$ rpki-client -vvf repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa File: 3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa (raw, json) Hash identifier: ztOieajHr1k+CIYjNgErkUbe6vEvP2EXx+nQ8S+WL90= Subject key identifier: C6:18:84:7B:EB:32:08:0B:C3:BB:32:D9:C8:15:B7:E4:2A:7C:DD:C2 Certificate issuer: /CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8 Certificate serial: 0C4214D0859EBBBFEF0FC2C12F067CEF2DD4218F Authority key identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa Signing time: Tue 27 May 2025 10:00:37 +0000 ROA not before: Tue 27 May 2025 09:55:37 +0000 ROA not after: Tue 26 May 2026 10:00:37 +0000 asID: 149967 IP address blocks: 103.21.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.crl rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 21:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:42:14:d0:85:9e:bb:bf:ef:0f:c2:c1:2f:06:7c:ef:2d:d4:21:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8 Validity Not Before: May 27 09:55:37 2025 GMT Not After : May 26 10:00:37 2026 GMT Subject: CN=C618847BEB32080BC3BB32D9C815B7E42A7CDDC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a8:b9:d0:96:73:17:35:29:17:1e:a3:23:e4: 6c:2c:c3:bf:83:4f:eb:4d:bc:ce:5f:64:4b:b9:d0: 9d:c5:57:62:0b:1e:c2:6d:c9:f4:50:70:98:bb:c1: 2a:99:34:65:d7:1f:7d:5d:ac:22:73:cf:45:af:0e: 80:a5:ca:57:cd:60:87:a7:fc:04:66:ff:d5:32:80: 0f:14:52:fb:5d:f4:04:ad:bb:f9:7d:6c:83:7d:b7: 7e:a6:3c:82:00:30:35:74:92:5e:5c:69:04:4f:05: 89:7d:6e:da:2f:f7:2e:66:44:bb:e6:de:fb:58:5e: 8c:87:6f:a0:ed:53:cc:07:18:3b:82:d9:c9:7a:2d: 07:31:96:7f:db:a3:44:ad:4d:bf:21:30:dc:40:72: cc:66:34:d3:c7:c0:21:c5:05:ad:e7:60:d2:bc:fe: bc:84:4d:c8:60:d4:b7:d9:22:f4:08:96:72:4c:d8: d7:c1:b4:fc:3d:ae:8e:2a:0f:ac:a3:18:0f:00:9e: 42:08:a5:3c:30:72:06:58:9c:39:5c:ff:d7:eb:c8: c6:cf:46:bf:5f:43:57:50:50:4c:75:37:81:a4:f1: bf:77:e1:27:a7:e7:3a:e5:f7:de:51:8d:ba:61:9d: b7:b8:98:96:5d:bc:b0:a4:b4:46:b6:e9:69:ef:67: f8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:18:84:7B:EB:32:08:0B:C3:BB:32:D9:C8:15:B7:E4:2A:7C:DD:C2 X509v3 Authority Key Identifier: keyid:E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.195.0/24 Signature Algorithm: sha256WithRSAEncryption 86:ca:c7:4a:52:70:01:c3:b1:81:8f:24:bb:9e:28:ea:11:98: e5:96:19:4c:34:e0:d4:01:14:92:92:98:c9:f7:01:13:b9:7a: 7d:3c:d7:9a:68:27:95:85:32:5b:12:00:c1:be:25:11:d5:78: 76:94:3c:4d:34:a2:83:d0:37:27:1c:6d:a0:25:4c:85:66:b9: b7:53:91:ce:d4:22:31:58:89:c6:5c:c6:92:df:ce:11:b7:32: 06:3a:8f:74:1c:6a:09:d8:d4:38:46:7d:be:39:c7:22:30:10: 2f:3d:e0:69:d8:52:0e:25:05:1c:b0:4d:60:be:be:94:83:a7: e7:b1:78:f7:98:ef:ab:9c:52:28:39:d7:c6:ed:57:6c:70:b5: 97:43:0c:18:42:29:d0:88:9c:2a:49:91:53:64:57:e5:84:00: 77:5c:2b:7c:d3:1c:02:0a:8d:08:55:75:6d:91:38:47:17:df: 51:e0:d8:6d:a0:86:a7:12:c9:47:d0:d0:40:11:47:2a:84:b2: 5f:d3:66:59:11:41:f2:d6:5e:6b:b2:19:e7:64:c5:a4:04:15: d8:10:f1:28:ae:0c:b4:26:69:aa:1b:07:e3:a4:19:ad:05:38: f4:2f:9f:be:8e:2a:c8:d9:b9:df:bf:b1:40:9a:14:59:9e:a3: 24:20:a5:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDEIU0IWeu7/vD8LBLwZ87y3UIY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM1RDQ0MzM4RTU5MzdCNEFFMjY5REREQ0RBNDBBMjhG ODdGM0VDODAeFw0yNTA1MjcwOTU1MzdaFw0yNjA1MjYxMDAwMzdaMDMxMTAvBgNV BAMTKEM2MTg4NDdCRUIzMjA4MEJDM0JCMzJEOUM4MTVCN0U0MkE3Q0REQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqLnQlnMXNSkXHqMj5Gwsw7+D T+tNvM5fZEu50J3FV2ILHsJtyfRQcJi7wSqZNGXXH31drCJzz0WvDoClylfNYIen /ARm/9UygA8UUvtd9AStu/l9bIN9t36mPIIAMDV0kl5caQRPBYl9btov9y5mRLvm 3vtYXoyHb6DtU8wHGDuC2cl6LQcxln/bo0StTb8hMNxAcsxmNNPHwCHFBa3nYNK8 /ryETchg1LfZIvQIlnJM2NfBtPw9ro4qD6yjGA8AnkIIpTwwcgZYnDlc/9fryMbP Rr9fQ1dQUEx1N4Gk8b934Sen5zrl995Rjbphnbe4mJZdvLCktEa26WnvZ/hnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxhiEe+syCAvDuzLZyBW35Cp83cIwHwYDVR0j BBgwFoAU411EM45ZN7SuJp3dzaQKKPh/PsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjgzYjI3Yy1hNzMwLTQwMDItOTFiOC1kMDM2NmRmYWM3N2UvMC9FMzVENDQzMzhF NTkzN0I0QUUyNjlERERDREE0MEEyOEY4N0YzRUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM1RDQ0MzM4RTU5MzdCNEFFMjY5REREQ0RBNDBBMjhGODdG M0VDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODNiMjdjLWE3MzAtNDAwMi05 MWI4LWQwMzY2ZGZhYzc3ZS8wLzMxMzAzMzJlMzIzMTJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXDMA0GCSqG SIb3DQEBCwUAA4IBAQCGysdKUnABw7GBjyS7nijqEZjllhlMNODUARSSkpjJ9wET uXp9PNeaaCeVhTJbEgDBviUR1Xh2lDxNNKKD0DcnHG2gJUyFZrm3U5HO1CIxWInG XMaS384RtzIGOo90HGoJ2NQ4Rn2+OcciMBAvPeBp2FIOJQUcsE1gvr6Ug6fnsXj3 mO+rnFIoOdfG7VdscLWXQwwYQinQiJwqSZFTZFflhAB3XCt80xwCCo0IVXVtkThH F99R4NhtoIanEslH0NBAEUcqhLJf02ZZEUHy1l5rshnnZMWkBBXYEPEorgy0Jmmq GwfjpBmtBTj0L5++jirI2bnfv7FAmhRZnqMkIKWB -----END CERTIFICATE-----Generated at Sun Jun 8 03:46:13 2025 by rpki-client