$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa File: 3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa (raw, json) Hash identifier: KQGoiV9BbegSAyEwUGTDu3EKXx16FmPyMikvR+g+1xM= Subject key identifier: E5:9A:D3:FB:2B:86:0C:3B:8E:69:8E:97:9D:9B:C9:21:55:84:1E:20 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 762E6D0D6ACA35C616FF01CB6391E0DB6BBC9149 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa Signing time: Mon 02 Jun 2025 02:03:07 +0000 ROA not before: Mon 02 Jun 2025 01:58:07 +0000 ROA not after: Mon 01 Jun 2026 02:03:07 +0000 asID: 55699 IP address blocks: 103.255.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2e:6d:0d:6a:ca:35:c6:16:ff:01:cb:63:91:e0:db:6b:bc:91:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jun 2 01:58:07 2025 GMT Not After : Jun 1 02:03:07 2026 GMT Subject: CN=E59AD3FB2B860C3B8E698E979D9BC92155841E20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:26:2a:21:88:df:05:fb:dd:5e:8a:ef:8f: 2a:37:24:14:1f:36:55:04:c6:fe:60:21:81:15:4a: b0:9d:a5:8d:ba:a3:a8:e2:04:bf:81:03:44:70:4d: 5e:62:88:95:f5:48:83:a5:1b:ff:84:5d:59:10:af: 80:36:2b:40:79:d4:af:19:87:0f:b7:8c:ac:da:79: 5c:61:73:94:2a:60:69:f4:a5:9f:9e:7e:e7:c6:b1: 41:87:b0:7e:43:a2:1c:d2:9f:b4:8b:11:bb:6f:51: 5d:78:17:ca:4b:00:cf:60:cf:aa:2b:ff:13:84:14: 0c:5d:8a:8d:09:10:eb:50:78:bc:44:fb:48:80:c3: 7a:fe:54:45:47:b6:49:82:ea:f0:d1:0a:dd:76:14: 7d:7d:97:cc:ec:16:c9:5e:73:5d:9f:56:f5:2e:fe: 84:35:19:32:4b:46:56:ce:5a:1e:49:82:37:3e:e9: 61:4e:66:d6:8b:2f:44:fb:12:82:33:c4:40:21:77: ab:ab:63:5e:b0:90:9a:06:f0:74:ad:0a:4b:04:0f: 04:e9:2b:c8:64:67:96:aa:3e:88:9e:8d:6c:11:01: e8:a7:05:3c:a8:c8:5c:1d:30:26:bd:03:da:64:1c: 69:d7:55:85:3d:55:5a:e9:05:32:66:21:05:0e:13: 5f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9A:D3:FB:2B:86:0C:3B:8E:69:8E:97:9D:9B:C9:21:55:84:1E:20 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.156.0/23 Signature Algorithm: sha256WithRSAEncryption 98:49:62:c5:9f:96:5c:34:33:dd:6d:34:47:68:f3:be:ef:65: 03:c8:1d:82:f0:32:12:e1:08:aa:dc:27:df:2f:29:46:f3:af: 4a:4d:62:b1:d1:88:6e:b3:0e:14:c9:9b:43:80:61:0a:b9:ca: 22:6a:62:94:9e:78:49:69:e0:50:b8:05:01:6c:9e:f3:01:d6: 24:76:cb:07:3f:40:ed:26:e9:0d:bd:62:9d:1d:8d:c3:2a:7d: a7:b7:be:22:c8:3c:28:3f:d9:5d:eb:34:e0:c6:be:71:1f:75: 2c:67:7a:6b:fb:7b:a3:63:b1:bb:27:8d:12:fe:c3:cc:81:ad: e6:e0:24:3f:86:32:f5:a8:1b:85:63:f7:89:7f:1c:23:6d:34: bd:71:b8:b6:24:78:ae:a3:4c:9e:1e:90:36:35:d6:c0:9a:af: 50:8e:69:33:48:fc:72:79:4f:86:dc:47:56:3e:57:e2:50:4d: 64:4d:d8:c4:1a:ba:54:7f:b5:74:4a:03:13:f2:73:3b:c7:da: e9:18:c5:f6:97:30:e4:3b:b8:fc:5d:4b:2c:d5:0b:3a:ba:f4: 6b:ec:3e:d8:e3:9b:77:a6:37:53:c9:4d:11:2c:53:48:e5:ee: 74:aa:c4:95:f4:7d:5c:51:bf:63:d4:cc:df:cb:37:a7:47:79: d6:5c:93:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdi5tDWrKNcYW/wHLY5Hg22u8kUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNTA2MDIwMTU4MDdaFw0yNjA2MDEwMjAzMDdaMDMxMTAvBgNV BAMTKEU1OUFEM0ZCMkI4NjBDM0I4RTY5OEU5NzlEOUJDOTIxNTU4NDFFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73iYqIYjfBfvdXorvjyo3JBQf NlUExv5gIYEVSrCdpY26o6jiBL+BA0RwTV5iiJX1SIOlG/+EXVkQr4A2K0B51K8Z hw+3jKzaeVxhc5QqYGn0pZ+efufGsUGHsH5DohzSn7SLEbtvUV14F8pLAM9gz6or /xOEFAxdio0JEOtQeLxE+0iAw3r+VEVHtkmC6vDRCt12FH19l8zsFslec12fVvUu /oQ1GTJLRlbOWh5Jgjc+6WFOZtaLL0T7EoIzxEAhd6urY16wkJoG8HStCksEDwTp K8hkZ5aqPoiejWwRAeinBTyoyFwdMCa9A9pkHGnXVYU9VVrpBTJmIQUOE18rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5ZrT+yuGDDuOaY6XnZvJIVWEHiAwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzAzMzJlMzIzNTM1MmUzMTM1MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/+cMA0GCSqG SIb3DQEBCwUAA4IBAQCYSWLFn5ZcNDPdbTRHaPO+72UDyB2C8DIS4Qiq3CffLylG 869KTWKx0Yhusw4UyZtDgGEKucoiamKUnnhJaeBQuAUBbJ7zAdYkdssHP0DtJukN vWKdHY3DKn2nt74iyDwoP9ld6zTgxr5xH3UsZ3pr+3ujY7G7J40S/sPMga3m4CQ/ hjL1qBuFY/eJfxwjbTS9cbi2JHiuo0yeHpA2NdbAmq9QjmkzSPxyeU+G3EdWPlfi UE1kTdjEGrpUf7V0SgMT8nM7x9rpGMX2lzDkO7j8XUss1Qs6uvRr7D7Y45t3pjdT yU0RLFNI5e50qsSV9H1cUb9j1MzfyzenR3nWXJPA -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:29 2025 by rpki-client