$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa File: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M= Subject key identifier: 8D:7F:AC:DA:33:1D:1C:50:B8:72:83:60:EC:CD:B2:5D:A6:27:34:33 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 17DA1F9182576126253ED5262B820100C10AC69C Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa Signing time: Fri 20 Jun 2025 12:00:00 +0000 ROA not before: Fri 20 Jun 2025 11:55:00 +0000 ROA not after: Fri 19 Jun 2026 12:00:00 +0000 asID: 140456 IP address blocks: 103.153.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 20:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:da:1f:91:82:57:61:26:25:3e:d5:26:2b:82:01:00:c1:0a:c6:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jun 20 11:55:00 2025 GMT Not After : Jun 19 12:00:00 2026 GMT Subject: CN=8D7FACDA331D1C50B8728360ECCDB25DA6273433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7c:10:e6:eb:19:a6:65:4a:e2:ca:f8:7c:e0: cb:1f:1f:95:01:54:79:b9:32:3b:e2:96:1d:59:ba: bd:5b:d2:d0:bf:14:da:78:8c:02:fd:26:06:a1:d1: 19:fe:f8:d6:22:91:17:d8:25:7c:2b:d8:61:da:14: 0c:c0:3b:dc:80:10:4a:56:7c:82:78:1b:07:af:20: 0c:60:73:84:18:1b:7e:aa:78:b3:1d:ab:df:b8:be: cb:fd:0e:1b:26:f3:be:95:f7:fb:af:f7:8a:2e:50: 5f:ca:ba:f7:ce:ce:70:84:9b:33:89:f8:5f:0f:00: 55:76:62:00:a7:f5:d6:fc:0f:d8:10:7a:dd:ae:e0: e6:0f:4d:8c:f6:84:ab:20:8f:6d:81:7d:93:6f:c0: 6a:95:88:f2:18:1d:79:44:75:e2:36:ac:14:32:40: bb:11:2b:88:94:c2:ed:7f:9a:87:a0:4b:67:45:32: 37:38:ae:c6:1c:3a:a7:9f:14:cd:b4:d1:e4:1b:5d: 53:c6:25:49:90:5f:ef:ad:4e:70:e0:40:cb:ca:f9: 10:69:b6:6a:eb:0f:06:2c:d2:6d:ca:0a:29:89:2a: b3:47:a3:1b:a9:ae:31:62:a7:c8:e4:85:20:21:93: 59:9e:dc:c4:8e:ee:6c:3c:93:3d:38:a0:df:13:45: 08:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7F:AC:DA:33:1D:1C:50:B8:72:83:60:EC:CD:B2:5D:A6:27:34:33 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/23 Signature Algorithm: sha256WithRSAEncryption 47:0a:8a:ca:0a:24:12:54:ba:5e:47:72:48:d1:c9:64:23:b9: 6e:29:1c:8c:e8:c2:ac:53:4c:59:fe:19:39:32:ca:f7:d4:05: bc:a9:73:19:00:85:14:a8:73:79:3c:bc:6d:c8:14:71:f7:bf: 0e:bb:5e:5e:b2:53:63:8d:0b:cc:1f:8e:5f:14:9d:1e:34:57: f0:61:fd:be:4a:3d:9a:0a:d3:f1:89:ba:e7:42:ac:57:73:53: 43:1c:cd:ff:d9:fb:de:a7:11:01:37:5e:55:a9:15:37:7d:31: f2:09:63:ff:9f:ac:41:df:70:b6:be:f9:c9:1d:72:2c:8b:d5: 35:55:da:5f:1d:4a:94:03:9e:91:f1:49:e6:80:84:b6:7a:3e: 03:61:2f:10:d7:9e:37:f7:63:50:be:99:76:be:56:8e:f1:72: 1a:2e:7f:b1:c3:0c:f8:94:7a:87:1f:47:0c:b0:bd:ad:46:97: 94:56:2c:af:9f:6f:69:79:83:4b:26:c8:c1:4d:85:96:07:01: e8:73:b3:8a:ce:be:11:aa:0e:b1:f2:7b:9f:06:f5:19:d0:04: f4:28:b2:b9:20:2c:e9:8d:c1:9b:6b:f1:25:3a:7c:9a:5c:25: ef:76:b6:50:77:0d:1e:08:ef:b1:8c:bd:ad:37:90:28:d6:38: 11:4d:b7:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF9ofkYJXYSYlPtUmK4IBAMEKxpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA2MjAxMTU1MDBaFw0yNjA2MTkxMjAwMDBaMDMxMTAvBgNV BAMTKDhEN0ZBQ0RBMzMxRDFDNTBCODcyODM2MEVDQ0RCMjVEQTYyNzM0MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYfBDm6xmmZUriyvh84MsfH5UB VHm5Mjvilh1Zur1b0tC/FNp4jAL9Jgah0Rn++NYikRfYJXwr2GHaFAzAO9yAEEpW fIJ4GwevIAxgc4QYG36qeLMdq9+4vsv9Dhsm876V9/uv94ouUF/KuvfOznCEmzOJ +F8PAFV2YgCn9db8D9gQet2u4OYPTYz2hKsgj22BfZNvwGqViPIYHXlEdeI2rBQy QLsRK4iUwu1/moegS2dFMjc4rsYcOqefFM200eQbXVPGJUmQX++tTnDgQMvK+RBp tmrrDwYs0m3KCimJKrNHoxuprjFip8jkhSAhk1me3MSO7mw8kz04oN8TRQgrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjX+s2jMdHFC4coNg7M2yXaYnNDMwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQBHCorKCiQSVLpeR3JI0clkI7luKRyM6MKsU0xZ/hk5Msr3 1AW8qXMZAIUUqHN5PLxtyBRx978Ou15eslNjjQvMH45fFJ0eNFfwYf2+Sj2aCtPx ibrnQqxXc1NDHM3/2fvepxEBN15VqRU3fTHyCWP/n6xB33C2vvnJHXIsi9U1Vdpf HUqUA56R8UnmgIS2ej4DYS8Q154392NQvpl2vlaO8XIaLn+xwwz4lHqHH0cMsL2t RpeUViyvn29peYNLJsjBTYWWBwHoc7OKzr4Rqg6x8nufBvUZ0AT0KLK5ICzpjcGb a/ElOnyaXCXvdrZQdw0eCO+xjL2tN5Ao1jgRTbe6 -----END CERTIFICATE-----Generated at Mon Jun 30 13:20:26 2025 by rpki-client