$ rpki-client -vvf repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa File: 3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: uumiLUQfphgqskF7mpd6oqfDDTxMSTqQ7X8YmHylWvY= Subject key identifier: 01:59:A3:B2:2B:E4:BD:6E:08:75:89:F0:C2:50:68:10:45:43:6D:44 Certificate issuer: /CN=1762D22131EE967D86536D2B475A9A8C08CE6003 Certificate serial: 4997B218BA927B7760538DB390E47372AE44CDFC Authority key identifier: 17:62:D2:21:31:EE:96:7D:86:53:6D:2B:47:5A:9A:8C:08:CE:60:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa Signing time: Wed 21 May 2025 05:00:00 +0000 ROA not before: Wed 21 May 2025 04:55:00 +0000 ROA not after: Wed 20 May 2026 05:00:00 +0000 asID: 131111 IP address blocks: 103.159.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.crl rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 19:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:97:b2:18:ba:92:7b:77:60:53:8d:b3:90:e4:73:72:ae:44:cd:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1762D22131EE967D86536D2B475A9A8C08CE6003 Validity Not Before: May 21 04:55:00 2025 GMT Not After : May 20 05:00:00 2026 GMT Subject: CN=0159A3B22BE4BD6E087589F0C250681045436D44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:6f:ee:80:f1:9f:55:7c:93:d7:e5:75:e8:6a: a5:1f:ad:fc:08:a6:d9:8a:6d:a4:eb:a6:97:6a:37: ff:37:35:0d:38:b7:1e:2f:c3:0c:a3:43:b5:1a:e1: a8:37:c6:0f:bd:64:35:92:ad:f6:55:25:29:3a:27: 89:63:84:c6:2d:09:17:c3:6d:aa:70:91:07:a0:ff: 8e:2c:96:86:16:a5:6d:0c:86:3f:87:4d:f5:8c:67: 0f:39:a9:6a:b0:cd:3d:c0:81:44:78:ba:cb:0f:6c: 1a:6f:61:f0:9a:15:d6:0c:a4:9e:dc:a6:a6:d0:ee: 6f:80:70:d3:31:8e:1e:23:0b:7e:93:29:80:6b:b7: eb:6c:9f:e2:44:3a:4b:9a:4f:1f:0a:58:90:05:25: 04:a8:6c:18:59:9f:8a:9a:cf:c7:de:3f:7a:4f:d0: 9e:6e:59:b2:35:88:b3:0d:5a:b0:c5:bf:2e:5d:b1: 2f:ef:85:9f:ae:f4:4c:22:da:86:df:02:39:8b:af: d4:7a:11:f2:e7:3a:4d:67:a3:30:4d:fe:30:ac:4f: a2:f2:5c:bc:d1:d4:a9:0d:55:e3:53:7d:9d:7e:8b: 40:5a:e3:cf:3d:fc:4b:b2:91:6f:b2:94:f0:d8:b6: e5:de:c8:bc:df:c3:e5:99:b7:e0:a8:a1:f4:48:87: b3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:59:A3:B2:2B:E4:BD:6E:08:75:89:F0:C2:50:68:10:45:43:6D:44 X509v3 Authority Key Identifier: keyid:17:62:D2:21:31:EE:96:7D:86:53:6D:2B:47:5A:9A:8C:08:CE:60:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.204.0/23 Signature Algorithm: sha256WithRSAEncryption a3:a1:9c:1a:d4:48:7c:ee:67:ef:92:7a:55:68:92:82:a8:e8: 1d:a6:77:cb:20:b8:22:34:d1:b3:f2:b9:55:8a:81:38:a9:f5: ff:f0:e6:3b:d7:a7:86:9f:f6:6c:d4:c9:c6:7a:ce:a8:d9:57: 39:17:de:ae:01:9e:24:72:6d:96:2a:cd:a0:67:6d:ae:1d:bf: d3:f9:bb:5b:1c:e9:5c:87:fd:87:6e:ab:57:d0:83:e7:99:e1: 94:d6:45:d3:ad:a6:be:c5:14:71:d2:34:86:46:de:1d:4f:a8: f9:96:fb:af:5c:b2:eb:1f:40:ad:13:85:78:80:10:6b:d3:ec: 73:58:f1:17:61:79:4f:6c:8a:b7:2b:58:6d:ba:74:0c:dd:4f: 87:17:0b:3f:5e:84:08:dd:29:b3:83:4f:80:38:67:60:bb:69: ca:ee:c6:f2:c2:62:f5:ff:cb:ee:17:2f:71:d1:85:92:8f:aa: a7:1b:b2:4f:c4:61:e8:b0:77:96:f5:8b:ed:69:db:20:43:f3: a7:f5:03:fb:b3:93:e2:f1:9b:5b:c4:14:c0:78:b0:8b:d0:97: 12:ba:85:02:d7:1f:80:9b:77:ca:dd:0d:33:d5:15:5d:ec:81: 5b:21:e6:e9:a6:07:fc:3d:1a:a1:52:11:de:a4:86:d3:ba:2c: 2f:0a:09:c6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSZeyGLqSe3dgU42zkORzcq5EzfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc2MkQyMjEzMUVFOTY3RDg2NTM2RDJCNDc1QTlBOEMw OENFNjAwMzAeFw0yNTA1MjEwNDU1MDBaFw0yNjA1MjAwNTAwMDBaMDMxMTAvBgNV BAMTKDAxNTlBM0IyMkJFNEJENkUwODc1ODlGMEMyNTA2ODEwNDU0MzZENDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2b+6A8Z9VfJPX5XXoaqUfrfwI ptmKbaTrppdqN/83NQ04tx4vwwyjQ7Ua4ag3xg+9ZDWSrfZVJSk6J4ljhMYtCRfD bapwkQeg/44sloYWpW0Mhj+HTfWMZw85qWqwzT3AgUR4ussPbBpvYfCaFdYMpJ7c pqbQ7m+AcNMxjh4jC36TKYBrt+tsn+JEOkuaTx8KWJAFJQSobBhZn4qaz8feP3pP 0J5uWbI1iLMNWrDFvy5dsS/vhZ+u9Ewi2obfAjmLr9R6EfLnOk1nozBN/jCsT6Ly XLzR1KkNVeNTfZ1+i0Ba4889/EuykW+ylPDYtuXeyLzfw+WZt+CoofRIh7N3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAVmjsivkvW4IdYnwwlBoEEVDbUQwHwYDVR0j BBgwFoAUF2LSITHuln2GU20rR1qajAjOYAMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjBmYTE0YS1hYWFjLTQwZjQtOWM4NC02OTI1Nzg2OGYyY2IvMC8xNzYyRDIyMTMx RUU5NjdEODY1MzZEMkI0NzVBOUE4QzA4Q0U2MDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTc2MkQyMjEzMUVFOTY3RDg2NTM2RDJCNDc1QTlBOEMwOENF NjAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMGZhMTRhLWFhYWMtNDBmNC05 Yzg0LTY5MjU3ODY4ZjJjYi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMwMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8wwDQYJ KoZIhvcNAQELBQADggEBAKOhnBrUSHzuZ++SelVokoKo6B2md8sguCI00bPyuVWK gTip9f/w5jvXp4af9mzUycZ6zqjZVzkX3q4BniRybZYqzaBnba4dv9P5u1sc6VyH /Yduq1fQg+eZ4ZTWRdOtpr7FFHHSNIZG3h1PqPmW+69csusfQK0ThXiAEGvT7HNY 8RdheU9sircrWG26dAzdT4cXCz9ehAjdKbODT4A4Z2C7acruxvLCYvX/y+4XL3HR hZKPqqcbsk/EYeiwd5b1i+1p2yBD86f1A/uzk+Lxm1vEFMB4sIvQlxK6hQLXH4Cb d8rdDTPVFV3sgVsh5ummB/w9GqFSEd6khtO6LC8KCcY= -----END CERTIFICATE-----Generated at Fri Jun 6 17:06:21 2025 by rpki-client