$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39382e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: LZPQ7rMeaDVcHWLsKLTFoADUeRBC0AnGmqL6VPS4zMA= Subject key identifier: 54:94:2E:E2:DC:11:65:04:BF:C5:EA:BF:99:88:92:4C:FE:A8:A9:63 Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 0F86D198EC1A6C979C8A8E00A01E4A59C9072A52 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa Signing time: Mon 02 Jun 2025 02:04:18 +0000 ROA not before: Mon 02 Jun 2025 01:59:18 +0000 ROA not after: Mon 01 Jun 2026 02:04:18 +0000 asID: 17538 IP address blocks: 103.151.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:86:d1:98:ec:1a:6c:97:9c:8a:8e:00:a0:1e:4a:59:c9:07:2a:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jun 2 01:59:18 2025 GMT Not After : Jun 1 02:04:18 2026 GMT Subject: CN=54942EE2DC116504BFC5EABF9988924CFEA8A963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:61:f0:ea:2e:42:6b:c7:69:6b:58:b3:a8:51: f9:ca:25:88:25:b2:d5:10:6f:c4:1c:57:3f:d9:4d: f6:74:8f:46:c5:72:0d:0d:b5:97:4b:eb:c2:e1:21: 70:a7:67:3c:40:63:46:82:03:04:9d:36:c0:1a:35: d0:83:d9:c4:fe:f4:b8:f4:92:92:e1:92:5e:86:ff: 9e:9b:dd:78:04:61:6f:c0:ef:cd:d5:34:f2:82:c0: ec:a5:73:c8:d2:31:92:1f:49:72:7f:4e:fe:c1:14: e9:31:22:0b:b2:aa:7e:13:29:25:de:f1:71:4a:31: 60:95:0f:d1:63:74:93:83:6c:ea:11:6e:c3:29:e0: ec:e3:e7:f4:1e:74:3b:53:07:4f:06:56:63:a5:41: 90:c6:00:39:10:98:e5:eb:36:90:fa:89:71:44:7d: 26:73:9f:c1:95:81:09:50:a3:c0:87:df:48:62:94: f9:d1:9b:38:39:c2:25:a3:13:c0:b7:01:77:db:fd: 54:68:0f:80:77:47:f9:7e:86:2b:63:15:57:27:e3: 0e:39:ce:ba:00:2d:94:fd:c7:f3:b5:aa:fc:11:77: 6d:64:b6:44:7e:65:39:57:80:97:71:b6:08:7a:85: 70:24:49:f9:31:3a:71:af:69:8f:d3:75:7b:2f:65: 0d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:94:2E:E2:DC:11:65:04:BF:C5:EA:BF:99:88:92:4C:FE:A8:A9:63 X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.98.0/24 Signature Algorithm: sha256WithRSAEncryption 87:48:de:51:c6:48:49:3a:76:ae:bf:8f:99:53:5f:46:46:bc: b3:b9:09:2f:20:c9:b7:99:7c:6c:f0:b5:84:d5:70:49:87:78: 9b:3d:0f:4c:df:84:dc:e0:28:c1:34:cb:e5:40:dd:db:bd:97: 8f:db:2c:8d:fc:a4:50:42:91:ee:9a:96:51:8b:01:7e:56:9d: cf:ba:92:ac:4d:32:e1:ee:ed:fe:4c:48:8e:a1:7c:7d:6c:5f: 0e:c5:08:cc:60:66:1f:4f:1a:ad:19:45:82:00:e9:8c:2c:79: 44:b7:ea:e1:63:7d:48:74:1b:74:40:4e:eb:47:aa:8b:a5:0d: 22:75:63:83:8e:1b:71:3b:5c:1d:73:1b:eb:17:77:fd:7b:85: 28:a7:55:23:d8:8e:c3:a1:e2:2b:b1:61:4c:66:27:89:cd:3c: 9c:5c:b6:4f:d2:08:c6:6d:c1:50:7e:dd:85:2c:2e:2f:fc:1b: 3f:1e:08:d1:76:f7:a7:3d:bf:8f:0f:15:36:a9:b6:db:d3:33: 8f:f3:48:a3:ba:f0:12:0c:61:0e:75:83:b8:34:83:d2:bd:27: 62:5a:c6:51:f8:00:67:15:4f:1e:69:c9:27:95:a3:e7:fa:5f: d1:66:bb:fa:d6:cd:c0:f5:f3:b9:39:0b:47:2a:b4:d9:9c:d3: 4c:88:15:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD4bRmOwabJecio4AoB5KWckHKlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNTA2MDIwMTU5MThaFw0yNjA2MDEwMjA0MThaMDMxMTAvBgNV BAMTKDU0OTQyRUUyREMxMTY1MDRCRkM1RUFCRjk5ODg5MjRDRkVBOEE5NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXYfDqLkJrx2lrWLOoUfnKJYgl stUQb8QcVz/ZTfZ0j0bFcg0NtZdL68LhIXCnZzxAY0aCAwSdNsAaNdCD2cT+9Lj0 kpLhkl6G/56b3XgEYW/A783VNPKCwOylc8jSMZIfSXJ/Tv7BFOkxIguyqn4TKSXe 8XFKMWCVD9FjdJODbOoRbsMp4Ozj5/QedDtTB08GVmOlQZDGADkQmOXrNpD6iXFE fSZzn8GVgQlQo8CH30hilPnRmzg5wiWjE8C3AXfb/VRoD4B3R/l+hitjFVcn4w45 zroALZT9x/O1qvwRd21ktkR+ZTlXgJdxtgh6hXAkSfkxOnGvaY/TdXsvZQ3nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVJQu4twRZQS/xeq/mYiSTP6oqWMwHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYjANBgkqhkiG 9w0BAQsFAAOCAQEAh0jeUcZISTp2rr+PmVNfRka8s7kJLyDJt5l8bPC1hNVwSYd4 mz0PTN+E3OAowTTL5UDd272Xj9ssjfykUEKR7pqWUYsBfladz7qSrE0y4e7t/kxI jqF8fWxfDsUIzGBmH08arRlFggDpjCx5RLfq4WN9SHQbdEBO60eqi6UNInVjg44b cTtcHXMb6xd3/XuFKKdVI9iOw6HiK7FhTGYnic08nFy2T9IIxm3BUH7dhSwuL/wb Px4I0Xb3pz2/jw8VNqm229Mzj/NIo7rwEgxhDnWDuDSD0r0nYlrGUfgAZxVPHmnJ J5Wj5/pf0Wa7+tbNwPXzuTkLRyq02ZzTTIgVlw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:55 2025 by rpki-client