$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa File: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (raw, json) Hash identifier: m4Ck3HJw6h63iOESyQS/p69JGf3Gj+AMerXfQa9rjpw= Subject key identifier: E9:92:A1:97:C5:8F:D4:B6:72:0D:2C:9B:00:56:5F:8A:3D:82:F2:05 Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 09AAC27E386687108949827204EDF2A2F6B17C9A Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa Signing time: Mon 02 Jun 2025 15:00:02 +0000 ROA not before: Mon 02 Jun 2025 14:55:02 +0000 ROA not after: Mon 01 Jun 2026 15:00:02 +0000 asID: 141093 IP address blocks: 103.156.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:aa:c2:7e:38:66:87:10:89:49:82:72:04:ed:f2:a2:f6:b1:7c:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Jun 2 14:55:02 2025 GMT Not After : Jun 1 15:00:02 2026 GMT Subject: CN=E992A197C58FD4B6720D2C9B00565F8A3D82F205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9b:10:59:d3:ca:18:a1:0e:24:17:24:0f:72: 47:7c:07:68:8f:7a:8b:f8:9f:06:10:3e:a6:57:af: 34:6e:15:10:dd:4d:51:8a:f8:5e:be:d9:bd:3f:4f: 03:3c:f6:0d:66:65:8a:54:cf:ee:f7:f1:68:e3:d9: 2a:7b:8c:08:18:b4:f3:a0:ae:ad:8c:80:0c:7e:bd: e6:c3:a1:9c:16:b4:d1:bd:8e:ea:6a:da:5d:fe:9b: 29:87:fc:22:54:39:9a:e1:cb:2b:70:6c:ec:84:eb: fe:ef:d8:81:0c:33:f2:09:d0:79:b8:43:02:a2:5b: aa:71:0e:b0:9d:3c:d4:94:42:73:f7:96:61:18:03: e0:0c:ae:68:91:c4:f3:fd:8a:f4:d5:a0:c6:67:d7: 45:56:8b:84:fc:86:3a:d1:6a:d0:1b:c8:f6:ef:02: d1:17:29:5a:77:58:c0:16:ef:6d:94:72:0c:a3:b6: 84:5b:eb:90:7d:90:a4:27:fe:1e:4b:af:32:23:f5: 1e:63:28:c1:c9:8e:7c:7b:10:18:9c:1f:ab:10:90: 4d:5d:20:d5:7d:46:3d:78:dd:45:5c:6b:77:a1:09: 5c:03:79:5f:79:a0:12:53:56:e6:58:b0:da:7e:eb: be:49:8d:6a:51:00:62:2f:1e:4e:f9:a8:45:53:f1: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:92:A1:97:C5:8F:D4:B6:72:0D:2C:9B:00:56:5F:8A:3D:82:F2:05 X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.146.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:5a:50:f6:4b:7b:4a:ac:fe:a5:7d:bf:32:7b:70:40:b2:21: a7:95:64:c2:d5:3d:3f:46:c7:f7:fa:34:39:4f:fc:27:95:6e: b3:ab:31:ec:38:1b:fe:5b:49:df:8f:04:9b:82:94:7b:51:73: c0:53:df:6c:d7:fb:07:ed:e9:15:87:39:d5:71:5c:6a:44:fb: ae:60:2d:05:8f:d4:b8:58:31:c7:b4:63:ad:82:83:7d:76:eb: 62:5d:e1:12:1d:93:3c:51:16:07:21:d6:b4:57:d8:03:8b:7d: fe:17:9c:32:96:35:b6:72:d4:66:c4:98:4e:fa:29:4d:22:ae: d4:40:94:02:34:9d:11:f3:0f:b9:d1:19:5c:5c:f6:58:ef:3b: fe:1a:bd:ea:42:0d:ba:c0:f7:2c:4f:d1:48:6e:58:fd:a5:ae: 45:81:fa:c2:7d:2c:6b:6b:98:4c:a7:8d:b8:66:5f:5b:ca:84: 0c:8a:da:fb:f2:cc:07:ec:d8:f2:d0:75:c6:d5:52:04:ce:af: 3c:a2:82:4e:64:56:ee:dc:b7:7a:a5:c8:b5:95:4e:b2:fd:c2: 55:83:f7:0d:71:f5:ea:f5:6d:18:3c:66:b5:37:09:f2:fe:ce: 14:6b:e9:18:dc:05:5a:de:9a:2e:e7:b6:af:62:c6:87:e5:15: bc:9b:e9:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCarCfjhmhxCJSYJyBO3yovaxfJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNTA2MDIxNDU1MDJaFw0yNjA2MDExNTAwMDJaMDMxMTAvBgNV BAMTKEU5OTJBMTk3QzU4RkQ0QjY3MjBEMkM5QjAwNTY1RjhBM0Q4MkYyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMmxBZ08oYoQ4kFyQPckd8B2iP eov4nwYQPqZXrzRuFRDdTVGK+F6+2b0/TwM89g1mZYpUz+738Wjj2Sp7jAgYtPOg rq2MgAx+vebDoZwWtNG9jupq2l3+mymH/CJUOZrhyytwbOyE6/7v2IEMM/IJ0Hm4 QwKiW6pxDrCdPNSUQnP3lmEYA+AMrmiRxPP9ivTVoMZn10VWi4T8hjrRatAbyPbv AtEXKVp3WMAW722UcgyjtoRb65B9kKQn/h5LrzIj9R5jKMHJjnx7EBicH6sQkE1d INV9Rj143UVca3ehCVwDeV95oBJTVuZYsNp+675JjWpRAGIvHk75qEVT8YvFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6ZKhl8WP1LZyDSybAFZfij2C8gUwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnJIwDQYJ KoZIhvcNAQELBQADggEBABtaUPZLe0qs/qV9vzJ7cECyIaeVZMLVPT9Gx/f6NDlP /CeVbrOrMew4G/5bSd+PBJuClHtRc8BT32zX+wft6RWHOdVxXGpE+65gLQWP1LhY Mce0Y62Cg31262Jd4RIdkzxRFgch1rRX2AOLff4XnDKWNbZy1GbEmE76KU0irtRA lAI0nRHzD7nRGVxc9ljvO/4avepCDbrA9yxP0UhuWP2lrkWB+sJ9LGtrmEynjbhm X1vKhAyK2vvyzAfs2PLQdcbVUgTOrzyigk5kVu7ct3qlyLWVTrL9wlWD9w1x9er1 bRg8ZrU3CfL+zhRr6RjcBVremi7ntq9ixoflFbyb6X8= -----END CERTIFICATE-----Generated at Fri Jun 6 17:08:01 2025 by rpki-client