$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa File: 3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa (raw, json) Hash identifier: s1nmEcWlMGfpOr6XkgkIDAhuvP77SQ9zj5c2Qr3sr/E= Subject key identifier: 08:33:B7:64:26:80:F9:F6:91:C6:C7:87:EA:E3:95:17:E3:1C:D0:11 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 163ED8D85D7E9445FD73415988C11F38A5AAFA01 Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa Signing time: Wed 07 May 2025 03:52:49 +0000 ROA not before: Wed 07 May 2025 03:47:49 +0000 ROA not after: Wed 06 May 2026 03:52:49 +0000 asID: 140478 IP address blocks: 103.154.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:3e:d8:d8:5d:7e:94:45:fd:73:41:59:88:c1:1f:38:a5:aa:fa:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 7 03:47:49 2025 GMT Not After : May 6 03:52:49 2026 GMT Subject: CN=0833B7642680F9F691C6C787EAE39517E31CD011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:17:fc:e1:92:90:7e:e9:83:35:27:38:4f: 71:ba:f2:42:97:4c:42:82:ad:2c:c5:50:e3:27:96: 0e:05:19:db:c3:0d:71:59:3d:16:85:8e:e2:12:65: dd:84:07:54:30:ae:98:12:8b:b7:95:fa:59:59:9b: f6:60:d7:49:ed:99:25:dd:ec:68:12:dd:fd:a1:ed: f8:85:8b:8e:07:28:cb:53:cc:ba:e8:c3:bd:1b:f3: ab:18:36:a9:c2:02:ac:e2:cf:fe:71:3a:3d:4a:63: b4:63:e1:ea:f6:b1:94:e7:04:ee:51:49:5f:b1:e5: b5:aa:bf:6e:a1:bc:c2:79:1c:67:81:09:cc:d2:2e: e3:7d:db:65:bf:bd:6c:5d:40:4f:35:c4:f4:ca:79: 53:99:d5:66:00:74:4b:95:cd:ce:fe:75:3c:8b:30: 42:11:f8:6b:9b:b5:12:a9:29:d9:05:71:9f:55:9d: d1:d6:b9:a9:9e:c2:ac:d3:70:7b:0f:dc:2d:77:af: 1d:60:25:1b:34:21:83:ed:0a:de:01:50:58:b1:4a: 11:fa:71:0e:07:61:91:31:15:7e:bb:74:88:22:09: 95:0f:c2:e9:7e:dd:9d:df:b3:3d:35:55:97:3e:e7: a7:94:e6:1a:3b:05:75:7e:98:62:79:7b:a9:80:96: cb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:33:B7:64:26:80:F9:F6:91:C6:C7:87:EA:E3:95:17:E3:1C:D0:11 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:96:57:f7:69:f6:5e:07:1a:34:0c:64:ab:b3:cd:fc:5c:13: db:82:f5:93:9e:dd:c0:df:99:9c:04:55:68:29:68:a7:6d:64: 28:9b:fa:f2:93:3b:78:ab:a3:e2:8d:80:76:a8:48:38:a5:f8: 37:4c:fd:c7:b0:6a:0d:22:47:74:e5:1e:ee:99:27:74:d7:3b: 67:d4:da:06:1b:4f:2d:be:88:a6:98:e2:7f:b6:e4:48:40:bf: f2:f1:ce:e4:fb:5a:70:36:8c:ff:8d:95:d6:14:54:7c:f7:e6: 11:5e:a6:4b:6c:64:63:48:7b:5d:cb:c3:1b:1b:05:56:49:c6: 01:33:ad:da:91:32:ba:ff:7d:cf:c5:3f:9b:f1:85:f3:e5:08: e5:78:cc:1e:97:2b:4e:8c:17:e6:ea:3e:7e:de:23:d8:55:b8: f2:17:53:39:fe:ca:dd:51:8a:46:54:cf:cc:fa:14:af:39:42: 7d:61:91:3b:1f:18:e3:0b:d4:f5:c8:47:fa:bc:d0:b5:1b:4f: 47:ee:dd:31:72:2f:2b:8a:f1:73:8e:23:73:ff:87:dc:3e:7f: 7c:9e:7e:be:6f:6d:fd:6c:8d:b4:6e:f3:9c:21:5e:4f:17:f7: 33:5c:40:93:51:52:e5:b5:20:a2:dc:04:13:4e:0b:8f:c0:6c: e9:62:76:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFj7Y2F1+lEX9c0FZiMEfOKWq+gEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNTA1MDcwMzQ3NDlaFw0yNjA1MDYwMzUyNDlaMDMxMTAvBgNV BAMTKDA4MzNCNzY0MjY4MEY5RjY5MUM2Qzc4N0VBRTM5NTE3RTMxQ0QwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+Bf84ZKQfumDNSc4T3G68kKX TEKCrSzFUOMnlg4FGdvDDXFZPRaFjuISZd2EB1QwrpgSi7eV+llZm/Zg10ntmSXd 7GgS3f2h7fiFi44HKMtTzLrow70b86sYNqnCAqziz/5xOj1KY7Rj4er2sZTnBO5R SV+x5bWqv26hvMJ5HGeBCczSLuN922W/vWxdQE81xPTKeVOZ1WYAdEuVzc7+dTyL MEIR+GubtRKpKdkFcZ9VndHWuamewqzTcHsP3C13rx1gJRs0IYPtCt4BUFixShH6 cQ4HYZExFX67dIgiCZUPwul+3Z3fsz01VZc+56eU5ho7BXV+mGJ5e6mAlsvZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCDO3ZCaA+faRxseH6uOVF+Mc0BEwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQBPllf3afZeBxo0DGSrs838XBPbgvWTnt3A35mcBFVoKWin bWQom/rykzt4q6PijYB2qEg4pfg3TP3HsGoNIkd05R7umSd01ztn1NoGG08tvoim mOJ/tuRIQL/y8c7k+1pwNoz/jZXWFFR89+YRXqZLbGRjSHtdy8MbGwVWScYBM63a kTK6/33PxT+b8YXz5QjleMwelytOjBfm6j5+3iPYVbjyF1M5/srdUYpGVM/M+hSv OUJ9YZE7HxjjC9T1yEf6vNC1G09H7t0xci8rivFzjiNz/4fcPn98nn6+b239bI20 bvOcIV5PF/czXECTUVLltSCi3AQTTguPwGzpYnZa -----END CERTIFICATE-----Generated at Sat Jun 7 05:54:58 2025 by rpki-client