$ rpki-client -vvf repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa File: 3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: JBW3MNYcLkvyzbMzPH1digOsTzRoTjkVj2ZYm/AplQ8= Subject key identifier: A0:CD:3A:3E:E9:13:19:AC:73:A1:02:12:98:8D:87:9F:49:07:7D:71 Certificate issuer: /CN=A777F080277567701C7EF464D9A7351ADB0B538E Certificate serial: 7E0AA856A0BA35FD7B0A4FC595647114FFE772A5 Authority key identifier: A7:77:F0:80:27:75:67:70:1C:7E:F4:64:D9:A7:35:1A:DB:0B:53:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa Signing time: Thu 15 May 2025 04:00:01 +0000 ROA not before: Thu 15 May 2025 03:55:01 +0000 ROA not after: Thu 14 May 2026 04:00:01 +0000 asID: 135477 IP address blocks: 103.15.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.crl rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0a:a8:56:a0:ba:35:fd:7b:0a:4f:c5:95:64:71:14:ff:e7:72:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A777F080277567701C7EF464D9A7351ADB0B538E Validity Not Before: May 15 03:55:01 2025 GMT Not After : May 14 04:00:01 2026 GMT Subject: CN=A0CD3A3EE91319AC73A10212988D879F49077D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:8c:58:88:f1:92:76:ff:a5:40:0e:8d:5a: d7:20:f8:7d:08:b0:e1:a1:49:67:94:f0:c3:c4:66: 6c:36:9e:c3:4b:96:3c:e5:41:c0:0f:86:18:c9:68: 27:88:da:bb:af:3b:e0:5a:5e:38:25:c1:e8:b0:71: b2:0e:c2:91:f2:21:4a:80:ce:b7:44:18:9d:a3:ab: 89:b8:d2:1f:e0:79:34:c5:95:66:bb:14:48:ba:08: 60:2d:df:d8:3e:d5:a2:14:7e:eb:da:35:3e:f3:7e: 99:1c:02:6e:0a:ad:ad:95:6e:6b:e9:8a:d5:1a:a4: 57:66:5f:00:a2:f5:e4:15:29:f2:d5:59:f3:be:a1: 18:83:5a:ad:9b:cb:48:ad:de:bb:73:c8:55:50:07: b3:20:5c:51:a1:db:75:91:f1:40:ce:46:2b:f1:c4: 3c:54:77:1b:cd:70:d1:f0:80:a7:8f:7a:42:75:f8: 76:88:f2:bc:da:4c:ca:18:31:80:80:68:fe:50:3c: d9:26:cb:71:89:87:46:1e:30:06:bf:f5:25:bd:be: b3:cd:a5:30:d9:47:cc:31:d8:0f:38:ef:c5:1a:04: 4c:0c:b6:cb:8d:a7:5c:01:c8:99:8d:18:c2:06:85: 56:11:01:c0:8e:9f:b2:67:82:48:08:ba:fb:06:cd: 60:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CD:3A:3E:E9:13:19:AC:73:A1:02:12:98:8D:87:9F:49:07:7D:71 X509v3 Authority Key Identifier: keyid:A7:77:F0:80:27:75:67:70:1C:7E:F4:64:D9:A7:35:1A:DB:0B:53:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/A777F080277567701C7EF464D9A7351ADB0B538E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A777F080277567701C7EF464D9A7351ADB0B538E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6f4767d-e84f-4210-8423-40696618f377/0/3130332e31352e3231342e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.214.0/24 Signature Algorithm: sha256WithRSAEncryption 42:47:c2:13:0a:56:e5:c4:71:3d:00:34:44:f9:9c:a5:58:78: 59:54:cb:10:69:f4:57:28:c8:f6:ae:10:9d:f4:f6:b4:4b:01: b8:37:4d:78:31:34:0f:3f:28:c8:78:0b:5a:5c:a1:24:4f:a7: b8:59:4f:2b:50:30:15:e4:2c:35:a6:68:3e:65:2b:fb:d3:81: 4c:a4:76:16:18:30:9b:0e:d2:40:f8:d9:40:18:ee:d7:81:3a: 9b:91:ee:e8:6f:79:03:c5:cf:69:2f:8b:00:f0:82:ed:b0:dc: 32:93:da:61:1c:74:9e:5e:6a:ec:83:b5:92:1c:3c:bc:c2:50: 65:73:28:36:ee:d8:18:81:20:2f:7f:c3:ff:2b:37:19:bc:95: 4a:ef:02:ee:a2:e8:53:1f:a1:42:69:16:69:88:d4:24:e9:ad: 6f:d5:f6:e2:5e:f1:0a:45:9d:87:9f:4d:cf:cb:ab:46:02:c4: 5f:1d:05:4c:81:cb:1e:cf:be:b5:df:42:27:30:b8:a2:b2:39: e3:bc:32:30:d3:96:f3:fe:56:3c:b0:3d:14:51:4b:e2:c9:08: bf:08:62:b6:96:16:a9:ff:13:17:6e:c0:31:39:77:4c:8e:8a: 66:d3:c3:df:bc:4d:e6:c6:08:60:91:3a:8d:c9:36:a8:1c:bf: 96:05:c9:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfgqoVqC6Nf17Ck/FlWRxFP/ncqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc3N0YwODAyNzc1Njc3MDFDN0VGNDY0RDlBNzM1MUFE QjBCNTM4RTAeFw0yNTA1MTUwMzU1MDFaFw0yNjA1MTQwNDAwMDFaMDMxMTAvBgNV BAMTKEEwQ0QzQTNFRTkxMzE5QUM3M0ExMDIxMjk4OEQ4NzlGNDkwNzdENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyjIxYiPGSdv+lQA6NWtcg+H0I sOGhSWeU8MPEZmw2nsNLljzlQcAPhhjJaCeI2ruvO+BaXjglweiwcbIOwpHyIUqA zrdEGJ2jq4m40h/geTTFlWa7FEi6CGAt39g+1aIUfuvaNT7zfpkcAm4Kra2Vbmvp itUapFdmXwCi9eQVKfLVWfO+oRiDWq2by0it3rtzyFVQB7MgXFGh23WR8UDORivx xDxUdxvNcNHwgKePekJ1+HaI8rzaTMoYMYCAaP5QPNkmy3GJh0YeMAa/9SW9vrPN pTDZR8wx2A8478UaBEwMtsuNp1wByJmNGMIGhVYRAcCOn7JngkgIuvsGzWD1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoM06PukTGaxzoQISmI2Hn0kHfXEwHwYDVR0j BBgwFoAUp3fwgCd1Z3AcfvRk2ac1GtsLU44wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmY0NzY3ZC1lODRmLTQyMTAtODQyMy00MDY5NjYxOGYzNzcvMC9BNzc3RjA4MDI3 NzU2NzcwMUM3RUY0NjREOUE3MzUxQURCMEI1MzhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc3N0YwODAyNzc1Njc3MDFDN0VGNDY0RDlBNzM1MUFEQjBC NTM4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZjQ3NjdkLWU4NGYtNDIxMC04 NDIzLTQwNjk2NjE4ZjM3Ny8wLzMxMzAzMzJlMzEzNTJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw/WMA0GCSqG SIb3DQEBCwUAA4IBAQBCR8ITClblxHE9ADRE+ZylWHhZVMsQafRXKMj2rhCd9Pa0 SwG4N014MTQPPyjIeAtaXKEkT6e4WU8rUDAV5Cw1pmg+ZSv704FMpHYWGDCbDtJA +NlAGO7XgTqbke7ob3kDxc9pL4sA8ILtsNwyk9phHHSeXmrsg7WSHDy8wlBlcyg2 7tgYgSAvf8P/KzcZvJVK7wLuouhTH6FCaRZpiNQk6a1v1fbiXvEKRZ2Hn03Py6tG AsRfHQVMgcsez76130InMLiisjnjvDIw05bz/lY8sD0UUUviyQi/CGK2lhap/xMX bsAxOXdMjopm08PfvE3mxghgkTqNyTaoHL+WBcmm -----END CERTIFICATE-----Generated at Sun Jun 8 23:12:24 2025 by rpki-client