$ rpki-client -vvf repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/3130332e3134372e38322e302f32342d3234203d3e20313339393538.roa File: 3130332e3134372e38322e302f32342d3234203d3e20313339393538.roa (raw, json) Hash identifier: vC4SL0uw9D8xmCXitMGfoUsUZzvLg4me8B5U0xhWjR0= Subject key identifier: B0:DE:B1:D2:84:55:57:C9:95:EC:60:47:B7:5E:BE:47:1C:B7:F5:A9 Certificate issuer: /CN=71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7 Certificate serial: 67E7DA4D16B6289700D3C396FA389D89F1A49C7E Authority key identifier: 71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/3130332e3134372e38322e302f32342d3234203d3e20313339393538.roa Signing time: Mon 02 Jun 2025 02:04:53 +0000 ROA not before: Mon 02 Jun 2025 01:59:53 +0000 ROA not after: Mon 01 Jun 2026 02:04:53 +0000 asID: 139958 IP address blocks: 103.147.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.crl rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e7:da:4d:16:b6:28:97:00:d3:c3:96:fa:38:9d:89:f1:a4:9c:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7 Validity Not Before: Jun 2 01:59:53 2025 GMT Not After : Jun 1 02:04:53 2026 GMT Subject: CN=B0DEB1D2845557C995EC6047B75EBE471CB7F5A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:ad:ed:ec:f3:2a:a7:61:c8:36:0a:b6:a4: 03:fd:dc:96:78:9a:bc:0b:42:c2:25:b4:6f:c8:e8: 20:e1:28:a7:a0:01:d3:d8:5f:4f:e2:d1:b1:1e:30: 90:de:02:5c:16:60:29:ba:52:db:82:58:23:a3:89: 32:74:d7:0d:58:95:f4:55:63:6c:22:0a:36:16:e6: e2:ae:31:b2:34:5f:ac:ba:31:ea:eb:3e:95:f8:a3: eb:11:39:ff:12:40:e6:24:92:33:04:27:80:1e:26: 72:bf:36:29:6d:a0:74:9a:2f:f2:6f:10:5c:ff:e8: d3:d8:63:8b:06:be:da:c5:b4:49:60:91:2e:33:0a: 04:f4:31:be:7a:3d:13:ac:71:51:a7:d5:df:d5:e1: db:f9:96:6b:cc:af:87:15:4a:a4:ab:c5:d0:d5:c8: 25:de:61:c9:d5:fb:24:5f:9a:4c:e9:fd:9e:c1:a3: 81:b9:30:9a:04:51:61:8c:0d:e5:56:fa:f9:50:bb: 95:b6:b7:6e:2a:38:56:26:94:2f:11:2a:92:b4:f9: 2e:e6:8b:6c:34:a5:08:25:07:ae:b5:78:4d:50:a4: 1f:37:4d:79:e2:4f:03:5a:50:09:37:4c:d6:00:ae: d9:d4:6f:6b:2b:9a:65:7d:0b:f4:0f:19:47:7a:81: 42:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DE:B1:D2:84:55:57:C9:95:EC:60:47:B7:5E:BE:47:1C:B7:F5:A9 X509v3 Authority Key Identifier: keyid:71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/3130332e3134372e38322e302f32342d3234203d3e20313339393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.82.0/24 Signature Algorithm: sha256WithRSAEncryption 11:20:7b:76:3f:f4:b9:07:df:9a:23:73:52:6b:cc:98:ea:8e: 59:3d:8d:b4:1d:25:8b:7a:33:89:d9:49:9c:75:b9:39:ec:54: 27:bf:67:34:ca:7b:3b:b7:48:8e:97:79:73:e4:ab:b3:cf:b8: 5e:56:cc:87:72:95:5b:be:d5:4c:25:c8:72:68:a6:cd:be:0f: 34:55:ed:14:22:d2:b9:d1:7f:5e:13:ba:8a:17:ed:6a:b0:3b: 84:b2:bb:13:05:87:df:38:28:9c:ff:a4:e1:73:ad:e1:99:99: 72:ae:2f:e9:a0:c3:07:63:71:9b:29:b6:ed:df:f4:a6:d5:8a: 00:b3:28:cd:b6:2f:4e:62:8d:2c:d1:31:51:8f:80:e3:89:f0: 26:0a:ad:2e:07:0a:6b:96:e3:35:2c:35:4b:1f:86:ec:f1:b8: 84:28:62:56:db:9e:77:12:84:b7:28:26:5e:6c:79:45:8d:95: 38:d1:f5:f6:32:bf:13:0e:e8:5d:f3:cf:ee:63:a7:a0:e7:dd: 1c:49:25:21:dd:76:78:bf:c5:ee:cf:8e:11:45:63:d7:63:ec: 81:61:ff:4b:9a:41:ad:ff:eb:ac:da:24:31:fd:92:1b:14:39: 31:bb:26:6d:86:02:0b:38:d4:ad:0a:7e:7f:03:e4:44:eb:c1: ed:5c:25:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ+faTRa2KJcA08OW+jidifGknH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFGQzNGN0IyNzIyRjZBMTVDNTU3RjYzRjhGNDk1QTlD REJDQTlENzAeFw0yNTA2MDIwMTU5NTNaFw0yNjA2MDEwMjA0NTNaMDMxMTAvBgNV BAMTKEIwREVCMUQyODQ1NTU3Qzk5NUVDNjA0N0I3NUVCRTQ3MUNCN0Y1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx+K3t7PMqp2HINgq2pAP93JZ4 mrwLQsIltG/I6CDhKKegAdPYX0/i0bEeMJDeAlwWYCm6UtuCWCOjiTJ01w1YlfRV Y2wiCjYW5uKuMbI0X6y6MerrPpX4o+sROf8SQOYkkjMEJ4AeJnK/NiltoHSaL/Jv EFz/6NPYY4sGvtrFtElgkS4zCgT0Mb56PROscVGn1d/V4dv5lmvMr4cVSqSrxdDV yCXeYcnV+yRfmkzp/Z7Bo4G5MJoEUWGMDeVW+vlQu5W2t24qOFYmlC8RKpK0+S7m i2w0pQglB661eE1QpB83TXniTwNaUAk3TNYArtnUb2srmmV9C/QPGUd6gULRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsN6x0oRVV8mV7GBHt16+Rxy39akwHwYDVR0j BBgwFoAUcfw/eyci9qFcVX9j+PSVqc28qdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWE1YWM2NS02MDcxLTQ2ZTItYmI5ZC1kNzcwZDExN2M0YjQvMC83MUZDM0Y3QjI3 MjJGNkExNUM1NTdGNjNGOEY0OTVBOUNEQkNBOUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzFGQzNGN0IyNzIyRjZBMTVDNTU3RjYzRjhGNDk1QTlDREJD QTlENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhYTVhYzY1LTYwNzEtNDZlMi1i YjlkLWQ3NzBkMTE3YzRiNC8wLzMxMzAzMzJlMzEzNDM3MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NSMA0GCSqG SIb3DQEBCwUAA4IBAQARIHt2P/S5B9+aI3NSa8yY6o5ZPY20HSWLejOJ2Umcdbk5 7FQnv2c0yns7t0iOl3lz5Kuzz7heVsyHcpVbvtVMJchyaKbNvg80Ve0UItK50X9e E7qKF+1qsDuEsrsTBYffOCic/6Thc63hmZlyri/poMMHY3GbKbbt3/Sm1YoAsyjN ti9OYo0s0TFRj4DjifAmCq0uBwprluM1LDVLH4bs8biEKGJW2553EoS3KCZebHlF jZU40fX2Mr8TDuhd88/uY6eg590cSSUh3XZ4v8Xuz44RRWPXY+yBYf9LmkGt/+us 2iQx/ZIbFDkxuyZthgILONStCn5/A+RE68HtXCU/ -----END CERTIFICATE-----Generated at Fri Jun 6 17:14:50 2025 by rpki-client