$ rpki-client -vvf repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa File: 3130332e3135332e322e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: GxaX4eV/kFPfj8NmbOkhswC/G4Bnl9v3vVSuFyouusY= Subject key identifier: E1:87:84:DA:FF:9A:B7:57:B9:75:D1:F1:FE:9F:65:8B:13:6E:55:8B Certificate issuer: /CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Certificate serial: 654DC1B197D1355F8DE27ED412086B3735A50784 Authority key identifier: E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa Signing time: Mon 02 Jun 2025 01:03:14 +0000 ROA not before: Mon 02 Jun 2025 00:58:14 +0000 ROA not after: Mon 01 Jun 2026 01:03:14 +0000 asID: 140389 IP address blocks: 103.153.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 17:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:4d:c1:b1:97:d1:35:5f:8d:e2:7e:d4:12:08:6b:37:35:a5:07:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Validity Not Before: Jun 2 00:58:14 2025 GMT Not After : Jun 1 01:03:14 2026 GMT Subject: CN=E18784DAFF9AB757B975D1F1FE9F658B136E558B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:54:64:e7:03:bd:e9:34:bb:be:13:04:ae:44: cc:cd:f6:e6:b6:6f:fc:db:1d:43:e2:a1:94:6a:d6: 11:03:c3:66:84:3e:87:90:35:e0:e9:02:cb:5f:36: d6:78:2d:b8:88:66:9c:3d:d9:02:08:3a:90:d2:4b: b7:b4:59:82:e6:41:6b:d6:db:87:aa:6d:bc:5b:c9: 29:a3:a1:c4:11:3b:bb:6f:32:8b:e7:41:4f:3f:b2: a7:79:9b:e0:1d:fe:ef:c9:9d:86:96:8f:e0:19:cf: f7:86:c8:a9:e6:6b:ad:f1:55:41:1b:76:18:ac:8c: 41:60:3b:1a:fd:a8:08:9a:71:0d:a3:fa:d5:ae:78: 1e:ed:57:6e:30:6f:c8:37:68:0b:56:8d:a6:cd:17: 9c:5a:38:3b:28:22:ad:e1:38:71:67:88:42:77:d8: d4:6d:3e:4a:82:9b:77:7c:2d:fb:2d:5d:10:eb:9d: 2f:ca:f1:09:ff:ff:42:00:f0:c9:73:be:47:a7:79: 3f:10:fa:80:e4:0a:e7:20:c0:3c:de:e5:bf:86:13: 76:5c:d4:d7:6c:7e:0c:4c:2f:3b:1f:20:31:12:d0: e3:66:4b:ed:e4:e0:5c:c2:49:1f:d7:bc:59:42:09: 0e:31:78:75:59:1f:f9:61:30:3d:bb:97:b1:7b:0e: 20:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:87:84:DA:FF:9A:B7:57:B9:75:D1:F1:FE:9F:65:8B:13:6E:55:8B X509v3 Authority Key Identifier: keyid:E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.2.0/24 Signature Algorithm: sha256WithRSAEncryption 30:37:58:fe:f2:d8:f0:6f:b3:5e:31:5a:d5:65:57:7e:7e:6c: 17:a4:0f:3c:92:3e:c2:42:29:2e:2d:f2:ab:72:da:69:7d:0a: 8a:31:d6:80:94:40:c8:37:2b:2e:af:c9:e5:d5:30:c1:6e:76: 95:a1:ab:78:a6:72:62:e3:34:6d:90:1a:e7:2f:d6:62:f5:07: 82:36:09:36:46:e8:44:a0:62:fa:2e:0e:08:83:18:e4:a5:4d: 37:c0:d8:f6:0b:7a:b9:dd:06:3f:f2:41:c5:67:ba:b6:a4:f9: 6b:ef:4e:54:5f:2b:6d:f0:8f:dd:c3:30:c2:d4:94:a5:65:3e: 27:73:15:2e:bd:b7:e2:29:2d:05:e0:35:b8:81:86:eb:f7:24: b1:83:b5:16:a7:d0:87:41:4d:43:99:4a:2d:2c:d6:2d:ad:da: 28:e9:e1:da:18:83:4a:1b:62:e4:98:54:cc:a7:9d:ee:1f:78: bb:c0:fa:c5:d8:4f:bb:27:5c:53:d4:8a:13:6e:0e:4d:5b:f7: 8b:a6:2d:a3:05:f0:57:17:3a:e1:ec:64:c6:8c:a5:3e:4e:22: 58:36:d9:86:95:65:a5:7f:9f:3d:e9:f3:1d:cf:24:7c:1a:6c: a9:ab:83:68:7e:71:0e:49:79:01:44:16:48:2d:9c:2d:82:af: 20:7a:d3:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZU3BsZfRNV+N4n7UEghrNzWlB4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZE ODBDRjk3NzAeFw0yNTA2MDIwMDU4MTRaFw0yNjA2MDEwMTAzMTRaMDMxMTAvBgNV BAMTKEUxODc4NERBRkY5QUI3NTdCOTc1RDFGMUZFOUY2NThCMTM2RTU1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEVGTnA73pNLu+EwSuRMzN9ua2 b/zbHUPioZRq1hEDw2aEPoeQNeDpAstfNtZ4LbiIZpw92QIIOpDSS7e0WYLmQWvW 24eqbbxbySmjocQRO7tvMovnQU8/sqd5m+Ad/u/JnYaWj+AZz/eGyKnma63xVUEb dhisjEFgOxr9qAiacQ2j+tWueB7tV24wb8g3aAtWjabNF5xaODsoIq3hOHFniEJ3 2NRtPkqCm3d8LfstXRDrnS/K8Qn//0IA8MlzvkeneT8Q+oDkCucgwDze5b+GE3Zc 1NdsfgxMLzsfIDES0ONmS+3k4FzCSR/XvFlCCQ4xeHVZH/lhMD27l7F7DiB/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4YeE2v+at1e5ddHx/p9lixNuVYswHwYDVR0j BBgwFoAU4ia0+oQtzmw4ZEnxT4whz9gM+XcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmMxYWI3MS05MWQwLTRmMGItYmIyOS1jYmI3ZDM1ZTc0YmEvMC9FMjI2QjRGQTg0 MkRDRTZDMzg2NDQ5RjE0RjhDMjFDRkQ4MENGOTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZEODBD Rjk3Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYzFhYjcxLTkxZDAtNGYwYi1i YjI5LWNiYjdkMzVlNzRiYS8wLzMxMzAzMzJlMzEzNTMzMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeZAjANBgkqhkiG 9w0BAQsFAAOCAQEAMDdY/vLY8G+zXjFa1WVXfn5sF6QPPJI+wkIpLi3yq3LaaX0K ijHWgJRAyDcrLq/J5dUwwW52laGreKZyYuM0bZAa5y/WYvUHgjYJNkboRKBi+i4O CIMY5KVNN8DY9gt6ud0GP/JBxWe6tqT5a+9OVF8rbfCP3cMwwtSUpWU+J3MVLr23 4iktBeA1uIGG6/cksYO1FqfQh0FNQ5lKLSzWLa3aKOnh2hiDShti5JhUzKed7h94 u8D6xdhPuydcU9SKE24OTVv3i6YtowXwVxc64exkxoylPk4iWDbZhpVlpX+fPenz Hc8kfBpsqauDaH5xDkl5AUQWSC2cLYKvIHrTyQ== -----END CERTIFICATE-----Generated at Mon Jun 16 15:42:54 2025 by rpki-client