI= Subject key identifier: 0A:32:85:65:89:D0:40:A8:C6:D1:D8:AE:08:28:A1:DB:FE:22:C3:CA Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 5F54183312624FF14FFC04378CF8D553659B0A23 Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa Signing time: Mon 02 Jun 2025 02:04:18 +0000 ROA not before: Mon 02 Jun 2025 01:59:18 +0000 ROA not after: Mon 01 Jun 2026 02:04:18 +0000 asID: 136856 IP address blocks: 103.102.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:54:18:33:12:62:4f:f1:4f:fc:04:37:8c:f8:d5:53:65:9b:0a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jun 2 01:59:18 2025 GMT Not After : Jun 1 02:04:18 2026 GMT Subject: CN=0A32856589D040A8C6D1D8AE0828A1DBFE22C3CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:e0:bd:2a:a8:fc:b9:ce:f9:cc:85:a0:81: 51:fb:18:05:a8:42:3b:69:b4:93:ce:f0:7d:43:21: c7:a8:88:5a:8a:20:81:83:e4:f2:ca:38:08:78:c9: a3:f5:91:f3:a3:71:ac:e0:66:2e:c9:87:56:5c:4e: 94:c2:fc:91:c2:22:42:dc:7b:ec:73:30:cb:c0:db: 33:01:ac:5b:ae:68:8c:d3:3e:8f:2b:8b:fc:c8:f9: 5b:fa:2d:b8:44:f1:fb:83:f0:31:88:7e:85:c0:e3: e1:dd:eb:e2:24:bc:6d:bc:d5:c5:90:f9:f8:85:9e: 4a:c1:af:16:45:35:c1:81:0d:5a:01:f8:a3:7a:c3: bc:06:14:7f:bd:67:e3:b5:6c:16:d8:5f:68:02:8d: fd:df:11:14:e6:4a:8a:ad:28:ce:e5:7e:7d:53:c1: f3:24:00:e2:0e:20:5e:48:4a:67:65:ba:b5:0e:52: bf:05:fa:5c:0f:1c:56:88:9f:67:1f:20:48:bb:06: 42:80:87:d2:ba:2f:88:95:d6:b8:a2:ca:6b:11:48: da:cd:91:dd:b1:3f:2f:41:5a:46:ee:6f:4a:f8:6d: 71:9c:34:40:ec:c3:c0:59:73:71:5a:c0:39:6f:17: 59:7d:75:84:d0:5d:0f:c9:ad:86:43:e9:29:69:00: 0d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:32:85:65:89:D0:40:A8:C6:D1:D8:AE:08:28:A1:DB:FE:22:C3:CA X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32322d3232203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.112.0/22 Signature Algorithm: sha256WithRSAEncryption a5:26:c8:b7:3e:04:8d:9a:6e:84:21:d5:5c:02:91:50:66:b8: b6:99:a5:35:80:f3:ac:68:97:94:3a:be:d4:05:ea:1f:f3:f8: 01:26:3a:39:f5:d4:03:76:83:84:8c:69:1d:4d:79:c9:1a:a9: ce:e3:1f:02:df:c7:84:52:72:41:b2:cf:8c:aa:cb:86:65:58: 0a:4e:17:e3:91:fd:74:5b:da:ae:fd:6a:89:82:09:5a:59:17: 12:f3:18:3a:1e:86:84:99:bb:a2:97:91:4c:f7:27:cc:d6:61: ac:30:9c:d9:bd:ee:f7:1e:24:ef:11:fb:71:a8:22:73:87:37: f7:6e:23:c6:9b:3f:32:e9:99:97:dc:cc:5a:b9:4f:17:52:af: 77:00:87:03:3d:ed:2b:7e:2c:f7:7e:48:2e:63:90:15:6d:96: 4d:98:0c:81:2a:d9:a4:ba:73:07:1f:d8:0b:0b:60:f4:72:89: 76:03:5b:6a:42:09:47:ff:18:e2:82:e2:c6:c4:56:77:56:14: 22:80:cd:e3:3e:97:b4:db:82:77:6b:15:e3:84:6b:43:71:b5: 63:11:67:7c:32:e2:8a:b9:e2:4e:36:be:aa:34:d7:78:27:f0: 9d:e6:38:c0:f6:12:0e:40:18:2a:11:0d:1b:44:d9:a9:d2:67: 32:d2:81:3e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX1QYMxJiT/FP/AQ3jPjVU2WbCiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yNTA2MDIwMTU5MThaFw0yNjA2MDEwMjA0MThaMDMxMTAvBgNV BAMTKDBBMzI4NTY1ODlEMDQwQThDNkQxRDhBRTA4MjhBMURCRkUyMkMzQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2BeC9Kqj8uc75zIWggVH7GAWo QjtptJPO8H1DIceoiFqKIIGD5PLKOAh4yaP1kfOjcazgZi7Jh1ZcTpTC/JHCIkLc e+xzMMvA2zMBrFuuaIzTPo8ri/zI+Vv6LbhE8fuD8DGIfoXA4+Hd6+IkvG281cWQ +fiFnkrBrxZFNcGBDVoB+KN6w7wGFH+9Z+O1bBbYX2gCjf3fERTmSoqtKM7lfn1T wfMkAOIOIF5ISmdlurUOUr8F+lwPHFaIn2cfIEi7BkKAh9K6L4iV1riiymsRSNrN kd2xPy9BWkbub0r4bXGcNEDsw8BZc3FawDlvF1l9dYTQXQ/JrYZD6SlpAA0DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCjKFZYnQQKjG0diuCCih2/4iw8owHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZnAwDQYJ KoZIhvcNAQELBQADggEBAKUmyLc+BI2aboQh1VwCkVBmuLaZpTWA86xol5Q6vtQF 6h/z+AEmOjn11AN2g4SMaR1Neckaqc7jHwLfx4RSckGyz4yqy4ZlWApOF+OR/XRb 2q79aomCCVpZFxLzGDoehoSZu6KXkUz3J8zWYawwnNm97vceJO8R+3GoInOHN/du I8abPzLpmZfczFq5TxdSr3cAhwM97St+LPd+SC5jkBVtlk2YDIEq2aS6cwcf2AsL YPRyiXYDW2pCCUf/GOKC4sbEVndWFCKAzeM+l7TbgndrFeOEa0NxtWMRZ3wy4oq5 4k42vqo013gn8J3mOMD2Eg5AGCoRDRtE2anSZzLSgT4= -----END CERTIFICATE-----Generated at Sun Jun 8 02:37:49 2025 by rpki-client