$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa File: 3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa (raw, json) Hash identifier: z6Vlo67b6HowiJ4eNQMIImpcN0YW2LjWV36x2SeZA5M= Subject key identifier: 66:F2:55:7F:19:0E:43:74:BF:19:1D:87:64:A1:A9:B2:64:41:78:A0 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 348C1DC598153C78E71A9FDE8F4062A10753842B Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa Signing time: Thu 15 May 2025 16:00:00 +0000 ROA not before: Thu 15 May 2025 15:55:00 +0000 ROA not after: Thu 14 May 2026 16:00:00 +0000 asID: 131705 IP address blocks: 103.154.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 08:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8c:1d:c5:98:15:3c:78:e7:1a:9f:de:8f:40:62:a1:07:53:84:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: May 15 15:55:00 2025 GMT Not After : May 14 16:00:00 2026 GMT Subject: CN=66F2557F190E4374BF191D8764A1A9B2644178A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:58:03:70:18:1a:e4:6c:ae:ac:c0:89:cd:4f: b2:6f:88:57:67:ad:1c:90:05:bb:78:9a:01:06:85: 36:25:a8:f8:6c:bd:47:88:be:30:5b:f2:a9:a3:d0: 6e:e5:b4:ae:34:f4:74:31:ee:ee:c3:2a:56:af:57: 47:6b:fd:b9:d6:03:d0:89:89:15:58:f8:cd:36:24: 0a:e5:a1:80:01:4f:ca:f8:cc:d1:98:24:d1:de:39: 42:eb:23:4b:16:0e:75:fa:d8:60:06:e3:3a:9c:c5: e3:08:0d:05:22:69:89:40:c4:89:d8:50:9e:4a:c2: 2f:32:00:4c:82:83:ad:fb:e9:df:7c:65:df:50:ed: 47:0e:16:c7:e7:f7:33:c7:7b:f2:83:81:14:ee:f1: dd:51:5a:ee:54:a6:67:2f:ec:ae:bc:ac:89:25:34: a6:e2:b2:1f:e5:14:df:6d:d2:12:a1:bd:28:d9:bd: e4:79:c0:69:56:75:f5:9c:ef:62:fb:42:bc:9c:e0: d4:aa:a4:16:fd:c3:d2:50:f5:6a:6b:26:85:18:a3: 9a:99:4d:cb:7d:bd:e9:4e:67:57:ad:00:06:92:56: f2:ee:ed:36:4f:6e:2c:03:93:56:00:af:75:72:bd: 51:0b:dc:e4:9f:e2:18:ed:bb:be:fd:68:11:59:ea: 32:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F2:55:7F:19:0E:43:74:BF:19:1D:87:64:A1:A9:B2:64:41:78:A0 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32332d3234203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.178.0/23 Signature Algorithm: sha256WithRSAEncryption 83:ce:b4:2f:34:93:40:c6:c3:7b:d3:dc:17:83:eb:de:57:ad: 85:6b:4f:54:e5:d5:a3:f2:57:39:d5:0f:df:2f:b3:45:69:67: 64:87:98:ac:ad:f0:9e:2c:08:4a:e7:e8:c7:85:c2:68:f8:0a: 3a:6f:2e:d5:bb:3e:a6:5a:4a:51:51:70:a5:05:83:fb:ed:0c: c4:f3:8c:be:ae:e1:c1:e9:8f:51:61:1b:0a:c9:9b:cb:e7:f2: 47:65:5d:e7:61:cf:44:8c:06:3b:1f:8f:7b:03:cd:21:71:d4: 90:9c:6e:29:9f:36:25:e4:a4:4f:8f:4b:5e:22:ee:10:9c:af: e1:10:26:42:92:15:8f:3c:5b:62:e4:19:58:2a:ce:53:24:fa: cf:72:3b:b1:e1:84:f2:c9:3b:ad:3c:1c:24:c6:b3:76:29:39: 6b:7d:ef:14:1a:7f:03:e1:b4:11:27:ed:6d:f6:ab:ae:ec:6c: aa:62:54:ba:f8:a4:d5:a2:48:49:9b:ef:bd:83:97:29:bb:ed: a6:82:e3:36:ff:67:a7:f0:49:f7:10:26:3a:cf:42:47:67:2b: 0e:e6:85:57:b0:b1:e0:75:88:d6:0e:44:7c:f4:39:1c:90:9b: 87:cb:eb:cf:5b:9d:e0:64:95:61:4c:a2:84:44:11:5e:20:fb: 2c:44:17:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNIwdxZgVPHjnGp/ej0BioQdThCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNTA1MTUxNTU1MDBaFw0yNjA1MTQxNjAwMDBaMDMxMTAvBgNV BAMTKDY2RjI1NTdGMTkwRTQzNzRCRjE5MUQ4NzY0QTFBOUIyNjQ0MTc4QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsWANwGBrkbK6swInNT7JviFdn rRyQBbt4mgEGhTYlqPhsvUeIvjBb8qmj0G7ltK409HQx7u7DKlavV0dr/bnWA9CJ iRVY+M02JArloYABT8r4zNGYJNHeOULrI0sWDnX62GAG4zqcxeMIDQUiaYlAxInY UJ5Kwi8yAEyCg6376d98Zd9Q7UcOFsfn9zPHe/KDgRTu8d1RWu5Upmcv7K68rIkl NKbish/lFN9t0hKhvSjZveR5wGlWdfWc72L7Qryc4NSqpBb9w9JQ9WprJoUYo5qZ Tct9velOZ1etAAaSVvLu7TZPbiwDk1YAr3VyvVEL3OSf4hjtu779aBFZ6jJdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZvJVfxkOQ3S/GR2HZKGpsmRBeKAwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmrIwDQYJ KoZIhvcNAQELBQADggEBAIPOtC80k0DGw3vT3BeD695XrYVrT1Tl1aPyVznVD98v s0VpZ2SHmKyt8J4sCErn6MeFwmj4CjpvLtW7PqZaSlFRcKUFg/vtDMTzjL6u4cHp j1FhGwrJm8vn8kdlXedhz0SMBjsfj3sDzSFx1JCcbimfNiXkpE+PS14i7hCcr+EQ JkKSFY88W2LkGVgqzlMk+s9yO7HhhPLJO608HCTGs3YpOWt97xQafwPhtBEn7W32 q67sbKpiVLr4pNWiSEmb772Dlym77aaC4zb/Z6fwSfcQJjrPQkdnKw7mhVewseB1 iNYORHz0ORyQm4fL689bneBklWFMooREEV4g+yxEF4U= -----END CERTIFICATE-----Generated at Mon Jun 30 06:30:07 2025 by rpki-client