$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa File: 3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa (raw, json) Hash identifier: gsHZwZaZZrGPSnKeaXQwKe0du+uegJ+SJ020XW50DPw= Subject key identifier: 84:D7:47:8D:AA:F6:45:90:D2:2B:B9:C8:AB:8A:B5:06:B5:D1:11:41 Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Certificate serial: 3E5FA2F1DDF2E4A1B8A8C3E561960FF5FABB03AC Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa Signing time: Mon 02 Jun 2025 02:04:00 +0000 ROA not before: Mon 02 Jun 2025 01:59:00 +0000 ROA not after: Mon 01 Jun 2026 02:04:00 +0000 asID: 64300 IP address blocks: 103.153.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5f:a2:f1:dd:f2:e4:a1:b8:a8:c3:e5:61:96:0f:f5:fa:bb:03:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Validity Not Before: Jun 2 01:59:00 2025 GMT Not After : Jun 1 02:04:00 2026 GMT Subject: CN=84D7478DAAF64590D22BB9C8AB8AB506B5D11141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:6f:8e:6e:3d:65:a5:c3:27:85:93:0e:19: dc:92:9b:73:22:c0:1f:66:33:49:66:1f:2a:43:f3: 29:fd:64:a7:e4:77:42:0d:c4:46:3d:13:42:1b:e9: fb:16:20:62:0e:f5:b4:21:57:d1:6a:7a:88:9b:ed: 3e:1c:a2:93:54:da:d6:4a:49:f6:9f:56:c9:1d:d2: 45:e0:f2:42:70:29:0b:a0:00:ae:39:d9:d0:71:8f: 91:9a:15:18:bc:44:82:39:63:7c:23:9d:61:bb:72: 01:eb:dc:8d:7f:1f:dd:1c:36:fb:ad:36:70:b8:93: 0f:0f:cf:20:fa:70:8e:2f:3d:c3:13:25:b9:a3:e3: 58:c4:12:2a:1a:9b:e8:ec:ba:d0:bc:2f:2a:a2:ec: 2b:f9:e3:bd:3c:03:cd:b7:2e:cb:d7:9a:97:16:43: 7a:8b:33:83:12:3e:d0:e9:fb:3a:ad:07:9d:e4:5b: ab:ef:4f:78:97:c6:0f:e1:43:b5:f2:8a:a3:4c:11: 87:e2:62:d7:c5:ae:ed:85:8b:d1:96:4a:cf:f9:0c: 51:69:c0:5f:65:0c:14:01:33:8c:b5:84:fa:02:80: f7:29:4c:33:e6:a5:a6:79:e5:6a:65:21:ec:dd:1f: 09:2f:3d:5c:03:86:07:2b:66:2f:de:a9:b5:43:5e: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D7:47:8D:AA:F6:45:90:D2:2B:B9:C8:AB:8A:B5:06:B5:D1:11:41 X509v3 Authority Key Identifier: keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.149.0/24 Signature Algorithm: sha256WithRSAEncryption 11:1f:30:20:dd:44:46:96:09:53:63:8f:30:a5:60:3b:53:04: cb:2e:8a:7b:8c:0e:4e:f8:b8:6b:5c:f2:e0:1c:39:f1:ff:3d: 5c:8f:22:e3:14:0c:fc:51:eb:9e:21:6f:b9:cb:c7:78:33:ac: 67:9b:b1:30:c9:0a:08:47:ec:89:e1:e8:93:a7:3a:b0:61:e5: 34:84:a0:ac:42:b8:9b:65:88:e7:19:5b:f4:81:f5:af:7b:a2: 16:ad:e2:22:31:4d:9d:3c:fc:e3:10:6e:7d:af:5f:f1:8b:85: f8:05:37:39:18:80:c7:c0:19:6a:f0:f5:f6:0a:3a:55:79:27: 78:0c:16:51:de:4b:7b:8b:fa:53:1d:59:c6:9b:4f:f2:9e:68: a7:7d:ec:9d:ca:c5:3c:83:db:43:37:f3:f4:17:08:46:a1:3f: e1:be:f8:d9:2a:3f:89:fd:c8:d5:5f:9b:21:38:c4:71:d3:5c: c0:c4:d3:2a:f6:1e:39:8a:64:a4:d1:56:77:41:9d:00:64:27: b7:a6:9e:4c:82:f9:d8:77:95:f1:20:01:16:9a:eb:ca:c0:65: f3:a1:17:8e:ba:4d:87:8a:58:fb:a9:c3:26:41:07:b4:f2:fb: c6:29:e1:7b:e1:85:9e:95:6a:87:57:87:88:57:90:fa:64:2c: a0:8f:e3:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPl+i8d3y5KG4qMPlYZYP9fq7A6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBE RTE0RkQ4OTAeFw0yNTA2MDIwMTU5MDBaFw0yNjA2MDEwMjA0MDBaMDMxMTAvBgNV BAMTKDg0RDc0NzhEQUFGNjQ1OTBEMjJCQjlDOEFCOEFCNTA2QjVEMTExNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7fG+Obj1lpcMnhZMOGdySm3Mi wB9mM0lmHypD8yn9ZKfkd0INxEY9E0Ib6fsWIGIO9bQhV9Fqeoib7T4copNU2tZK SfafVskd0kXg8kJwKQugAK452dBxj5GaFRi8RII5Y3wjnWG7cgHr3I1/H90cNvut NnC4kw8PzyD6cI4vPcMTJbmj41jEEioam+jsutC8Lyqi7Cv54708A823LsvXmpcW Q3qLM4MSPtDp+zqtB53kW6vvT3iXxg/hQ7XyiqNMEYfiYtfFru2Fi9GWSs/5DFFp wF9lDBQBM4y1hPoCgPcpTDPmpaZ55WplIezdHwkvPVwDhgcrZi/eqbVDXlANAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhNdHjar2RZDSK7nIq4q1BrXREUEwHwYDVR0j BBgwFoAUkubKaDr6GOoDGd7Bfd9T4N4U/YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDMwNGI2NC0yODk5LTQ4MzAtOWMzYy0zNzU4NGEzMjdlMWUvMC85MkU2Q0E2ODNB RkExOEVBMDMxOURFQzE3RERGNTNFMERFMTRGRDg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBERTE0 RkQ4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5mVMA0GCSqG SIb3DQEBCwUAA4IBAQARHzAg3URGlglTY48wpWA7UwTLLop7jA5O+LhrXPLgHDnx /z1cjyLjFAz8UeueIW+5y8d4M6xnm7EwyQoIR+yJ4eiTpzqwYeU0hKCsQribZYjn GVv0gfWve6IWreIiMU2dPPzjEG59r1/xi4X4BTc5GIDHwBlq8PX2CjpVeSd4DBZR 3kt7i/pTHVnGm0/ynminfeydysU8g9tDN/P0FwhGoT/hvvjZKj+J/cjVX5shOMRx 01zAxNMq9h45imSk0VZ3QZ0AZCe3pp5MgvnYd5XxIAEWmuvKwGXzoReOuk2Hilj7 qcMmQQe08vvGKeF74YWelWqHV4eIV5D6ZCygj+Pe -----END CERTIFICATE-----Generated at Thu Jun 5 18:40:22 2025 by rpki-client