$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa File: 3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa (raw, json) Hash identifier: J9nhXOhW6jatN3t2cMwD6dQ3cCJrOL1soCUmU7Ehehg= Subject key identifier: C3:A0:DF:02:6F:FD:2D:B7:5C:93:1F:CB:BD:8C:5A:D3:90:EA:02:3B Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 732E255E97394FE798E0B15527EB39722F36C759 Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa Signing time: Mon 02 Jun 2025 02:04:21 +0000 ROA not before: Mon 02 Jun 2025 01:59:21 +0000 ROA not after: Mon 01 Jun 2026 02:04:21 +0000 asID: 139457 IP address blocks: 103.146.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2e:25:5e:97:39:4f:e7:98:e0:b1:55:27:eb:39:72:2f:36:c7:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Jun 2 01:59:21 2025 GMT Not After : Jun 1 02:04:21 2026 GMT Subject: CN=C3A0DF026FFD2DB75C931FCBBD8C5AD390EA023B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0e:b0:39:6e:7c:59:1b:41:86:25:58:60:b6: 3e:bc:df:bd:63:cc:85:b6:8b:95:47:3a:63:06:fc: 6d:82:32:d2:aa:00:31:af:e5:a4:3e:d0:3b:94:ab: 69:90:21:c3:a3:3e:83:4d:2d:8e:51:a1:82:89:49: 2e:e1:77:36:25:ad:f6:a1:1c:89:b9:1d:7d:0b:0b: 13:3e:7c:c7:2d:a5:e3:bc:ec:0a:8b:ed:97:f0:a0: e7:72:7e:2d:82:50:e9:f1:5d:96:3f:5d:7e:35:d5: 86:a5:0c:60:5e:93:29:44:e6:46:00:b1:32:f2:5a: 9e:3f:d8:5a:05:53:a6:c9:61:f7:73:d2:05:9a:5d: 6c:53:29:17:7e:f5:43:b5:b6:bf:8c:0e:11:a9:42: 7a:39:96:27:43:b9:dc:ce:b0:62:8e:f5:0e:af:3f: 6e:21:30:86:42:f3:d6:59:a5:03:c3:96:b4:18:f8: 18:21:f9:41:b0:96:b9:34:a3:07:60:23:bd:95:64: e7:bc:61:ce:78:29:cc:95:24:da:c3:7b:ff:5d:05: 7c:a3:61:4f:49:06:25:5c:2a:3e:a0:e7:b2:27:67: ec:32:9e:11:ea:1e:e5:d2:8e:25:82:6d:76:53:34: 43:05:7a:15:99:2d:a6:7b:a1:59:05:32:ab:e3:aa: fb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A0:DF:02:6F:FD:2D:B7:5C:93:1F:CB:BD:8C:5A:D3:90:EA:02:3B X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.62.0/23 Signature Algorithm: sha256WithRSAEncryption 18:e6:ae:f5:85:31:96:cf:d2:c5:ff:00:14:e8:54:4f:04:19: dd:fd:77:59:ca:a6:42:69:ab:cf:e5:50:c9:ac:f3:31:87:f3: eb:10:85:50:b9:4d:4a:41:60:ee:fe:c8:1b:33:e2:f7:26:9c: 39:fd:50:74:a5:82:09:a5:36:cf:53:b8:23:f1:4e:b8:f4:f0: 90:23:f6:b4:8c:fc:47:81:d0:c8:5a:e7:21:02:b7:99:85:f9: 55:a7:7f:35:f0:89:91:29:1a:7f:92:de:00:54:bd:03:23:27: 24:3e:35:a1:71:7d:f6:ad:2e:14:ae:79:d9:65:2e:4c:f8:c2: 75:e8:54:bb:fc:ae:07:b2:bc:d2:9d:fa:c9:2e:4a:56:2c:3f: 11:b8:d9:78:c2:25:23:f1:28:b9:67:cb:a2:f1:b4:de:67:18: 91:d6:00:f2:53:1e:f8:78:41:19:c5:20:a9:a2:fb:e9:c4:ed: 9e:44:e8:47:6b:9e:61:92:54:c0:d4:bd:8c:87:ae:98:92:f6: 37:17:c4:ba:82:c3:34:c9:f7:ca:fd:14:3c:58:9a:55:06:90: e0:00:75:4b:7a:b7:cd:76:34:c1:97:7e:c0:f5:a6:51:26:98: 2a:b7:ec:6d:42:57:3a:07:42:42:5e:7b:87:14:5c:35:a9:4b: b1:7e:4e:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcy4lXpc5T+eY4LFVJ+s5ci82x1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNTA2MDIwMTU5MjFaFw0yNjA2MDEwMjA0MjFaMDMxMTAvBgNV BAMTKEMzQTBERjAyNkZGRDJEQjc1QzkzMUZDQkJEOEM1QUQzOTBFQTAyM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeDrA5bnxZG0GGJVhgtj68371j zIW2i5VHOmMG/G2CMtKqADGv5aQ+0DuUq2mQIcOjPoNNLY5RoYKJSS7hdzYlrfah HIm5HX0LCxM+fMctpeO87AqL7ZfwoOdyfi2CUOnxXZY/XX411YalDGBekylE5kYA sTLyWp4/2FoFU6bJYfdz0gWaXWxTKRd+9UO1tr+MDhGpQno5lidDudzOsGKO9Q6v P24hMIZC89ZZpQPDlrQY+Bgh+UGwlrk0owdgI72VZOe8Yc54KcyVJNrDe/9dBXyj YU9JBiVcKj6g57InZ+wynhHqHuXSjiWCbXZTNEMFehWZLaZ7oVkFMqvjqvsZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw6DfAm/9Lbdckx/LvYxa05DqAjswHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYTc5MzQwLTRkYjItNDU4ZC05 NWRkLWFmMjBiNGZjZGIzZC8wLzMxMzAzMzJlMzEzNDM2MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5I+MA0GCSqG SIb3DQEBCwUAA4IBAQAY5q71hTGWz9LF/wAU6FRPBBnd/XdZyqZCaavP5VDJrPMx h/PrEIVQuU1KQWDu/sgbM+L3Jpw5/VB0pYIJpTbPU7gj8U649PCQI/a0jPxHgdDI WuchAreZhflVp3818ImRKRp/kt4AVL0DIyckPjWhcX32rS4UrnnZZS5M+MJ16FS7 /K4HsrzSnfrJLkpWLD8RuNl4wiUj8Si5Z8ui8bTeZxiR1gDyUx74eEEZxSCpovvp xO2eROhHa55hklTA1L2Mh66YkvY3F8S6gsM0yffK/RQ8WJpVBpDgAHVLerfNdjTB l37A9aZRJpgqt+xtQlc6B0JCXnuHFFw1qUuxfk4O -----END CERTIFICATE-----Generated at Sun Jun 8 11:05:08 2025 by rpki-client