$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa File: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: 2TjUbAwclmvFhuQfA5b8APF/xfL7qfTm8NzkksHu4ng= Subject key identifier: E3:11:37:63:2A:9E:77:7A:92:0D:39:47:DC:A7:E3:F6:2B:FE:52:73 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 3BA85CE556F7EFCA8446A37996C09138104ED7D7 Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa Signing time: Wed 21 May 2025 06:00:01 +0000 ROA not before: Wed 21 May 2025 05:55:01 +0000 ROA not after: Wed 20 May 2026 06:00:01 +0000 asID: 131111 IP address blocks: 103.160.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 21:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a8:5c:e5:56:f7:ef:ca:84:46:a3:79:96:c0:91:38:10:4e:d7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: May 21 05:55:01 2025 GMT Not After : May 20 06:00:01 2026 GMT Subject: CN=E31137632A9E777A920D3947DCA7E3F62BFE5273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:13:58:e2:64:e2:cc:20:06:47:15:b0:06: cb:b6:45:c9:3e:2c:1b:fe:fd:b4:f4:4f:47:85:c1: 17:11:f1:82:98:af:68:72:2a:23:49:20:f1:17:78: 75:84:5e:7b:49:b0:73:8c:54:5a:73:45:de:2d:eb: df:8c:3c:d3:36:dc:7d:a7:b1:3b:3d:e8:e4:6a:7d: 51:6e:3f:ed:b8:f7:4f:7b:af:10:64:04:5e:8d:00: 12:e0:da:ec:37:23:b2:cb:50:7b:a4:12:ac:83:03: 4c:a9:78:d5:2a:77:1c:08:87:a9:54:84:7c:1b:9e: 4b:df:3d:22:5d:cc:ee:10:9f:98:57:59:87:b3:a4: d8:e7:b9:7e:b1:9a:37:b3:05:f9:ac:04:a9:3c:1e: 48:da:cf:ae:28:4d:5c:d5:db:f1:7e:d3:f3:53:a7: 24:84:e6:dc:83:c4:8e:90:41:d4:fd:06:a8:7a:77: 44:08:ae:a1:2c:7c:70:ff:d9:ed:64:57:dc:44:10: 66:92:da:2e:84:c1:0d:37:be:7b:1d:28:20:fa:f4: 22:68:a7:c1:79:97:8e:a3:f2:84:65:34:22:87:67: 5d:61:cc:a4:64:22:78:f9:c5:6a:a2:8a:ce:6c:99: 75:e3:72:0f:0b:eb:e4:cf:9c:cb:e8:c1:63:c4:9b: ac:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:11:37:63:2A:9E:77:7A:92:0D:39:47:DC:A7:E3:F6:2B:FE:52:73 X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.12.0/23 Signature Algorithm: sha256WithRSAEncryption 94:2a:fd:b1:ad:b6:6c:bb:e8:a9:0c:a0:b1:5d:77:7c:9f:70: bc:18:46:ee:35:fd:2b:a6:29:7a:6c:7e:cf:9f:44:29:21:d8: e3:cd:1d:28:e2:45:e2:b8:4d:45:2c:b7:eb:10:d2:14:db:37: 8c:69:da:e3:a3:57:39:c4:16:10:b9:4c:6b:cd:ba:a4:28:1d: 6e:da:35:b7:10:b9:5e:34:ba:53:a6:08:ad:87:90:01:02:a8: 71:94:86:59:09:53:41:1b:a7:ea:12:47:54:2c:6b:9c:0e:30: 8e:72:66:e3:72:58:83:f6:f7:d9:0c:af:de:a5:fd:ae:4f:f5: 74:ca:24:8b:71:83:f6:1c:c4:53:92:c3:ac:62:eb:7a:8a:9b: e9:43:69:1e:24:4f:fe:1d:1c:ea:7c:f2:db:88:3b:78:31:6b: c5:67:d4:f8:61:3f:d2:ec:e9:ee:a1:fb:f5:ab:95:a9:1e:a7: 9b:52:6c:8a:d9:f5:46:92:1f:b0:61:d2:1c:ec:c6:6c:22:f0: d1:9d:40:9d:e9:3f:a0:46:e9:40:bc:2d:b5:13:a2:c5:b1:7b: c3:fb:cd:8e:31:c3:af:82:d9:6a:d5:4f:cb:82:3b:b4:8f:c7: 68:5b:3b:4d:e2:7e:65:f0:7c:1a:64:65:99:4e:0b:de:ba:f7: 1e:1d:78:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO6hc5Vb378qERqN5lsCROBBO19cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNTA1MjEwNTU1MDFaFw0yNjA1MjAwNjAwMDFaMDMxMTAvBgNV BAMTKEUzMTEzNzYzMkE5RTc3N0E5MjBEMzk0N0RDQTdFM0Y2MkJGRTUyNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM0BNY4mTizCAGRxWwBsu2Rck+ LBv+/bT0T0eFwRcR8YKYr2hyKiNJIPEXeHWEXntJsHOMVFpzRd4t69+MPNM23H2n sTs96ORqfVFuP+249097rxBkBF6NABLg2uw3I7LLUHukEqyDA0ypeNUqdxwIh6lU hHwbnkvfPSJdzO4Qn5hXWYezpNjnuX6xmjezBfmsBKk8Hkjaz64oTVzV2/F+0/NT pySE5tyDxI6QQdT9Bqh6d0QIrqEsfHD/2e1kV9xEEGaS2i6EwQ03vnsdKCD69CJo p8F5l46j8oRlNCKHZ11hzKRkInj5xWqiis5smXXjcg8L6+TPnMvowWPEm6xFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4xE3Yyqed3qSDTlH3Kfj9iv+UnMwHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YzZmNzcwLTY4NmEtNDVlZi04 ZGZiLTBjM2E4N2QzZDhkYS8wLzMxMzAzMzJlMzEzNjMwMmUzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6AMMA0GCSqG SIb3DQEBCwUAA4IBAQCUKv2xrbZsu+ipDKCxXXd8n3C8GEbuNf0rpil6bH7Pn0Qp IdjjzR0o4kXiuE1FLLfrENIU2zeMadrjo1c5xBYQuUxrzbqkKB1u2jW3ELleNLpT pgith5ABAqhxlIZZCVNBG6fqEkdULGucDjCOcmbjcliD9vfZDK/epf2uT/V0yiSL cYP2HMRTksOsYut6ipvpQ2keJE/+HRzqfPLbiDt4MWvFZ9T4YT/S7Onuofv1q5Wp HqebUmyK2fVGkh+wYdIc7MZsIvDRnUCd6T+gRulAvC21E6LFsXvD+82OMcOvgtlq 1U/Lgju0j8doWztN4n5l8HwaZGWZTgveuvceHXi+ -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:58 2025 by rpki-client