$ rpki-client -vvf repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130362e302f32342d3234203d3e20313530393938.roa File: 3130332e3231312e3130362e302f32342d3234203d3e20313530393938.roa (raw, json) Hash identifier: OzDPsQ0j/kOveCiQy/dCFt8m39AccV/cQJY2lcE/LQY= Subject key identifier: 92:44:2C:64:97:E1:AD:55:A2:72:E6:94:CC:D0:AF:DC:07:58:2F:BF Certificate issuer: /CN=6592459773B9BF90E892EF4DE9361A991482809F Certificate serial: 023599BA0A3FD58D536382BDFE8D46F61DBF46C5 Authority key identifier: 65:92:45:97:73:B9:BF:90:E8:92:EF:4D:E9:36:1A:99:14:82:80:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6592459773B9BF90E892EF4DE9361A991482809F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130362e302f32342d3234203d3e20313530393938.roa Signing time: Fri 09 May 2025 05:02:28 +0000 ROA not before: Fri 09 May 2025 04:57:28 +0000 ROA not after: Fri 08 May 2026 05:02:28 +0000 asID: 150998 IP address blocks: 103.211.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/6592459773B9BF90E892EF4DE9361A991482809F.crl rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/6592459773B9BF90E892EF4DE9361A991482809F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6592459773B9BF90E892EF4DE9361A991482809F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 10:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:35:99:ba:0a:3f:d5:8d:53:63:82:bd:fe:8d:46:f6:1d:bf:46:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6592459773B9BF90E892EF4DE9361A991482809F Validity Not Before: May 9 04:57:28 2025 GMT Not After : May 8 05:02:28 2026 GMT Subject: CN=92442C6497E1AD55A272E694CCD0AFDC07582FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:0a:35:ff:ec:c9:94:9a:88:92:0f:bf:9c: cf:09:57:94:c5:c1:cf:35:b7:78:0a:a5:e2:46:5e: ed:2f:44:b4:90:67:2a:55:56:af:63:04:15:12:dd: 38:80:f6:9e:cd:04:54:20:c9:4f:39:6e:cf:85:08: 3a:e5:6b:f6:df:e7:08:30:8c:db:17:07:fc:ac:dc: 69:61:dd:98:77:ad:23:d7:4e:28:6c:0b:f2:48:89: e8:3a:ac:20:07:d0:98:31:33:aa:21:54:ea:0e:c9: d2:04:19:84:c3:91:51:c5:e1:33:82:f8:cf:28:e1: b2:fc:0c:9b:89:4c:a8:2b:d0:c8:63:82:ff:02:4c: 16:b5:f1:45:a2:d5:5a:cc:61:52:e2:a2:6e:cb:0e: 5f:ae:2c:6e:2c:39:09:a3:cb:58:30:63:7c:e4:17: cc:f6:3c:e9:a1:0a:dc:65:1b:e0:fe:55:4c:ca:8a: 18:26:23:a4:5d:24:9c:65:0f:45:41:cb:31:4c:fd: af:36:df:86:c9:96:e1:94:d0:af:0c:af:6a:67:78: e2:e9:ae:b6:a2:a6:4b:d8:31:8b:a4:eb:04:fd:3d: b9:d1:6d:ee:ae:01:e1:d5:f8:a5:7c:63:97:e3:09: 29:3a:bf:99:6f:2e:1b:4a:09:30:8b:34:7e:97:ba: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:44:2C:64:97:E1:AD:55:A2:72:E6:94:CC:D0:AF:DC:07:58:2F:BF X509v3 Authority Key Identifier: keyid:65:92:45:97:73:B9:BF:90:E8:92:EF:4D:E9:36:1A:99:14:82:80:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/6592459773B9BF90E892EF4DE9361A991482809F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6592459773B9BF90E892EF4DE9361A991482809F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/3130332e3231312e3130362e302f32342d3234203d3e20313530393938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.106.0/24 Signature Algorithm: sha256WithRSAEncryption 86:e0:f0:25:13:c5:4a:5f:0a:fd:8f:d4:0e:f4:21:a8:5e:27: 3b:b8:24:0a:be:89:d2:e7:4f:09:bf:cc:86:7a:5f:1d:4d:3a: f3:0b:69:74:0d:d4:be:07:bc:84:32:fa:10:a2:dd:02:c7:3b: c1:93:e9:36:85:3c:1e:b0:31:c2:79:ec:88:d0:21:8e:56:00: e2:7d:d0:a9:30:78:07:87:7a:20:aa:d4:a3:0d:50:bf:11:b7: 00:0f:cb:54:84:99:e4:4b:9a:0a:0e:ba:cb:aa:58:03:16:68: 06:98:66:fa:1e:17:3c:35:b1:04:bb:02:b8:b1:a9:47:1b:4e: 6c:a9:94:5c:81:05:1e:2f:53:f0:cd:34:b4:50:01:ef:ee:f5: 09:ee:a8:4f:48:ed:c9:6e:4a:89:8b:17:86:cf:bf:c5:eb:24: 55:91:65:67:4c:bc:37:1c:f9:3a:7d:5e:c7:7b:6f:6e:2a:61: 9f:a1:f4:8e:10:4e:2d:70:b9:a0:cf:29:0f:38:9f:76:eb:45: 93:ef:d0:69:0e:44:49:54:19:f2:52:99:95:ea:d0:da:2b:a3: e9:f0:19:44:53:fa:aa:9d:e7:2f:86:ab:3a:08:81:ab:06:c6: cd:1a:27:7d:9a:8a:54:c4:a4:ab:b5:1b:a3:bb:6a:ae:6b:ec: 6d:a0:db:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAjWZugo/1Y1TY4K9/o1G9h2/RsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU5MjQ1OTc3M0I5QkY5MEU4OTJFRjRERTkzNjFBOTkx NDgyODA5RjAeFw0yNTA1MDkwNDU3MjhaFw0yNjA1MDgwNTAyMjhaMDMxMTAvBgNV BAMTKDkyNDQyQzY0OTdFMUFENTVBMjcyRTY5NENDRDBBRkRDMDc1ODJGQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMwo1/+zJlJqIkg+/nM8JV5TF wc81t3gKpeJGXu0vRLSQZypVVq9jBBUS3TiA9p7NBFQgyU85bs+FCDrla/bf5wgw jNsXB/ys3Glh3Zh3rSPXTihsC/JIieg6rCAH0JgxM6ohVOoOydIEGYTDkVHF4TOC +M8o4bL8DJuJTKgr0Mhjgv8CTBa18UWi1VrMYVLiom7LDl+uLG4sOQmjy1gwY3zk F8z2POmhCtxlG+D+VUzKihgmI6RdJJxlD0VByzFM/a8234bJluGU0K8Mr2pneOLp rraipkvYMYuk6wT9PbnRbe6uAeHV+KV8Y5fjCSk6v5lvLhtKCTCLNH6Xuu8tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkkQsZJfhrVWicuaUzNCv3AdYL78wHwYDVR0j BBgwFoAUZZJFl3O5v5Doku9N6TYamRSCgJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODc4YzA2Mi1iMDkyLTQwMjUtOWI2OC1iZmViOWI2NWE1YTAvMC82NTkyNDU5Nzcz QjlCRjkwRTg5MkVGNERFOTM2MUE5OTE0ODI4MDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU5MjQ1OTc3M0I5QkY5MEU4OTJFRjRERTkzNjFBOTkxNDgy ODA5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NzhjMDYyLWIwOTItNDAyNS05 YjY4LWJmZWI5YjY1YTVhMC8wLzMxMzAzMzJlMzIzMTMxMmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn02owDQYJ KoZIhvcNAQELBQADggEBAIbg8CUTxUpfCv2P1A70IaheJzu4JAq+idLnTwm/zIZ6 Xx1NOvMLaXQN1L4HvIQy+hCi3QLHO8GT6TaFPB6wMcJ57IjQIY5WAOJ90KkweAeH eiCq1KMNUL8RtwAPy1SEmeRLmgoOusuqWAMWaAaYZvoeFzw1sQS7ArixqUcbTmyp lFyBBR4vU/DNNLRQAe/u9QnuqE9I7cluSomLF4bPv8XrJFWRZWdMvDcc+Tp9Xsd7 b24qYZ+h9I4QTi1wuaDPKQ84n3brRZPv0GkORElUGfJSmZXq0Noro+nwGURT+qqd 5y+GqzoIgasGxs0aJ32ailTEpKu1G6O7aq5r7G2g29w= -----END CERTIFICATE-----Generated at Sat May 10 06:10:13 2025 by rpki-client