$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa File: 3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa (raw, json) Hash identifier: JjGwrreU07/24H7WUf6CfxqCT99P1b99nl4/zwhCTDo= Subject key identifier: B5:79:11:CD:FC:1A:8C:53:27:E3:65:CC:61:AA:4F:88:58:7A:17:BE Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 62C1E00F2A87D27268CA44D9B93545401C66FB10 Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa Signing time: Sun 27 Apr 2025 22:00:02 +0000 ROA not before: Sun 27 Apr 2025 21:55:02 +0000 ROA not after: Sun 26 Apr 2026 22:00:02 +0000 asID: 140482 IP address blocks: 103.152.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c1:e0:0f:2a:87:d2:72:68:ca:44:d9:b9:35:45:40:1c:66:fb:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Apr 27 21:55:02 2025 GMT Not After : Apr 26 22:00:02 2026 GMT Subject: CN=B57911CDFC1A8C5327E365CC61AA4F88587A17BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c5:cb:77:02:42:fe:7b:23:aa:1f:2a:a4:1d: e0:b2:74:63:19:51:47:ce:26:81:ee:f6:88:25:cc: 62:04:00:f1:52:cd:9d:1a:8c:89:ce:c5:3a:de:48: aa:5b:9f:e4:65:ec:59:e9:b7:31:bc:d5:56:fc:4f: 75:5d:52:69:a5:35:de:a8:94:9d:14:f4:a1:6b:82: 7f:10:45:47:f4:68:1b:a9:96:a9:e6:a5:ac:d1:d2: c3:7b:b0:2e:90:2b:49:4e:7e:b0:3a:5e:54:d1:57: 8b:bb:fe:77:94:73:78:c2:0c:c7:d2:82:90:e5:74: 65:3e:ac:cc:0a:27:c0:2e:fb:50:56:10:68:b2:7d: b9:4e:12:8e:d0:c9:5e:4e:d8:82:65:df:2a:db:e5: 1d:6b:9c:0a:89:6a:20:94:d7:42:cd:38:89:f9:a2: d8:86:f2:6a:df:8c:22:ac:ef:78:5d:a6:32:2c:9d: d7:0e:29:83:49:7d:9b:78:23:c5:65:f5:92:90:62: 69:a8:90:f6:28:f7:6c:ca:6b:3a:67:19:d9:60:b8: 56:ba:19:8e:8b:9c:88:c2:cd:6e:14:fa:72:be:a5: a5:06:f0:d3:3d:95:a9:3f:11:6c:eb:9d:fa:c4:3e: 0e:14:9b:48:aa:17:ac:66:6e:e1:c6:ca:2e:af:f6: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:79:11:CD:FC:1A:8C:53:27:E3:65:CC:61:AA:4F:88:58:7A:17:BE X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.140.0/23 Signature Algorithm: sha256WithRSAEncryption 22:d2:b1:47:a9:ea:a0:02:0c:40:e0:1e:b3:91:83:cc:d8:55: df:82:09:ac:ea:b8:d1:02:6d:b2:c8:99:a5:8d:2e:e1:71:7a: 9f:b0:08:af:64:69:fd:33:1a:86:aa:2d:9a:7f:b8:3f:83:57: 27:70:30:1f:3f:8f:84:94:34:58:23:14:85:5a:83:e4:71:5e: ef:e4:a4:83:51:c3:e4:2d:92:9a:75:1f:d6:f6:68:c8:a9:8b: b1:61:e6:ec:12:12:9f:9b:57:a1:66:89:4e:b1:65:39:c7:6e: 9e:a1:2f:2f:ec:7b:af:a7:40:e0:9f:1e:f9:95:9e:ab:46:50: 8a:12:ee:a0:2d:4e:2a:65:d1:8e:2f:4a:f7:ae:f2:b6:2f:b3: a9:d6:6f:e8:37:bf:73:d8:be:0e:af:be:4d:d2:d2:e0:14:ab: 69:2d:e2:41:7e:7e:8f:f3:97:56:48:12:9e:a0:b0:e3:eb:02: 03:48:bd:d2:96:56:fc:bb:f6:28:72:67:4e:6c:51:59:dc:e5: 4f:25:08:1e:63:80:62:b3:90:7d:12:de:62:85:4c:83:14:69: ab:cc:c8:09:95:e4:0c:8e:88:d8:39:6a:26:8d:9d:05:87:a7: b6:b1:90:ce:23:8d:c3:b4:58:3b:6d:41:a8:3f:55:f6:8f:a0: 4d:b4:a5:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYsHgDyqH0nJoykTZuTVFQBxm+xAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNTA0MjcyMTU1MDJaFw0yNjA0MjYyMjAwMDJaMDMxMTAvBgNV BAMTKEI1NzkxMUNERkMxQThDNTMyN0UzNjVDQzYxQUE0Rjg4NTg3QTE3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5xct3AkL+eyOqHyqkHeCydGMZ UUfOJoHu9oglzGIEAPFSzZ0ajInOxTreSKpbn+Rl7FnptzG81Vb8T3VdUmmlNd6o lJ0U9KFrgn8QRUf0aBuplqnmpazR0sN7sC6QK0lOfrA6XlTRV4u7/neUc3jCDMfS gpDldGU+rMwKJ8Au+1BWEGiyfblOEo7QyV5O2IJl3yrb5R1rnAqJaiCU10LNOIn5 otiG8mrfjCKs73hdpjIsndcOKYNJfZt4I8Vl9ZKQYmmokPYo92zKazpnGdlguFa6 GY6LnIjCzW4U+nK+paUG8NM9lak/EWzrnfrEPg4Um0iqF6xmbuHGyi6v9shJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtXkRzfwajFMn42XMYapPiFh6F74wHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzEzNTMyMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmIwwDQYJ KoZIhvcNAQELBQADggEBACLSsUep6qACDEDgHrORg8zYVd+CCazquNECbbLImaWN LuFxep+wCK9kaf0zGoaqLZp/uD+DVydwMB8/j4SUNFgjFIVag+RxXu/kpINRw+Qt kpp1H9b2aMipi7Fh5uwSEp+bV6FmiU6xZTnHbp6hLy/se6+nQOCfHvmVnqtGUIoS 7qAtTipl0Y4vSveu8rYvs6nWb+g3v3PYvg6vvk3S0uAUq2kt4kF+fo/zl1ZIEp6g sOPrAgNIvdKWVvy79ihyZ05sUVnc5U8lCB5jgGKzkH0S3mKFTIMUaavMyAmV5AyO iNg5aiaNnQWHp7axkM4jjcO0WDttQag/VfaPoE20pVY= -----END CERTIFICATE-----Generated at Sun May 11 06:12:59 2025 by rpki-client