$ rpki-client -vvf repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/3130332e3130322e3235302e302f32342d3234203d3e20313336383632.roa File: 3130332e3130322e3235302e302f32342d3234203d3e20313336383632.roa (raw, json) Hash identifier: XJaPVKL+tFj4c3WHFeXKkbEPFHc33QGCd8eyCL/ZJ7M= Subject key identifier: 67:5A:5F:88:7B:11:DD:03:91:68:C4:C0:3D:47:56:AF:0E:13:EF:6E Certificate issuer: /CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Certificate serial: 3ABBF90272B6042C1B979D6BF613A7CDB2DE399B Authority key identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/3130332e3130322e3235302e302f32342d3234203d3e20313336383632.roa Signing time: Fri 27 Jun 2025 07:00:00 +0000 ROA not before: Fri 27 Jun 2025 06:55:00 +0000 ROA not after: Fri 26 Jun 2026 07:00:00 +0000 asID: 136862 IP address blocks: 103.102.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.crl rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 04:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bb:f9:02:72:b6:04:2c:1b:97:9d:6b:f6:13:a7:cd:b2:de:39:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Validity Not Before: Jun 27 06:55:00 2025 GMT Not After : Jun 26 07:00:00 2026 GMT Subject: CN=675A5F887B11DD039168C4C03D4756AF0E13EF6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:a1:91:f9:3e:bb:25:4f:1b:a7:dd:47:fd: f7:dd:a9:bd:8a:06:e4:ae:7a:cc:a9:d4:64:ac:69: 35:72:32:a4:77:32:3e:46:9e:ac:51:ec:d9:7b:31: a3:0e:ca:20:86:de:4d:a6:3f:4f:a7:9d:ab:5a:22: 2a:29:4c:00:45:fd:45:9f:87:b0:fa:04:9c:31:fd: dd:b8:5a:f8:ae:d8:09:56:9f:74:33:5f:ca:28:4b: 34:9f:fa:af:4e:fa:2d:89:73:7b:a3:01:e3:82:1d: 75:2c:4d:69:a6:ad:06:7f:59:bd:55:f8:10:b9:4e: 2e:06:39:ad:b8:b3:25:27:4b:c7:89:c8:c9:93:c8: 7a:f3:6f:7e:ee:3a:b3:e8:d3:cd:f4:0a:bf:b5:3c: 3f:19:76:dd:60:31:8c:23:e8:3f:0b:58:96:cf:aa: 55:4a:81:10:15:de:7c:64:38:8a:5f:f7:9d:51:d6: 6c:69:3e:9f:8a:eb:e0:a3:04:b2:52:a5:71:a1:a4: 8d:51:30:c9:2a:1a:d5:f4:48:da:f0:84:1d:3c:35: 9f:33:5e:cd:f6:82:e2:16:61:2e:25:00:4f:33:7e: 8e:86:cf:fc:13:0d:f2:1c:51:51:3a:d7:f5:2d:c8: 8c:26:e6:b1:f4:1f:0a:e1:af:37:1d:5b:e7:fc:e0: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5A:5F:88:7B:11:DD:03:91:68:C4:C0:3D:47:56:AF:0E:13:EF:6E X509v3 Authority Key Identifier: keyid:57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/3130332e3130322e3235302e302f32342d3234203d3e20313336383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.250.0/24 Signature Algorithm: sha256WithRSAEncryption c6:88:4c:55:fb:8e:89:4d:42:22:e3:8c:40:d6:86:3e:1b:df: 1f:a2:ec:4f:5d:ee:2d:21:51:02:e4:b1:6e:75:93:76:43:a4: db:f0:5e:a3:33:5d:83:fd:c8:a1:59:2d:31:bc:9e:68:31:4b: 5c:23:80:f8:d5:31:00:ef:cb:23:6b:93:d7:d4:ed:b7:27:7d: fe:08:cb:63:a5:c2:f5:df:7c:2d:46:21:2c:df:b2:e1:9e:cb: 09:82:9a:6a:2f:2d:c0:94:96:39:d3:8f:40:ea:91:70:6d:98: a2:73:cc:81:4e:43:bf:14:f7:b8:15:82:f0:bd:55:1a:be:50: 04:46:2c:20:eb:9f:67:eb:53:2c:80:9f:d0:ee:27:fc:ea:cc: ed:1d:71:38:1d:1f:f6:4a:da:d3:04:de:e8:a3:67:d0:5e:f3: d8:0b:76:ab:b8:96:45:1d:46:37:50:b6:fd:c0:85:d9:3a:04: 89:c9:ef:56:68:95:42:d5:0b:ce:13:d9:17:35:f9:b0:6c:8a: c7:31:cf:01:93:f7:78:04:27:0e:d0:55:a0:fd:ee:f3:1e:e8: 44:9d:3b:d4:95:55:3a:2a:80:c4:e1:2d:df:bb:fc:d8:2f:8a: 3b:7c:40:36:fa:fa:3a:af:2d:28:4a:ca:14:40:7f:e0:52:6b: 5b:72:7f:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOrv5AnK2BCwbl51r9hOnzbLeOZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc4N0FENjY1OUVBOEE1RTQwMTg4NzZGNUY5REJEOUFB QUY5Q0ExRDAeFw0yNTA2MjcwNjU1MDBaFw0yNjA2MjYwNzAwMDBaMDMxMTAvBgNV BAMTKDY3NUE1Rjg4N0IxMUREMDM5MTY4QzRDMDNENDc1NkFGMEUxM0VGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC70qGR+T67JU8bp91H/ffdqb2K BuSuesyp1GSsaTVyMqR3Mj5GnqxR7Nl7MaMOyiCG3k2mP0+nnataIiopTABF/UWf h7D6BJwx/d24Wviu2AlWn3QzX8ooSzSf+q9O+i2Jc3ujAeOCHXUsTWmmrQZ/Wb1V +BC5Ti4GOa24syUnS8eJyMmTyHrzb37uOrPo0830Cr+1PD8Zdt1gMYwj6D8LWJbP qlVKgRAV3nxkOIpf951R1mxpPp+K6+CjBLJSpXGhpI1RMMkqGtX0SNrwhB08NZ8z Xs32guIWYS4lAE8zfo6Gz/wTDfIcUVE61/UtyIwm5rH0HwrhrzcdW+f84Dw1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ1pfiHsR3QORaMTAPUdWrw4T724wHwYDVR0j BBgwFoAUV4etZlnqil5AGIdvX529mqr5yh0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWI4ZTc3NC0xNjgzLTQ1NmQtYmJjMC0zNDMyMjVmMTdmNGMvMC81Nzg3QUQ2NjU5 RUE4QTVFNDAxODg3NkY1RjlEQkQ5QUFBRjlDQTFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc4N0FENjY1OUVBOEE1RTQwMTg4NzZGNUY5REJEOUFBQUY5 Q0ExRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YjhlNzc0LTE2ODMtNDU2ZC1i YmMwLTM0MzIyNWYxN2Y0Yy8wLzMxMzAzMzJlMzEzMDMyMmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZvowDQYJ KoZIhvcNAQELBQADggEBAMaITFX7jolNQiLjjEDWhj4b3x+i7E9d7i0hUQLksW51 k3ZDpNvwXqMzXYP9yKFZLTG8nmgxS1wjgPjVMQDvyyNrk9fU7bcnff4Iy2OlwvXf fC1GISzfsuGeywmCmmovLcCUljnTj0DqkXBtmKJzzIFOQ78U97gVgvC9VRq+UARG LCDrn2frUyyAn9DuJ/zqzO0dcTgdH/ZK2tME3uijZ9Be89gLdqu4lkUdRjdQtv3A hdk6BInJ71ZolULVC84T2Rc1+bBsiscxzwGT93gEJw7QVaD97vMe6ESdO9SVVToq gMThLd+7/Ngvijt8QDb6+jqvLShKyhRAf+BSa1tyf8o= -----END CERTIFICATE-----Generated at Wed Jul 2 05:23:41 2025 by rpki-client