$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY= Subject key identifier: 56:A4:87:50:7F:91:9E:C5:D5:87:AB:0F:5B:BF:19:4F:F8:DD:33:23 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 43A8A63E77FD7E0BF46DF15581ADF126A0CD0D27 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa Signing time: Fri 27 Jun 2025 03:00:00 +0000 ROA not before: Fri 27 Jun 2025 02:55:00 +0000 ROA not after: Fri 26 Jun 2026 03:00:00 +0000 asID: 138139 IP address blocks: 103.133.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a8:a6:3e:77:fd:7e:0b:f4:6d:f1:55:81:ad:f1:26:a0:cd:0d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jun 27 02:55:00 2025 GMT Not After : Jun 26 03:00:00 2026 GMT Subject: CN=56A487507F919EC5D587AB0F5BBF194FF8DD3323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:42:11:e2:ca:4b:92:d7:1a:78:bc:02:b1:f2: 25:3d:5e:23:17:c8:d4:39:b4:85:76:cf:15:78:52: 96:fa:04:9e:24:b4:a6:55:87:a2:cc:3c:b6:45:31: 9d:5a:5c:82:52:27:93:ff:be:74:39:81:34:7f:83: a0:6b:56:c7:22:e7:55:48:e3:ef:09:fb:b6:1c:59: b5:9a:d3:a7:23:fe:35:bc:e6:2f:de:7c:90:83:87: ee:fe:87:cc:ad:86:83:7b:08:84:ff:31:36:e0:e2: bc:70:59:3c:8c:48:f5:9d:e3:95:9b:a0:52:44:35: 6c:83:77:72:3f:cc:bc:c5:2b:d9:bb:a4:5a:fd:e8: 61:0a:2a:de:2a:ae:f3:d2:e4:9b:92:fd:fb:38:6e: 71:1c:a1:dd:15:f1:38:c7:49:69:cd:81:b3:20:7e: 59:38:ce:e4:b4:20:e1:62:92:cb:35:62:0e:df:2e: 07:c5:dc:25:cc:1c:6c:22:43:0c:2f:ce:66:fd:7a: 6f:16:a0:b4:bc:3a:47:b3:86:36:04:d1:60:2e:7e: 82:a3:11:b3:e0:84:14:da:15:e9:fa:8b:2d:68:51: 7a:74:20:21:c1:68:77:49:8c:b8:4b:27:a4:de:37: 92:3d:6d:1b:d9:69:f4:53:93:d9:9c:98:20:7d:ea: d5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A4:87:50:7F:91:9E:C5:D5:87:AB:0F:5B:BF:19:4F:F8:DD:33:23 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.145.0/24 Signature Algorithm: sha256WithRSAEncryption 65:ba:3a:52:c6:67:05:71:2f:43:08:e0:da:4c:4d:1f:47:76: b1:7f:2d:4b:55:57:92:0b:9a:b3:d2:b5:53:6e:6c:58:2e:24: 89:0e:fe:0f:56:fa:3e:53:e1:55:e3:0a:bc:fa:75:1d:ea:a1: f8:36:6e:3e:08:62:a0:2b:7b:97:dd:e6:7d:18:45:84:6c:99: 3c:98:a2:08:22:39:87:bc:21:ff:6e:24:c0:e9:68:5c:10:d1: 4f:45:ab:5f:22:87:8e:c8:d3:d5:a6:da:e1:eb:9d:d8:d3:83: d2:4c:2f:25:97:7d:0d:9c:e3:b2:98:f7:76:49:5e:3a:23:3a: 4d:4f:5e:8d:3d:16:71:f3:f2:cf:5e:03:cc:cb:97:73:70:cd: 85:2a:c0:1b:66:e8:3c:2c:d6:d5:aa:b2:b8:00:ea:13:c4:ad: 27:f0:d2:ae:d2:8a:c5:3b:7d:d5:2f:72:c2:f1:1d:c5:d4:83: f3:48:93:c4:02:ea:cb:20:e4:72:b0:cd:5d:ec:bb:98:87:25: 39:a0:3c:ac:3b:26:ff:93:85:6a:06:30:62:f6:7c:3e:90:00: 65:42:90:66:32:33:92:1a:45:13:e3:40:c0:08:94:0a:22:55: 70:5c:0b:6c:aa:6c:4d:ba:e3:3f:9e:23:dc:8a:51:d0:40:3d: 17:11:c0:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ6imPnf9fgv0bfFVga3xJqDNDScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA2MjcwMjU1MDBaFw0yNjA2MjYwMzAwMDBaMDMxMTAvBgNV BAMTKDU2QTQ4NzUwN0Y5MTlFQzVENTg3QUIwRjVCQkYxOTRGRjhERDMzMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQhHiykuS1xp4vAKx8iU9XiMX yNQ5tIV2zxV4Upb6BJ4ktKZVh6LMPLZFMZ1aXIJSJ5P/vnQ5gTR/g6BrVsci51VI 4+8J+7YcWbWa06cj/jW85i/efJCDh+7+h8ythoN7CIT/MTbg4rxwWTyMSPWd45Wb oFJENWyDd3I/zLzFK9m7pFr96GEKKt4qrvPS5JuS/fs4bnEcod0V8TjHSWnNgbMg flk4zuS0IOFikss1Yg7fLgfF3CXMHGwiQwwvzmb9em8WoLS8OkezhjYE0WAufoKj EbPghBTaFen6iy1oUXp0ICHBaHdJjLhLJ6TeN5I9bRvZafRTk9mcmCB96tULAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVqSHUH+RnsXVh6sPW78ZT/jdMyMwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZEwDQYJ KoZIhvcNAQELBQADggEBAGW6OlLGZwVxL0MI4NpMTR9HdrF/LUtVV5ILmrPStVNu bFguJIkO/g9W+j5T4VXjCrz6dR3qofg2bj4IYqAre5fd5n0YRYRsmTyYoggiOYe8 If9uJMDpaFwQ0U9Fq18ih47I09Wm2uHrndjTg9JMLyWXfQ2c47KY93ZJXjojOk1P Xo09FnHz8s9eA8zLl3NwzYUqwBtm6Dws1tWqsrgA6hPErSfw0q7SisU7fdUvcsLx HcXUg/NIk8QC6ssg5HKwzV3su5iHJTmgPKw7Jv+ThWoGMGL2fD6QAGVCkGYyM5Ia RRPjQMAIlAoiVXBcC2yqbE264z+eI9yKUdBAPRcRwJ0= -----END CERTIFICATE-----Generated at Mon Jun 30 04:31:48 2025 by rpki-client