$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa File: 3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa (raw, json) Hash identifier: MNca57frzbraXQ+A5sffHCuXC7kbkp16cgNgxDCrZrE= Subject key identifier: A1:BC:EE:15:CB:0E:A4:FA:3E:F1:87:BB:61:E1:73:1F:C4:14:7D:81 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 255BAD86697FB4FB943AB732ADCCFD6870E6539C Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa Signing time: Sun 04 May 2025 04:00:02 +0000 ROA not before: Sun 04 May 2025 03:55:02 +0000 ROA not after: Sun 03 May 2026 04:00:02 +0000 asID: 18004 IP address blocks: 103.234.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:5b:ad:86:69:7f:b4:fb:94:3a:b7:32:ad:cc:fd:68:70:e6:53:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 03:55:02 2025 GMT Not After : May 3 04:00:02 2026 GMT Subject: CN=A1BCEE15CB0EA4FA3EF187BB61E1731FC4147D81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:96:2a:e1:bc:f8:15:0b:f2:7a:01:89:86:02: 27:a2:f3:86:92:cf:26:c5:e9:70:cf:c2:5c:e2:43: eb:43:41:7c:63:e1:18:76:09:0c:0c:80:74:1b:49: b3:1a:da:7d:ea:da:7c:6a:f3:34:2d:24:0d:fe:88: cd:7c:64:c3:37:d1:2e:46:e3:29:61:a7:86:79:b3: 3a:16:78:b7:a4:65:f9:41:b4:26:9a:93:78:22:bd: ac:33:ab:3a:f3:67:18:4b:8e:00:54:94:39:fc:b1: 2a:08:68:7f:75:4d:26:fc:02:e3:a0:57:85:48:4e: 6e:bd:d0:a6:79:58:ce:c4:37:8c:e7:ef:51:17:73: 69:b5:ee:c0:8b:39:fe:f5:b0:b0:2f:d2:e7:11:9e: 4d:fc:68:d1:33:30:2f:b9:12:38:27:dc:00:81:52: cb:20:32:7d:5d:6e:69:b8:6e:2b:95:bb:bf:f7:57: 02:c1:7c:28:24:07:47:78:b3:b4:0c:5f:41:64:35: 79:ba:36:8f:dc:94:53:8c:85:9a:27:ed:dd:8c:4e: 8b:6c:c6:5d:33:d7:be:e9:c6:54:02:79:da:70:60: 46:d2:a3:32:f1:bf:b4:72:69:60:db:c8:20:a8:ce: a7:2a:67:35:c1:df:f7:e0:bf:14:c6:fc:c9:da:fe: f4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BC:EE:15:CB:0E:A4:FA:3E:F1:87:BB:61:E1:73:1F:C4:14:7D:81 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.120.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:c9:f4:de:18:cb:ef:c7:b2:41:71:ba:98:4b:cd:27:ad:47: bf:9f:99:2d:8a:e8:ed:e4:bd:e6:6f:e3:05:b1:5b:dd:8c:2b: 8f:40:14:60:39:98:47:40:4a:79:24:5a:2b:f3:61:8a:a3:05: 15:33:2f:13:f0:94:3c:d5:51:09:73:bc:8b:df:57:b0:e3:33: 0b:24:05:8e:ee:fb:6c:a6:18:18:b2:88:e8:22:0e:fa:4e:56: 2e:ce:81:2a:fd:9d:ed:d1:43:cc:aa:70:21:58:42:54:06:4d: cf:0c:9e:8d:c5:4b:82:4f:68:1b:39:7e:e0:c4:66:ec:6c:2b: 3d:6b:c4:95:2b:3d:b6:e8:b0:b1:fe:b5:a1:d6:0f:24:0b:8a: 9e:92:ec:1b:18:59:9b:3b:64:a4:0c:6f:41:1a:af:e0:d6:77: cd:b1:48:07:d8:b6:05:41:fe:7c:2f:33:3c:3f:1d:a4:46:f7: 2b:4e:11:5b:ce:59:9c:ea:55:93:0f:c7:24:82:db:f5:d8:df: df:af:0b:d6:10:97:d8:fb:c5:ab:bb:5d:a4:a6:9c:e4:9f:21: 6a:70:30:25:19:00:44:f9:8b:77:18:25:20:dc:f0:5a:df:fb: b6:8e:f6:2e:d0:df:63:41:2c:b5:64:68:dc:32:f5:43:06:19: d8:60:fa:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJVuthml/tPuUOrcyrcz9aHDmU5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwMzU1MDJaFw0yNjA1MDMwNDAwMDJaMDMxMTAvBgNV BAMTKEExQkNFRTE1Q0IwRUE0RkEzRUYxODdCQjYxRTE3MzFGQzQxNDdEODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDClirhvPgVC/J6AYmGAiei84aS zybF6XDPwlziQ+tDQXxj4Rh2CQwMgHQbSbMa2n3q2nxq8zQtJA3+iM18ZMM30S5G 4ylhp4Z5szoWeLekZflBtCaak3givawzqzrzZxhLjgBUlDn8sSoIaH91TSb8AuOg V4VITm690KZ5WM7EN4zn71EXc2m17sCLOf71sLAv0ucRnk38aNEzMC+5Ejgn3ACB UssgMn1dbmm4biuVu7/3VwLBfCgkB0d4s7QMX0FkNXm6No/clFOMhZon7d2MTots xl0z177pxlQCedpwYEbSozLxv7RyaWDbyCCozqcqZzXB3/fgvxTG/Mna/vStAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUobzuFcsOpPo+8Ye7YeFzH8QUfYEwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzAzMzJlMzIzMzM0MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+p4MA0GCSqG SIb3DQEBCwUAA4IBAQB/yfTeGMvvx7JBcbqYS80nrUe/n5ktiujt5L3mb+MFsVvd jCuPQBRgOZhHQEp5JFor82GKowUVMy8T8JQ81VEJc7yL31ew4zMLJAWO7vtsphgY sojoIg76TlYuzoEq/Z3t0UPMqnAhWEJUBk3PDJ6NxUuCT2gbOX7gxGbsbCs9a8SV Kz226LCx/rWh1g8kC4qekuwbGFmbO2SkDG9BGq/g1nfNsUgH2LYFQf58LzM8Px2k RvcrThFbzlmc6lWTD8ckgtv12N/frwvWEJfY+8Wru12kppzknyFqcDAlGQBE+Yt3 GCUg3PBa3/u2jvYu0N9jQSy1ZGjcMvVDBhnYYPob -----END CERTIFICATE-----Generated at Mon May 12 12:48:41 2025 by rpki-client