$ rpki-client -vvf repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232372e302f32342d3234203d3e20313430343239.roa File: 3130332e3135312e3232372e302f32342d3234203d3e20313430343239.roa (raw, json) Hash identifier: 2U9Zf0sqVfy0Kk4IRyy+SOT0VXzAWAUry3fc1mN2+RE= Subject key identifier: E0:75:E7:8F:90:A4:F3:C7:C2:AD:B0:5F:4B:01:9E:84:BE:EF:F5:AD Certificate issuer: /CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Certificate serial: 5A62EC1F6F389FB4AE4F9105965E74B8195FC977 Authority key identifier: C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232372e302f32342d3234203d3e20313430343239.roa Signing time: Mon 02 Jun 2025 02:04:52 +0000 ROA not before: Mon 02 Jun 2025 01:59:52 +0000 ROA not after: Mon 01 Jun 2026 02:04:52 +0000 asID: 140429 IP address blocks: 103.151.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:62:ec:1f:6f:38:9f:b4:ae:4f:91:05:96:5e:74:b8:19:5f:c9:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Validity Not Before: Jun 2 01:59:52 2025 GMT Not After : Jun 1 02:04:52 2026 GMT Subject: CN=E075E78F90A4F3C7C2ADB05F4B019E84BEEFF5AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:bd:87:9b:e3:11:b3:80:a9:b9:bb:11:e1: 85:83:2f:f1:53:b8:39:2e:35:f2:fa:1e:22:05:72: c5:74:a5:a4:07:1a:3e:bd:82:3b:de:69:41:f4:5b: 2c:e1:44:1f:c1:bc:08:48:72:90:88:34:55:ed:32: b4:0c:06:51:57:e3:3e:38:9c:3a:04:71:ee:6f:2d: fc:13:3d:79:82:3f:50:fd:12:6d:d4:a2:ec:13:95: ce:77:46:d5:af:3a:46:b7:79:62:45:eb:8a:3f:25: 8d:04:76:42:ef:54:7e:f0:de:85:da:19:ea:6b:05: 7f:68:77:83:33:46:74:6c:73:a0:67:29:17:38:ed: 05:fd:87:c1:95:d8:d4:9e:56:8c:f8:71:82:9f:eb: fc:68:eb:b9:8c:1b:09:16:d2:6b:c6:a8:c0:0d:32: ba:7b:5a:1b:e0:0a:a1:2e:3a:77:d2:e0:90:53:b8: 62:23:44:53:3f:07:bc:67:6d:fd:b8:95:f7:e4:12: 50:19:f6:2e:ce:0f:f6:49:37:48:fd:66:b0:29:41: 14:3f:58:9a:f5:16:9e:80:39:42:dc:7a:cb:51:09: 96:19:b7:f2:2c:b4:ba:b0:c0:24:68:77:dc:9b:7e: 39:d2:b9:57:fa:4f:08:45:f2:1d:fe:53:9c:6e:e6: b3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:75:E7:8F:90:A4:F3:C7:C2:AD:B0:5F:4B:01:9E:84:BE:EF:F5:AD X509v3 Authority Key Identifier: keyid:C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/3130332e3135312e3232372e302f32342d3234203d3e20313430343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:6e:08:e1:d9:23:1e:3a:15:8e:a5:24:de:a0:e4:95:a0:6b: 2f:90:fc:30:f7:fe:7c:0c:e0:53:4c:56:8c:c9:f9:21:5b:e1: 7f:a1:1b:b6:31:e6:f3:c2:27:ef:8e:a9:8c:4d:08:04:5f:d5: 97:d1:10:34:5b:e5:4d:d8:10:91:2a:fc:cf:d2:c1:43:2d:19: 11:d4:e9:a9:da:51:90:d6:95:72:09:b0:10:96:6e:f4:48:29: e6:7c:a0:ed:46:51:da:b9:34:f9:52:cb:cf:eb:49:bc:29:00: f9:7e:c2:1b:10:66:bf:32:45:dc:82:82:01:19:d1:9e:14:e5: b9:6f:38:c0:2c:9d:d7:37:81:e8:f6:f0:d7:5e:86:bb:66:86: 2b:22:cd:14:a2:b5:bd:ec:af:38:42:24:05:73:ad:8e:0a:57: 61:12:4f:38:40:b3:6c:2c:d2:bb:cf:89:44:61:a6:59:00:31: b1:3d:e9:13:df:e5:35:e6:ad:e2:80:04:f3:ac:de:68:33:5b: 32:ec:5e:89:20:18:ed:09:2b:06:28:25:51:f4:5a:d4:de:72: e0:c7:de:b0:d9:a4:2f:40:4a:6d:2a:c4:4a:1a:df:78:cf:02: 03:ae:3e:bd:73:fc:8a:e5:13:80:72:9f:78:57:1b:a8:c4:12: 29:52:4c:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWmLsH284n7SuT5EFll50uBlfyXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNC Q0FGMThENzAeFw0yNTA2MDIwMTU5NTJaFw0yNjA2MDEwMjA0NTJaMDMxMTAvBgNV BAMTKEUwNzVFNzhGOTBBNEYzQzdDMkFEQjA1RjRCMDE5RTg0QkVFRkY1QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgLr2Hm+MRs4CpubsR4YWDL/FT uDkuNfL6HiIFcsV0paQHGj69gjveaUH0WyzhRB/BvAhIcpCINFXtMrQMBlFX4z44 nDoEce5vLfwTPXmCP1D9Em3UouwTlc53RtWvOka3eWJF64o/JY0EdkLvVH7w3oXa GeprBX9od4MzRnRsc6BnKRc47QX9h8GV2NSeVoz4cYKf6/xo67mMGwkW0mvGqMAN Mrp7WhvgCqEuOnfS4JBTuGIjRFM/B7xnbf24lffkElAZ9i7OD/ZJN0j9ZrApQRQ/ WJr1Fp6AOULcestRCZYZt/IstLqwwCRod9ybfjnSuVf6TwhF8h3+U5xu5rNlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4HXnj5Ck88fCrbBfSwGehL7v9a0wHwYDVR0j BBgwFoAUyCqArcvYNvTY1eTpgIjD7LyvGNcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzJhYjA2Mi04NzAzLTRkYTYtYWQ3Mi04MGQyNWFlOGJmNWYvMC9DODJBODBBRENC RDgzNkY0RDhENUU0RTk4MDg4QzNFQ0JDQUYxOEQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNCQ0FG MThENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjMmFiMDYyLTg3MDMtNGRhNi1h ZDcyLTgwZDI1YWU4YmY1Zi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnl+MwDQYJ KoZIhvcNAQELBQADggEBACxuCOHZIx46FY6lJN6g5JWgay+Q/DD3/nwM4FNMVozJ +SFb4X+hG7Yx5vPCJ++OqYxNCARf1ZfREDRb5U3YEJEq/M/SwUMtGRHU6anaUZDW lXIJsBCWbvRIKeZ8oO1GUdq5NPlSy8/rSbwpAPl+whsQZr8yRdyCggEZ0Z4U5blv OMAsndc3gej28NdehrtmhisizRSitb3srzhCJAVzrY4KV2ESTzhAs2ws0rvPiURh plkAMbE96RPf5TXmreKABPOs3mgzWzLsXokgGO0JKwYoJVH0WtTecuDH3rDZpC9A Sm0qxEoa33jPAgOuPr1z/IrlE4Byn3hXG6jEEilSTCc= -----END CERTIFICATE-----Generated at Sun Jun 8 07:47:05 2025 by rpki-client