$ rpki-client -vvf repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa File: 3130332e3135332e332e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: Od61s2CG7Pl8XbUZdUJwcwOoJ91FfP8RQCV9emNwZ0s= Subject key identifier: 4D:AB:73:2B:3C:17:CA:8B:EE:D7:43:45:57:A5:AE:A0:0D:86:66:BD Certificate issuer: /CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Certificate serial: 339086DF27415203470D056F349B3AB1C6ABA2B6 Authority key identifier: E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa Signing time: Mon 02 Jun 2025 01:03:14 +0000 ROA not before: Mon 02 Jun 2025 00:58:14 +0000 ROA not after: Mon 01 Jun 2026 01:03:14 +0000 asID: 140389 IP address blocks: 103.153.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:90:86:df:27:41:52:03:47:0d:05:6f:34:9b:3a:b1:c6:ab:a2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Validity Not Before: Jun 2 00:58:14 2025 GMT Not After : Jun 1 01:03:14 2026 GMT Subject: CN=4DAB732B3C17CA8BEED7434557A5AEA00D8666BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c2:4b:5d:aa:15:fa:f3:2b:fb:b7:c6:0f:41: 5a:de:02:0e:0f:e3:1e:24:a5:17:ee:0b:26:90:c4: 01:b0:76:5f:dd:d7:bd:ae:d7:2e:73:61:04:85:aa: 91:ab:7b:94:57:80:f9:3b:01:83:8a:37:d9:73:8d: f6:88:bf:fb:59:80:db:db:34:cb:1c:cb:a3:b7:a3: a8:82:65:0d:9d:30:8d:62:0e:c7:56:15:0e:f1:66: 56:a9:ec:74:13:51:32:ef:55:68:b2:89:f9:34:41: 60:ef:a3:f0:13:b5:3d:d1:72:ff:e0:78:71:cb:c4: 8f:c7:e7:3a:a1:37:0d:02:01:7c:de:7d:86:f5:b5: 43:d5:ec:eb:e3:d4:63:d8:b7:23:14:44:68:42:42: 6d:74:a3:ab:7a:17:f8:16:22:89:5a:71:3d:3b:20: f4:6d:bf:6c:94:cf:b2:69:39:9e:2f:67:c0:ce:69: 07:dd:2a:b4:5d:29:62:cc:69:e9:81:be:d4:e0:df: 72:e3:63:f2:b4:3f:b9:8a:ec:09:08:71:39:74:f4: c9:90:8a:9c:50:eb:c3:9a:19:dd:ec:9b:b2:0b:6d: 5f:f1:27:c6:ba:7d:5b:d0:96:6a:c4:4c:2b:ad:74: 0f:07:b7:c9:a6:61:2c:49:3b:d3:71:87:02:6e:ff: e7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AB:73:2B:3C:17:CA:8B:EE:D7:43:45:57:A5:AE:A0:0D:86:66:BD X509v3 Authority Key Identifier: keyid:E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.3.0/24 Signature Algorithm: sha256WithRSAEncryption 80:27:0c:6d:3c:da:1e:e4:b2:c7:e0:94:29:9c:b4:eb:21:39: 08:e9:09:ce:5c:0e:e5:3d:8c:5d:e4:e3:44:ee:f4:74:3a:23: a6:c9:8c:2f:72:c1:44:80:9a:2b:b6:52:ca:c7:04:0e:c5:43: 43:59:a1:27:d5:68:7d:c4:b6:da:f5:04:08:e2:9e:7b:cc:ed: c9:8f:0d:93:15:9c:dc:bc:85:bb:b5:60:1c:8e:b8:d1:c5:c2: 29:ec:2d:f8:80:3f:c6:0f:13:77:79:c0:a8:0a:13:ae:af:ba: cd:12:70:03:e5:d4:c1:fc:49:60:56:40:9b:dc:f4:fe:99:e8: 15:5d:94:4a:68:9b:23:68:8e:d8:fa:77:ea:3c:52:9a:f0:5e: dd:2c:a0:32:89:a3:6e:1d:39:da:e4:29:0c:48:3d:39:a8:3d: 79:85:22:47:69:ea:df:04:d4:c1:cd:ba:5f:cb:c5:01:e3:60: 26:39:58:7b:07:4f:fc:d8:b2:94:55:c8:95:f9:54:7f:5c:59: a8:df:5f:25:30:c1:7c:77:c6:8d:aa:a6:54:cc:47:5e:0c:fb: 5d:a7:18:19:90:ed:a9:f4:84:1c:45:e7:e1:8b:c6:8c:f9:19: f2:9f:54:7e:30:3c:f4:4a:d5:61:02:b4:10:36:02:cf:e0:aa: 1f:bb:1c:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM5CG3ydBUgNHDQVvNJs6scarorYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZE ODBDRjk3NzAeFw0yNTA2MDIwMDU4MTRaFw0yNjA2MDEwMTAzMTRaMDMxMTAvBgNV BAMTKDREQUI3MzJCM0MxN0NBOEJFRUQ3NDM0NTU3QTVBRUEwMEQ4NjY2QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4wktdqhX68yv7t8YPQVreAg4P 4x4kpRfuCyaQxAGwdl/d172u1y5zYQSFqpGre5RXgPk7AYOKN9lzjfaIv/tZgNvb NMscy6O3o6iCZQ2dMI1iDsdWFQ7xZlap7HQTUTLvVWiyifk0QWDvo/ATtT3Rcv/g eHHLxI/H5zqhNw0CAXzefYb1tUPV7Ovj1GPYtyMURGhCQm10o6t6F/gWIolacT07 IPRtv2yUz7JpOZ4vZ8DOaQfdKrRdKWLMaemBvtTg33LjY/K0P7mK7AkIcTl09MmQ ipxQ68OaGd3sm7ILbV/xJ8a6fVvQlmrETCutdA8Ht8mmYSxJO9NxhwJu/+dXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTatzKzwXyovu10NFV6WuoA2GZr0wHwYDVR0j BBgwFoAU4ia0+oQtzmw4ZEnxT4whz9gM+XcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmMxYWI3MS05MWQwLTRmMGItYmIyOS1jYmI3ZDM1ZTc0YmEvMC9FMjI2QjRGQTg0 MkRDRTZDMzg2NDQ5RjE0RjhDMjFDRkQ4MENGOTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZEODBD Rjk3Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYzFhYjcxLTkxZDAtNGYwYi1i YjI5LWNiYjdkMzVlNzRiYS8wLzMxMzAzMzJlMzEzNTMzMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeZAzANBgkqhkiG 9w0BAQsFAAOCAQEAgCcMbTzaHuSyx+CUKZy06yE5COkJzlwO5T2MXeTjRO70dDoj psmML3LBRICaK7ZSyscEDsVDQ1mhJ9VofcS22vUECOKee8ztyY8NkxWc3LyFu7Vg HI640cXCKewt+IA/xg8Td3nAqAoTrq+6zRJwA+XUwfxJYFZAm9z0/pnoFV2USmib I2iO2Pp36jxSmvBe3SygMomjbh052uQpDEg9Oag9eYUiR2nq3wTUwc26X8vFAeNg JjlYewdP/NiylFXIlflUf1xZqN9fJTDBfHfGjaqmVMxHXgz7XacYGZDtqfSEHEXn 4YvGjPkZ8p9UfjA89ErVYQK0EDYCz+CqH7sc1Q== -----END CERTIFICATE-----Generated at Sat Jun 7 21:01:24 2025 by rpki-client