$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa File: 3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: /yZJ48q5869CHyqd6SiEVpfiGq8gtKkTaa5YhAFQVoI= Subject key identifier: 05:96:EB:16:AB:3F:E7:E6:6A:10:9B:E3:48:A9:51:E8:76:27:50:31 Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Certificate serial: 3DFC03B2C280798BFEA303D70D460412EE2B7516 Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa Signing time: Mon 02 Jun 2025 02:02:50 +0000 ROA not before: Mon 02 Jun 2025 01:57:50 +0000 ROA not after: Mon 01 Jun 2026 02:02:50 +0000 asID: 140443 IP address blocks: 103.152.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fc:03:b2:c2:80:79:8b:fe:a3:03:d7:0d:46:04:12:ee:2b:75:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Validity Not Before: Jun 2 01:57:50 2025 GMT Not After : Jun 1 02:02:50 2026 GMT Subject: CN=0596EB16AB3FE7E66A109BE348A951E876275031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:20:b8:3a:a5:22:63:f5:e4:9b:0f:2f:af:ac: dc:e1:66:e6:d9:c5:dd:b0:bf:09:13:0e:2a:d9:c4: 78:7c:31:c7:92:08:b7:fa:3a:09:8c:68:17:05:12: e8:8e:02:5a:88:ee:4f:76:20:a5:a3:a9:06:fe:71: eb:63:78:e6:e9:49:12:2e:2e:c9:94:ce:21:45:f7: ec:ac:69:0e:b7:6a:25:37:4a:a4:02:00:cb:50:b2: bc:c0:94:d0:31:67:58:76:da:d5:5d:3f:a7:a7:49: 6c:17:cc:dc:50:38:15:cf:0b:62:1f:84:8f:a8:89: 30:ab:43:29:6c:b6:b7:85:28:a9:bc:73:38:b0:a6: d6:7b:2a:e5:a2:40:e2:fc:2b:49:19:0a:31:9d:be: 4a:94:aa:99:fd:2e:27:53:cf:09:76:f7:4f:fc:d4: 77:ff:f7:79:4c:08:a1:8e:38:a6:c9:c3:6f:54:f2: 21:ac:a3:48:0d:22:22:6b:c1:12:34:13:d6:31:bf: 16:ff:ef:5d:17:17:f8:8e:98:25:08:5d:fd:de:00: 15:75:80:30:dc:42:83:a9:d2:1f:48:61:05:c3:ff: 03:74:30:2a:18:06:37:b7:58:79:58:6d:4d:05:61: 4c:16:95:0d:d0:e8:27:e5:35:1c:8e:66:95:16:a2: 34:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:96:EB:16:AB:3F:E7:E6:6A:10:9B:E3:48:A9:51:E8:76:27:50:31 X509v3 Authority Key Identifier: keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.118.0/23 Signature Algorithm: sha256WithRSAEncryption 36:c6:80:d5:3b:6a:cc:62:92:7b:43:1c:33:a4:5a:7f:54:57: dc:1b:f3:e5:23:b1:6d:2e:7c:5d:ca:01:d3:c0:4a:90:37:4b: 9c:f8:32:cd:f4:50:b6:f9:c2:96:71:21:80:e7:95:18:fa:d5: ff:e7:9d:6f:f1:71:48:8a:a5:39:e8:f7:b7:23:fa:ac:7b:c3: da:cf:70:df:e8:56:9e:a1:1a:2f:b1:7e:6e:3c:e3:d0:32:3e: e5:8c:55:bf:d4:68:40:66:21:c6:cd:30:b1:c4:f2:98:ff:21: 43:5c:8f:8d:e4:07:fe:34:1f:ec:71:84:6b:b0:77:3c:30:8c: d7:84:52:c5:26:37:31:0d:50:e6:d6:3a:0b:ec:73:8c:57:db: 57:e5:c4:60:4d:f2:53:93:af:cd:27:94:ae:98:0e:b7:0f:c8: b7:aa:43:73:eb:b7:d4:31:3d:c6:44:9f:4d:55:e2:6e:30:e2: e2:c7:a7:1a:0e:24:9a:99:7a:2a:e4:64:ef:c5:e9:b3:48:07: 20:a6:36:1d:f5:f1:de:10:20:87:51:7d:fe:b2:80:d3:b5:b1: 26:99:6d:ce:69:f6:1e:58:9a:40:c5:a2:7d:fe:b1:90:a4:16: 1c:58:fd:b6:1e:9f:50:12:1f:f6:ed:69:8d:c9:6f:df:db:9e: 4d:5b:bf:6c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPfwDssKAeYv+owPXDUYEEu4rdRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIw RkE5MzkyRjAeFw0yNTA2MDIwMTU3NTBaFw0yNjA2MDEwMjAyNTBaMDMxMTAvBgNV BAMTKDA1OTZFQjE2QUIzRkU3RTY2QTEwOUJFMzQ4QTk1MUU4NzYyNzUwMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ILg6pSJj9eSbDy+vrNzhZubZ xd2wvwkTDirZxHh8MceSCLf6OgmMaBcFEuiOAlqI7k92IKWjqQb+cetjeObpSRIu LsmUziFF9+ysaQ63aiU3SqQCAMtQsrzAlNAxZ1h22tVdP6enSWwXzNxQOBXPC2If hI+oiTCrQylstreFKKm8cziwptZ7KuWiQOL8K0kZCjGdvkqUqpn9LidTzwl290/8 1Hf/93lMCKGOOKbJw29U8iGso0gNIiJrwRI0E9Yxvxb/710XF/iOmCUIXf3eABV1 gDDcQoOp0h9IYQXD/wN0MCoYBje3WHlYbU0FYUwWlQ3Q6CflNRyOZpUWojTdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBZbrFqs/5+ZqEJvjSKlR6HYnUDEwHwYDVR0j BBgwFoAUbcxpUI705nDvvFxpID1rEg+pOS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjA3M2FjZS1hNjkxLTQ4NjMtOWMxYy01OWIyZGI5Y2I0NjMvMC82RENDNjk1MDhF RjRFNjcwRUZCQzVDNjkyMDNENkIxMjBGQTkzOTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIwRkE5 MzkyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMDczYWNlLWE2OTEtNDg2My05 YzFjLTU5YjJkYjljYjQ2My8wLzMxMzAzMzJlMzEzNTMyMmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmHYwDQYJ KoZIhvcNAQELBQADggEBADbGgNU7asxikntDHDOkWn9UV9wb8+UjsW0ufF3KAdPA SpA3S5z4Ms30ULb5wpZxIYDnlRj61f/nnW/xcUiKpTno97cj+qx7w9rPcN/oVp6h Gi+xfm4849AyPuWMVb/UaEBmIcbNMLHE8pj/IUNcj43kB/40H+xxhGuwdzwwjNeE UsUmNzENUObWOgvsc4xX21flxGBN8lOTr80nlK6YDrcPyLeqQ3Prt9QxPcZEn01V 4m4w4uLHpxoOJJqZeirkZO/F6bNIByCmNh318d4QIIdRff6ygNO1sSaZbc5p9h5Y mkDFon3+sZCkFhxY/bYen1ASH/btaY3Jb9/bnk1bv2w= -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:03 2025 by rpki-client