$ rpki-client -vvf repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/3130332e3133332e32342e302f32322d3234203d3e20313338313330.roa File: 3130332e3133332e32342e302f32322d3234203d3e20313338313330.roa (raw, json) Hash identifier: cS4xFcJiF1zKuj0BZNhYothbCLKeaVj2VbTjqbuS5CU= Subject key identifier: 94:E9:89:C9:4A:EB:11:B2:EE:0A:9B:99:4F:E5:25:D6:BA:1B:E7:FE Certificate issuer: /CN=515ACA294C72135FCEF93DC148ABB7A0B6AF73F1 Certificate serial: 4646A3362A4F7F09F9F3D8A4F03E2BA759EEF563 Authority key identifier: 51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/3130332e3133332e32342e302f32322d3234203d3e20313338313330.roa Signing time: Thu 19 Jun 2025 01:00:02 +0000 ROA not before: Thu 19 Jun 2025 00:55:02 +0000 ROA not after: Thu 18 Jun 2026 01:00:02 +0000 asID: 138130 IP address blocks: 103.133.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.crl rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 07:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:46:a3:36:2a:4f:7f:09:f9:f3:d8:a4:f0:3e:2b:a7:59:ee:f5:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=515ACA294C72135FCEF93DC148ABB7A0B6AF73F1 Validity Not Before: Jun 19 00:55:02 2025 GMT Not After : Jun 18 01:00:02 2026 GMT Subject: CN=94E989C94AEB11B2EE0A9B994FE525D6BA1BE7FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:e0:7c:2b:fb:a6:1b:3f:77:a4:64:1d:a6: 17:68:53:e5:d7:a1:61:9d:5d:ba:db:b2:7b:36:67: a3:74:ce:9a:fa:e0:11:b6:86:cd:e5:7a:bd:97:e4: d9:b3:20:0d:ee:d5:65:9a:a0:bf:91:11:9d:3d:2f: 62:85:38:d8:7a:d3:fa:80:b4:4c:38:4c:08:db:1c: dc:c4:ef:aa:04:6a:53:bf:43:eb:d4:cc:a5:09:67: d9:a4:34:20:4f:09:9a:18:c4:cb:44:6a:c0:1d:a7: 03:df:56:a7:73:b0:ff:5a:74:34:de:e7:78:b1:8d: b8:1a:59:e4:f5:17:af:66:e3:8c:05:f4:37:6d:1d: db:70:34:7d:28:73:14:20:1d:d0:bf:f0:98:15:a3: 6c:d6:bc:20:a7:d5:f0:15:26:67:1a:b8:1f:19:35: 01:cb:5c:d9:7d:f5:47:08:82:ce:ab:ca:2b:56:c5: d4:8b:bb:cb:6e:41:21:f0:5d:51:be:7d:af:8e:ba: a8:54:a0:13:ef:c1:51:1e:c0:40:4a:40:db:e3:2c: 18:05:9b:52:4d:73:ec:c0:5f:20:c4:60:ab:97:85: 20:02:eb:ba:92:95:17:d2:e5:2c:10:26:94:ba:55: a1:33:a8:00:05:06:ed:d4:8d:08:ea:54:c6:77:48: 8a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E9:89:C9:4A:EB:11:B2:EE:0A:9B:99:4F:E5:25:D6:BA:1B:E7:FE X509v3 Authority Key Identifier: keyid:51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/3130332e3133332e32342e302f32322d3234203d3e20313338313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.24.0/22 Signature Algorithm: sha256WithRSAEncryption 12:18:34:52:43:2e:54:d4:1e:b9:08:2b:47:d4:cc:74:69:f7: c4:2f:f0:54:6c:ee:a2:c0:c1:33:af:01:b4:05:70:a0:87:af: 48:ff:cd:23:4d:1d:a0:b2:2c:b1:63:d4:48:50:66:49:f3:40: 0e:bf:b3:d9:6c:58:a2:e8:f7:60:26:a3:4c:00:b2:19:82:26: d4:0b:a5:5d:5c:ee:74:64:ca:cf:c0:a3:ee:c5:92:75:90:07: f2:37:37:89:cf:8a:ba:d7:51:e2:b3:ed:4a:76:7d:d3:07:f8: aa:46:f3:45:4e:55:91:1b:5d:e0:ac:47:53:2a:e0:36:59:32: 86:92:aa:99:14:f7:7d:db:ad:11:c8:96:5a:b0:a3:aa:66:31: 54:bc:0f:51:98:5d:81:93:d5:bf:29:00:df:f2:25:f7:be:fb: 34:a6:de:54:e2:7e:a4:d3:b1:6d:56:86:1d:2f:83:79:b7:ec: 6f:ff:9e:8f:a2:ef:8d:0c:0e:81:35:b4:75:fc:99:42:7c:99: ef:ee:68:40:ed:47:30:79:60:c5:a4:99:87:e4:03:d4:bb:7b: d0:f4:16:25:6b:79:6b:99:74:35:5b:51:2e:5c:83:fb:7b:2a: a1:60:57:85:d5:74:2b:d9:7c:8b:f7:5e:f6:e8:06:bd:80:20: 33:70:f6:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURkajNipPfwn589ik8D4rp1nu9WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE1QUNBMjk0QzcyMTM1RkNFRjkzREMxNDhBQkI3QTBC NkFGNzNGMTAeFw0yNTA2MTkwMDU1MDJaFw0yNjA2MTgwMTAwMDJaMDMxMTAvBgNV BAMTKDk0RTk4OUM5NEFFQjExQjJFRTBBOUI5OTRGRTUyNUQ2QkExQkU3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+zuB8K/umGz93pGQdphdoU+XX oWGdXbrbsns2Z6N0zpr64BG2hs3ler2X5NmzIA3u1WWaoL+REZ09L2KFONh60/qA tEw4TAjbHNzE76oEalO/Q+vUzKUJZ9mkNCBPCZoYxMtEasAdpwPfVqdzsP9adDTe 53ixjbgaWeT1F69m44wF9DdtHdtwNH0ocxQgHdC/8JgVo2zWvCCn1fAVJmcauB8Z NQHLXNl99UcIgs6ryitWxdSLu8tuQSHwXVG+fa+OuqhUoBPvwVEewEBKQNvjLBgF m1JNc+zAXyDEYKuXhSAC67qSlRfS5SwQJpS6VaEzqAAFBu3UjQjqVMZ3SIplAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlOmJyUrrEbLuCpuZT+Ul1rob5/4wHwYDVR0j BBgwFoAUUVrKKUxyE1/O+T3BSKu3oLavc/EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmRmZjM5MC0xNjk1LTQ0ZWUtODhlNS00MmVkMTI4MTZiMDAvMC81MTVBQ0EyOTRD NzIxMzVGQ0VGOTNEQzE0OEFCQjdBMEI2QUY3M0YxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE1QUNBMjk0QzcyMTM1RkNFRjkzREMxNDhBQkI3QTBCNkFG NzNGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZGZmMzkwLTE2OTUtNDRlZS04 OGU1LTQyZWQxMjgxNmIwMC8wLzMxMzAzMzJlMzEzMzMzMmUzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4UYMA0GCSqG SIb3DQEBCwUAA4IBAQASGDRSQy5U1B65CCtH1Mx0affEL/BUbO6iwMEzrwG0BXCg h69I/80jTR2gsiyxY9RIUGZJ80AOv7PZbFii6PdgJqNMALIZgibUC6VdXO50ZMrP wKPuxZJ1kAfyNzeJz4q611His+1Kdn3TB/iqRvNFTlWRG13grEdTKuA2WTKGkqqZ FPd9260RyJZasKOqZjFUvA9RmF2Bk9W/KQDf8iX3vvs0pt5U4n6k07FtVoYdL4N5 t+xv/56Pou+NDA6BNbR1/JlCfJnv7mhA7UcweWDFpJmH5APUu3vQ9BYla3lrmXQ1 W1EuXIP7eyqhYFeF1XQr2XyL91726Aa9gCAzcPZS -----END CERTIFICATE-----Generated at Mon Jun 30 17:35:53 2025 by rpki-client