$ rpki-client -vvf repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa File: 3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa (raw, json) Hash identifier: A/rwCvV0N2IIi5162rcSMrNXLOVO+p2IOyLdZ8Vkj6A= Subject key identifier: 55:19:95:04:46:CD:6E:18:30:EF:79:B8:A2:C7:74:AF:BB:9E:A9:4D Certificate issuer: /CN=926C43E6DACC18978406A2C9C57272491FFF9536 Certificate serial: 2A132A47685AE77A215CFEC8C62DE1F6A580F37A Authority key identifier: 92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa Signing time: Thu 22 May 2025 10:00:01 +0000 ROA not before: Thu 22 May 2025 09:55:01 +0000 ROA not after: Thu 21 May 2026 10:00:01 +0000 asID: 141075 IP address blocks: 103.155.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 17:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:13:2a:47:68:5a:e7:7a:21:5c:fe:c8:c6:2d:e1:f6:a5:80:f3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=926C43E6DACC18978406A2C9C57272491FFF9536 Validity Not Before: May 22 09:55:01 2025 GMT Not After : May 21 10:00:01 2026 GMT Subject: CN=5519950446CD6E1830EF79B8A2C774AFBB9EA94D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:14:a7:0d:f0:19:36:9a:b0:5f:ba:d2:ab:35: 15:66:24:c7:ad:c3:58:ee:48:09:fb:db:00:8b:c7: fa:f2:9a:6c:70:19:d3:af:a7:3c:fc:24:47:e2:f2: 7d:91:dd:81:27:76:5d:f3:3a:88:47:77:a3:22:29: 7c:80:02:74:03:51:4e:12:a8:0c:a8:0e:52:ba:f3: 4c:56:9c:6d:2b:ad:95:29:52:c4:24:69:a7:19:0a: 08:99:8f:ec:84:9c:69:f6:c0:1f:b7:28:32:f6:0f: 3e:79:3a:1d:da:cf:46:e6:e0:2b:f8:c6:1b:eb:65: 5b:99:a4:ee:a4:06:6c:91:f3:0c:33:4e:75:f9:c7: f3:2c:48:96:2d:6f:20:e3:c7:18:66:02:cf:cb:05: 3c:a8:fd:95:5a:35:52:77:d4:a5:56:f2:e9:4f:3a: 66:af:f6:95:03:67:f6:67:b0:a3:82:20:ee:16:d6: 22:b6:df:2e:23:31:68:0a:e9:da:d7:23:bb:7b:21: 1e:10:00:a2:29:6b:1a:ff:f6:91:66:b5:11:ac:8d: e4:ca:6f:31:69:8f:bd:2e:eb:45:ab:bc:61:6f:d0: 70:4f:95:09:63:e3:6e:a6:9b:5c:ba:9f:26:2a:c1: 91:64:2a:aa:eb:88:ec:0d:be:f7:ea:71:25:b8:85: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:19:95:04:46:CD:6E:18:30:EF:79:B8:A2:C7:74:AF:BB:9E:A9:4D X509v3 Authority Key Identifier: keyid:92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.224.0/23 Signature Algorithm: sha256WithRSAEncryption e0:b5:7d:27:54:4f:80:3e:88:0e:56:33:3f:c8:fe:c4:ce:b8: cb:46:9d:1a:e5:d6:1f:ff:52:76:f8:0b:4d:06:33:c4:29:6a: 8b:0d:af:fe:26:ba:63:ae:1f:53:b4:ba:ca:22:e9:b2:ab:a5: 33:06:64:c5:cc:b9:8f:9f:91:e4:60:19:38:16:d4:72:2d:07: b8:d1:e2:50:7d:56:a5:9f:11:50:19:5b:65:63:fb:13:00:46: 3e:cc:8e:d6:c1:0c:07:f8:73:cc:74:54:0f:91:fe:13:01:3d: 13:54:bb:92:47:dd:58:03:c1:5e:9c:e5:c1:1c:10:3c:89:47: f0:1b:1b:61:74:52:64:3f:4c:4c:d7:b0:a8:f8:75:7c:83:62: 72:7b:0f:b2:72:6e:97:a0:fc:af:52:01:14:47:7f:f5:2a:65: 58:fd:88:f1:0c:42:39:d5:a2:c7:2c:ae:7e:49:6e:04:fa:5c: 29:b1:36:3e:b8:60:d7:0d:bf:97:86:ae:a7:46:61:b8:c4:25: fa:70:d2:e9:62:e3:1c:3f:e9:b9:9e:81:37:aa:c4:1c:46:0e: 56:89:c5:d5:ee:af:f8:35:5a:5d:c0:9e:a0:54:c8:76:6d:1f: b4:f7:64:6f:d7:8b:a5:8c:a1:f5:ec:9a:d7:8b:66:29:26:5e: 3e:e9:18:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKhMqR2ha53ohXP7Ixi3h9qWA83owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkx RkZGOTUzNjAeFw0yNTA1MjIwOTU1MDFaFw0yNjA1MjExMDAwMDFaMDMxMTAvBgNV BAMTKDU1MTk5NTA0NDZDRDZFMTgzMEVGNzlCOEEyQzc3NEFGQkI5RUE5NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSFKcN8Bk2mrBfutKrNRVmJMet w1juSAn72wCLx/rymmxwGdOvpzz8JEfi8n2R3YEndl3zOohHd6MiKXyAAnQDUU4S qAyoDlK680xWnG0rrZUpUsQkaacZCgiZj+yEnGn2wB+3KDL2Dz55Oh3az0bm4Cv4 xhvrZVuZpO6kBmyR8wwzTnX5x/MsSJYtbyDjxxhmAs/LBTyo/ZVaNVJ31KVW8ulP Omav9pUDZ/ZnsKOCIO4W1iK23y4jMWgK6drXI7t7IR4QAKIpaxr/9pFmtRGsjeTK bzFpj70u60WrvGFv0HBPlQlj426mm1y6nyYqwZFkKqrriOwNvvfqcSW4hToxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVRmVBEbNbhgw73m4osd0r7ueqU0wHwYDVR0j BBgwFoAUkmxD5trMGJeEBqLJxXJySR//lTYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzViYzEzMC05NjRhLTQ3YjgtOTIyYi04MzA2OWRlNjdhN2MvMC85MjZDNDNFNkRB Q0MxODk3ODQwNkEyQzlDNTcyNzI0OTFGRkY5NTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkxRkZG OTUzNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzNWJjMTMwLTk2NGEtNDdiOC05 MjJiLTgzMDY5ZGU2N2E3Yy8wLzMxMzAzMzJlMzEzNTM1MmUzMjMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+AwDQYJ KoZIhvcNAQELBQADggEBAOC1fSdUT4A+iA5WMz/I/sTOuMtGnRrl1h//Unb4C00G M8QpaosNr/4mumOuH1O0usoi6bKrpTMGZMXMuY+fkeRgGTgW1HItB7jR4lB9VqWf EVAZW2Vj+xMARj7MjtbBDAf4c8x0VA+R/hMBPRNUu5JH3VgDwV6c5cEcEDyJR/Ab G2F0UmQ/TEzXsKj4dXyDYnJ7D7Jybpeg/K9SARRHf/UqZVj9iPEMQjnVoscsrn5J bgT6XCmxNj64YNcNv5eGrqdGYbjEJfpw0uli4xw/6bmegTeqxBxGDlaJxdXur/g1 Wl3AnqBUyHZtH7T3ZG/Xi6WMofXsmteLZikmXj7pGO4= -----END CERTIFICATE-----Generated at Sat Jul 5 10:55:44 2025 by rpki-client