$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa File: 3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: lh1ua1Y9ZtE2dDW45ObJ8+6IvX0lmoDB+fa6NG7jmTA= Subject key identifier: 93:5B:82:6B:ED:06:6F:50:BF:82:D1:2C:AC:03:9E:DF:A5:2C:21:FB Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 0D126F375CECCBD45F41EC243251C220657B42BF Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa Signing time: Mon 02 Jun 2025 02:02:48 +0000 ROA not before: Mon 02 Jun 2025 01:57:48 +0000 ROA not after: Mon 01 Jun 2026 02:02:48 +0000 asID: 131775 IP address blocks: 103.16.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:12:6f:37:5c:ec:cb:d4:5f:41:ec:24:32:51:c2:20:65:7b:42:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jun 2 01:57:48 2025 GMT Not After : Jun 1 02:02:48 2026 GMT Subject: CN=935B826BED066F50BF82D12CAC039EDFA52C21FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3f:4d:ab:1a:5e:cd:7f:26:bd:18:4a:12:a2: c6:3d:ff:79:7d:33:69:60:3a:c1:ad:eb:7d:10:e4: b6:bd:82:ba:1a:0e:1f:c9:40:6e:a3:2e:da:52:7b: 48:19:64:e4:ce:6f:a7:d7:18:9d:86:55:92:a0:b2: 3e:ce:33:eb:3f:97:ff:5c:fb:2f:9c:e6:78:92:86: bb:c9:f3:72:61:eb:26:ac:e5:f0:07:2a:85:18:90: 14:d5:34:38:61:e4:62:33:19:0d:3c:8d:d0:d7:06: 01:0d:43:ab:98:36:dd:57:7c:a5:c3:83:9f:50:f8: 42:3c:37:ba:f6:b6:2d:2c:d0:b1:6e:0b:5e:a7:15: 91:a2:22:8c:ea:58:a2:73:af:9f:e5:c4:fa:7d:5c: 40:9f:44:a0:27:73:78:f5:74:60:4b:0f:ed:bc:fa: 64:ff:85:df:21:88:e7:48:9c:74:3c:5d:c0:9e:60: c4:39:94:ec:02:58:be:a3:fe:51:36:7f:07:53:63: 1a:b3:d8:bf:62:58:3a:57:67:86:be:1d:e3:ef:ff: 65:2d:14:30:2c:05:34:40:1b:e5:59:28:7b:83:e8: b0:33:a5:e6:7e:f7:d3:17:27:14:43:74:f3:8a:bb: f4:1e:69:16:45:94:36:45:40:fa:cf:f6:f0:09:07: fd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5B:82:6B:ED:06:6F:50:BF:82:D1:2C:AC:03:9E:DF:A5:2C:21:FB X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.199.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:4d:92:86:8a:92:4d:c7:81:a9:76:61:29:69:45:48:8c:44: c0:c7:1b:27:8a:d6:9d:de:ff:e8:a9:d4:2f:f9:58:ab:1b:14: 16:43:b7:9a:05:af:45:6a:b0:71:c1:77:87:70:72:36:ff:40: 28:bf:7f:09:14:f5:ed:6c:63:18:5b:0f:40:7a:12:ae:a4:20: 35:ca:e1:48:a5:93:a5:b0:65:b8:e0:2d:81:f3:0a:03:03:43: 87:f0:8f:ab:76:01:0f:5d:7c:00:02:46:71:76:5d:ae:86:2b: 78:dd:a1:57:98:98:fc:40:03:29:79:04:dd:f0:f6:e8:fb:f5: 65:06:95:af:47:3d:92:b3:d2:44:2e:e8:b0:61:16:bc:ae:9b: ce:09:ff:0f:f3:67:c5:a4:4f:1c:f3:92:24:cd:c2:c9:63:ea: 9b:7f:3a:ea:1a:17:60:a1:24:24:45:df:a7:3e:86:3c:ba:e1: 52:80:e0:e1:0c:60:37:c0:95:aa:52:83:71:9b:f8:cc:16:85: a0:f8:5a:98:2d:5d:b3:6d:f1:9f:b9:fd:75:81:24:98:4e:ab: c6:7e:8c:98:1b:1a:c5:99:d4:4c:e0:1a:6a:a1:56:21:aa:4e: aa:9e:ca:3a:82:18:6b:72:b1:e2:fc:b9:7e:db:72:c8:33:89: 49:3c:b8:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDRJvN1zsy9RfQewkMlHCIGV7Qr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNTA2MDIwMTU3NDhaFw0yNjA2MDEwMjAyNDhaMDMxMTAvBgNV BAMTKDkzNUI4MjZCRUQwNjZGNTBCRjgyRDEyQ0FDMDM5RURGQTUyQzIxRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaP02rGl7Nfya9GEoSosY9/3l9 M2lgOsGt630Q5La9groaDh/JQG6jLtpSe0gZZOTOb6fXGJ2GVZKgsj7OM+s/l/9c +y+c5niShrvJ83Jh6yas5fAHKoUYkBTVNDhh5GIzGQ08jdDXBgENQ6uYNt1XfKXD g59Q+EI8N7r2ti0s0LFuC16nFZGiIozqWKJzr5/lxPp9XECfRKAnc3j1dGBLD+28 +mT/hd8hiOdInHQ8XcCeYMQ5lOwCWL6j/lE2fwdTYxqz2L9iWDpXZ4a+HePv/2Ut FDAsBTRAG+VZKHuD6LAzpeZ+99MXJxRDdPOKu/QeaRZFlDZFQPrP9vAJB/0FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUk1uCa+0Gb1C/gtEsrAOe36UsIfswHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzEzNjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxDHMA0GCSqG SIb3DQEBCwUAA4IBAQCNTZKGipJNx4GpdmEpaUVIjETAxxsnitad3v/oqdQv+Vir GxQWQ7eaBa9FarBxwXeHcHI2/0Aov38JFPXtbGMYWw9AehKupCA1yuFIpZOlsGW4 4C2B8woDA0OH8I+rdgEPXXwAAkZxdl2uhit43aFXmJj8QAMpeQTd8Pbo+/VlBpWv Rz2Ss9JELuiwYRa8rpvOCf8P82fFpE8c85IkzcLJY+qbfzrqGhdgoSQkRd+nPoY8 uuFSgODhDGA3wJWqUoNxm/jMFoWg+FqYLV2zbfGfuf11gSSYTqvGfoyYGxrFmdRM 4BpqoVYhqk6qnso6ghhrcrHi/Ll+23LIM4lJPLgF -----END CERTIFICATE-----Generated at Sun Jun 8 12:46:12 2025 by rpki-client