$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa File: 3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa (raw, json) Hash identifier: YWVKY2G+Nvg6caG2vXoeK6bw0DFIbKqpsrtcWOftF08= Subject key identifier: 46:45:2A:BA:BD:0C:55:DF:FC:71:B2:6F:87:9D:C2:CF:23:92:26:91 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 7E76BFC77831FC9D3BC2CAC097CF60610D01C7D9 Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa Signing time: Wed 07 May 2025 03:53:13 +0000 ROA not before: Wed 07 May 2025 03:48:13 +0000 ROA not after: Wed 06 May 2026 03:53:13 +0000 asID: 140478 IP address blocks: 103.154.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:76:bf:c7:78:31:fc:9d:3b:c2:ca:c0:97:cf:60:61:0d:01:c7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 7 03:48:13 2025 GMT Not After : May 6 03:53:13 2026 GMT Subject: CN=46452ABABD0C55DFFC71B26F879DC2CF23922691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:b0:79:56:2b:3c:cb:6c:b4:60:e5:78:60: 31:3c:a4:88:43:c6:01:b9:59:ae:9f:a1:c1:b7:6c: a3:1c:95:92:12:48:15:62:b5:19:d4:70:26:8f:9a: 1e:22:13:34:5c:e9:ed:3a:fc:41:f9:fa:a8:bd:2b: bd:09:ea:57:be:70:99:ee:36:68:17:24:ca:32:91: 99:36:17:c2:1b:d2:58:1f:9e:80:b4:12:94:42:12: 75:33:44:bb:43:e3:15:7e:7d:d4:ff:e8:e0:32:8e: 73:56:fe:37:bc:74:0e:b5:2c:4a:2c:e9:57:25:b8: 43:27:68:b3:b8:81:df:0e:49:78:56:c3:64:81:3e: 46:d8:10:b8:1e:4c:c4:4c:5c:16:a8:15:24:da:d0: 80:9e:90:77:21:f9:b5:d5:3c:05:b1:13:1f:00:eb: 46:7f:75:31:bf:cf:f2:ba:d7:43:be:07:e7:b2:1a: 64:61:e2:ab:16:58:07:d6:72:f4:09:cb:01:8c:e6: c5:bf:05:7a:64:24:9a:f5:03:2b:8c:5b:8b:0a:26: 4f:65:51:bf:73:49:78:90:30:eb:f2:14:52:c8:43: 1e:b4:13:10:e6:8f:a2:18:ea:c1:cc:7d:79:22:a6: a9:2c:69:de:ea:b8:cb:ed:03:56:fc:4e:39:87:cb: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:45:2A:BA:BD:0C:55:DF:FC:71:B2:6F:87:9D:C2:CF:23:92:26:91 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.25.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:b2:f1:21:51:3a:50:ae:54:33:16:c2:8e:42:ab:d5:7b:fc: 1b:6c:47:0b:56:c4:fc:57:f1:01:a1:21:d4:26:c7:02:5a:49: f1:db:3e:e6:1e:06:25:bb:fa:9d:e5:c5:1c:5a:43:ff:1a:1a: 82:56:e3:41:0d:fb:59:49:44:fb:48:06:5e:eb:10:a4:22:b5: d8:e5:ff:ca:79:0a:bf:d9:14:8e:29:c6:64:78:ee:35:c7:6b: dd:60:86:10:dc:d7:85:5d:4f:64:01:71:93:7f:72:7b:e5:56: 0d:ba:08:08:c0:e1:41:a0:58:c1:cd:0a:e4:74:35:00:a1:c6: c9:20:20:75:cb:07:85:e3:f9:4e:da:e7:0f:a2:9f:9d:8a:12: ce:1d:f8:c2:80:0d:ef:19:16:e9:32:b8:ae:92:d7:3f:27:27: 63:f4:dc:20:72:a3:14:90:62:e9:2d:4d:96:a8:65:f6:72:60: a8:38:ad:a5:4e:8c:4b:18:0f:b9:22:e9:56:3a:cb:28:16:37: 9c:e1:7b:2f:04:9a:10:a5:a8:69:a1:98:b0:58:c6:90:e7:c1: 84:e1:eb:fa:87:c6:f3:31:0d:cd:0d:d6:fd:d1:8d:b0:3b:d0: 76:2c:d6:5c:e2:20:50:1d:9d:47:72:04:f2:c3:45:ab:85:b2: 55:de:82:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfna/x3gx/J07wsrAl89gYQ0Bx9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNTA1MDcwMzQ4MTNaFw0yNjA1MDYwMzUzMTNaMDMxMTAvBgNV BAMTKDQ2NDUyQUJBQkQwQzU1REZGQzcxQjI2Rjg3OURDMkNGMjM5MjI2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6rLB5Vis8y2y0YOV4YDE8pIhD xgG5Wa6focG3bKMclZISSBVitRnUcCaPmh4iEzRc6e06/EH5+qi9K70J6le+cJnu NmgXJMoykZk2F8Ib0lgfnoC0EpRCEnUzRLtD4xV+fdT/6OAyjnNW/je8dA61LEos 6VcluEMnaLO4gd8OSXhWw2SBPkbYELgeTMRMXBaoFSTa0ICekHch+bXVPAWxEx8A 60Z/dTG/z/K610O+B+eyGmRh4qsWWAfWcvQJywGM5sW/BXpkJJr1AyuMW4sKJk9l Ub9zSXiQMOvyFFLIQx60ExDmj6IY6sHMfXkipqksad7quMvtA1b8TjmHy1sFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURkUqur0MVd/8cbJvh53CzyOSJpEwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5oZMA0GCSqG SIb3DQEBCwUAA4IBAQA7svEhUTpQrlQzFsKOQqvVe/wbbEcLVsT8V/EBoSHUJscC Wknx2z7mHgYlu/qd5cUcWkP/GhqCVuNBDftZSUT7SAZe6xCkIrXY5f/KeQq/2RSO KcZkeO41x2vdYIYQ3NeFXU9kAXGTf3J75VYNuggIwOFBoFjBzQrkdDUAocbJICB1 yweF4/lO2ucPop+dihLOHfjCgA3vGRbpMriuktc/Jydj9NwgcqMUkGLpLU2WqGX2 cmCoOK2lToxLGA+5IulWOssoFjec4XsvBJoQpahpoZiwWMaQ58GE4ev6h8bzMQ3N Ddb90Y2wO9B2LNZc4iBQHZ1HcgTyw0WrhbJV3oIf -----END CERTIFICATE-----Generated at Sat Jun 7 15:30:27 2025 by rpki-client