$ rpki-client -vvf repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa File: 3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa (raw, json) Hash identifier: PgHEb146XoyGC0/9tuhNMcAsAzVP9MObWQdPhmy9XiA= Subject key identifier: B9:95:19:2B:52:AD:BE:5D:C9:5E:A9:0A:EC:9F:C3:E6:6D:A4:91:ED Certificate issuer: /CN=1975F0B2F27DE4AFF43CC246058A2B9E15950AEC Certificate serial: 4E67A461F547BBEF34ACF3AA562A936BAD7A85D3 Authority key identifier: 19:75:F0:B2:F2:7D:E4:AF:F4:3C:C2:46:05:8A:2B:9E:15:95:0A:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa Signing time: Mon 02 Jun 2025 02:02:47 +0000 ROA not before: Mon 02 Jun 2025 01:57:47 +0000 ROA not after: Mon 01 Jun 2026 02:02:47 +0000 asID: 139443 IP address blocks: 103.145.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.crl rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:67:a4:61:f5:47:bb:ef:34:ac:f3:aa:56:2a:93:6b:ad:7a:85:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1975F0B2F27DE4AFF43CC246058A2B9E15950AEC Validity Not Before: Jun 2 01:57:47 2025 GMT Not After : Jun 1 02:02:47 2026 GMT Subject: CN=B995192B52ADBE5DC95EA90AEC9FC3E66DA491ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cb:eb:3e:57:3a:19:b3:55:85:39:e5:9a:fc: b7:cf:85:7f:cd:76:ba:20:da:b6:35:5a:33:31:87: e4:75:72:1a:89:5c:f9:71:12:14:b6:52:6c:ed:77: a0:c3:f6:4d:6e:cf:53:71:08:cd:bd:93:22:2c:37: dd:05:eb:0b:7b:fa:42:37:44:41:cf:7f:ec:b7:5d: 23:6e:2e:a4:3f:e9:52:60:73:98:d4:4e:6c:91:13: b1:1f:e8:ad:07:84:5f:cc:95:69:ad:71:fb:65:65: 7d:5a:07:2f:88:a8:42:8e:26:53:5b:ed:00:6b:49: ac:0a:3a:40:da:1d:5a:b8:f4:06:4c:2e:10:2a:1e: 91:7b:60:a2:91:cf:c0:45:37:6d:f5:79:9d:de:13: 6d:f5:7d:14:13:61:84:13:aa:13:cb:4d:07:cd:9a: 35:1f:ee:1d:5f:66:bc:b9:a4:63:55:31:73:91:3e: 30:32:14:b4:c7:19:ed:ad:47:ae:ec:f6:ed:2d:b2: 5d:ee:cf:33:76:9d:1d:21:83:07:dd:d2:55:58:06: 17:6d:ec:0f:91:b9:f7:cb:ac:9d:f2:37:ee:e3:3e: 00:02:39:d6:fd:02:4c:96:91:1c:d7:71:73:72:2f: d8:6c:41:e6:22:05:d4:e8:6c:47:ff:20:1f:f3:f6: b1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:95:19:2B:52:AD:BE:5D:C9:5E:A9:0A:EC:9F:C3:E6:6D:A4:91:ED X509v3 Authority Key Identifier: keyid:19:75:F0:B2:F2:7D:E4:AF:F4:3C:C2:46:05:8A:2B:9E:15:95:0A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.97.0/24 Signature Algorithm: sha256WithRSAEncryption 33:09:a6:8d:af:90:5c:6d:80:02:1a:d6:cd:05:2e:00:87:32: b3:9f:6a:2b:47:66:34:a3:e0:52:75:6b:00:73:c2:5b:88:57: 8c:33:41:2d:75:b8:ab:f3:fc:8b:a6:c4:46:cf:27:26:5b:4c: 4a:d9:a6:7e:eb:83:6b:15:f2:49:2e:77:bd:36:f9:60:4e:06: 7f:34:e8:04:75:4c:73:62:74:f0:97:08:39:93:9f:6a:1c:48: 35:39:55:12:42:f6:27:18:d2:83:3d:27:ba:bd:c9:eb:73:62: b2:28:a3:46:97:b3:66:23:a4:2a:0c:76:8f:d8:75:e8:8d:f8: 5e:28:40:81:06:f0:3d:12:30:cf:88:77:33:80:25:ce:23:fd: 9b:22:12:14:3f:a5:35:75:49:85:13:70:3e:01:c3:90:50:b4: fb:9c:6c:ed:62:83:8a:77:4f:d8:1d:48:c8:7b:f6:fa:d8:de: 0f:04:84:36:09:59:05:39:31:da:e3:8d:e4:24:70:f8:3a:64: e2:6c:c4:e0:a5:9f:c2:0e:1a:75:6e:38:3d:1e:91:83:0d:31: 8d:62:7f:9f:59:1c:48:ec:1c:8a:86:86:ed:a6:2b:a6:a2:8a: 1c:1c:36:d2:f3:f4:a6:c5:fb:51:19:a4:2f:68:0a:a8:8f:57: 55:b4:93:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTmekYfVHu+80rPOqViqTa616hdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NUYwQjJGMjdERTRBRkY0M0NDMjQ2MDU4QTJCOUUx NTk1MEFFQzAeFw0yNTA2MDIwMTU3NDdaFw0yNjA2MDEwMjAyNDdaMDMxMTAvBgNV BAMTKEI5OTUxOTJCNTJBREJFNURDOTVFQTkwQUVDOUZDM0U2NkRBNDkxRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmy+s+VzoZs1WFOeWa/LfPhX/N drog2rY1WjMxh+R1chqJXPlxEhS2Umztd6DD9k1uz1NxCM29kyIsN90F6wt7+kI3 REHPf+y3XSNuLqQ/6VJgc5jUTmyRE7Ef6K0HhF/MlWmtcftlZX1aBy+IqEKOJlNb 7QBrSawKOkDaHVq49AZMLhAqHpF7YKKRz8BFN231eZ3eE231fRQTYYQTqhPLTQfN mjUf7h1fZry5pGNVMXORPjAyFLTHGe2tR67s9u0tsl3uzzN2nR0hgwfd0lVYBhdt 7A+RuffLrJ3yN+7jPgACOdb9AkyWkRzXcXNyL9hsQeYiBdTobEf/IB/z9rE3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuZUZK1Ktvl3JXqkK7J/D5m2kke0wHwYDVR0j BBgwFoAUGXXwsvJ95K/0PMJGBYornhWVCuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDMzNjJlMi05NzY1LTQyYmQtYjU5Yi02OGQ0M2NhZGViNWMvMC8xOTc1RjBCMkYy N0RFNEFGRjQzQ0MyNDYwNThBMkI5RTE1OTUwQUVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NUYwQjJGMjdERTRBRkY0M0NDMjQ2MDU4QTJCOUUxNTk1 MEFFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwMzM2MmUyLTk3NjUtNDJiZC1i NTliLTY4ZDQzY2FkZWI1Yy8wLzMxMzAzMzJlMzEzNDM1MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5FhMA0GCSqG SIb3DQEBCwUAA4IBAQAzCaaNr5BcbYACGtbNBS4AhzKzn2orR2Y0o+BSdWsAc8Jb iFeMM0Etdbir8/yLpsRGzycmW0xK2aZ+64NrFfJJLne9NvlgTgZ/NOgEdUxzYnTw lwg5k59qHEg1OVUSQvYnGNKDPSe6vcnrc2KyKKNGl7NmI6QqDHaP2HXojfheKECB BvA9EjDPiHczgCXOI/2bIhIUP6U1dUmFE3A+AcOQULT7nGztYoOKd0/YHUjIe/b6 2N4PBIQ2CVkFOTHa443kJHD4OmTibMTgpZ/CDhp1bjg9HpGDDTGNYn+fWRxI7ByK hobtpiumooocHDbS8/SmxftRGaQvaAqoj1dVtJOr -----END CERTIFICATE-----Generated at Fri Jun 6 16:46:44 2025 by rpki-client