$ rpki-client -vvf repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/3130332e31382e3233322e302f32332d3234203d3e20313530323331.roa File: 3130332e31382e3233322e302f32332d3234203d3e20313530323331.roa (raw, json) Hash identifier: wUtK6lO7dD/y5QIQIRKJysOh0xNgmCTXdRc7wOm6Gq4= Subject key identifier: 18:17:90:F0:DE:EB:E1:47:C7:B6:E0:98:CE:1B:E7:5F:C7:DF:B4:BB Certificate issuer: /CN=9B0395E989465D693E38FF5140C2FABE1631B562 Certificate serial: 595D198F9B11E4CF233B6836671DF027C1F15A21 Authority key identifier: 9B:03:95:E9:89:46:5D:69:3E:38:FF:51:40:C2:FA:BE:16:31:B5:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B0395E989465D693E38FF5140C2FABE1631B562.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/3130332e31382e3233322e302f32332d3234203d3e20313530323331.roa Signing time: Thu 12 Jun 2025 06:00:02 +0000 ROA not before: Thu 12 Jun 2025 05:55:02 +0000 ROA not after: Thu 11 Jun 2026 06:00:02 +0000 asID: 150231 IP address blocks: 103.18.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/9B0395E989465D693E38FF5140C2FABE1631B562.crl rsync://repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/9B0395E989465D693E38FF5140C2FABE1631B562.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B0395E989465D693E38FF5140C2FABE1631B562.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 09:45:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5d:19:8f:9b:11:e4:cf:23:3b:68:36:67:1d:f0:27:c1:f1:5a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B0395E989465D693E38FF5140C2FABE1631B562 Validity Not Before: Jun 12 05:55:02 2025 GMT Not After : Jun 11 06:00:02 2026 GMT Subject: CN=181790F0DEEBE147C7B6E098CE1BE75FC7DFB4BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:59:e5:a0:ae:d8:49:b3:ad:f1:25:f7:58:a2: 48:06:33:bf:88:5c:65:2b:ab:62:1c:23:aa:a4:3b: 5d:99:54:6e:78:e3:94:b4:1d:61:9c:4b:85:14:4c: 87:6d:45:20:b7:2b:d2:c3:37:6c:b4:31:2c:cf:42: 80:9a:2a:8a:41:ef:44:25:d0:fa:6b:fa:11:e0:9e: 78:f6:2f:b4:df:a2:b6:87:e5:9a:37:1b:13:c9:80: 43:80:c5:3b:89:dd:17:d0:6f:79:b0:c7:85:d5:64: fe:8a:2f:37:f7:a6:2c:7b:64:09:19:9a:0d:c7:90: 27:f8:06:79:96:1c:f4:7a:2e:4a:68:c9:5f:ff:c3: 21:53:a1:ab:6c:ff:37:7a:fd:e1:25:25:da:87:a5: 92:22:22:22:21:dc:74:d4:20:05:a9:1a:fe:80:df: aa:81:de:e4:bd:cc:b2:30:b4:dd:9c:46:59:af:37: 98:e6:b7:a2:3f:dc:cd:f6:66:7f:55:33:00:f0:26: 20:8a:0a:a2:f6:27:dc:8e:2e:e1:4f:09:46:1b:47: 6f:2b:31:3f:40:96:21:0e:5e:85:60:14:8a:58:7c: 80:c5:1e:db:9a:06:01:33:d4:f9:63:9c:1f:7e:a8: 5e:d8:13:b8:5a:98:65:87:21:65:5a:82:76:90:4d: 45:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:17:90:F0:DE:EB:E1:47:C7:B6:E0:98:CE:1B:E7:5F:C7:DF:B4:BB X509v3 Authority Key Identifier: keyid:9B:03:95:E9:89:46:5D:69:3E:38:FF:51:40:C2:FA:BE:16:31:B5:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/9B0395E989465D693E38FF5140C2FABE1631B562.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B0395E989465D693E38FF5140C2FABE1631B562.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7224191-bff0-4815-be0e-a2aa8d38d5a0/0/3130332e31382e3233322e302f32332d3234203d3e20313530323331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.232.0/23 Signature Algorithm: sha256WithRSAEncryption b5:27:d1:45:f9:76:17:5c:73:3e:10:c7:b8:55:b8:7c:4e:a4: c8:18:62:b2:f5:da:00:cd:a9:c8:c2:d9:fe:c2:28:12:a4:62: 92:2d:bf:7b:04:2c:67:a8:2b:f4:a0:c1:2e:ce:3f:50:43:a1: 22:64:68:f9:e7:57:61:74:a6:0d:09:e4:8d:82:1d:29:8b:62: bd:43:f9:d1:cf:0e:77:61:9d:58:84:63:c6:9b:e1:8b:a5:d9: 15:34:fc:99:cf:68:89:eb:36:22:e8:b3:3f:01:9c:2d:5d:75: c1:47:6d:33:f7:d9:65:18:cf:dc:bd:76:36:e6:5a:9e:0c:51: 50:f4:65:b2:7a:2c:f4:02:fa:24:77:ce:86:72:f4:81:71:e3: 6e:ea:e8:a8:83:3c:5a:ef:51:ae:51:2f:64:b8:c9:eb:96:cf: 37:77:00:f7:76:ce:e8:69:c3:35:b3:22:d4:34:98:9b:15:8b: df:a6:c2:0a:00:6c:be:79:a9:0d:d7:d8:d8:3f:32:92:1b:b5: 39:dc:e5:77:a8:ad:e4:d6:7d:2a:0f:cd:a5:1b:80:73:48:cb: 2a:ef:0e:2f:a5:2f:76:4d:69:d6:b4:94:5d:c5:9a:9f:fc:f0: e6:4b:6b:e8:a1:87:98:20:a6:d9:be:eb:32:e7:64:eb:d6:08: 78:c3:55:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWV0Zj5sR5M8jO2g2Zx3wJ8HxWiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIwMzk1RTk4OTQ2NUQ2OTNFMzhGRjUxNDBDMkZBQkUx NjMxQjU2MjAeFw0yNTA2MTIwNTU1MDJaFw0yNjA2MTEwNjAwMDJaMDMxMTAvBgNV BAMTKDE4MTc5MEYwREVFQkUxNDdDN0I2RTA5OENFMUJFNzVGQzdERkI0QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFWeWgrthJs63xJfdYokgGM7+I XGUrq2IcI6qkO12ZVG5445S0HWGcS4UUTIdtRSC3K9LDN2y0MSzPQoCaKopB70Ql 0Ppr+hHgnnj2L7TforaH5Zo3GxPJgEOAxTuJ3RfQb3mwx4XVZP6KLzf3pix7ZAkZ mg3HkCf4BnmWHPR6LkpoyV//wyFToats/zd6/eElJdqHpZIiIiIh3HTUIAWpGv6A 36qB3uS9zLIwtN2cRlmvN5jmt6I/3M32Zn9VMwDwJiCKCqL2J9yOLuFPCUYbR28r MT9AliEOXoVgFIpYfIDFHtuaBgEz1PljnB9+qF7YE7hamGWHIWVagnaQTUUBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGBeQ8N7r4UfHtuCYzhvnX8fftLswHwYDVR0j BBgwFoAUmwOV6YlGXWk+OP9RQML6vhYxtWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzIyNDE5MS1iZmYwLTQ4MTUtYmUwZS1hMmFhOGQzOGQ1YTAvMC85QjAzOTVFOTg5 NDY1RDY5M0UzOEZGNTE0MEMyRkFCRTE2MzFCNTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIwMzk1RTk4OTQ2NUQ2OTNFMzhGRjUxNDBDMkZBQkUxNjMx QjU2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MjI0MTkxLWJmZjAtNDgxNS1i ZTBlLWEyYWE4ZDM4ZDVhMC8wLzMxMzAzMzJlMzEzODJlMzIzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxLoMA0GCSqG SIb3DQEBCwUAA4IBAQC1J9FF+XYXXHM+EMe4Vbh8TqTIGGKy9doAzanIwtn+wigS pGKSLb97BCxnqCv0oMEuzj9QQ6EiZGj551dhdKYNCeSNgh0pi2K9Q/nRzw53YZ1Y hGPGm+GLpdkVNPyZz2iJ6zYi6LM/AZwtXXXBR20z99llGM/cvXY25lqeDFFQ9GWy eiz0Avokd86GcvSBceNu6uiogzxa71GuUS9kuMnrls83dwD3ds7oacM1syLUNJib FYvfpsIKAGy+eakN19jYPzKSG7U53OV3qK3k1n0qD82lG4BzSMsq7w4vpS92TWnW tJRdxZqf/PDmS2vooYeYIKbZvusy52Tr1gh4w1Uv -----END CERTIFICATE-----Generated at Sun Jun 15 22:49:18 2025 by rpki-client