$ rpki-client -vvf repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa File: 3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa (raw, json) Hash identifier: jpWaT+oGFZ1feNV4Ontzk7N9Bf3lE1R8kV74EOaQmlQ= Subject key identifier: 43:25:FD:EC:40:5E:3D:23:10:F5:E4:31:77:2F:1E:BB:CE:95:09:02 Certificate issuer: /CN=F1F25C19AB419E370912452242B8B55038581157 Certificate serial: 1A49BD04DDE5C4D7146D3C3883BB907D555D821C Authority key identifier: F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa Signing time: Fri 14 Mar 2025 06:00:00 +0000 ROA not before: Fri 14 Mar 2025 05:55:00 +0000 ROA not after: Fri 13 Mar 2026 06:00:00 +0000 asID: 150483 IP address blocks: 103.54.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.crl rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:49:bd:04:dd:e5:c4:d7:14:6d:3c:38:83:bb:90:7d:55:5d:82:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1F25C19AB419E370912452242B8B55038581157 Validity Not Before: Mar 14 05:55:00 2025 GMT Not After : Mar 13 06:00:00 2026 GMT Subject: CN=4325FDEC405E3D2310F5E431772F1EBBCE950902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:52:3a:fd:de:e5:2e:cb:62:4b:bd:d0:64:7d: c5:d9:6e:30:de:1b:a7:fa:19:3e:0a:e1:df:a3:3e: b2:7b:15:c6:d6:66:88:3a:18:0f:8d:68:e5:ba:51: f8:65:b9:ac:4e:60:0f:1a:1c:cf:7d:b7:3a:f4:67: 8b:58:5f:02:8f:a4:07:4f:58:e2:3f:46:c3:88:d5: c5:94:db:65:1d:8c:6b:2d:99:d5:d9:d6:09:ec:b9: 51:02:12:16:e8:5e:46:ba:7b:75:da:77:67:44:7e: 8c:3f:01:83:81:69:aa:9f:86:1e:b7:f3:dc:85:c3: 82:56:f1:21:db:d2:97:2a:49:f2:10:fd:75:52:27: c0:8b:59:45:f6:15:c0:ec:07:c9:1c:00:cb:cd:f0: 07:85:a6:2d:1b:45:17:fa:a4:7b:d2:b8:d6:23:74: bd:b2:70:ab:b8:69:3b:29:a2:b0:81:ab:5e:73:b1: 0c:28:97:33:92:32:7b:2b:87:11:1e:97:c7:ca:1b: 5e:75:ad:f3:2b:a7:91:1d:3d:ab:aa:d9:35:ef:77: 0c:2c:4e:45:7a:c9:1c:89:57:11:b9:79:d8:6a:1a: f1:12:75:80:2e:a9:1f:3d:26:67:3c:45:69:13:c1: 31:27:63:cc:f8:c3:af:46:87:7e:d2:f0:e5:29:5d: 4f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:25:FD:EC:40:5E:3D:23:10:F5:E4:31:77:2F:1E:BB:CE:95:09:02 X509v3 Authority Key Identifier: keyid:F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.169.0/24 Signature Algorithm: sha256WithRSAEncryption 13:d2:f1:ba:52:10:ee:e7:e6:c1:06:c3:60:ad:a4:e7:da:62: 6d:9c:b7:52:5d:1d:db:ed:c8:4a:ac:3f:9e:ae:50:57:5c:04: 1d:9e:7b:5d:9f:48:09:85:61:f4:9f:5b:0e:e2:74:4a:a7:bc: db:dd:5a:54:9b:e3:5e:37:2a:35:fd:45:3d:25:30:fe:b2:e7: f6:25:84:49:8b:0c:f0:90:a0:e4:8a:d3:a6:10:96:c6:e0:1e: 7c:b1:ef:70:59:dd:fa:15:05:f6:9d:48:fa:63:3e:2a:93:e4: b5:8d:52:49:64:b4:7b:94:a2:a4:ad:8f:d5:71:d5:5d:b1:ae: 97:fc:45:2a:46:a3:21:4c:d8:f3:f0:69:c5:9e:ed:09:ff:47: 95:01:b8:c3:8f:82:b7:60:81:fe:22:f1:aa:00:35:8f:36:7f: 27:06:3f:67:b4:43:f1:53:3a:3e:c3:28:38:d2:cb:93:a8:42: c4:39:aa:54:aa:99:70:33:58:f9:7f:c0:a8:2a:97:b4:f7:7e: a4:5f:a1:01:70:7f:b4:1b:08:22:f7:91:9f:bf:43:35:9d:13: f8:08:aa:9e:7e:23:cb:92:15:25:6f:df:d6:83:0a:2e:94:0f: 29:85:c2:98:1b:b1:19:9a:86:6a:16:bf:2c:1f:6b:16:e7:5d: 12:18:6d:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGkm9BN3lxNcUbTw4g7uQfVVdghwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFGMjVDMTlBQjQxOUUzNzA5MTI0NTIyNDJCOEI1NTAz ODU4MTE1NzAeFw0yNTAzMTQwNTU1MDBaFw0yNjAzMTMwNjAwMDBaMDMxMTAvBgNV BAMTKDQzMjVGREVDNDA1RTNEMjMxMEY1RTQzMTc3MkYxRUJCQ0U5NTA5MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnUjr93uUuy2JLvdBkfcXZbjDe G6f6GT4K4d+jPrJ7FcbWZog6GA+NaOW6UfhluaxOYA8aHM99tzr0Z4tYXwKPpAdP WOI/RsOI1cWU22UdjGstmdXZ1gnsuVECEhboXka6e3Xad2dEfow/AYOBaaqfhh63 89yFw4JW8SHb0pcqSfIQ/XVSJ8CLWUX2FcDsB8kcAMvN8AeFpi0bRRf6pHvSuNYj dL2ycKu4aTsporCBq15zsQwolzOSMnsrhxEel8fKG151rfMrp5EdPauq2TXvdwws TkV6yRyJVxG5edhqGvESdYAuqR89Jmc8RWkTwTEnY8z4w69Gh37S8OUpXU+nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQyX97EBePSMQ9eQxdy8eu86VCQIwHwYDVR0j BBgwFoAU8fJcGatBnjcJEkUiQri1UDhYEVcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZTMzMDYzMy1hN2QxLTRkMGEtYTFjYy1iNmMzZWVkZmJjMTcvMC9GMUYyNUMxOUFC NDE5RTM3MDkxMjQ1MjI0MkI4QjU1MDM4NTgxMTU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFGMjVDMTlBQjQxOUUzNzA5MTI0NTIyNDJCOEI1NTAzODU4 MTE1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZlMzMwNjMzLWE3ZDEtNGQwYS1h MWNjLWI2YzNlZWRmYmMxNy8wLzMxMzAzMzJlMzUzNDJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzapMA0GCSqG SIb3DQEBCwUAA4IBAQAT0vG6UhDu5+bBBsNgraTn2mJtnLdSXR3b7chKrD+erlBX XAQdnntdn0gJhWH0n1sO4nRKp7zb3VpUm+NeNyo1/UU9JTD+suf2JYRJiwzwkKDk itOmEJbG4B58se9wWd36FQX2nUj6Yz4qk+S1jVJJZLR7lKKkrY/VcdVdsa6X/EUq RqMhTNjz8GnFnu0J/0eVAbjDj4K3YIH+IvGqADWPNn8nBj9ntEPxUzo+wyg40suT qELEOapUqplwM1j5f8CoKpe0936kX6EBcH+0Gwgi95Gfv0M1nRP4CKqefiPLkhUl b9/WgwoulA8phcKYG7EZmoZqFr8sH2sW510SGG3I -----END CERTIFICATE-----Generated at Sat Jun 7 13:41:08 2025 by rpki-client