$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa File: 3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa (raw, json) Hash identifier: OPJ+0bfTR2bNFtVvMzF36s5tfMJLI0pXwTypT9BsLeE= Subject key identifier: 56:7F:8B:EE:C7:48:8B:89:A8:F8:7F:AA:53:1C:C5:EB:7F:8D:61:9D Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 31FEA4F67E405E84B1D4170528D42C68CF5EFA41 Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa Signing time: Wed 07 May 2025 03:53:02 +0000 ROA not before: Wed 07 May 2025 03:48:02 +0000 ROA not after: Wed 06 May 2026 03:53:02 +0000 asID: 140478 IP address blocks: 103.154.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:fe:a4:f6:7e:40:5e:84:b1:d4:17:05:28:d4:2c:68:cf:5e:fa:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 7 03:48:02 2025 GMT Not After : May 6 03:53:02 2026 GMT Subject: CN=567F8BEEC7488B89A8F87FAA531CC5EB7F8D619D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:bc:db:43:06:11:37:57:51:ac:88:96:c5: 2b:a4:c2:5d:1b:98:93:69:59:50:86:f4:20:1f:25: dc:ab:94:3c:cc:2f:e9:7a:fc:a0:c7:99:9b:ce:ae: 19:a2:8a:bb:65:2c:18:c5:38:1b:04:bb:1c:0b:88: 4f:59:87:e7:c1:74:16:c7:6e:ee:73:75:fb:77:3c: d0:d2:dd:f6:f6:34:4b:03:73:ae:77:c5:04:78:1c: 1f:ed:28:ae:1c:df:fb:b1:6f:b4:de:41:48:48:fb: dc:30:b8:d3:df:a5:fd:cf:54:64:7a:c6:86:1d:aa: f8:50:28:f5:ac:66:34:80:cf:7d:0d:17:61:49:37: b2:87:db:4c:bf:60:9e:10:1f:1a:c4:73:42:7f:ed: b3:da:a6:06:de:00:98:60:c8:86:44:0b:a8:f8:0a: 30:b6:75:d8:7d:9d:cd:d4:2b:22:3c:d2:53:d7:00: e2:c4:8b:b1:91:da:86:d4:50:84:34:13:93:13:27: 5c:51:61:ba:0c:f2:3f:25:06:c3:78:d2:e7:bc:d1: a7:90:2b:bf:9d:82:9e:c9:e7:81:0b:45:b3:f3:c6: ca:ae:d7:b4:52:37:83:14:5d:e6:28:f7:e9:35:27: 1c:2c:ce:34:1a:32:f9:fe:1f:15:78:a3:4f:e1:b6: d3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7F:8B:EE:C7:48:8B:89:A8:F8:7F:AA:53:1C:C5:EB:7F:8D:61:9D X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/24 Signature Algorithm: sha256WithRSAEncryption a7:99:5f:47:dc:b2:3e:90:9b:6a:9a:59:6c:02:b4:f3:1e:21: b5:93:dc:ee:af:a7:e5:dd:c9:b7:f3:fa:c5:c9:1f:7e:d3:fd: 97:98:f5:de:43:b0:68:5a:c8:0e:9e:fa:43:26:f8:40:8d:7e: 11:86:e4:82:32:7d:23:d9:91:ea:cc:86:fa:10:4d:2e:b6:1b: 5b:1a:a9:14:d9:f1:d9:30:22:a7:42:bd:2f:fa:b5:57:71:f8: 61:83:87:b0:b6:99:d4:3e:10:09:2e:da:c5:44:a4:80:9e:6e: 3a:26:43:62:e1:92:b1:33:d7:5f:6b:c9:03:d9:6d:16:95:5c: eb:c2:82:86:30:dd:33:6a:a2:78:d2:3a:f0:8b:e1:c9:71:d8: 20:d2:db:d8:b6:9f:34:be:73:a4:0d:34:bb:27:64:67:c4:89: 4e:0d:73:00:cd:e9:0a:fb:77:6f:9a:35:e2:6b:88:05:2b:f7: 9a:85:63:34:56:11:aa:79:6e:47:39:a4:63:91:94:c4:ba:47: 37:a7:2e:70:c4:e5:35:90:37:95:86:53:94:bf:cd:f5:4b:7c: 82:d5:02:fe:fb:72:65:8a:99:da:a9:01:b0:93:85:e3:2f:60: ac:e0:9d:1b:64:02:26:3c:71:35:46:4c:09:3b:f0:e4:3c:c6: 09:01:04:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMf6k9n5AXoSx1BcFKNQsaM9e+kEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNTA1MDcwMzQ4MDJaFw0yNjA1MDYwMzUzMDJaMDMxMTAvBgNV BAMTKDU2N0Y4QkVFQzc0ODhCODlBOEY4N0ZBQTUzMUNDNUVCN0Y4RDYxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM87zbQwYRN1dRrIiWxSukwl0b mJNpWVCG9CAfJdyrlDzML+l6/KDHmZvOrhmiirtlLBjFOBsEuxwLiE9Zh+fBdBbH bu5zdft3PNDS3fb2NEsDc653xQR4HB/tKK4c3/uxb7TeQUhI+9wwuNPfpf3PVGR6 xoYdqvhQKPWsZjSAz30NF2FJN7KH20y/YJ4QHxrEc0J/7bPapgbeAJhgyIZEC6j4 CjC2ddh9nc3UKyI80lPXAOLEi7GR2obUUIQ0E5MTJ1xRYboM8j8lBsN40ue80aeQ K7+dgp7J54ELRbPzxsqu17RSN4MUXeYo9+k1JxwszjQaMvn+HxV4o0/httM3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVn+L7sdIi4mo+H+qUxzF63+NYZ0wHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQCnmV9H3LI+kJtqmllsArTzHiG1k9zur6fl3cm38/rFyR9+ 0/2XmPXeQ7BoWsgOnvpDJvhAjX4RhuSCMn0j2ZHqzIb6EE0uthtbGqkU2fHZMCKn Qr0v+rVXcfhhg4ewtpnUPhAJLtrFRKSAnm46JkNi4ZKxM9dfa8kD2W0WlVzrwoKG MN0zaqJ40jrwi+HJcdgg0tvYtp80vnOkDTS7J2RnxIlODXMAzekK+3dvmjXia4gF K/eahWM0VhGqeW5HOaRjkZTEukc3py5wxOU1kDeVhlOUv831S3yC1QL++3Jlipna qQGwk4XjL2Cs4J0bZAImPHE1RkwJO/DkPMYJAQQX -----END CERTIFICATE-----Generated at Fri May 9 09:51:15 2025 by rpki-client