$ rpki-client -vvf repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232362e302f32342d3234203d3e20313430343239.roa File: 3130332e3135312e3232362e302f32342d3234203d3e20313430343239.roa (raw, json) Hash identifier: 95rrpHgHcYlBddvbgX3RJAAMir/2oNARNGF298XXujg= Subject key identifier: 27:5A:D2:D1:E5:8D:8F:DB:58:63:F1:D1:B0:53:9D:0B:33:D5:16:18 Certificate issuer: /CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Certificate serial: 110F844B83EC7ADCF235C9EC76DA6D06FC3B7B18 Authority key identifier: C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232362e302f32342d3234203d3e20313430343239.roa Signing time: Mon 02 Jun 2025 02:04:52 +0000 ROA not before: Mon 02 Jun 2025 01:59:52 +0000 ROA not after: Mon 01 Jun 2026 02:04:52 +0000 asID: 140429 IP address blocks: 103.151.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0f:84:4b:83:ec:7a:dc:f2:35:c9:ec:76:da:6d:06:fc:3b:7b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Validity Not Before: Jun 2 01:59:52 2025 GMT Not After : Jun 1 02:04:52 2026 GMT Subject: CN=275AD2D1E58D8FDB5863F1D1B0539D0B33D51618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:98:80:64:b9:a0:9c:de:8a:86:55:76:49: e8:a1:fb:0d:8d:23:25:cf:3f:c6:b4:67:44:12:5d: f4:b4:9d:bf:33:c8:40:21:1f:69:38:e5:3b:3f:bc: fc:9a:77:13:38:8d:4f:1a:11:af:8a:6a:8b:dd:74: 04:69:61:4b:cc:2a:af:98:86:91:ce:d0:2b:80:8c: 76:76:91:06:c9:7b:a2:af:e8:cd:44:37:fc:3e:86: ff:0a:6c:ad:51:82:31:5d:56:d5:e0:28:43:5c:58: 9f:2d:e2:68:db:17:d1:d9:50:85:46:13:8c:05:48: 5d:15:14:39:9c:a4:f1:7b:6a:0c:09:9f:d4:76:db: 6f:67:4a:ff:b5:7f:3e:12:6c:25:77:cf:84:d2:04: db:de:f9:e0:89:b5:9e:0d:31:50:92:d8:7b:a1:9c: 12:01:9a:7a:cb:bd:6a:31:a7:d3:80:f9:e7:8e:9f: 93:93:31:07:ca:a1:0f:4b:0b:b3:07:31:81:db:fa: 94:88:d2:5d:4f:5d:35:a2:4a:1b:d0:77:ab:f0:09: 45:5d:d4:1d:31:85:9b:3e:8c:13:26:28:10:be:7c: 8a:1a:2d:fd:4e:97:32:17:88:e1:00:fa:6e:41:03: 5e:f5:95:93:21:a3:8e:08:4b:83:f9:cb:0b:e7:2e: 79:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5A:D2:D1:E5:8D:8F:DB:58:63:F1:D1:B0:53:9D:0B:33:D5:16:18 X509v3 Authority Key Identifier: keyid:C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232362e302f32342d3234203d3e20313430343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.226.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:37:94:f9:80:be:94:08:ee:f8:53:2b:2d:e4:cd:41:c0:c4: 0e:6e:d6:40:5c:57:22:14:63:c5:cc:74:0e:fb:b6:22:aa:7c: ab:e7:30:0c:a5:b5:6e:28:f9:0c:2a:2e:e6:9d:a6:fc:32:91: e6:f0:35:2b:56:6e:ad:69:da:ec:72:97:75:1b:3e:8b:9a:96: f1:33:1b:50:d3:ee:a8:2e:26:92:2e:91:e1:17:c9:3a:09:78: 43:62:0f:3b:96:d5:fa:d6:0e:e2:8b:70:08:a5:fd:32:d2:16: 3a:07:ef:cc:4c:4d:a9:9b:80:1c:b7:1f:97:bf:68:fb:26:fb: 42:4b:38:64:da:c3:34:3b:51:b2:1e:d0:81:f2:db:da:6b:8c: 80:38:33:db:a2:53:0f:17:96:32:04:7c:e9:89:d2:7c:0e:2b: fa:5e:4e:66:c1:5b:78:91:6b:24:ec:22:c6:a0:5b:6c:36:9e: 15:7b:9e:81:1b:f8:1b:15:22:c1:58:55:7e:9c:05:76:31:92: 29:32:d2:dd:02:59:02:f3:48:81:a0:b2:6f:a8:ae:1e:f1:97: 8a:0c:44:7c:0a:dd:27:53:2e:5e:00:fd:2c:45:33:2e:03:2c: 43:b6:4d:c4:db:ce:87:c0:32:7a:ae:ac:a9:cc:8c:4e:e9:32: 00:f2:5a:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEQ+ES4PsetzyNcnsdtptBvw7exgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNC Q0FGMThENzAeFw0yNTA2MDIwMTU5NTJaFw0yNjA2MDEwMjA0NTJaMDMxMTAvBgNV BAMTKDI3NUFEMkQxRTU4RDhGREI1ODYzRjFEMUIwNTM5RDBCMzNENTE2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/FpiAZLmgnN6KhlV2Seih+w2N IyXPP8a0Z0QSXfS0nb8zyEAhH2k45Ts/vPyadxM4jU8aEa+KaovddARpYUvMKq+Y hpHO0CuAjHZ2kQbJe6Kv6M1EN/w+hv8KbK1RgjFdVtXgKENcWJ8t4mjbF9HZUIVG E4wFSF0VFDmcpPF7agwJn9R2229nSv+1fz4SbCV3z4TSBNve+eCJtZ4NMVCS2Huh nBIBmnrLvWoxp9OA+eeOn5OTMQfKoQ9LC7MHMYHb+pSI0l1PXTWiShvQd6vwCUVd 1B0xhZs+jBMmKBC+fIoaLf1OlzIXiOEA+m5BA171lZMho44IS4P5ywvnLnlZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJ1rS0eWNj9tYY/HRsFOdCzPVFhgwHwYDVR0j BBgwFoAUyCqArcvYNvTY1eTpgIjD7LyvGNcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzJhYjA2Mi04NzAzLTRkYTYtYWQ3Mi04MGQyNWFlOGJmNWYvMC9DODJBODBBRENC RDgzNkY0RDhENUU0RTk4MDg4QzNFQ0JDQUYxOEQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNCQ0FG MThENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjMmFiMDYyLTg3MDMtNGRhNi1h ZDcyLTgwZDI1YWU4YmY1Zi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnl+IwDQYJ KoZIhvcNAQELBQADggEBAGs3lPmAvpQI7vhTKy3kzUHAxA5u1kBcVyIUY8XMdA77 tiKqfKvnMAyltW4o+QwqLuadpvwykebwNStWbq1p2uxyl3UbPoualvEzG1DT7qgu JpIukeEXyToJeENiDzuW1frWDuKLcAil/TLSFjoH78xMTambgBy3H5e/aPsm+0JL OGTawzQ7UbIe0IHy29prjIA4M9uiUw8XljIEfOmJ0nwOK/peTmbBW3iRayTsIsag W2w2nhV7noEb+BsVIsFYVX6cBXYxkiky0t0CWQLzSIGgsm+orh7xl4oMRHwK3SdT Ll4A/SxFMy4DLEO2TcTbzofAMnqurKnMjE7pMgDyWvc= -----END CERTIFICATE-----Generated at Sun Jun 8 11:09:07 2025 by rpki-client