$ rpki-client -vvf repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa File: 3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa (raw, json) Hash identifier: anheo7/IFUA2/H9FN8liseYHAvu0fSEkGprdILkGE3g= Subject key identifier: 0A:AD:BF:CD:D9:5D:34:60:2E:49:99:D0:B4:B6:F0:D4:39:36:61:9B Certificate issuer: /CN=8955B36815B4084BAFC7908A639810631BEED49F Certificate serial: 4DF8CD3DAE16E40ECBEE3580208AC546F827A42E Authority key identifier: 89:55:B3:68:15:B4:08:4B:AF:C7:90:8A:63:98:10:63:1B:EE:D4:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8955B36815B4084BAFC7908A639810631BEED49F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa Signing time: Thu 12 Jun 2025 10:00:50 +0000 ROA not before: Thu 12 Jun 2025 09:55:50 +0000 ROA not after: Thu 11 Jun 2026 10:00:50 +0000 asID: 140474 IP address blocks: 103.153.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/8955B36815B4084BAFC7908A639810631BEED49F.crl rsync://repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/8955B36815B4084BAFC7908A639810631BEED49F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8955B36815B4084BAFC7908A639810631BEED49F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 22:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f8:cd:3d:ae:16:e4:0e:cb:ee:35:80:20:8a:c5:46:f8:27:a4:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8955B36815B4084BAFC7908A639810631BEED49F Validity Not Before: Jun 12 09:55:50 2025 GMT Not After : Jun 11 10:00:50 2026 GMT Subject: CN=0AADBFCDD95D34602E4999D0B4B6F0D43936619B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6b:73:66:b4:37:a0:06:f4:9b:b4:a1:d1:fe: 00:47:af:e2:c6:23:a4:69:c4:35:d6:38:4d:a5:5c: 3d:88:ec:d5:7f:ab:d8:db:de:a2:4e:dc:84:4b:03: 0b:74:d6:59:a5:f7:e9:31:0a:02:e0:50:ef:6a:26: fb:31:91:57:b3:7a:08:ee:76:28:33:de:d5:54:06: 14:9c:84:26:66:55:27:a5:67:05:31:fc:e2:c3:f7: 64:36:42:fa:f1:6d:c0:dd:a3:0a:ad:33:a9:89:ec: f9:2a:b5:43:b4:1f:8b:28:a1:ce:7a:54:9a:35:8f: a2:95:8f:29:16:46:0b:f4:b4:18:df:cd:e5:86:c5: b9:63:9f:97:f9:54:02:69:d3:a0:f4:c3:51:ca:2d: da:50:ed:c1:ae:63:45:fb:4d:e8:49:81:b2:af:c8: 1a:e4:00:79:76:32:f1:e2:59:78:b2:0f:f2:0a:52: b7:1d:8e:a9:2d:8e:72:a6:2b:56:df:6f:f3:75:24: df:13:2c:59:a0:ab:e9:d1:90:70:d4:39:ea:72:b9: 1d:f3:00:43:17:52:11:30:3e:6d:c7:55:2d:ab:99: 18:fc:4a:46:ce:01:1a:f9:8b:45:cf:96:3d:cc:2f: 98:b5:fc:7e:e1:fd:d4:34:b5:8b:22:ce:96:5a:c1: 70:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AD:BF:CD:D9:5D:34:60:2E:49:99:D0:B4:B6:F0:D4:39:36:61:9B X509v3 Authority Key Identifier: keyid:89:55:B3:68:15:B4:08:4B:AF:C7:90:8A:63:98:10:63:1B:EE:D4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/8955B36815B4084BAFC7908A639810631BEED49F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8955B36815B4084BAFC7908A639810631BEED49F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e26aa3-3073-4276-bd74-ad86f099c253/0/3130332e3135332e3234342e302f32342d3234203d3e20313430343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.244.0/24 Signature Algorithm: sha256WithRSAEncryption 62:39:83:c5:c6:44:34:96:fe:c9:37:d2:50:8e:8a:61:eb:8b: 0f:56:a8:a6:19:cc:84:6c:ac:ae:f2:ae:ed:2f:90:12:be:45: a9:d0:14:22:5e:6a:9b:87:2b:61:c3:c9:e1:42:ca:04:30:1b: e6:30:e0:30:f7:b0:48:5a:5c:37:77:b5:d5:3b:a0:c1:7c:63: 76:aa:33:14:c6:b6:55:e7:67:28:24:a4:ae:c9:cd:48:5d:3c: 80:62:19:25:70:e1:b3:6a:fa:be:fa:00:19:00:55:a3:88:be: 8b:f0:9a:27:42:f6:d6:bb:92:1d:8e:75:42:6e:9d:fe:98:4f: 5c:df:3c:15:a3:3e:4f:1d:93:3d:bc:66:f1:3d:ff:90:cf:a9: 14:95:f8:15:5f:66:2a:d7:8a:e1:2d:a3:71:50:49:52:84:9d: 8a:44:b8:1e:af:02:02:cb:4b:90:83:96:7a:6e:0d:4f:4d:90: 79:eb:af:97:30:aa:b8:c9:02:70:ab:02:54:4c:48:e3:29:fd: 11:54:fd:2a:f8:26:17:b8:c2:6a:85:0c:6e:48:b4:57:0f:e2: e9:7d:32:83:4d:0b:60:41:ac:48:fc:9f:77:47:56:1f:62:0e: 12:0d:67:f7:53:0b:48:fe:9b:64:76:26:57:14:e1:b8:33:8b: de:b8:bf:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTfjNPa4W5A7L7jWAIIrFRvgnpC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk1NUIzNjgxNUI0MDg0QkFGQzc5MDhBNjM5ODEwNjMx QkVFRDQ5RjAeFw0yNTA2MTIwOTU1NTBaFw0yNjA2MTExMDAwNTBaMDMxMTAvBgNV BAMTKDBBQURCRkNERDk1RDM0NjAyRTQ5OTlEMEI0QjZGMEQ0MzkzNjYxOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCua3NmtDegBvSbtKHR/gBHr+LG I6RpxDXWOE2lXD2I7NV/q9jb3qJO3IRLAwt01lml9+kxCgLgUO9qJvsxkVezegju digz3tVUBhSchCZmVSelZwUx/OLD92Q2QvrxbcDdowqtM6mJ7PkqtUO0H4sooc56 VJo1j6KVjykWRgv0tBjfzeWGxbljn5f5VAJp06D0w1HKLdpQ7cGuY0X7TehJgbKv yBrkAHl2MvHiWXiyD/IKUrcdjqktjnKmK1bfb/N1JN8TLFmgq+nRkHDUOepyuR3z AEMXUhEwPm3HVS2rmRj8SkbOARr5i0XPlj3ML5i1/H7h/dQ0tYsizpZawXCrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCq2/zdldNGAuSZnQtLbw1Dk2YZswHwYDVR0j BBgwFoAUiVWzaBW0CEuvx5CKY5gQYxvu1J8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2UyNmFhMy0zMDczLTQyNzYtYmQ3NC1hZDg2ZjA5OWMyNTMvMC84OTU1QjM2ODE1 QjQwODRCQUZDNzkwOEE2Mzk4MTA2MzFCRUVENDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk1NUIzNjgxNUI0MDg0QkFGQzc5MDhBNjM5ODEwNjMxQkVF RDQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTI2YWEzLTMwNzMtNDI3Ni1i ZDc0LWFkODZmMDk5YzI1My8wLzMxMzAzMzJlMzEzNTMzMmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmfQwDQYJ KoZIhvcNAQELBQADggEBAGI5g8XGRDSW/sk30lCOimHriw9WqKYZzIRsrK7yru0v kBK+RanQFCJeapuHK2HDyeFCygQwG+Yw4DD3sEhaXDd3tdU7oMF8Y3aqMxTGtlXn ZygkpK7JzUhdPIBiGSVw4bNq+r76ABkAVaOIvovwmidC9ta7kh2OdUJunf6YT1zf PBWjPk8dkz28ZvE9/5DPqRSV+BVfZirXiuEto3FQSVKEnYpEuB6vAgLLS5CDlnpu DU9NkHnrr5cwqrjJAnCrAlRMSOMp/RFU/Sr4Jhe4wmqFDG5ItFcP4ul9MoNNC2BB rEj8n3dHVh9iDhINZ/dTC0j+m2R2JlcU4bgzi964vwE= -----END CERTIFICATE-----Generated at Mon Jun 16 09:57:17 2025 by rpki-client