$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39392e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: hccolhWeQwMhTE4DUNZtMqz3UE4I8axgnsLj/aGjWu0= Subject key identifier: CD:2F:0C:EF:8A:3B:6E:1F:3E:A5:51:11:29:C9:8A:75:B0:D9:79:91 Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 4C64D047204C11AC90D6CC9C679A694DF9C2BF4F Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa Signing time: Mon 02 Jun 2025 02:04:18 +0000 ROA not before: Mon 02 Jun 2025 01:59:18 +0000 ROA not after: Mon 01 Jun 2026 02:04:18 +0000 asID: 17538 IP address blocks: 103.151.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:64:d0:47:20:4c:11:ac:90:d6:cc:9c:67:9a:69:4d:f9:c2:bf:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jun 2 01:59:18 2025 GMT Not After : Jun 1 02:04:18 2026 GMT Subject: CN=CD2F0CEF8A3B6E1F3EA5511129C98A75B0D97991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0b:06:99:97:14:c5:c4:e4:ba:a1:9e:24:a1: 7c:ca:c5:ff:3a:95:03:84:83:3b:34:76:f6:81:be: 85:38:02:20:94:1d:24:ad:82:87:be:db:bd:70:f9: a7:b8:6d:87:a5:21:ae:07:5a:b2:bd:4d:d1:3a:ef: 59:af:07:5d:05:f1:4a:4f:a8:9b:79:eb:14:96:ad: 70:c2:42:b8:fc:ab:c3:c1:31:ed:75:f2:3f:44:a4: c5:73:6b:54:93:aa:1e:ef:fe:d8:54:a1:bd:06:c8: 09:55:ca:12:1d:46:53:a7:ec:8a:9d:e0:f4:d1:e9: 8e:e5:5c:5b:06:50:38:0e:47:df:42:bd:7f:4e:2b: c1:f9:49:a0:37:3b:01:ce:5d:fa:87:ae:a2:31:f1: 33:b1:a3:8c:5f:41:c5:7d:85:a4:b5:ac:56:ef:41: 83:0e:ca:a9:8a:b8:6f:d9:62:04:d6:ae:5e:c2:40: bb:d2:99:17:e7:ef:a8:e2:3d:d4:d5:6f:83:09:65: 1c:05:ce:19:9a:7d:28:10:84:e7:80:13:e0:f2:0a: 7f:e7:cb:c6:b0:52:e3:61:76:5e:73:de:a9:a3:e3: b3:be:91:77:49:ed:2c:6b:12:ef:9d:4c:06:22:cf: 2e:a7:5c:ce:ff:aa:bc:09:ae:69:79:83:ab:24:d4: 00:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2F:0C:EF:8A:3B:6E:1F:3E:A5:51:11:29:C9:8A:75:B0:D9:79:91 X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.99.0/24 Signature Algorithm: sha256WithRSAEncryption 28:ee:e3:f0:37:e7:23:74:d8:4c:86:7c:ce:e9:73:22:31:07: c4:b8:b2:f0:d0:a8:86:db:b6:f1:b5:63:18:21:0e:72:cb:99: cb:89:d3:e0:73:90:45:9d:3d:75:11:bd:d7:70:e0:32:e3:71: 83:17:41:38:f2:b9:06:68:d1:fa:ec:d4:b8:50:13:26:06:00: 25:32:c0:2e:f5:49:5d:46:9f:97:31:d7:68:66:a5:f2:c6:ac: e7:de:17:17:a5:ef:90:b1:93:5f:2d:ba:ed:79:b8:f2:81:eb: b4:15:6c:72:b0:81:53:28:75:f3:bc:40:c1:81:78:c4:36:43: 73:3d:d3:1a:2c:55:35:a6:9e:25:d3:87:73:a5:76:5a:aa:93: 0f:31:c3:53:d6:08:b9:32:c3:a9:ff:41:37:2a:28:d7:a8:5d: 9a:40:64:5f:29:73:a4:8c:e1:66:06:6a:cc:50:3d:5a:c9:7c: e8:ce:57:07:2a:d8:5b:a5:7c:d2:96:fe:ef:ad:58:15:2b:ba: 52:28:de:c1:75:f2:67:92:2b:37:ea:e6:23:5c:0b:4f:0b:fe: 6d:21:af:86:89:10:96:10:c7:d1:fb:b9:ba:9f:f3:94:70:99: a0:09:9a:3b:46:4f:91:9c:23:91:34:c3:29:63:00:a9:3a:a4: 3e:af:27:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTGTQRyBMEayQ1sycZ5ppTfnCv08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNTA2MDIwMTU5MThaFw0yNjA2MDEwMjA0MThaMDMxMTAvBgNV BAMTKENEMkYwQ0VGOEEzQjZFMUYzRUE1NTExMTI5Qzk4QTc1QjBEOTc5OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+CwaZlxTFxOS6oZ4koXzKxf86 lQOEgzs0dvaBvoU4AiCUHSStgoe+271w+ae4bYelIa4HWrK9TdE671mvB10F8UpP qJt56xSWrXDCQrj8q8PBMe118j9EpMVza1STqh7v/thUob0GyAlVyhIdRlOn7Iqd 4PTR6Y7lXFsGUDgOR99CvX9OK8H5SaA3OwHOXfqHrqIx8TOxo4xfQcV9haS1rFbv QYMOyqmKuG/ZYgTWrl7CQLvSmRfn76jiPdTVb4MJZRwFzhmafSgQhOeAE+DyCn/n y8awUuNhdl5z3qmj47O+kXdJ7SxrEu+dTAYizy6nXM7/qrwJrml5g6sk1AAfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzS8M74o7bh8+pVERKcmKdbDZeZEwHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYzANBgkqhkiG 9w0BAQsFAAOCAQEAKO7j8DfnI3TYTIZ8zulzIjEHxLiy8NCohtu28bVjGCEOcsuZ y4nT4HOQRZ09dRG913DgMuNxgxdBOPK5BmjR+uzUuFATJgYAJTLALvVJXUaflzHX aGal8sas594XF6XvkLGTXy267Xm48oHrtBVscrCBUyh187xAwYF4xDZDcz3TGixV NaaeJdOHc6V2WqqTDzHDU9YIuTLDqf9BNyoo16hdmkBkXylzpIzhZgZqzFA9Wsl8 6M5XByrYW6V80pb+761YFSu6UijewXXyZ5IrN+rmI1wLTwv+bSGvhokQlhDH0fu5 up/zlHCZoAmaO0ZPkZwjkTTDKWMAqTqkPq8nEQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:57 2025 by rpki-client