$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa File: 3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa (raw, json) Hash identifier: J6vL2iPNUwb9fYjqqj1vv1gpk3+iSC5RPrrqhYMFLI8= Subject key identifier: 2D:1D:95:E6:85:17:C2:F2:B0:3A:C9:E5:66:84:A5:A7:B7:73:10:BD Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 036AB313BA03A4202050641C3D96D0D037A69AE1 Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa Signing time: Thu 29 May 2025 05:00:00 +0000 ROA not before: Thu 29 May 2025 04:55:00 +0000 ROA not after: Thu 28 May 2026 05:00:00 +0000 asID: 151519 IP address blocks: 103.239.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6a:b3:13:ba:03:a4:20:20:50:64:1c:3d:96:d0:d0:37:a6:9a:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: May 29 04:55:00 2025 GMT Not After : May 28 05:00:00 2026 GMT Subject: CN=2D1D95E68517C2F2B03AC9E56684A5A7B77310BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:65:15:f9:d4:8c:8b:f9:b0:2c:94:5d:91:76: a2:d9:bf:29:99:e1:6c:94:5f:c1:75:62:3e:8f:3c: ae:7b:10:3b:29:f7:78:88:31:44:62:82:fc:fd:84: b6:41:fe:a0:de:dc:fb:f7:3e:36:2d:a5:83:ae:85: ec:cd:6e:d1:79:c4:9f:a7:8f:ee:cc:ec:77:61:0a: db:51:6e:91:ec:59:49:00:d5:a8:d2:d5:7e:f5:d3: 2f:8c:9e:df:19:7e:f9:d5:64:03:30:e4:ac:e6:eb: ca:b0:ad:11:03:5b:b4:80:0f:2a:ee:1b:c9:4c:ab: 07:2f:6a:26:31:fd:d3:bd:ba:30:f5:e8:e0:1c:35: 3d:4f:4a:4c:fc:da:b0:d1:2a:82:ab:e1:a1:56:7b: 32:c2:4d:dc:1e:13:c5:f1:50:14:35:bb:f1:7b:6f: 47:a1:46:64:3e:40:e9:0d:66:c2:f2:3b:9d:4a:c2: dc:07:6b:ad:73:64:8a:39:e9:1b:ef:e5:ad:0e:c6: 42:b5:e1:b5:d8:a4:8d:f8:9a:77:6d:63:96:93:49: f5:75:34:16:77:6a:0a:3e:e4:d4:99:39:01:db:52: 40:ce:a8:25:41:06:79:3a:dc:01:30:d0:74:f8:74: 64:f0:ec:49:33:15:98:f2:46:ba:e8:03:f7:56:ce: 6e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1D:95:E6:85:17:C2:F2:B0:3A:C9:E5:66:84:A5:A7:B7:73:10:BD X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 42:f2:42:8a:af:c3:62:63:b6:89:2b:a8:9b:60:02:72:fc:01: 75:3f:13:10:56:43:f7:01:1c:ab:e6:67:cb:f3:64:20:d6:17: ae:5e:c3:94:95:74:66:eb:e8:85:09:3b:3f:13:c7:fb:e2:5c: 62:16:fa:08:ae:48:81:17:3f:fa:4d:eb:c6:e4:06:24:a5:e9: 34:0e:f5:43:cf:c6:08:e3:a5:2f:94:ae:81:b8:43:89:9c:8f: 93:0c:ea:54:bf:df:b3:38:57:9c:33:fb:cf:42:de:f1:e6:a1: 38:e5:be:52:70:19:d7:d5:02:17:1b:bc:5b:38:5a:d9:dc:f2: de:e1:5f:d4:50:3a:0e:b7:58:0a:29:82:e2:c0:05:c0:52:31: 66:ac:e9:24:fe:e3:35:78:df:8d:30:41:91:3b:6e:2e:fd:bd: 28:11:ce:ab:60:65:f4:7b:c8:72:67:16:40:ff:3b:7e:4f:69: 10:14:03:03:6f:c6:06:f6:95:36:b8:e5:83:ac:9e:5d:6d:cb: 18:98:16:8e:a7:b6:05:b0:b0:98:c4:c0:60:b3:57:1c:4f:a6: af:0b:e1:e5:2d:8a:2d:f7:ee:20:0c:c9:bb:0a:9a:4a:fc:7f: 1e:49:bc:58:cc:3e:8b:d7:b0:a2:16:ed:6d:8c:d1:1c:a4:ed: e5:36:54:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA2qzE7oDpCAgUGQcPZbQ0DemmuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yNTA1MjkwNDU1MDBaFw0yNjA1MjgwNTAwMDBaMDMxMTAvBgNV BAMTKDJEMUQ5NUU2ODUxN0MyRjJCMDNBQzlFNTY2ODRBNUE3Qjc3MzEwQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbZRX51IyL+bAslF2RdqLZvymZ 4WyUX8F1Yj6PPK57EDsp93iIMURigvz9hLZB/qDe3Pv3PjYtpYOuhezNbtF5xJ+n j+7M7HdhCttRbpHsWUkA1ajS1X710y+Mnt8ZfvnVZAMw5Kzm68qwrREDW7SADyru G8lMqwcvaiYx/dO9ujD16OAcNT1PSkz82rDRKoKr4aFWezLCTdweE8XxUBQ1u/F7 b0ehRmQ+QOkNZsLyO51KwtwHa61zZIo56Rvv5a0OxkK14bXYpI34mndtY5aTSfV1 NBZ3ago+5NSZOQHbUkDOqCVBBnk63AEw0HT4dGTw7EkzFZjyRrroA/dWzm4JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULR2V5oUXwvKwOsnlZoSlp7dzEL0wHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+8UMA0GCSqG SIb3DQEBCwUAA4IBAQBC8kKKr8NiY7aJK6ibYAJy/AF1PxMQVkP3ARyr5mfL82Qg 1heuXsOUlXRm6+iFCTs/E8f74lxiFvoIrkiBFz/6TevG5AYkpek0DvVDz8YI46Uv lK6BuEOJnI+TDOpUv9+zOFecM/vPQt7x5qE45b5ScBnX1QIXG7xbOFrZ3PLe4V/U UDoOt1gKKYLiwAXAUjFmrOkk/uM1eN+NMEGRO24u/b0oEc6rYGX0e8hyZxZA/zt+ T2kQFAMDb8YG9pU2uOWDrJ5dbcsYmBaOp7YFsLCYxMBgs1ccT6avC+HlLYot9+4g DMm7CppK/H8eSbxYzD6L17CiFu1tjNEcpO3lNlSc -----END CERTIFICATE-----Generated at Sat Jun 7 14:02:59 2025 by rpki-client