$ rpki-client -vvf repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/3130332e37372e3135382e302f32342d3234203d3e20313530393432.roa File: 3130332e37372e3135382e302f32342d3234203d3e20313530393432.roa (raw, json) Hash identifier: t8s5ystlDMfZCpSFPrSjj+O0ZGC5ZqPSgcrBHxoO7nw= Subject key identifier: F4:55:E2:8E:2A:3D:85:C2:76:AD:01:BB:90:74:BE:D5:D4:85:BA:B0 Certificate issuer: /CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Certificate serial: 6927B011F0F68F81063763C78AE7BD816834DD5A Authority key identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/3130332e37372e3135382e302f32342d3234203d3e20313530393432.roa Signing time: Tue 27 May 2025 07:08:18 +0000 ROA not before: Tue 27 May 2025 07:03:18 +0000 ROA not after: Tue 26 May 2026 07:08:18 +0000 asID: 150942 IP address blocks: 103.77.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:27:b0:11:f0:f6:8f:81:06:37:63:c7:8a:e7:bd:81:68:34:dd:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Validity Not Before: May 27 07:03:18 2025 GMT Not After : May 26 07:08:18 2026 GMT Subject: CN=F455E28E2A3D85C276AD01BB9074BED5D485BAB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:7c:6e:10:63:09:26:f1:08:2e:4f:7e:11: a2:f6:fc:3b:71:67:ed:88:bf:7c:e3:73:62:38:b2: 44:ad:31:60:67:b1:0e:98:87:95:ab:8f:d3:2f:60: 54:5d:7d:1a:72:26:31:ae:16:16:91:40:9d:c7:3a: 41:92:5c:9a:31:5a:71:dd:ff:55:3a:e0:da:09:a5: 03:5f:a5:eb:1b:23:8e:ce:de:48:f0:7c:57:d5:bf: a2:08:1f:71:3b:61:c6:34:39:29:6f:5a:94:cf:63: 62:98:8d:6e:8a:b4:39:8a:4f:64:12:ea:88:85:4f: d5:6a:85:ef:b0:fd:2d:4f:a3:4e:56:e8:1e:e5:04: 4f:1e:09:aa:38:dc:5c:78:98:35:65:06:47:cb:82: 93:a1:73:2d:c4:dc:8a:07:25:ea:16:3d:e3:3e:ba: b2:68:57:07:8c:a4:83:d9:66:2f:e9:25:a4:36:d1: c2:42:e5:f7:05:be:bc:a2:f3:91:f7:15:a4:e3:3b: 40:06:0d:af:ba:f4:65:46:77:0c:4b:69:3e:da:ae: e4:ce:c6:8c:96:91:6b:b9:df:23:3e:ff:ad:34:f6: ee:ec:f7:f0:c1:3d:de:a5:7b:8a:93:9b:e4:92:c7: 1b:77:a7:1f:de:f6:93:6e:04:af:84:3f:89:e3:57: 7f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:55:E2:8E:2A:3D:85:C2:76:AD:01:BB:90:74:BE:D5:D4:85:BA:B0 X509v3 Authority Key Identifier: keyid:0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/3130332e37372e3135382e302f32342d3234203d3e20313530393432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.158.0/24 Signature Algorithm: sha256WithRSAEncryption 73:3a:94:59:ab:c1:5a:44:ed:c0:6e:07:f5:99:4d:16:4f:1b: ac:dc:ff:3f:88:3b:f8:9d:18:99:1e:9e:df:7e:46:c8:20:ab: 84:29:b2:49:ed:12:80:e1:28:1c:c3:5e:9a:09:92:0d:91:0a: 19:15:7d:c6:1b:c6:33:6f:cc:8c:01:8f:8f:a7:18:a9:9c:c8: 9d:29:66:ea:53:7c:f1:26:0d:34:1e:33:f6:5c:10:62:8c:7b: 6d:5a:b9:40:26:db:04:25:24:d1:de:d9:bd:79:49:3d:d9:8c: a4:84:21:c3:6a:37:89:00:79:78:46:ff:74:78:1a:c6:9f:20: a3:7a:9c:25:8d:1c:46:fe:30:cb:98:2d:14:18:d7:51:8c:17: fe:d7:c4:1f:91:da:00:f4:76:c0:5d:b3:e0:e0:31:d2:70:9d: a0:7a:c9:97:58:f5:e0:b8:6b:a0:bf:88:55:da:64:30:f3:cb: 17:5e:73:e6:cf:20:93:0b:09:56:25:e6:54:9a:b7:1a:5b:bb: a0:10:de:46:92:9a:84:2d:f6:24:2f:8f:b2:7c:b0:eb:29:63: 66:64:63:dd:d6:af:72:9e:4c:cb:a2:c0:f6:c7:5d:92:6b:70: 80:9d:c9:6c:3b:ea:3b:ca:54:3d:78:a0:aa:c6:64:40:01:d4: a4:a5:45:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaSewEfD2j4EGN2PHiue9gWg03VowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5 Nzk3RUE2QzAeFw0yNTA1MjcwNzAzMThaFw0yNjA1MjYwNzA4MThaMDMxMTAvBgNV BAMTKEY0NTVFMjhFMkEzRDg1QzI3NkFEMDFCQjkwNzRCRUQ1RDQ4NUJBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30nxuEGMJJvEILk9+EaL2/Dtx Z+2Iv3zjc2I4skStMWBnsQ6Yh5Wrj9MvYFRdfRpyJjGuFhaRQJ3HOkGSXJoxWnHd /1U64NoJpQNfpesbI47O3kjwfFfVv6IIH3E7YcY0OSlvWpTPY2KYjW6KtDmKT2QS 6oiFT9Vqhe+w/S1Po05W6B7lBE8eCao43Fx4mDVlBkfLgpOhcy3E3IoHJeoWPeM+ urJoVweMpIPZZi/pJaQ20cJC5fcFvryi85H3FaTjO0AGDa+69GVGdwxLaT7aruTO xoyWkWu53yM+/6009u7s9/DBPd6le4qTm+SSxxt3px/e9pNuBK+EP4njV381AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9FXijio9hcJ2rQG7kHS+1dSFurAwHwYDVR0j BBgwFoAUDoY3wj/X/Rq/kbAl5IBAkJeX6mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzNmMjI4OC04OGNmLTRkMmItYmJhNi1hMDNkZDVmODM3NjEvMC8wRTg2MzdDMjNG RDdGRDFBQkY5MUIwMjVFNDgwNDA5MDk3OTdFQTZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5Nzk3 RUE2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjM2YyMjg4LTg4Y2YtNGQyYi1i YmE2LWEwM2RkNWY4Mzc2MS8wLzMxMzAzMzJlMzczNzJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ02eMA0GCSqG SIb3DQEBCwUAA4IBAQBzOpRZq8FaRO3Abgf1mU0WTxus3P8/iDv4nRiZHp7ffkbI IKuEKbJJ7RKA4Sgcw16aCZINkQoZFX3GG8Yzb8yMAY+PpxipnMidKWbqU3zxJg00 HjP2XBBijHttWrlAJtsEJSTR3tm9eUk92YykhCHDajeJAHl4Rv90eBrGnyCjepwl jRxG/jDLmC0UGNdRjBf+18QfkdoA9HbAXbPg4DHScJ2gesmXWPXguGugv4hV2mQw 88sXXnPmzyCTCwlWJeZUmrcaW7ugEN5GkpqELfYkL4+yfLDrKWNmZGPd1q9ynkzL osD2x12Sa3CAnclsO+o7ylQ9eKCqxmRAAdSkpUW4 -----END CERTIFICATE-----Generated at Sun Jun 8 09:14:50 2025 by rpki-client