$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3234203d3e203435333132.roa File: 3130332e31382e33322e302f32332d3234203d3e203435333132.roa (raw, json) Hash identifier: mVOdXkstRHkrSOQZg/2EhTOjW9la1Yxhs1k5driaN8k= Subject key identifier: FF:14:E4:36:AB:22:A7:9E:EB:8D:9C:18:98:5E:31:89:75:16:F6:78 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 56F86B30975A9B95BC61257EEC574AA5698887B2 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3234203d3e203435333132.roa Signing time: Wed 07 May 2025 06:57:20 +0000 ROA not before: Wed 07 May 2025 06:52:20 +0000 ROA not after: Wed 06 May 2026 06:57:20 +0000 asID: 45312 IP address blocks: 103.18.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 02:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f8:6b:30:97:5a:9b:95:bc:61:25:7e:ec:57:4a:a5:69:88:87:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: May 7 06:52:20 2025 GMT Not After : May 6 06:57:20 2026 GMT Subject: CN=FF14E436AB22A79EEB8D9C18985E31897516F678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:57:5f:7e:6f:72:e9:2f:56:d9:18:27:0b:30: 7e:16:3c:c9:dc:a8:c8:a5:f2:0a:2c:19:ab:39:01: 0f:c1:98:de:08:18:fa:34:39:3c:c4:4c:f5:f5:27: 81:24:ff:69:e2:a8:43:08:6b:f5:69:5b:6e:f4:a0: 41:c2:ab:40:90:dd:db:63:df:fd:bf:6b:09:cd:10: 4b:ac:aa:4a:07:86:64:df:ff:94:a6:d2:1a:ac:66: 59:46:3c:2c:e8:92:c0:42:01:3e:0b:49:85:87:99: 17:f8:15:05:aa:b2:95:d8:89:c9:63:32:1c:c2:11: be:62:cf:9f:8e:1b:ba:79:3e:51:8a:90:48:8f:0e: 08:23:a0:10:14:58:ec:be:02:ee:a2:96:04:3b:9f: 3d:2b:92:7a:f1:15:aa:44:ed:96:93:d6:c9:99:f0: 0f:c3:ef:95:a9:eb:90:2d:cf:66:bc:70:d8:de:b4: 86:f0:50:63:d6:74:61:26:ee:df:da:17:e3:81:84: 61:69:a7:24:78:b0:13:90:d1:a8:f4:3a:44:1f:86: 32:b9:5f:79:bb:f5:ba:c8:db:0a:ff:71:45:18:f7: 87:ee:6a:37:3c:98:5a:ed:47:d5:ef:fb:7d:0d:5a: 31:44:4d:9f:16:c8:00:89:ab:f2:ad:00:05:24:5d: 98:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:14:E4:36:AB:22:A7:9E:EB:8D:9C:18:98:5E:31:89:75:16:F6:78 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33322e302f32332d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.32.0/23 Signature Algorithm: sha256WithRSAEncryption c1:b9:0a:d8:76:a9:ea:f4:65:8c:41:22:49:ff:4a:3a:31:8c: 57:41:8d:14:d5:fc:06:6a:36:c0:cd:8f:b8:af:1c:ce:c3:b4: 21:1c:0f:9a:81:5d:af:61:ab:44:00:54:d3:e8:f8:97:17:1b: 99:19:a7:45:fe:a6:28:68:7b:e3:f8:54:73:bd:06:f5:48:aa: 67:8c:42:ec:19:88:a7:be:e7:60:44:68:2f:1d:04:80:f6:4d: c4:04:df:93:a2:70:ad:36:fc:28:b0:64:80:93:01:76:84:77: 34:05:aa:01:3e:03:29:4f:a7:f1:cc:94:6f:ee:c9:ad:90:1e: cf:f7:05:87:50:aa:1f:29:7a:6d:b9:c1:58:d9:c3:df:6d:69: 2e:1f:56:78:ba:c2:92:22:a8:0b:22:a1:93:ad:71:26:31:ed: ec:06:f2:35:fb:48:bb:c6:da:71:cf:19:e2:06:94:8c:0a:1c: 87:ca:4c:21:64:31:62:c3:ee:fb:c9:82:9a:55:6e:4a:4b:15: bb:14:e5:fb:23:1d:4c:64:4d:d6:28:63:19:50:da:cf:d5:b7: a7:67:7b:13:09:22:aa:11:ce:d4:87:3b:5d:35:d0:04:de:98: 62:14:90:3b:e0:c3:b9:3b:95:fd:8e:96:8b:6b:22:0f:3a:3f: 53:8b:af:4f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVvhrMJdam5W8YSV+7FdKpWmIh7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA1MDcwNjUyMjBaFw0yNjA1MDYwNjU3MjBaMDMxMTAvBgNV BAMTKEZGMTRFNDM2QUIyMkE3OUVFQjhEOUMxODk4NUUzMTg5NzUxNkY2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLV19+b3LpL1bZGCcLMH4WPMnc qMil8gosGas5AQ/BmN4IGPo0OTzETPX1J4Ek/2niqEMIa/VpW270oEHCq0CQ3dtj 3/2/awnNEEusqkoHhmTf/5Sm0hqsZllGPCzoksBCAT4LSYWHmRf4FQWqspXYiclj MhzCEb5iz5+OG7p5PlGKkEiPDggjoBAUWOy+Au6ilgQ7nz0rknrxFapE7ZaT1smZ 8A/D75Wp65Atz2a8cNjetIbwUGPWdGEm7t/aF+OBhGFppyR4sBOQ0aj0OkQfhjK5 X3m79brI2wr/cUUY94fuajc8mFrtR9Xv+30NWjFETZ8WyACJq/KtAAUkXZgfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/xTkNqsip57rjZwYmF4xiXUW9ngwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMxMzAzMzJlMzEzODJlMzMzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnEiAwDQYJKoZIhvcN AQELBQADggEBAMG5Cth2qer0ZYxBIkn/SjoxjFdBjRTV/AZqNsDNj7ivHM7DtCEc D5qBXa9hq0QAVNPo+JcXG5kZp0X+pihoe+P4VHO9BvVIqmeMQuwZiKe+52BEaC8d BID2TcQE35OicK02/CiwZICTAXaEdzQFqgE+AylPp/HMlG/uya2QHs/3BYdQqh8p em25wVjZw99taS4fVni6wpIiqAsioZOtcSYx7ewG8jX7SLvG2nHPGeIGlIwKHIfK TCFkMWLD7vvJgppVbkpLFbsU5fsjHUxkTdYoYxlQ2s/Vt6dnexMJIqoRztSHO101 0ATemGIUkDvgw7k7lf2OlotrIg86P1OLr08= -----END CERTIFICATE-----Generated at Sun May 11 05:15:32 2025 by rpki-client