$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa File: 3130332e35362e3134382e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: XTrAUzINtImcd3F+XaTVo5H750rmDxdeBt+LpGOrxS4= Subject key identifier: D1:48:9E:36:0D:67:10:11:DC:35:8D:86:B5:35:AF:D6:B7:99:17:63 Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 2C34A6C92877EE6127FB30C55C8254D8B10D81F8 Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa Signing time: Mon 02 Jun 2025 01:02:48 +0000 ROA not before: Mon 02 Jun 2025 00:57:48 +0000 ROA not after: Mon 01 Jun 2026 01:02:48 +0000 asID: 55688 IP address blocks: 103.56.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:34:a6:c9:28:77:ee:61:27:fb:30:c5:5c:82:54:d8:b1:0d:81:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jun 2 00:57:48 2025 GMT Not After : Jun 1 01:02:48 2026 GMT Subject: CN=D1489E360D671011DC358D86B535AFD6B7991763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0f:f9:80:97:11:cc:ff:25:d0:48:be:28:ec: 88:ca:4c:c4:54:ac:96:43:d6:57:11:86:1b:3a:41: e6:ca:d0:ff:c5:1c:51:eb:c0:72:56:2c:e3:b3:d6: 20:c2:31:7d:f2:9a:bd:8d:2d:6c:36:d4:1f:4c:26: 94:33:21:af:c9:d9:b7:c8:c2:58:f7:39:81:a8:0f: f7:ee:96:0d:4d:9a:86:35:c2:82:34:f8:2d:bf:cc: 44:06:e9:3c:8d:69:63:c2:ab:87:06:49:f7:0d:90: 01:4d:a7:d4:e2:c3:fc:bc:c2:5b:67:69:7e:8d:71: 37:72:30:9a:0a:8a:93:e5:e5:8e:da:99:e0:8c:67: da:03:53:54:50:a4:06:0c:e8:46:a3:1d:8f:70:aa: a1:ba:84:e0:8d:07:ec:46:af:c4:01:a8:75:c9:c9: 54:bb:6a:e3:11:86:3d:98:69:b9:0a:5e:68:f1:c5: 5a:85:85:8a:84:4e:c1:b7:59:75:a5:e2:43:a9:fd: 5a:ee:61:4c:a1:ff:e3:8b:b6:03:1f:68:65:43:bc: 6b:c0:97:39:4d:7d:f8:e1:2e:58:11:f7:7a:9b:de: 9e:b8:92:5b:75:76:1f:13:84:19:99:3e:b5:a3:c5: 05:b0:98:6f:7d:e0:55:f4:48:ec:b5:5e:5d:88:fd: 3f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:48:9E:36:0D:67:10:11:DC:35:8D:86:B5:35:AF:D6:B7:99:17:63 X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.148.0/23 Signature Algorithm: sha256WithRSAEncryption 36:3a:fd:18:4f:2e:7c:fe:e0:4b:80:cf:29:95:e1:b4:2e:fe: 32:12:fd:27:96:f5:d0:11:1f:49:98:eb:16:82:99:10:86:39: 06:e8:d3:14:df:64:c7:63:da:52:bf:fe:94:c2:29:c0:b6:1e: d7:d4:ae:64:41:72:51:46:15:12:14:fe:ec:a9:3b:b4:56:21: bf:02:9a:94:dc:d0:a1:9d:82:34:18:c8:9d:39:df:05:52:4e: 6e:3b:e8:3b:7c:ae:69:11:34:ac:f1:61:15:be:6d:b2:9f:96: 79:72:54:e8:d6:04:d7:64:9c:2e:b1:61:dc:64:c9:dd:cf:21: 0a:3a:b1:d9:b1:36:21:6a:40:a2:c2:03:aa:42:93:61:a3:ce: 28:f5:e9:7b:cc:1a:79:24:b6:39:fe:fe:46:4b:86:a3:f0:57: 23:b9:cb:1e:a7:43:2d:61:12:dd:36:95:d8:d1:c3:ae:24:17: d7:8b:ad:a6:68:2c:0e:43:3d:51:6d:e5:3e:2a:0d:60:32:d3: 33:c0:cf:ac:46:c4:a3:a8:e1:e0:32:1b:a1:67:8a:6f:8f:d2: 17:97:dd:86:7f:46:e2:05:c2:5b:a0:df:22:30:f9:91:cf:5f: 9b:5b:72:a2:6f:85:3b:92:ea:e3:f7:b5:3f:0a:e7:9a:59:a8: 7d:1f:dc:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULDSmySh37mEn+zDFXIJU2LENgfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNTA2MDIwMDU3NDhaFw0yNjA2MDEwMTAyNDhaMDMxMTAvBgNV BAMTKEQxNDg5RTM2MEQ2NzEwMTFEQzM1OEQ4NkI1MzVBRkQ2Qjc5OTE3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaD/mAlxHM/yXQSL4o7IjKTMRU rJZD1lcRhhs6QebK0P/FHFHrwHJWLOOz1iDCMX3ymr2NLWw21B9MJpQzIa/J2bfI wlj3OYGoD/fulg1NmoY1woI0+C2/zEQG6TyNaWPCq4cGSfcNkAFNp9Tiw/y8wltn aX6NcTdyMJoKipPl5Y7ameCMZ9oDU1RQpAYM6EajHY9wqqG6hOCNB+xGr8QBqHXJ yVS7auMRhj2YabkKXmjxxVqFhYqETsG3WXWl4kOp/VruYUyh/+OLtgMfaGVDvGvA lzlNffjhLlgR93qb3p64klt1dh8ThBmZPrWjxQWwmG994FX0SOy1Xl2I/T8nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0UieNg1nEBHcNY2GtTWv1reZF2MwHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3NThjODBlLWEzMjgtNGY4Yy1h MDNmLTkxYzNjMjYyMTRhMi8wLzMxMzAzMzJlMzUzNjJlMzEzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc4lDANBgkqhkiG 9w0BAQsFAAOCAQEANjr9GE8ufP7gS4DPKZXhtC7+MhL9J5b10BEfSZjrFoKZEIY5 BujTFN9kx2PaUr/+lMIpwLYe19SuZEFyUUYVEhT+7Kk7tFYhvwKalNzQoZ2CNBjI nTnfBVJObjvoO3yuaRE0rPFhFb5tsp+WeXJU6NYE12ScLrFh3GTJ3c8hCjqx2bE2 IWpAosIDqkKTYaPOKPXpe8waeSS2Of7+RkuGo/BXI7nLHqdDLWES3TaV2NHDriQX 14utpmgsDkM9UW3lPioNYDLTM8DPrEbEo6jh4DIboWeKb4/SF5fdhn9G4gXCW6Df IjD5kc9fm1tyom+FO5Lq4/e1PwrnmlmofR/cmg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:23 2025 by rpki-client