$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa File: 3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa (raw, json) Hash identifier: NL0vGhzpoUf7x+lHSMOuOWEoRUxSZyoCnU3hXUIKCxQ= Subject key identifier: 4D:9B:2E:E5:60:7A:8F:11:70:8B:93:4F:07:81:41:DA:2A:3D:D4:D9 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 10DAF0663A1584BCEFDC384A6B8DAD00DEF45855 Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa Signing time: Mon 02 Jun 2025 02:04:16 +0000 ROA not before: Mon 02 Jun 2025 01:59:16 +0000 ROA not after: Mon 01 Jun 2026 02:04:16 +0000 asID: 136853 IP address blocks: 103.102.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:da:f0:66:3a:15:84:bc:ef:dc:38:4a:6b:8d:ad:00:de:f4:58:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jun 2 01:59:16 2025 GMT Not After : Jun 1 02:04:16 2026 GMT Subject: CN=4D9B2EE5607A8F11708B934F078141DA2A3DD4D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:0c:57:cc:41:12:af:03:cb:12:80:aa:a4: 38:a2:db:af:75:cc:af:a6:b1:ff:60:17:d6:17:b3: ac:19:58:8b:2e:d1:25:a3:49:6f:fd:9b:40:b3:84: e2:37:5c:5a:71:e1:38:e9:b0:e4:3c:fa:e2:d2:4a: 7d:36:7e:8a:57:c6:6b:d4:51:17:92:b2:85:4c:09: 3c:fc:c6:29:c1:fe:cf:6a:e7:04:df:12:20:ab:e1: 6c:fc:b5:62:e6:a2:0a:a1:15:2d:df:12:2f:aa:11: a9:9b:f5:49:c3:84:08:c1:13:36:08:6c:ca:72:99: 97:24:37:a4:ce:e0:38:cb:83:a2:1e:68:b2:d6:9c: 3b:71:6d:9c:5f:c1:29:d0:48:5e:fd:96:99:89:4e: 6e:fd:ba:59:af:d3:b3:09:36:48:56:64:98:65:9a: fd:54:4a:ef:72:f4:51:c8:ee:8c:3f:1d:e4:1e:c4: a8:a5:ba:ec:0e:70:75:1f:d4:1b:c1:46:6b:88:31: 31:b9:1b:e3:36:a5:c1:d5:56:80:e2:f6:c1:fa:b8: 33:c3:cf:63:aa:57:60:af:e4:a5:ed:39:98:30:e7: c3:86:a6:5b:b5:c2:d8:01:f7:72:93:cf:c5:c1:27: 1e:00:4d:c6:f2:14:d8:44:5f:36:69:d3:c0:99:0a: 28:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9B:2E:E5:60:7A:8F:11:70:8B:93:4F:07:81:41:DA:2A:3D:D4:D9 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.149.0/24 Signature Algorithm: sha256WithRSAEncryption ae:49:85:9b:c9:38:4c:ae:ef:8e:7d:e3:8f:d0:ab:e7:31:f7: e8:0b:00:b0:c6:08:da:a6:f8:12:2c:da:21:b3:29:37:57:d1: c5:c0:1f:c9:57:67:e2:cf:a9:96:b9:8b:33:c3:3e:ad:13:98: 01:67:59:b3:3c:15:db:c1:bd:d0:a9:cc:d2:88:9d:a8:72:51: e0:ee:8c:86:d0:99:08:56:9e:91:0c:a0:0a:94:b0:fd:fa:1c: 03:7d:d4:28:f8:50:1a:0f:03:f2:ec:9b:ae:e0:aa:77:c6:66: 17:02:3e:54:1f:9d:76:7b:25:f4:a4:2c:16:54:18:61:f5:7a: 74:7d:24:72:b1:04:36:94:a7:97:45:af:3f:ba:12:03:0a:fa: 02:a1:93:8a:a3:ca:a8:31:8a:87:7c:90:bd:eb:72:01:1b:d3: 92:9f:41:29:2f:1f:4f:c5:19:4f:33:88:d6:18:4b:67:bf:3a: 5b:2b:a4:22:00:c7:8d:d9:78:fc:55:a3:39:ee:2c:a3:20:f4: a8:85:41:b4:3e:44:ce:8e:e1:87:24:3b:b9:07:5d:2c:58:35: 0d:c5:71:15:49:29:2f:3d:2f:b0:57:2f:9c:0d:41:9e:7e:24: 30:28:d9:28:d1:47:21:65:47:50:29:16:47:8f:63:96:28:1a: 96:7d:5f:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUENrwZjoVhLzv3DhKa42tAN70WFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNTA2MDIwMTU5MTZaFw0yNjA2MDEwMjA0MTZaMDMxMTAvBgNV BAMTKDREOUIyRUU1NjA3QThGMTE3MDhCOTM0RjA3ODE0MURBMkEzREQ0RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2AxXzEESrwPLEoCqpDii2691 zK+msf9gF9YXs6wZWIsu0SWjSW/9m0CzhOI3XFpx4TjpsOQ8+uLSSn02fopXxmvU UReSsoVMCTz8xinB/s9q5wTfEiCr4Wz8tWLmogqhFS3fEi+qEamb9UnDhAjBEzYI bMpymZckN6TO4DjLg6IeaLLWnDtxbZxfwSnQSF79lpmJTm79ulmv07MJNkhWZJhl mv1USu9y9FHI7ow/HeQexKiluuwOcHUf1BvBRmuIMTG5G+M2pcHVVoDi9sH6uDPD z2OqV2Cv5KXtOZgw58OGplu1wtgB93KTz8XBJx4ATcbyFNhEXzZp08CZCijhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTZsu5WB6jxFwi5NPB4FB2io91NkwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpUwDQYJ KoZIhvcNAQELBQADggEBAK5JhZvJOEyu745944/Qq+cx9+gLALDGCNqm+BIs2iGz KTdX0cXAH8lXZ+LPqZa5izPDPq0TmAFnWbM8FdvBvdCpzNKInahyUeDujIbQmQhW npEMoAqUsP36HAN91Cj4UBoPA/Lsm67gqnfGZhcCPlQfnXZ7JfSkLBZUGGH1enR9 JHKxBDaUp5dFrz+6EgMK+gKhk4qjyqgxiod8kL3rcgEb05KfQSkvH0/FGU8ziNYY S2e/OlsrpCIAx43ZePxVoznuLKMg9KiFQbQ+RM6O4YckO7kHXSxYNQ3FcRVJKS89 L7BXL5wNQZ5+JDAo2SjRRyFlR1ApFkePY5YoGpZ9Xyw= -----END CERTIFICATE-----Generated at Sun Jun 8 07:35:58 2025 by rpki-client