$ rpki-client -vvf repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/3130332e3134322e39302e302f32332d3234203d3e20313339333734.roa File: 3130332e3134322e39302e302f32332d3234203d3e20313339333734.roa (raw, json) Hash identifier: BCR4399uDrDPTCg+MIbL26PuI+e2Uq0NkSYBiX921Hw= Subject key identifier: 36:65:F8:28:03:51:F2:D7:68:A7:2A:01:FD:F9:5C:C1:F9:63:AC:C3 Certificate issuer: /CN=BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8 Certificate serial: 28AA7D19D632EC8857C873D19A3F9A77207B35BC Authority key identifier: BC:BE:AD:46:72:B1:9E:91:24:8E:58:DD:91:C4:EC:D8:94:A7:A3:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/3130332e3134322e39302e302f32332d3234203d3e20313339333734.roa Signing time: Tue 17 Jun 2025 05:00:00 +0000 ROA not before: Tue 17 Jun 2025 04:55:00 +0000 ROA not after: Tue 16 Jun 2026 05:00:00 +0000 asID: 139374 IP address blocks: 103.142.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.crl rsync://repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 12:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:aa:7d:19:d6:32:ec:88:57:c8:73:d1:9a:3f:9a:77:20:7b:35:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8 Validity Not Before: Jun 17 04:55:00 2025 GMT Not After : Jun 16 05:00:00 2026 GMT Subject: CN=3665F8280351F2D768A72A01FDF95CC1F963ACC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ce:14:1f:53:0a:31:6a:8b:85:cb:4a:e6:d3: 13:93:66:0c:17:bc:2b:58:13:ad:36:ed:26:af:82: d9:0b:1d:f0:38:04:92:85:d2:1d:c7:66:58:98:68: 05:07:02:9a:27:92:76:28:48:68:71:e2:97:cb:c6: e3:da:17:ef:d7:36:30:74:85:6b:d8:6d:5b:8d:b2: 48:37:f0:c5:f8:0a:c7:10:ec:fd:1b:ce:fc:47:cc: 24:9b:e8:58:e0:7a:c2:e7:cc:df:81:35:73:5e:1c: 89:ce:0b:39:34:65:82:bd:fd:b7:d3:39:0e:96:26: 8a:d4:5d:79:ba:df:af:b1:d5:14:5d:05:30:72:ec: c8:fe:c4:ba:46:a6:b0:b3:0e:78:10:c5:b0:34:1e: dd:7f:07:e0:28:d3:f1:f6:8f:e7:1c:26:4a:06:44: 15:fc:bf:74:60:04:13:5f:87:47:b7:0b:fa:07:03: 37:4f:4f:d5:ed:80:ee:e5:93:16:57:3c:b0:70:95: 81:a2:a6:dc:1c:4e:97:eb:68:56:ad:04:2b:97:83: c0:ad:46:60:ed:62:76:96:0b:90:f1:10:f0:2d:30: 20:f5:5d:40:08:e9:95:db:26:e8:82:f0:76:e9:62: 6f:61:c6:d4:0e:53:c2:29:8a:df:e8:7d:86:2b:67: 17:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:65:F8:28:03:51:F2:D7:68:A7:2A:01:FD:F9:5C:C1:F9:63:AC:C3 X509v3 Authority Key Identifier: keyid:BC:BE:AD:46:72:B1:9E:91:24:8E:58:DD:91:C4:EC:D8:94:A7:A3:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCBEAD4672B19E91248E58DD91C4ECD894A7A3A8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae921917-13af-4403-97ab-9adaf5104c12/0/3130332e3134322e39302e302f32332d3234203d3e20313339333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.90.0/23 Signature Algorithm: sha256WithRSAEncryption 37:b0:71:eb:84:95:3a:d6:ce:cd:12:23:c9:6b:ec:af:7b:d1: 94:48:45:71:6f:d3:1c:df:67:b2:ce:d9:cc:eb:51:16:6a:04: 54:08:51:5b:33:bd:e7:29:a6:29:3a:6b:d1:9f:a2:01:df:0c: d6:2d:d5:ca:c0:2c:78:3c:78:0f:c3:6d:8c:fa:c3:4c:68:05: 45:fd:e2:9e:11:34:23:8a:d2:82:4d:a7:57:c7:57:09:7c:c9: f7:dc:d4:7f:49:00:bd:e3:8e:5e:6e:f9:4c:84:4d:da:45:3b: 87:8a:83:89:3d:09:18:9a:40:55:fc:d2:89:e2:97:fa:3f:99: ef:ce:89:d9:c1:88:46:d8:67:07:bc:95:ab:ea:95:3a:60:ce: bf:27:22:ed:bc:d4:ad:3d:ab:11:ae:94:4f:bf:95:86:a4:b5: ab:f4:03:59:8b:23:22:69:ca:6a:bc:94:2e:2d:82:34:42:92: 61:05:e6:20:ed:42:e9:c2:bb:f5:a1:f3:87:25:00:0b:d6:ee: fd:0f:fa:db:e4:d3:b5:c0:09:b4:29:78:c1:d1:49:16:e8:4c: a3:c1:1e:c0:ba:19:5c:a5:63:26:b9:06:36:1d:89:8e:ce:eb: 35:d2:2b:3f:b8:6a:bd:4e:1d:03:a0:88:27:2d:6c:d0:b9:39: f5:bd:6f:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKKp9GdYy7IhXyHPRmj+adyB7NbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNCRUFENDY3MkIxOUU5MTI0OEU1OEREOTFDNEVDRDg5 NEE3QTNBODAeFw0yNTA2MTcwNDU1MDBaFw0yNjA2MTYwNTAwMDBaMDMxMTAvBgNV BAMTKDM2NjVGODI4MDM1MUYyRDc2OEE3MkEwMUZERjk1Q0MxRjk2M0FDQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuzhQfUwoxaouFy0rm0xOTZgwX vCtYE6027SavgtkLHfA4BJKF0h3HZliYaAUHAponknYoSGhx4pfLxuPaF+/XNjB0 hWvYbVuNskg38MX4CscQ7P0bzvxHzCSb6FjgesLnzN+BNXNeHInOCzk0ZYK9/bfT OQ6WJorUXXm636+x1RRdBTBy7Mj+xLpGprCzDngQxbA0Ht1/B+Ao0/H2j+ccJkoG RBX8v3RgBBNfh0e3C/oHAzdPT9XtgO7lkxZXPLBwlYGiptwcTpfraFatBCuXg8Ct RmDtYnaWC5DxEPAtMCD1XUAI6ZXbJuiC8HbpYm9hxtQOU8Ipit/ofYYrZxcJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNmX4KANR8tdopyoB/flcwfljrMMwHwYDVR0j BBgwFoAUvL6tRnKxnpEkjljdkcTs2JSno6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTkyMTkxNy0xM2FmLTQ0MDMtOTdhYi05YWRhZjUxMDRjMTIvMC9CQ0JFQUQ0Njcy QjE5RTkxMjQ4RTU4REQ5MUM0RUNEODk0QTdBM0E4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNCRUFENDY3MkIxOUU5MTI0OEU1OEREOTFDNEVDRDg5NEE3 QTNBOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlOTIxOTE3LTEzYWYtNDQwMy05 N2FiLTlhZGFmNTEwNGMxMi8wLzMxMzAzMzJlMzEzNDMyMmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ45aMA0GCSqG SIb3DQEBCwUAA4IBAQA3sHHrhJU61s7NEiPJa+yve9GUSEVxb9Mc32eyztnM61EW agRUCFFbM73nKaYpOmvRn6IB3wzWLdXKwCx4PHgPw22M+sNMaAVF/eKeETQjitKC TadXx1cJfMn33NR/SQC9445ebvlMhE3aRTuHioOJPQkYmkBV/NKJ4pf6P5nvzonZ wYhG2GcHvJWr6pU6YM6/JyLtvNStPasRrpRPv5WGpLWr9ANZiyMiacpqvJQuLYI0 QpJhBeYg7ULpwrv1ofOHJQAL1u79D/rb5NO1wAm0KXjB0UkW6EyjwR7AuhlcpWMm uQY2HYmOzus10is/uGq9Th0DoIgnLWzQuTn1vW+o -----END CERTIFICATE-----Generated at Tue Jul 1 11:24:13 2025 by rpki-client