$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa File: 3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa (raw, json) Hash identifier: hlIP+MRQ5Nc1S7Ft5ZfPefr9DGR/+EoZGD9rJ2XoFDc= Subject key identifier: 7B:75:10:7B:E0:E3:9B:80:45:90:14:DA:15:07:64:94:FE:78:5C:B1 Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Certificate serial: 12EE9EEF62AE0422AE2F90CAA14F5FFC80561C17 Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa Signing time: Thu 12 Jun 2025 20:00:01 +0000 ROA not before: Thu 12 Jun 2025 19:55:01 +0000 ROA not after: Thu 11 Jun 2026 20:00:01 +0000 asID: 64300 IP address blocks: 103.153.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 08:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ee:9e:ef:62:ae:04:22:ae:2f:90:ca:a1:4f:5f:fc:80:56:1c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Validity Not Before: Jun 12 19:55:01 2025 GMT Not After : Jun 11 20:00:01 2026 GMT Subject: CN=7B75107BE0E39B80459014DA15076494FE785CB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:5d:a4:8f:56:25:6c:49:8e:14:ca:7c:de: 08:d9:26:58:14:6c:50:0a:5a:91:20:9e:f2:8c:2d: dd:c4:04:56:63:f8:45:55:c2:4c:9f:c4:84:62:d4: d6:32:29:ca:c4:f9:be:c1:65:12:47:98:6c:05:14: ef:2c:ce:36:ac:8f:53:f6:c4:3a:03:0b:c5:e0:be: 48:16:1f:04:da:17:20:25:d1:90:e3:0e:6e:05:f3: 23:c3:52:9d:d8:2e:58:81:94:42:7b:32:23:a0:c3: b3:e1:81:5c:da:85:b6:bc:78:25:87:0e:69:4b:b8: 7a:27:52:b8:b9:0f:ef:eb:5e:ce:9b:57:16:c0:54: a3:ac:40:39:76:72:a4:50:72:ee:28:37:36:17:fe: 25:76:b4:d8:18:c4:5c:0d:a3:05:20:a9:32:93:4c: 0f:ca:37:b6:e5:e6:d3:67:e6:bc:76:f0:1d:93:e6: 7d:69:13:38:5e:36:0d:23:70:63:57:2d:70:7e:51: f6:93:46:36:11:a4:04:ae:aa:9c:93:0f:93:4f:1b: 8d:8d:15:1c:b8:b4:00:ba:20:93:05:1c:35:da:8a: 2d:d8:75:0a:e9:7f:08:4c:bf:36:5a:e9:79:3e:8a: 72:cb:bb:42:4b:60:c1:24:37:af:99:25:c8:8c:b5: 8d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:75:10:7B:E0:E3:9B:80:45:90:14:DA:15:07:64:94:FE:78:5C:B1 X509v3 Authority Key Identifier: keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.148.0/23 Signature Algorithm: sha256WithRSAEncryption a2:01:9b:80:af:a3:0e:81:aa:6f:92:e4:4f:0f:03:58:f5:af: 32:1f:47:30:b4:06:d6:8d:dc:b2:57:76:8a:0c:ec:a2:ac:b1: a3:c5:5c:08:59:28:0e:fc:69:7b:f4:cf:13:9f:10:31:31:8b: 40:9f:9a:8a:ac:ed:2f:77:85:0e:bf:fb:91:da:0d:e3:67:59: 2a:3e:4b:bc:6b:ce:96:22:f5:3a:6e:32:4c:e6:26:10:25:b2: 6d:ba:f9:96:67:67:e4:60:6a:59:60:ae:0d:b7:2d:58:b3:b3: 6c:c3:79:8a:f1:6e:33:43:ab:72:2b:bb:55:e5:d9:1d:a0:99: a2:86:a0:a9:70:f5:ea:7d:a2:20:2a:15:0b:79:e7:2e:38:1f: 55:99:f4:d8:52:85:4e:22:9e:51:3b:94:1f:47:f3:7f:e9:cd: a4:cc:47:d5:3d:cd:78:d9:f3:53:7b:17:dd:c7:81:d4:4a:64: 88:83:b1:0a:6d:ad:0d:16:b1:5d:42:d1:95:2f:95:f5:6d:f4: dc:c3:97:50:28:6e:6c:e0:73:85:05:d0:a6:d4:c7:45:98:f3: a7:cf:ae:60:27:85:75:0f:f3:f2:34:ac:fd:f3:57:38:16:ab: c8:17:27:9e:0a:a3:3e:a7:7d:bf:38:6a:fa:3e:33:ba:d2:2c: 53:50:6c:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEu6e72KuBCKuL5DKoU9f/IBWHBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBE RTE0RkQ4OTAeFw0yNTA2MTIxOTU1MDFaFw0yNjA2MTEyMDAwMDFaMDMxMTAvBgNV BAMTKDdCNzUxMDdCRTBFMzlCODA0NTkwMTREQTE1MDc2NDk0RkU3ODVDQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBDF2kj1YlbEmOFMp83gjZJlgU bFAKWpEgnvKMLd3EBFZj+EVVwkyfxIRi1NYyKcrE+b7BZRJHmGwFFO8szjasj1P2 xDoDC8XgvkgWHwTaFyAl0ZDjDm4F8yPDUp3YLliBlEJ7MiOgw7PhgVzahba8eCWH DmlLuHonUri5D+/rXs6bVxbAVKOsQDl2cqRQcu4oNzYX/iV2tNgYxFwNowUgqTKT TA/KN7bl5tNn5rx28B2T5n1pEzheNg0jcGNXLXB+UfaTRjYRpASuqpyTD5NPG42N FRy4tAC6IJMFHDXaii3YdQrpfwhMvzZa6Xk+inLLu0JLYMEkN6+ZJciMtY3dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe3UQe+Djm4BFkBTaFQdklP54XLEwHwYDVR0j BBgwFoAUkubKaDr6GOoDGd7Bfd9T4N4U/YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDMwNGI2NC0yODk5LTQ4MzAtOWMzYy0zNzU4NGEzMjdlMWUvMC85MkU2Q0E2ODNB RkExOEVBMDMxOURFQzE3RERGNTNFMERFMTRGRDg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBERTE0 RkQ4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5mUMA0GCSqG SIb3DQEBCwUAA4IBAQCiAZuAr6MOgapvkuRPDwNY9a8yH0cwtAbWjdyyV3aKDOyi rLGjxVwIWSgO/Gl79M8TnxAxMYtAn5qKrO0vd4UOv/uR2g3jZ1kqPku8a86WIvU6 bjJM5iYQJbJtuvmWZ2fkYGpZYK4Nty1Ys7Nsw3mK8W4zQ6tyK7tV5dkdoJmihqCp cPXqfaIgKhULeecuOB9VmfTYUoVOIp5RO5QfR/N/6c2kzEfVPc142fNTexfdx4HU SmSIg7EKba0NFrFdQtGVL5X1bfTcw5dQKG5s4HOFBdCm1MdFmPOnz65gJ4V1D/Py NKz981c4FqvIFyeeCqM+p32/OGr6PjO60ixTUGzC -----END CERTIFICATE-----Generated at Mon Jun 16 11:51:31 2025 by rpki-client