$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa File: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (raw, json) Hash identifier: 8iSBjCuogDhcUBYZIPXuvYllDkYyp+uiEvzE8S7/ER4= Subject key identifier: F6:5A:27:60:33:29:D9:F0:A7:07:D4:76:74:C9:67:63:20:4B:64:1D Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: DFF9CD6D9B6A1D1EBD126E557DB6141AB256E6 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa Signing time: Thu 05 Jun 2025 19:19:31 +0000 ROA not before: Thu 05 Jun 2025 19:14:31 +0000 ROA not after: Thu 04 Jun 2026 19:19:31 +0000 asID: 150487 IP address blocks: 103.55.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: df:f9:cd:6d:9b:6a:1d:1e:bd:12:6e:55:7d:b6:14:1a:b2:56:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Jun 5 19:14:31 2025 GMT Not After : Jun 4 19:19:31 2026 GMT Subject: CN=F65A27603329D9F0A707D47674C96763204B641D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7a:04:7b:b8:4b:24:82:b2:c2:6f:5e:a4:4e: e2:c9:61:d4:c1:1b:38:d6:76:63:2d:e8:fb:ae:e9: b2:e9:07:b0:99:d3:da:89:9d:dc:11:e6:d1:89:f9: 83:0b:b9:76:6f:0f:df:91:5e:4b:7a:80:65:54:ea: 30:b5:a0:d0:de:57:fb:8b:00:de:ed:44:2f:b3:09: 14:24:a9:c8:3a:01:26:54:14:d5:0d:d4:ae:45:e5: ec:5e:da:5f:39:2b:58:a1:52:e4:a1:f4:36:c7:d8: 9c:5e:8f:72:78:d9:95:34:b2:49:72:51:da:bd:15: ac:7b:f9:00:53:4a:07:55:14:65:dc:0b:88:5b:6f: c4:ef:92:d8:62:62:2b:c0:86:e2:86:3f:af:1d:09: 11:96:47:63:93:55:01:4f:75:7c:b7:fd:09:42:5f: 40:25:6c:44:f6:66:56:47:41:37:ab:7c:36:e6:a7: dc:dc:49:c8:a8:d3:f5:a9:eb:ca:83:60:5d:ed:68: 86:dc:41:1d:71:c0:69:60:03:0b:bb:3e:2d:79:05: f2:86:1d:6e:1e:d7:12:3d:4e:b5:e2:03:27:c6:65: bd:53:82:4e:e0:a7:b4:61:26:29:61:78:3c:8c:2e: 98:ed:5d:ee:0f:16:9b:6a:81:26:cf:0b:92:57:63: 3a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5A:27:60:33:29:D9:F0:A7:07:D4:76:74:C9:67:63:20:4B:64:1D X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.28.0/23 Signature Algorithm: sha256WithRSAEncryption 33:41:5e:99:f1:51:a5:89:5a:4c:1c:34:46:74:24:23:fb:fb: 84:f7:96:2a:60:f6:9e:0b:e8:7d:68:a1:72:2a:4d:b1:93:d3: 58:c7:82:15:d9:3e:24:d1:9b:af:db:86:f4:b5:5d:8d:33:9b: d9:33:c5:c1:0b:5e:a7:03:4f:af:99:02:ba:93:10:24:d3:82: 40:11:55:a7:3b:ec:e2:17:4c:66:ef:5e:d2:97:14:9a:23:f6: 38:58:69:a6:49:1c:11:25:44:b6:41:cc:82:3d:a0:53:ce:6f: 95:fd:2c:a5:95:e7:09:e1:1b:f9:b3:eb:06:80:96:09:d0:6a: 28:05:26:62:a5:25:72:0c:cc:a5:22:84:f4:f3:64:61:f1:00: 52:a1:58:8c:b6:ac:c2:c5:92:73:1a:ea:e8:10:0d:49:4b:c4: af:d1:59:be:53:6b:1a:94:d6:c1:2e:28:b3:0b:6f:1e:40:2e: cf:ae:ac:6a:8a:9a:f8:97:a2:0e:a6:7d:5d:55:32:f7:5d:c0: 02:12:89:8c:f4:84:c3:9f:27:12:7c:48:b7:03:a2:d5:70:0d: 8b:54:24:9d:a2:80:02:d1:44:63:78:40:31:11:02:5c:d3:4c: 10:64:a8:40:42:c9:de:ff:72:76:59:ff:3c:eb:04:0a:b4:ac: e8:68:0d:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAN/5zW2bah0evRJuVX22FBqyVuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTA2MDUxOTE0MzFaFw0yNjA2MDQxOTE5MzFaMDMxMTAvBgNV BAMTKEY2NUEyNzYwMzMyOUQ5RjBBNzA3RDQ3Njc0Qzk2NzYzMjA0QjY0MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8egR7uEskgrLCb16kTuLJYdTB GzjWdmMt6Puu6bLpB7CZ09qJndwR5tGJ+YMLuXZvD9+RXkt6gGVU6jC1oNDeV/uL AN7tRC+zCRQkqcg6ASZUFNUN1K5F5exe2l85K1ihUuSh9DbH2Jxej3J42ZU0skly Udq9Fax7+QBTSgdVFGXcC4hbb8TvkthiYivAhuKGP68dCRGWR2OTVQFPdXy3/QlC X0AlbET2ZlZHQTerfDbmp9zcScio0/Wp68qDYF3taIbcQR1xwGlgAwu7Pi15BfKG HW4e1xI9TrXiAyfGZb1Tgk7gp7RhJilheDyMLpjtXe4PFptqgSbPC5JXYzrbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9lonYDMp2fCnB9R2dMlnYyBLZB0wHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNjLWMyMDktNDY5YS04 ZTNjLWViM2Y1YTgzODYzZi8wLzMxMzAzMzJlMzUzNTJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc3HDANBgkqhkiG 9w0BAQsFAAOCAQEAM0FemfFRpYlaTBw0RnQkI/v7hPeWKmD2ngvofWihcipNsZPT WMeCFdk+JNGbr9uG9LVdjTOb2TPFwQtepwNPr5kCupMQJNOCQBFVpzvs4hdMZu9e 0pcUmiP2OFhppkkcESVEtkHMgj2gU85vlf0spZXnCeEb+bPrBoCWCdBqKAUmYqUl cgzMpSKE9PNkYfEAUqFYjLaswsWScxrq6BANSUvEr9FZvlNrGpTWwS4oswtvHkAu z66saoqa+JeiDqZ9XVUy913AAhKJjPSEw58nEnxItwOi1XANi1QknaKAAtFEY3hA MRECXNNMEGSoQELJ3v9ydln/POsECrSs6GgNFg== -----END CERTIFICATE-----Generated at Sun Jun 8 00:16:51 2025 by rpki-client