$ rpki-client -vvf repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/3130332e38362e3130332e302f32342d3234203d3e20313336303831.roa File: 3130332e38362e3130332e302f32342d3234203d3e20313336303831.roa (raw, json) Hash identifier: FH/voLgmuZE3XbtxgnYOWLHEkRd7OKtR53sqhIsyCzA= Subject key identifier: 14:16:A5:93:CA:FC:CD:74:3A:55:CD:1A:B5:0A:2D:B8:CF:1E:BC:3A Certificate issuer: /CN=EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9 Certificate serial: 3FF2FCFB2EDF5BFCC11A76FC9A979F80FC1988BA Authority key identifier: EB:17:E4:6A:BC:B7:8A:51:E4:C5:B9:A1:4B:D7:81:7F:CC:60:92:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/3130332e38362e3130332e302f32342d3234203d3e20313336303831.roa Signing time: Mon 02 Jun 2025 01:02:32 +0000 ROA not before: Mon 02 Jun 2025 00:57:32 +0000 ROA not after: Mon 01 Jun 2026 01:02:32 +0000 asID: 136081 IP address blocks: 103.86.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.crl rsync://repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 12:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f2:fc:fb:2e:df:5b:fc:c1:1a:76:fc:9a:97:9f:80:fc:19:88:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9 Validity Not Before: Jun 2 00:57:32 2025 GMT Not After : Jun 1 01:02:32 2026 GMT Subject: CN=1416A593CAFCCD743A55CD1AB50A2DB8CF1EBC3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d6:ce:91:3e:94:ae:9b:7e:ab:2e:4e:3f:5b: ab:11:c9:18:88:b2:5b:90:d6:6d:c8:07:a6:e3:86: a8:59:56:9f:76:78:ac:f7:3b:f6:14:57:ff:81:e3: 92:10:eb:7a:1f:2d:07:7e:8d:77:db:b7:d6:10:cf: 1a:b1:e4:12:66:1f:a4:56:b7:2a:54:9c:04:74:1f: ad:50:69:f5:d3:c7:98:3a:20:63:4d:9e:5d:e3:47: e3:1b:ad:45:41:5e:ca:25:96:3a:93:98:a2:d5:8d: f0:df:a5:e2:06:3a:da:7e:cc:12:29:d1:7d:6f:fc: 1f:bd:4d:15:67:37:94:60:ee:fb:85:3b:76:98:fd: 15:af:d4:eb:59:95:1d:96:e2:a2:59:08:56:4f:35: 60:54:c0:51:db:ee:9b:25:24:8e:22:ed:41:33:22: 1a:39:ba:76:25:da:6d:5f:fe:7e:f4:20:d7:03:9c: ac:98:e5:1c:85:31:c0:0d:f9:73:1b:32:6b:e3:95: 05:6d:5f:96:cf:2a:28:69:9f:32:1e:9a:ed:b5:b2: 45:d1:ef:e3:5e:d6:64:a4:37:f0:c8:34:18:23:73: 18:48:37:e9:af:b1:d0:b8:31:6b:f8:55:39:a3:aa: a7:ba:72:27:08:31:a6:93:ad:b3:5d:a6:6f:a9:6e: 20:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:16:A5:93:CA:FC:CD:74:3A:55:CD:1A:B5:0A:2D:B8:CF:1E:BC:3A X509v3 Authority Key Identifier: keyid:EB:17:E4:6A:BC:B7:8A:51:E4:C5:B9:A1:4B:D7:81:7F:CC:60:92:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EB17E46ABCB78A51E4C5B9A14BD7817FCC6092F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f260586d-b027-4656-b631-05896b543782/0/3130332e38362e3130332e302f32342d3234203d3e20313336303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.103.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e8:e5:52:89:c4:c9:a5:91:57:bc:a5:89:44:e5:be:1f:a3: 31:0e:2d:ff:d0:ca:00:49:ce:31:f8:3a:41:89:cc:be:d7:a7: 70:57:d5:18:98:dd:4a:80:6d:a2:44:e9:7f:c6:34:e2:46:5e: 55:2f:86:27:c0:44:3f:41:5a:1f:6c:84:e7:2d:a7:d5:5c:f1: 0f:07:b3:26:a3:3b:1c:6e:b8:92:65:02:9a:7d:9d:3c:42:00: 22:c9:8b:62:7d:3a:c2:6d:b7:9e:96:df:9e:43:ea:27:7d:66: 58:c7:0c:21:14:64:84:d0:ad:8c:39:07:11:1c:8d:52:a4:93: b2:9c:88:1e:ef:0d:aa:43:fc:fc:a9:1d:30:bc:9f:47:bc:e7: 58:c1:59:7a:9e:8c:36:81:c1:5a:89:73:ef:be:04:5c:4a:1d: 91:b9:fe:8e:15:40:d0:6b:8c:84:69:ec:56:87:86:41:ce:dc: 57:5c:5c:63:d0:a0:8e:9c:28:46:09:2d:21:3b:e7:d5:95:09: bf:b7:35:d9:48:f8:bd:ac:5b:ee:01:a2:c9:d5:39:c3:c4:a5: c9:a7:18:53:9d:7a:55:1a:5c:bc:07:04:7d:73:90:1c:df:6e: 10:67:63:d6:e3:ce:0f:cb:07:20:ef:e9:63:9d:04:a4:c6:88: a5:c5:5d:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP/L8+y7fW/zBGnb8mpefgPwZiLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIxN0U0NkFCQ0I3OEE1MUU0QzVCOUExNEJENzgxN0ZD QzYwOTJGOTAeFw0yNTA2MDIwMDU3MzJaFw0yNjA2MDEwMTAyMzJaMDMxMTAvBgNV BAMTKDE0MTZBNTkzQ0FGQ0NENzQzQTU1Q0QxQUI1MEEyREI4Q0YxRUJDM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg1s6RPpSum36rLk4/W6sRyRiI sluQ1m3IB6bjhqhZVp92eKz3O/YUV/+B45IQ63ofLQd+jXfbt9YQzxqx5BJmH6RW typUnAR0H61QafXTx5g6IGNNnl3jR+MbrUVBXsolljqTmKLVjfDfpeIGOtp+zBIp 0X1v/B+9TRVnN5Rg7vuFO3aY/RWv1OtZlR2W4qJZCFZPNWBUwFHb7pslJI4i7UEz Iho5unYl2m1f/n70INcDnKyY5RyFMcAN+XMbMmvjlQVtX5bPKihpnzIemu21skXR 7+Ne1mSkN/DINBgjcxhIN+mvsdC4MWv4VTmjqqe6cicIMaaTrbNdpm+pbiARAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFBalk8r8zXQ6Vc0atQotuM8evDowHwYDVR0j BBgwFoAU6xfkary3ilHkxbmhS9eBf8xgkvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MjYwNTg2ZC1iMDI3LTQ2NTYtYjYzMS0wNTg5NmI1NDM3ODIvMC9FQjE3RTQ2QUJD Qjc4QTUxRTRDNUI5QTE0QkQ3ODE3RkNDNjA5MkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUIxN0U0NkFCQ0I3OEE1MUU0QzVCOUExNEJENzgxN0ZDQzYw OTJGOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNjA1ODZkLWIwMjctNDY1Ni1i NjMxLTA1ODk2YjU0Mzc4Mi8wLzMxMzAzMzJlMzgzNjJlMzEzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1ZnMA0GCSqG SIb3DQEBCwUAA4IBAQAS6OVSicTJpZFXvKWJROW+H6MxDi3/0MoASc4x+DpBicy+ 16dwV9UYmN1KgG2iROl/xjTiRl5VL4YnwEQ/QVofbITnLafVXPEPB7MmozscbriS ZQKafZ08QgAiyYtifTrCbbeelt+eQ+onfWZYxwwhFGSE0K2MOQcRHI1SpJOynIge 7w2qQ/z8qR0wvJ9HvOdYwVl6now2gcFaiXPvvgRcSh2Ruf6OFUDQa4yEaexWh4ZB ztxXXFxj0KCOnChGCS0hO+fVlQm/tzXZSPi9rFvuAaLJ1TnDxKXJpxhTnXpVGly8 BwR9c5Ac324QZ2PW484Pywcg7+ljnQSkxoilxV3u -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:42 2025 by rpki-client