$ rpki-client -vvf repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa File: 3130332e32302e3139362e302f32332d3234203d3e203538353536.roa (raw, json) Hash identifier: q1jYn7Xb50WmP2uCHt9tAsO6LxmkwzEXjSuX+S7nEvI= Subject key identifier: FE:3A:B6:C5:A7:72:D0:3F:0C:F2:7B:3C:04:71:A1:FA:83:CD:6E:4A Certificate issuer: /CN=1A0FC4695466F0034FDC7BD35D97BF935042446D Certificate serial: 4B901C609F698E0553443F2CFB6AEEB5D9FD1637 Authority key identifier: 1A:0F:C4:69:54:66:F0:03:4F:DC:7B:D3:5D:97:BF:93:50:42:44:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa Signing time: Mon 02 Jun 2025 01:03:25 +0000 ROA not before: Mon 02 Jun 2025 00:58:25 +0000 ROA not after: Mon 01 Jun 2026 01:03:25 +0000 asID: 58556 IP address blocks: 103.20.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.crl rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:90:1c:60:9f:69:8e:05:53:44:3f:2c:fb:6a:ee:b5:d9:fd:16:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A0FC4695466F0034FDC7BD35D97BF935042446D Validity Not Before: Jun 2 00:58:25 2025 GMT Not After : Jun 1 01:03:25 2026 GMT Subject: CN=FE3AB6C5A772D03F0CF27B3C0471A1FA83CD6E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:56:4a:f7:ee:cc:c8:ec:89:72:5c:b9:10: 2a:b5:41:b1:a0:3d:c3:55:f5:7e:be:76:23:74:50: e7:15:b1:c9:fa:51:3e:f3:69:f2:a6:d6:da:8a:5f: 52:63:40:97:71:1b:4e:9c:ca:64:e1:22:2a:13:c2: 00:ec:3a:75:f3:1a:e1:4d:52:03:03:81:b2:14:a8: 8f:98:67:da:40:7c:0d:fe:27:11:bd:6b:78:be:af: 75:b1:79:11:82:ed:c0:98:87:9a:16:55:82:c0:c2: f9:80:b6:da:bb:83:b1:85:c3:ab:ee:8d:ec:7b:be: ad:23:f3:d7:7e:a6:df:e9:89:02:bd:8d:f2:2f:68: dd:af:29:fd:e9:91:9d:64:ba:d4:cc:32:cd:0b:71: 5b:65:6c:49:75:7a:76:e0:13:fa:a0:b5:97:a4:cf: 66:ff:88:05:0b:20:58:40:6c:b6:cf:f9:54:d1:be: a2:8f:f1:a6:46:69:b8:b0:91:ff:32:b5:11:99:0f: 25:21:0c:91:e6:eb:67:b6:89:fe:90:82:6e:c1:fb: 7f:dc:66:d4:cc:e0:5e:a9:8e:fa:ea:90:d5:3b:05: c4:63:fb:88:da:f2:06:1e:72:bc:b1:f6:d9:a3:08: 37:64:2e:f4:ea:76:42:68:87:d9:74:db:7c:d9:91: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3A:B6:C5:A7:72:D0:3F:0C:F2:7B:3C:04:71:A1:FA:83:CD:6E:4A X509v3 Authority Key Identifier: keyid:1A:0F:C4:69:54:66:F0:03:4F:DC:7B:D3:5D:97:BF:93:50:42:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.196.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:3e:d6:a7:42:a0:84:40:d3:28:77:2a:28:a9:5d:50:f6:13: 22:b6:74:32:e2:05:5d:ee:3c:2e:e1:6f:b0:8f:22:6c:a6:0c: 4c:86:26:6f:20:4a:da:90:8d:5b:a2:f5:9d:cc:19:8f:9f:fd: c0:12:53:07:ce:4f:51:b2:23:7e:41:f2:25:5f:6d:4a:10:34: 2f:f5:cb:63:e8:0a:69:fe:25:89:02:c8:44:49:e2:65:16:2c: db:b2:5d:01:95:1f:4f:c8:13:9f:0e:74:80:53:7e:08:8b:e6: 65:ba:0a:e3:7c:93:d0:b6:55:a0:98:e0:d2:8c:59:f8:e4:2f: 90:ee:3e:fc:98:da:01:6f:5c:95:4f:2d:47:02:f6:71:a0:39: f4:b4:dc:43:6c:98:41:e8:ed:7d:7e:21:84:ad:0c:9c:8a:97: 77:90:bf:f9:40:2b:3c:34:2b:ed:34:42:82:0b:a9:b5:66:cb: 8e:2c:33:bc:cb:2f:71:f4:f3:e4:e4:fe:54:60:23:74:40:fe: 3b:45:3a:c3:5b:52:cc:fc:2f:15:c6:dd:9b:64:61:ad:9d:ec: bb:95:29:32:13:71:a3:1b:86:c1:ce:bf:37:66:8d:23:38:bc: 9d:9c:bb:e4:e9:98:80:d4:63:45:8d:c2:9b:c0:ea:ba:cd:70: 9f:db:bd:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS5AcYJ9pjgVTRD8s+2rutdn9FjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUEwRkM0Njk1NDY2RjAwMzRGREM3QkQzNUQ5N0JGOTM1 MDQyNDQ2RDAeFw0yNTA2MDIwMDU4MjVaFw0yNjA2MDEwMTAzMjVaMDMxMTAvBgNV BAMTKEZFM0FCNkM1QTc3MkQwM0YwQ0YyN0IzQzA0NzFBMUZBODNDRDZFNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC66lZK9+7MyOyJcly5ECq1QbGg PcNV9X6+diN0UOcVscn6UT7zafKm1tqKX1JjQJdxG06cymThIioTwgDsOnXzGuFN UgMDgbIUqI+YZ9pAfA3+JxG9a3i+r3WxeRGC7cCYh5oWVYLAwvmAttq7g7GFw6vu jex7vq0j89d+pt/piQK9jfIvaN2vKf3pkZ1kutTMMs0LcVtlbEl1enbgE/qgtZek z2b/iAULIFhAbLbP+VTRvqKP8aZGabiwkf8ytRGZDyUhDJHm62e2if6Qgm7B+3/c ZtTM4F6pjvrqkNU7BcRj+4ja8gYecryx9tmjCDdkLvTqdkJoh9l023zZkQ67AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/jq2xady0D8M8ns8BHGh+oPNbkowHwYDVR0j BBgwFoAUGg/EaVRm8ANP3HvTXZe/k1BCRG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODdhZWU3Zi1kNjViLTQ2ZWMtYTc4MS03Y2JlZjVhYWViODAvMC8xQTBGQzQ2OTU0 NjZGMDAzNEZEQzdCRDM1RDk3QkY5MzUwNDI0NDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUEwRkM0Njk1NDY2RjAwMzRGREM3QkQzNUQ5N0JGOTM1MDQy NDQ2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4N2FlZTdmLWQ2NWItNDZlYy1h NzgxLTdjYmVmNWFhZWI4MC8wLzMxMzAzMzJlMzIzMDJlMzEzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM1MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcUxDANBgkqhkiG 9w0BAQsFAAOCAQEAmz7Wp0KghEDTKHcqKKldUPYTIrZ0MuIFXe48LuFvsI8ibKYM TIYmbyBK2pCNW6L1ncwZj5/9wBJTB85PUbIjfkHyJV9tShA0L/XLY+gKaf4liQLI REniZRYs27JdAZUfT8gTnw50gFN+CIvmZboK43yT0LZVoJjg0oxZ+OQvkO4+/Jja AW9clU8tRwL2caA59LTcQ2yYQejtfX4hhK0MnIqXd5C/+UArPDQr7TRCgguptWbL jiwzvMsvcfTz5OT+VGAjdED+O0U6w1tSzPwvFcbdm2RhrZ3su5UpMhNxoxuGwc6/ N2aNIzi8nZy75OmYgNRjRY3Cm8Dqus1wn9u9pA== -----END CERTIFICATE-----Generated at Sun Jun 15 22:52:54 2025 by rpki-client