$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa File: 3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa (raw, json) Hash identifier: 3A9aXUT5ZliAMgJstYpcWHFTfUmMESodAfeb3G4B9tY= Subject key identifier: 5F:C7:51:03:55:67:F0:F3:70:17:14:EB:9A:06:FA:6F:0E:2F:06:3F Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Certificate serial: 680CA19D6E45836437794AEED5C9F7B90F0A1A23 Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa Signing time: Mon 02 Jun 2025 02:04:00 +0000 ROA not before: Mon 02 Jun 2025 01:59:00 +0000 ROA not after: Mon 01 Jun 2026 02:04:00 +0000 asID: 64300 IP address blocks: 103.153.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0c:a1:9d:6e:45:83:64:37:79:4a:ee:d5:c9:f7:b9:0f:0a:1a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Validity Not Before: Jun 2 01:59:00 2025 GMT Not After : Jun 1 02:04:00 2026 GMT Subject: CN=5FC751035567F0F3701714EB9A06FA6F0E2F063F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:31:71:7e:a5:95:13:88:f9:bb:0c:cf:2a:6c: 16:ab:c1:0c:39:a8:d2:b1:e8:4c:7a:64:3b:9c:f9: 23:32:64:10:5a:5b:3a:82:b4:2b:87:bc:68:ea:9c: 13:e2:e7:09:58:2b:28:74:b2:38:0e:47:53:60:2e: d4:4d:6a:ff:5f:75:6b:1f:58:a9:5f:62:9a:b2:28: 5d:dd:d8:fc:01:14:63:4a:40:4c:29:94:8a:c5:05: 85:38:d1:af:83:d7:d6:7a:4f:af:fe:ca:30:f4:d4: e2:1b:d9:51:7d:de:6e:69:b7:38:a4:86:fe:b5:6e: 18:26:e5:69:4f:0f:37:96:16:62:c7:a2:3c:31:3f: 8f:73:54:9c:a1:54:67:d5:cb:4f:8b:93:38:10:62: 86:21:73:c5:6d:76:5f:7c:18:d4:55:ca:48:ee:0a: 95:76:ce:a4:aa:8b:6b:c2:c2:d7:89:1f:93:46:f3: 3d:01:f8:42:5f:2d:d5:06:1a:35:83:85:5f:4f:61: a3:e4:8e:31:ef:20:61:bc:fb:22:47:3f:a5:50:3d: 4b:d0:82:89:83:d5:9a:43:01:86:b4:10:91:82:ff: 0a:43:b5:a6:9a:f4:a8:e0:6a:a2:c2:6a:71:06:e8: b7:1e:c0:e2:35:a1:0c:a5:08:69:8d:3d:73:c9:7f: 20:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C7:51:03:55:67:F0:F3:70:17:14:EB:9A:06:FA:6F:0E:2F:06:3F X509v3 Authority Key Identifier: keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32342d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.148.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:66:4a:66:8d:8a:75:3c:33:d3:dd:5e:46:fe:6c:e4:44:73: ae:b9:4f:c1:63:dd:de:c5:79:3a:50:bd:24:85:0e:a7:64:e0: b1:f9:12:da:46:3d:4d:a1:cb:b8:9a:62:1d:31:8d:6b:d8:33: b4:6c:7e:11:79:3f:ff:5c:db:89:33:2d:ab:e7:81:50:c0:14: 4f:1d:d4:90:9e:8a:fe:fc:fc:9f:38:d3:a2:00:9a:5e:2d:c6: 8d:e8:89:12:d3:6a:f6:70:83:c7:e1:4c:4e:d7:cd:49:19:25: 98:ec:2d:dc:54:70:de:37:ea:dc:52:bf:f5:3d:7f:01:a3:e5: 86:a0:27:44:2f:75:2b:38:fa:d8:7a:05:cf:e0:6c:9a:2d:84: b2:f7:f2:0f:74:69:66:40:d5:1c:9a:50:16:6b:19:0a:88:11: 23:2b:bc:ed:39:c1:65:73:f7:4c:67:30:7e:59:d1:a6:30:14: 0e:01:ea:12:9e:e4:b5:df:f5:8d:fa:0c:60:a2:01:96:3f:42: 28:e3:1b:8e:58:60:19:ff:ac:64:7b:12:31:4b:93:98:1d:48: 87:cf:04:bb:0a:a8:2f:dd:d6:c5:91:15:2c:45:f8:67:37:65: 3b:60:51:d3:e5:6c:1c:ab:60:42:97:fa:1a:e6:90:f0:71:81: d2:30:0e:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaAyhnW5Fg2Q3eUru1cn3uQ8KGiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBE RTE0RkQ4OTAeFw0yNTA2MDIwMTU5MDBaFw0yNjA2MDEwMjA0MDBaMDMxMTAvBgNV BAMTKDVGQzc1MTAzNTU2N0YwRjM3MDE3MTRFQjlBMDZGQTZGMEUyRjA2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQMXF+pZUTiPm7DM8qbBarwQw5 qNKx6Ex6ZDuc+SMyZBBaWzqCtCuHvGjqnBPi5wlYKyh0sjgOR1NgLtRNav9fdWsf WKlfYpqyKF3d2PwBFGNKQEwplIrFBYU40a+D19Z6T6/+yjD01OIb2VF93m5ptzik hv61bhgm5WlPDzeWFmLHojwxP49zVJyhVGfVy0+LkzgQYoYhc8Vtdl98GNRVykju CpV2zqSqi2vCwteJH5NG8z0B+EJfLdUGGjWDhV9PYaPkjjHvIGG8+yJHP6VQPUvQ gomD1ZpDAYa0EJGC/wpDtaaa9KjgaqLCanEG6LcewOI1oQylCGmNPXPJfyBbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX8dRA1Vn8PNwFxTrmgb6bw4vBj8wHwYDVR0j BBgwFoAUkubKaDr6GOoDGd7Bfd9T4N4U/YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDMwNGI2NC0yODk5LTQ4MzAtOWMzYy0zNzU4NGEzMjdlMWUvMC85MkU2Q0E2ODNB RkExOEVBMDMxOURFQzE3RERGNTNFMERFMTRGRDg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBERTE0 RkQ4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5mUMA0GCSqG SIb3DQEBCwUAA4IBAQAaZkpmjYp1PDPT3V5G/mzkRHOuuU/BY93exXk6UL0khQ6n ZOCx+RLaRj1Nocu4mmIdMY1r2DO0bH4ReT//XNuJMy2r54FQwBRPHdSQnor+/Pyf ONOiAJpeLcaN6IkS02r2cIPH4UxO181JGSWY7C3cVHDeN+rcUr/1PX8Bo+WGoCdE L3UrOPrYegXP4GyaLYSy9/IPdGlmQNUcmlAWaxkKiBEjK7ztOcFlc/dMZzB+WdGm MBQOAeoSnuS13/WN+gxgogGWP0Io4xuOWGAZ/6xkexIxS5OYHUiHzwS7Cqgv3dbF kRUsRfhnN2U7YFHT5Wwcq2BCl/oa5pDwcYHSMA5X -----END CERTIFICATE-----Generated at Thu Jun 5 18:40:26 2025 by rpki-client