$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa File: 3130332e31342e34342e302f32332d3233203d3e203435333132.roa (raw, json) Hash identifier: FVNqlZLyKBSYrMwWHwLESGm3SinDL6kr3iOOy2nAqwk= Subject key identifier: 1D:67:8F:3E:16:BA:59:35:E7:EF:CA:5C:6F:2A:A2:FC:37:D9:36:E7 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 688FF32146D5BE6DE61CBBB7928087334B90896F Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa Signing time: Mon 02 Jun 2025 02:03:13 +0000 ROA not before: Mon 02 Jun 2025 01:58:13 +0000 ROA not after: Mon 01 Jun 2026 02:03:13 +0000 asID: 45312 IP address blocks: 103.14.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 21:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8f:f3:21:46:d5:be:6d:e6:1c:bb:b7:92:80:87:33:4b:90:89:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jun 2 01:58:13 2025 GMT Not After : Jun 1 02:03:13 2026 GMT Subject: CN=1D678F3E16BA5935E7EFCA5C6F2AA2FC37D936E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1f:ef:67:8b:d8:ea:a0:c4:e8:a5:4b:50:bf: 73:bf:bb:cd:77:58:89:ab:b8:a7:c1:b1:80:b2:a3: 42:0a:a3:3a:21:d9:ed:c1:d0:b3:fe:5d:af:04:72: 5a:1f:02:a9:5b:9e:05:98:6c:15:72:9c:47:9f:d5: d9:1e:fb:e5:18:ce:4c:06:c3:9d:5b:de:07:c0:7f: f7:1b:f9:69:0f:c5:20:48:75:9f:c4:fe:d6:b3:b5: ff:a4:70:79:11:fd:c5:3e:91:87:e8:82:96:01:46: 30:c0:c3:1f:47:d9:4f:f6:ce:22:7e:f1:3d:f8:c4: 72:c7:6e:24:9f:0f:66:0b:9a:5c:ab:63:dc:18:48: 57:0c:74:eb:3b:a7:28:2c:8b:6d:44:71:50:b4:26: 68:d6:3c:83:56:f4:fb:6d:b3:8e:0c:28:4a:51:37: 87:e5:e5:ca:9c:d2:c7:5d:d2:73:8b:0e:2c:48:30: 01:af:71:65:ac:6f:00:5b:21:82:c9:e7:9b:18:3b: 0a:b7:b6:62:78:dd:ab:c7:f5:3c:22:da:42:ff:4f: 40:83:25:b9:d7:de:6b:da:15:50:ba:1c:39:8b:d5: 81:b1:18:8b:9b:74:a8:95:a6:12:43:7d:5c:3c:bd: a8:38:6d:65:e4:b5:22:62:22:1b:ce:1d:20:1a:06: 58:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:67:8F:3E:16:BA:59:35:E7:EF:CA:5C:6F:2A:A2:FC:37:D9:36:E7 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34342e302f32332d3233203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.44.0/23 Signature Algorithm: sha256WithRSAEncryption be:ff:6d:bd:ec:cb:d3:dc:17:89:f6:b7:4f:65:99:13:e5:32: 93:d6:85:41:be:29:87:fa:06:d8:d6:0b:9a:1a:8b:32:06:36: 5c:24:bc:d1:b1:00:41:ff:0f:6f:b6:50:a2:25:71:be:41:08: 8f:b8:30:94:b4:35:74:0f:50:c9:61:12:de:bd:ff:2f:a0:de: 70:75:81:fc:11:d2:30:f0:51:d7:10:af:93:2f:b5:ac:9d:ec: c1:21:5a:bc:23:cc:2f:e7:67:e9:49:e1:f0:eb:8f:2f:8b:e2: d3:07:2b:46:c8:27:f1:0c:24:18:cd:0d:8b:21:9c:cf:ea:4b: fc:43:9e:1f:f1:6e:ed:53:9c:1c:72:3e:48:4c:ed:97:ae:30: 17:ac:bd:bf:0c:f6:0b:45:0a:26:49:5c:08:c3:a7:5c:8b:13: 37:5b:11:6a:70:90:42:35:00:3c:6c:f8:76:c6:18:a9:cc:58: b6:4d:9d:90:0f:83:2b:45:4c:a1:9e:87:42:0a:72:c6:59:a6: e8:0b:da:d2:53:db:97:43:61:96:35:ec:c5:76:70:41:ce:b4: 15:5b:b4:40:74:e2:e6:8a:8d:ba:35:bd:9b:92:ad:b9:1f:c5: a9:60:f6:63:f0:1b:8d:50:ec:fb:b1:e8:fd:ac:48:63:dd:af: a0:c4:d6:04 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaI/zIUbVvm3mHLu3koCHM0uQiW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA2MDIwMTU4MTNaFw0yNjA2MDEwMjAzMTNaMDMxMTAvBgNV BAMTKDFENjc4RjNFMTZCQTU5MzVFN0VGQ0E1QzZGMkFBMkZDMzdEOTM2RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5H+9ni9jqoMTopUtQv3O/u813 WImruKfBsYCyo0IKozoh2e3B0LP+Xa8EclofAqlbngWYbBVynEef1dke++UYzkwG w51b3gfAf/cb+WkPxSBIdZ/E/taztf+kcHkR/cU+kYfogpYBRjDAwx9H2U/2ziJ+ 8T34xHLHbiSfD2YLmlyrY9wYSFcMdOs7pygsi21EcVC0JmjWPINW9Ptts44MKEpR N4fl5cqc0sdd0nOLDixIMAGvcWWsbwBbIYLJ55sYOwq3tmJ43avH9Twi2kL/T0CD JbnX3mvaFVC6HDmL1YGxGIubdKiVphJDfVw8vag4bWXktSJiIhvOHSAaBlhvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHWePPha6WTXn78pcbyqi/DfZNucwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMxMzAzMzJlMzEzNDJlMzQzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnDiwwDQYJKoZIhvcN AQELBQADggEBAL7/bb3sy9PcF4n2t09lmRPlMpPWhUG+KYf6BtjWC5oaizIGNlwk vNGxAEH/D2+2UKIlcb5BCI+4MJS0NXQPUMlhEt69/y+g3nB1gfwR0jDwUdcQr5Mv tayd7MEhWrwjzC/nZ+lJ4fDrjy+L4tMHK0bIJ/EMJBjNDYshnM/qS/xDnh/xbu1T nBxyPkhM7ZeuMBesvb8M9gtFCiZJXAjDp1yLEzdbEWpwkEI1ADxs+HbGGKnMWLZN nZAPgytFTKGeh0IKcsZZpugL2tJT25dDYZY17MV2cEHOtBVbtEB04uaKjbo1vZuS rbkfxalg9mPwG41Q7Pux6P2sSGPdr6DE1gQ= -----END CERTIFICATE-----Generated at Mon Nov 3 03:54:14 2025 by rpki-client