$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa File: 3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: GUJzG7I21c6XIuzE+3MXjSNzND91626bZhTZv88Tj9U= Subject key identifier: 96:65:F3:F4:AD:73:E9:52:FE:5E:3D:D0:B0:84:FB:72:6E:36:0D:B5 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 11EEE48A837B9ED89443F19469115A5F556954E0 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:48 +0000 ROA not before: Mon 02 Jun 2025 01:57:48 +0000 ROA not after: Mon 01 Jun 2026 02:02:48 +0000 asID: 131775 IP address blocks: 103.16.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ee:e4:8a:83:7b:9e:d8:94:43:f1:94:69:11:5a:5f:55:69:54:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:48 2025 GMT Not After : Jun 1 02:02:48 2026 GMT Subject: CN=9665F3F4AD73E952FE5E3DD0B084FB726E360DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6d:f9:5c:d2:e0:0e:ca:c9:01:3d:be:82:ed: 6b:ca:b2:7b:03:6e:d4:26:4e:6d:64:ae:a8:03:fa: c8:da:f9:02:ca:d5:09:ab:7c:b3:25:9a:e3:b0:5c: 48:83:65:03:b5:8d:70:9a:2d:18:90:d1:80:5f:a5: 0f:1e:c2:1b:62:55:8a:dd:07:5f:5a:bc:82:c4:eb: 87:6d:2f:02:03:d4:b9:d2:7d:1e:bc:ed:bf:f7:6a: c2:c6:be:65:e1:7a:99:4d:fb:6b:65:d0:04:79:20: cf:90:62:85:b0:fb:70:4e:c7:3b:db:a6:fc:9f:0c: 67:4f:a6:8f:17:e9:d7:5d:74:64:ee:66:17:cd:9c: ae:4a:a7:65:9d:70:15:53:8c:d0:d6:ae:eb:3e:09: 05:da:9e:4f:fa:12:0c:79:db:16:f8:2a:41:b7:e1: c5:74:fa:4d:60:8e:c0:fe:01:1a:88:a3:c1:af:3a: fb:1f:86:f1:70:35:5e:aa:12:08:da:a6:49:c2:18: 5d:8b:ea:c1:9f:8e:36:70:b2:1e:3a:97:6f:4e:12: 7c:6b:16:8f:e4:69:23:7b:69:a1:4a:78:61:c4:4e: af:5e:5a:7a:a1:d4:ad:90:98:da:5b:f5:52:40:ca: 8a:6d:49:d2:c5:bd:13:b4:12:11:fa:3d:53:a0:1f: 11:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:65:F3:F4:AD:73:E9:52:FE:5E:3D:D0:B0:84:FB:72:6E:36:0D:B5 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139382e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.198.0/24 Signature Algorithm: sha256WithRSAEncryption 51:dd:a2:cd:0b:95:74:ff:a3:89:04:ab:7f:a3:24:d1:3c:c3: ac:95:1f:ac:a1:33:25:91:dc:77:e4:d5:83:2a:05:a8:9b:ac: 56:e4:91:73:56:23:92:68:4e:49:51:4d:55:ad:b5:55:61:c8: c1:3f:83:e3:87:ed:88:7d:e9:66:b1:1a:c9:54:c3:a6:9d:9d: 77:47:9d:bb:e2:89:d9:e0:20:fe:59:04:26:c2:6d:2b:56:e7: 78:24:67:17:60:50:f9:83:1b:6c:1b:ea:ce:1f:07:24:9d:7b: c3:6c:40:06:71:54:13:dc:fe:c3:49:66:69:d6:4a:94:d3:ca: 0d:f2:1a:48:d1:55:4c:6e:d5:9a:16:78:0b:4d:fa:00:9e:47: e2:bc:2e:d3:f4:f6:f8:79:7e:f5:af:26:02:cc:9b:76:c0:bc: b3:fc:b9:0d:65:8b:c0:af:30:c8:8e:f8:df:d8:2c:38:c7:cd: f0:49:2e:73:66:87:2b:e1:b3:37:05:6f:ec:28:a8:18:95:ae: 07:f1:85:65:7e:66:a0:a3:34:ff:46:f0:a3:da:17:64:bf:b6: 78:2c:0f:06:b9:dd:11:d5:19:15:8e:98:90:7a:47:63:ef:aa: 58:32:1b:78:10:fb:ea:0f:34:7d:1e:f5:ed:0d:a6:f0:cf:8c: 9c:bf:6e:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEe7kioN7ntiUQ/GUaRFaX1VpVOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDhaFw0yNjA2MDEwMjAyNDhaMDMxMTAvBgNV BAMTKDk2NjVGM0Y0QUQ3M0U5NTJGRTVFM0REMEIwODRGQjcyNkUzNjBEQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFbflc0uAOyskBPb6C7WvKsnsD btQmTm1krqgD+sja+QLK1QmrfLMlmuOwXEiDZQO1jXCaLRiQ0YBfpQ8ewhtiVYrd B19avILE64dtLwID1LnSfR687b/3asLGvmXheplN+2tl0AR5IM+QYoWw+3BOxzvb pvyfDGdPpo8X6ddddGTuZhfNnK5Kp2WdcBVTjNDWrus+CQXank/6Egx52xb4KkG3 4cV0+k1gjsD+ARqIo8GvOvsfhvFwNV6qEgjapknCGF2L6sGfjjZwsh46l29OEnxr Fo/kaSN7aaFKeGHETq9eWnqh1K2QmNpb9VJAyoptSdLFvRO0EhH6PVOgHxEtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlmXz9K1z6VL+Xj3QsIT7cm42DbUwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzEzNjJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxDGMA0GCSqG SIb3DQEBCwUAA4IBAQBR3aLNC5V0/6OJBKt/oyTRPMOslR+soTMlkdx35NWDKgWo m6xW5JFzViOSaE5JUU1VrbVVYcjBP4Pjh+2IfelmsRrJVMOmnZ13R5274onZ4CD+ WQQmwm0rVud4JGcXYFD5gxtsG+rOHwcknXvDbEAGcVQT3P7DSWZp1kqU08oN8hpI 0VVMbtWaFngLTfoAnkfivC7T9Pb4eX71ryYCzJt2wLyz/LkNZYvArzDIjvjf2Cw4 x83wSS5zZocr4bM3BW/sKKgYla4H8YVlfmagozT/RvCj2hdkv7Z4LA8Gud0R1RkV jpiQekdj76pYMht4EPvqDzR9HvXtDabwz4ycv25b -----END CERTIFICATE-----Generated at Sat Jun 7 12:04:35 2025 by rpki-client