$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa File: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (raw, json) Hash identifier: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s= Subject key identifier: C8:6D:CA:D4:27:2A:9D:67:98:10:D2:36:F4:F4:53:26:AC:EA:18:1E Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 336002AED43D5CA90DB25179E1C1215E6268D277 Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa Signing time: Fri 27 Jun 2025 04:00:38 +0000 ROA not before: Fri 27 Jun 2025 03:55:38 +0000 ROA not after: Fri 26 Jun 2026 04:00:38 +0000 asID: 149951 IP address blocks: 103.111.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:60:02:ae:d4:3d:5c:a9:0d:b2:51:79:e1:c1:21:5e:62:68:d2:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Jun 27 03:55:38 2025 GMT Not After : Jun 26 04:00:38 2026 GMT Subject: CN=C86DCAD4272A9D679810D236F4F45326ACEA181E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:16:31:d2:47:f1:37:72:6e:37:8a:a6:4c: 27:4c:f5:ca:ee:ad:2a:f0:bb:cc:61:a6:1b:c3:74: 4e:02:5d:9e:89:2e:de:65:3c:2f:ac:d6:df:77:c3: 6c:fe:1d:7f:17:87:45:72:69:59:81:9b:7d:54:4e: 53:d3:a5:6e:bf:f0:53:42:3b:3a:86:f6:5b:cb:38: 2c:b4:b7:73:2e:60:7e:94:82:1f:a2:42:06:f1:01: 97:e5:3e:0f:be:3b:ea:2e:09:a2:5f:96:66:57:1b: b2:b5:72:97:82:0b:03:5a:c2:15:e0:93:24:ec:0d: 5e:77:c7:a9:ad:fa:2a:6f:cf:0d:1c:6d:29:5b:2d: e4:1a:6a:58:40:a7:f1:64:4f:e4:b0:03:28:cb:14: 49:b9:e3:4e:bc:c1:36:42:58:b5:49:1a:92:a8:c3: 40:4b:bb:42:75:e4:27:fb:3b:07:39:e6:49:26:4b: d3:e4:ac:f4:10:0f:1e:1d:5b:37:d3:09:44:f0:4c: e3:65:f6:e2:d3:21:a6:77:f3:1c:9c:b5:80:09:1f: 2f:02:48:cd:95:b4:f0:21:0b:ca:99:c6:da:87:c6: d2:b4:99:ca:4f:46:4a:d2:e0:8b:a9:89:17:cb:f1: b7:52:25:7e:76:88:2f:15:19:f4:79:63:a6:92:d4: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6D:CA:D4:27:2A:9D:67:98:10:D2:36:F4:F4:53:26:AC:EA:18:1E X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.119.0/24 Signature Algorithm: sha256WithRSAEncryption 80:90:3e:94:5c:52:b8:f1:66:6b:05:41:dd:30:78:8d:e7:f7: f3:c8:2b:58:a6:68:b7:0e:e0:13:16:bf:20:2a:90:5e:a7:80: 31:55:01:c5:52:29:99:47:5a:66:a9:f7:8b:90:2a:b7:6d:1c: 8d:40:c6:a7:b5:69:62:a4:60:c9:88:f5:c8:cf:67:ba:4b:65: ae:4b:fc:dd:8e:08:51:5e:d8:0b:d2:9a:97:f3:ac:f3:c0:99: 6e:bf:2f:0f:c6:28:ab:19:a6:6f:fe:83:b2:83:70:bc:1e:1c: e0:09:45:f2:1c:b1:49:2b:c6:82:db:92:b5:49:af:bb:13:68: 16:f4:7d:17:49:56:9e:41:42:11:5a:5d:0d:be:5f:6e:66:7e: 75:c3:fc:95:0f:27:a7:26:19:f3:da:7c:43:b5:56:da:6a:cd: 54:18:f5:26:1e:56:e1:7f:a4:a5:f1:1a:34:a5:ca:de:07:9c: 0d:3d:b7:91:2e:18:44:b1:2c:43:4c:67:11:35:a5:ec:5e:46: b4:9d:fc:5f:32:c0:f8:4b:ae:da:d0:d0:24:36:c4:63:a3:ad: 33:92:2c:33:32:3b:16:12:47:aa:e7:b1:7b:c0:aa:79:b9:df: bb:37:99:fa:52:eb:6a:73:6f:a7:bc:70:01:94:21:fa:e2:c9: 1f:26:83:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM2ACrtQ9XKkNslF54cEhXmJo0ncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTA2MjcwMzU1MzhaFw0yNjA2MjYwNDAwMzhaMDMxMTAvBgNV BAMTKEM4NkRDQUQ0MjcyQTlENjc5ODEwRDIzNkY0RjQ1MzI2QUNFQTE4MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO9BYx0kfxN3JuN4qmTCdM9cru rSrwu8xhphvDdE4CXZ6JLt5lPC+s1t93w2z+HX8Xh0VyaVmBm31UTlPTpW6/8FNC OzqG9lvLOCy0t3MuYH6Ugh+iQgbxAZflPg++O+ouCaJflmZXG7K1cpeCCwNawhXg kyTsDV53x6mt+ipvzw0cbSlbLeQaalhAp/FkT+SwAyjLFEm54068wTZCWLVJGpKo w0BLu0J15Cf7Owc55kkmS9PkrPQQDx4dWzfTCUTwTONl9uLTIaZ38xyctYAJHy8C SM2VtPAhC8qZxtqHxtK0mcpPRkrS4IupiRfL8bdSJX52iC8VGfR5Y6aS1K9lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyG3K1CcqnWeYENI29PRTJqzqGB4wHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZjE2YzQ1LTk2ZmItNGM5Mi04 MDRlLTY0YjBiZjI4MDMwMi8wLzMxMzAzMzJlMzEzMTMxMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb3cwDQYJ KoZIhvcNAQELBQADggEBAICQPpRcUrjxZmsFQd0weI3n9/PIK1imaLcO4BMWvyAq kF6ngDFVAcVSKZlHWmap94uQKrdtHI1Axqe1aWKkYMmI9cjPZ7pLZa5L/N2OCFFe 2AvSmpfzrPPAmW6/Lw/GKKsZpm/+g7KDcLweHOAJRfIcsUkrxoLbkrVJr7sTaBb0 fRdJVp5BQhFaXQ2+X25mfnXD/JUPJ6cmGfPafEO1VtpqzVQY9SYeVuF/pKXxGjSl yt4HnA09t5EuGESxLENMZxE1pexeRrSd/F8ywPhLrtrQ0CQ2xGOjrTOSLDMyOxYS R6rnsXvAqnm537s3mfpS62pzb6e8cAGUIfriyR8mgyo= -----END CERTIFICATE-----Generated at Mon Jun 30 14:05:33 2025 by rpki-client