$ rpki-client -vvf repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/3130332e3231342e3131322e302f32332d3234203d3e20313336303532.roa File: 3130332e3231342e3131322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: XS6giku77XPtxmNRkfOOXOP+iNVcgzmhP0k5pXi56n8= Subject key identifier: 8B:ED:BE:69:4C:0D:4C:98:F7:CA:C6:C7:5D:C3:C7:B8:23:77:3F:0B Certificate issuer: /CN=1095EA78703826ACF5FA2241EB2B1B66A2C4485A Certificate serial: 48C105774DF276EA3ECD1B333B82E4B673BF0388 Authority key identifier: 10:95:EA:78:70:38:26:AC:F5:FA:22:41:EB:2B:1B:66:A2:C4:48:5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/3130332e3231342e3131322e302f32332d3234203d3e20313336303532.roa Signing time: Mon 02 Jun 2025 02:04:55 +0000 ROA not before: Mon 02 Jun 2025 01:59:55 +0000 ROA not after: Mon 01 Jun 2026 02:04:55 +0000 asID: 136052 IP address blocks: 103.214.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.crl rsync://repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 00:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c1:05:77:4d:f2:76:ea:3e:cd:1b:33:3b:82:e4:b6:73:bf:03:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1095EA78703826ACF5FA2241EB2B1B66A2C4485A Validity Not Before: Jun 2 01:59:55 2025 GMT Not After : Jun 1 02:04:55 2026 GMT Subject: CN=8BEDBE694C0D4C98F7CAC6C75DC3C7B823773F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:d3:16:21:1e:af:19:ac:05:96:93:fb:ff: a7:e5:f6:50:7c:69:ff:43:bb:0d:d0:6b:fe:c6:d2: 0b:ec:3e:f8:d9:2d:22:da:01:ac:ad:2b:c3:fc:30: d3:88:e3:85:ad:d1:1a:d0:90:1c:2c:1e:aa:e4:e2: 37:e0:14:da:38:fd:93:56:6a:a8:9c:8d:ca:b5:9a: 47:a6:7b:42:6a:42:3b:9c:cc:76:93:71:0d:81:0d: af:83:b4:cf:ff:a3:27:d0:74:3a:1a:58:01:67:57: 8a:86:8c:1a:1a:74:2d:d0:df:29:4b:20:2d:ee:59: 56:48:6f:c1:09:b3:f0:56:98:2f:14:d9:94:42:27: 7d:42:f4:06:01:40:1f:69:28:c1:b8:0c:73:2a:a3: 55:ae:e1:54:2b:e1:ec:52:2b:0d:a3:48:ed:e5:9b: fe:31:7c:e6:6d:66:67:65:53:79:cd:12:f6:a9:cc: 12:76:c2:d0:15:95:f7:7d:f5:a7:6f:89:78:83:9f: ea:5f:c4:2f:d5:13:6d:84:d1:76:35:62:fe:83:0a: 84:fe:36:ba:42:0b:d6:04:54:71:2b:0c:84:8d:53: 85:81:36:2f:4a:19:21:f8:1a:03:b8:55:20:07:b0: ed:70:ed:06:5a:2c:6c:a7:d7:6e:9e:4a:11:56:80: 4b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:ED:BE:69:4C:0D:4C:98:F7:CA:C6:C7:5D:C3:C7:B8:23:77:3F:0B X509v3 Authority Key Identifier: keyid:10:95:EA:78:70:38:26:AC:F5:FA:22:41:EB:2B:1B:66:A2:C4:48:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1095EA78703826ACF5FA2241EB2B1B66A2C4485A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/595dd573-31f4-416c-a1b7-698d6b1697ad/0/3130332e3231342e3131322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.112.0/23 Signature Algorithm: sha256WithRSAEncryption 63:b4:52:2a:bf:3f:f4:31:1d:a2:c2:ac:51:27:71:bb:a2:24: 56:e6:26:32:b2:1c:f6:ff:c4:78:84:1d:6b:a4:8e:d5:84:ea: 68:5b:6f:d8:2a:a9:b4:9b:1c:69:3a:41:4c:bf:96:59:0d:3b: c1:e4:fc:38:07:89:07:eb:5f:37:99:c5:d1:0f:1c:d7:9e:63: f3:59:ee:29:36:cf:71:be:0f:18:10:43:14:b2:2b:50:9f:6e: e2:ae:1e:8d:07:c1:8e:8e:b5:04:f6:ec:15:65:6b:28:b5:c4: 41:33:f0:85:7f:f9:b6:71:57:f5:b6:50:f7:b4:07:c5:ef:2c: 6f:49:bd:cb:81:b3:ac:7c:2a:72:44:6e:5f:33:e2:c9:ff:b6: 70:bb:aa:48:33:7a:8f:c6:31:3f:e1:ce:c5:07:6a:a6:e6:7c: 73:e9:67:ab:b6:c6:53:8d:03:d0:22:6e:df:ce:b3:6e:0c:8d: 4e:f3:e8:2c:d8:37:14:e9:6d:bb:fd:94:36:74:d0:75:98:4c: ae:c1:9f:e5:b6:f1:28:ec:05:4e:7b:7e:5a:89:ff:a6:be:bf: cc:d3:d4:e7:a7:58:f3:65:c0:32:37:81:01:06:59:43:29:1a: 1a:0d:e7:f9:f1:ea:bb:8b:54:fd:4c:7c:ec:63:e8:ff:dd:31: 52:aa:66:f4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSMEFd03yduo+zRszO4LktnO/A4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA5NUVBNzg3MDM4MjZBQ0Y1RkEyMjQxRUIyQjFCNjZB MkM0NDg1QTAeFw0yNTA2MDIwMTU5NTVaFw0yNjA2MDEwMjA0NTVaMDMxMTAvBgNV BAMTKDhCRURCRTY5NEMwRDRDOThGN0NBQzZDNzVEQzNDN0I4MjM3NzNGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC94tMWIR6vGawFlpP7/6fl9lB8 af9Duw3Qa/7G0gvsPvjZLSLaAaytK8P8MNOI44Wt0RrQkBwsHqrk4jfgFNo4/ZNW aqicjcq1mkeme0JqQjuczHaTcQ2BDa+DtM//oyfQdDoaWAFnV4qGjBoadC3Q3ylL IC3uWVZIb8EJs/BWmC8U2ZRCJ31C9AYBQB9pKMG4DHMqo1Wu4VQr4exSKw2jSO3l m/4xfOZtZmdlU3nNEvapzBJ2wtAVlfd99adviXiDn+pfxC/VE22E0XY1Yv6DCoT+ NrpCC9YEVHErDISNU4WBNi9KGSH4GgO4VSAHsO1w7QZaLGyn126eShFWgEulAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi+2+aUwNTJj3ysbHXcPHuCN3PwswHwYDVR0j BBgwFoAUEJXqeHA4Jqz1+iJB6ysbZqLESFowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTVkZDU3My0zMWY0LTQxNmMtYTFiNy02OThkNmIxNjk3YWQvMC8xMDk1RUE3ODcw MzgyNkFDRjVGQTIyNDFFQjJCMUI2NkEyQzQ0ODVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA5NUVBNzg3MDM4MjZBQ0Y1RkEyMjQxRUIyQjFCNjZBMkM0 NDg1QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NWRkNTczLTMxZjQtNDE2Yy1h MWI3LTY5OGQ2YjE2OTdhZC8wLzMxMzAzMzJlMzIzMTM0MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn1nAwDQYJ KoZIhvcNAQELBQADggEBAGO0Uiq/P/QxHaLCrFEncbuiJFbmJjKyHPb/xHiEHWuk jtWE6mhbb9gqqbSbHGk6QUy/llkNO8Hk/DgHiQfrXzeZxdEPHNeeY/NZ7ik2z3G+ DxgQQxSyK1CfbuKuHo0HwY6OtQT27BVlayi1xEEz8IV/+bZxV/W2UPe0B8XvLG9J vcuBs6x8KnJEbl8z4sn/tnC7qkgzeo/GMT/hzsUHaqbmfHPpZ6u2xlONA9Aibt/O s24MjU7z6CzYNxTpbbv9lDZ00HWYTK7Bn+W28SjsBU57flqJ/6a+v8zT1OenWPNl wDI3gQEGWUMpGhoN5/nx6ruLVP1MfOxj6P/dMVKqZvQ= -----END CERTIFICATE-----Generated at Tue Jul 1 09:42:49 2025 by rpki-client