$ rpki-client -vvf repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa File: 3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa (raw, json) Hash identifier: Zm6lbiwWs4+Cpu+9WHto2KdA0VxKMzxTj2WXGzEISio= Subject key identifier: 1F:D2:8C:99:8B:30:B6:BD:9F:C7:E5:43:F8:F5:ED:CB:D1:F9:EC:F1 Certificate issuer: /CN=9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE Certificate serial: 37E1BA6E81DDCC90366D23280B0A201F1D230784 Authority key identifier: 9F:FC:21:66:77:7F:81:F6:6D:F4:A4:EB:5B:29:FF:A5:B1:B5:25:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa Signing time: Mon 19 May 2025 12:00:02 +0000 ROA not before: Mon 19 May 2025 11:55:02 +0000 ROA not after: Mon 18 May 2026 12:00:02 +0000 asID: 139962 IP address blocks: 103.147.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.crl rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e1:ba:6e:81:dd:cc:90:36:6d:23:28:0b:0a:20:1f:1d:23:07:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE Validity Not Before: May 19 11:55:02 2025 GMT Not After : May 18 12:00:02 2026 GMT Subject: CN=1FD28C998B30B6BD9FC7E543F8F5EDCBD1F9ECF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:dd:c6:78:f4:97:00:a3:c7:89:72:71:c9: c2:12:6a:79:38:e8:5c:01:83:cc:d2:70:e9:7d:ed: c0:59:01:dd:a2:7b:24:b7:41:fd:f2:a5:a1:d6:9a: 71:cd:45:77:30:42:fc:70:88:c0:16:a7:3e:1c:75: 31:07:f4:d1:2c:8e:f6:3d:56:f0:09:da:2f:d2:22: 44:50:fa:e0:8f:73:44:c0:5b:06:4d:62:d5:75:69: ad:5e:77:ea:db:4c:a4:c6:f5:dc:2d:6f:e5:d2:bb: 05:74:89:02:b2:c3:7d:dc:65:78:f3:a9:b4:2c:a8: 81:5f:ae:78:2d:41:d9:12:13:11:0c:26:4f:0c:eb: a0:28:53:13:30:e8:34:37:7a:a9:b7:78:36:2f:6b: a5:0b:a1:e0:14:44:f6:35:f2:99:b8:f3:fe:99:ba: 75:82:a2:bc:cd:64:f8:d3:a0:0a:11:13:4a:d4:37: 17:42:9d:ca:bb:a8:c3:ad:ff:21:43:4d:60:09:07: ac:ac:51:f4:30:c7:6a:96:b1:06:4d:8a:35:d4:7d: d2:6b:9b:5e:88:d9:25:dc:06:6f:7d:cc:f8:18:07: ff:9a:1a:61:ac:35:61:48:4f:f6:75:78:18:d3:3f: 81:68:d6:a8:8c:e1:74:5e:68:99:85:d1:13:e3:3c: 16:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D2:8C:99:8B:30:B6:BD:9F:C7:E5:43:F8:F5:ED:CB:D1:F9:EC:F1 X509v3 Authority Key Identifier: keyid:9F:FC:21:66:77:7F:81:F6:6D:F4:A4:EB:5B:29:FF:A5:B1:B5:25:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.118.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:76:1f:04:85:22:5b:3c:95:7e:74:fa:39:6e:15:14:db:97: c8:22:5a:43:6d:bf:57:42:fa:45:66:b1:31:d9:39:a6:dc:23: 6f:23:89:a5:4d:10:c1:20:de:f8:02:9b:3c:c1:52:d9:68:19: 8c:f2:6c:11:ed:0f:ff:5d:cc:d7:4c:36:22:4b:07:26:de:5b: 8b:48:dd:4e:3f:17:aa:c3:97:62:c7:27:97:c6:5a:4b:fa:e9: fa:33:83:41:20:74:7a:d9:e7:89:22:ef:ae:7a:3c:35:a8:0f: 71:b0:3c:bb:85:4c:3d:93:05:b1:d9:70:d5:c7:f0:d9:df:38: b4:20:ae:25:74:e5:cf:43:02:0f:86:ff:d8:eb:f1:41:36:a4: 58:a2:bd:16:fe:f5:4e:e8:40:e5:3e:27:65:9c:e6:64:f2:54: d7:d5:d3:97:51:ba:85:54:d8:61:58:18:77:0f:c4:0e:83:18: 5e:f1:83:3f:8c:2b:6c:14:c6:72:65:25:3d:fd:73:0a:42:5e: 70:8b:2b:ce:b1:4c:49:d7:dc:b3:15:a3:ab:5e:7b:2c:bc:78: 00:a6:d6:e5:9c:b9:6f:ec:08:58:ef:9e:ec:52:c3:c6:40:07: f7:48:27:87:4f:69:f7:b4:ba:98:c4:60:ce:14:da:53:8d:b3: 9a:0e:ec:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN+G6boHdzJA2bSMoCwogHx0jB4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzIxNjY3NzdGODFGNjZERjRBNEVCNUIyOUZGQTVC MUI1MjVERTAeFw0yNTA1MTkxMTU1MDJaFw0yNjA1MTgxMjAwMDJaMDMxMTAvBgNV BAMTKDFGRDI4Qzk5OEIzMEI2QkQ5RkM3RTU0M0Y4RjVFRENCRDFGOUVDRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Kd3GePSXAKPHiXJxycISank4 6FwBg8zScOl97cBZAd2ieyS3Qf3ypaHWmnHNRXcwQvxwiMAWpz4cdTEH9NEsjvY9 VvAJ2i/SIkRQ+uCPc0TAWwZNYtV1aa1ed+rbTKTG9dwtb+XSuwV0iQKyw33cZXjz qbQsqIFfrngtQdkSExEMJk8M66AoUxMw6DQ3eqm3eDYva6ULoeAURPY18pm48/6Z unWCorzNZPjToAoRE0rUNxdCncq7qMOt/yFDTWAJB6ysUfQwx2qWsQZNijXUfdJr m16I2SXcBm99zPgYB/+aGmGsNWFIT/Z1eBjTP4Fo1qiM4XReaJmF0RPjPBZxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUH9KMmYswtr2fx+VD+PXty9H57PEwHwYDVR0j BBgwFoAUn/whZnd/gfZt9KTrWyn/pbG1Jd4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVlOTEzMS0zYWJjLTRhYmQtYmQ5Mi1hNzU1ZmFiOTEzMDUvMC85RkZDMjE2Njc3 N0Y4MUY2NkRGNEE0RUI1QjI5RkZBNUIxQjUyNURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzIxNjY3NzdGODFGNjZERjRBNEVCNUIyOUZGQTVCMUI1 MjVERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNWU5MTMxLTNhYmMtNGFiZC1i ZDkyLWE3NTVmYWI5MTMwNS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk3YwDQYJ KoZIhvcNAQELBQADggEBAIp2HwSFIls8lX50+jluFRTbl8giWkNtv1dC+kVmsTHZ OabcI28jiaVNEMEg3vgCmzzBUtloGYzybBHtD/9dzNdMNiJLBybeW4tI3U4/F6rD l2LHJ5fGWkv66fozg0EgdHrZ54ki7656PDWoD3GwPLuFTD2TBbHZcNXH8NnfOLQg riV05c9DAg+G/9jr8UE2pFiivRb+9U7oQOU+J2Wc5mTyVNfV05dRuoVU2GFYGHcP xA6DGF7xgz+MK2wUxnJlJT39cwpCXnCLK86xTEnX3LMVo6teeyy8eACm1uWcuW/s CFjvnuxSw8ZAB/dIJ4dPafe0upjEYM4U2lONs5oO7Fo= -----END CERTIFICATE-----Generated at Sat Jun 7 05:34:59 2025 by rpki-client