$ rpki-client -vvf repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/3130332e3132372e3135342e302f32342d3234203d3e20313530353138.roa File: 3130332e3132372e3135342e302f32342d3234203d3e20313530353138.roa (raw, json) Hash identifier: G6TGVbIdxDM3PGXqhIliPZL2762vyLXXOxGMZfTWgBw= Subject key identifier: 2E:EA:B8:23:7F:A3:F9:0B:AD:52:7E:5A:13:9A:1B:A5:C9:76:67:0F Certificate issuer: /CN=F95ABFECD1F2CDA83B975C1651646721A611A82E Certificate serial: 22866BF63CD4B6E9BB7C4597D8DCB09F1D62700A Authority key identifier: F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F95ABFECD1F2CDA83B975C1651646721A611A82E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/3130332e3132372e3135342e302f32342d3234203d3e20313530353138.roa Signing time: Sat 28 Jun 2025 11:00:00 +0000 ROA not before: Sat 28 Jun 2025 10:55:00 +0000 ROA not after: Sat 27 Jun 2026 11:00:00 +0000 asID: 150518 IP address blocks: 103.127.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.crl rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F95ABFECD1F2CDA83B975C1651646721A611A82E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 02:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:86:6b:f6:3c:d4:b6:e9:bb:7c:45:97:d8:dc:b0:9f:1d:62:70:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F95ABFECD1F2CDA83B975C1651646721A611A82E Validity Not Before: Jun 28 10:55:00 2025 GMT Not After : Jun 27 11:00:00 2026 GMT Subject: CN=2EEAB8237FA3F90BAD527E5A139A1BA5C976670F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5a:a7:9c:b2:28:23:1f:0c:c5:79:90:14:ac: e5:96:45:7b:de:14:27:52:aa:60:0e:a9:9a:2e:a4: a4:a2:36:8f:ee:fa:04:43:31:bf:3b:e7:94:50:d0: 33:61:21:85:7b:17:fe:c7:e0:35:4b:46:c7:4f:44: 75:5f:45:e0:fd:4e:17:5d:8d:97:6a:65:52:3d:c6: cd:35:ef:54:54:e3:ce:34:01:8e:0a:32:24:21:3a: ae:c4:9e:80:8f:8b:6f:56:9d:df:11:fa:9b:24:7c: a6:55:1c:ff:88:ac:c2:de:87:76:e9:93:70:54:ae: 6f:30:c5:5b:d9:1d:d8:f8:14:ef:04:52:15:d2:38: 47:e9:8e:a8:ed:9c:2f:6d:d8:9a:2e:5b:32:69:88: 78:07:32:2b:14:15:91:7f:cb:12:fc:88:b5:cf:91: 04:f0:0c:72:40:c5:b2:8a:c2:65:49:a3:70:c5:6c: 2a:fe:35:1c:e9:4b:7c:2a:a3:fb:a6:9d:56:92:96: ef:b7:95:66:10:97:01:ca:65:ae:cb:21:a0:21:26: ce:a4:0e:30:41:f0:22:07:62:ef:39:7c:6f:7a:0f: 71:bd:1e:90:36:1a:6e:c8:46:da:4e:ad:b7:a1:ac: 05:51:03:3b:4a:4e:92:10:b0:22:1a:66:e8:48:60: 26:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EA:B8:23:7F:A3:F9:0B:AD:52:7E:5A:13:9A:1B:A5:C9:76:67:0F X509v3 Authority Key Identifier: keyid:F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F95ABFECD1F2CDA83B975C1651646721A611A82E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/3130332e3132372e3135342e302f32342d3234203d3e20313530353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.154.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:6c:a8:15:b5:7d:1a:17:c9:8f:95:67:c0:06:56:4c:c5:1c: 93:9c:af:de:90:58:19:23:f7:b9:3e:b8:18:77:47:0c:2b:ef: a7:be:6a:39:be:1a:9b:61:32:31:73:88:4a:6e:74:40:c2:97: 7c:66:b5:fa:b4:c2:33:3c:08:47:b8:5c:1b:b2:b2:94:34:da: fc:89:43:cf:1e:ab:5d:8a:ab:0e:d2:c7:f0:84:8f:ae:99:9f: c2:d7:6f:b5:ab:17:88:92:4e:75:21:e4:00:94:1f:d5:eb:92: 0b:ce:a3:5d:7a:46:40:40:47:57:b6:c0:73:c8:e5:5f:b7:44: ee:66:dd:d1:ff:c2:6b:a2:dc:1d:03:e8:bc:b3:58:9f:58:58: 7c:c8:53:2c:e3:15:7d:58:fd:78:fa:60:b2:8f:49:d4:e7:b1: a7:a0:0e:cf:9e:c4:77:b9:62:bc:99:60:2c:19:ea:dd:fe:37: f0:98:91:2d:9f:2a:63:23:2b:0f:d2:b5:9a:11:09:3e:8e:de: 63:e8:45:1a:58:a9:e7:3b:7a:51:50:b0:e9:32:0b:5b:6f:26: 38:e2:ed:a7:e4:ad:7c:b2:20:86:03:e3:10:26:d0:6d:0f:01: 93:29:28:41:aa:af:02:12:aa:d9:61:5c:d4:d5:38:c3:2a:1c: dc:5a:40:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIoZr9jzUtum7fEWX2Nywnx1icAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk1QUJGRUNEMUYyQ0RBODNCOTc1QzE2NTE2NDY3MjFB NjExQTgyRTAeFw0yNTA2MjgxMDU1MDBaFw0yNjA2MjcxMTAwMDBaMDMxMTAvBgNV BAMTKDJFRUFCODIzN0ZBM0Y5MEJBRDUyN0U1QTEzOUExQkE1Qzk3NjY3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4WqecsigjHwzFeZAUrOWWRXve FCdSqmAOqZoupKSiNo/u+gRDMb8755RQ0DNhIYV7F/7H4DVLRsdPRHVfReD9Thdd jZdqZVI9xs0171RU4840AY4KMiQhOq7EnoCPi29Wnd8R+pskfKZVHP+IrMLeh3bp k3BUrm8wxVvZHdj4FO8EUhXSOEfpjqjtnC9t2JouWzJpiHgHMisUFZF/yxL8iLXP kQTwDHJAxbKKwmVJo3DFbCr+NRzpS3wqo/umnVaSlu+3lWYQlwHKZa7LIaAhJs6k DjBB8CIHYu85fG96D3G9HpA2Gm7IRtpOrbehrAVRAztKTpIQsCIaZuhIYCaDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULuq4I3+j+QutUn5aE5obpcl2Zw8wHwYDVR0j BBgwFoAU+Vq/7NHyzag7l1wWUWRnIaYRqC4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Y2RlMWNmZC1jYmJjLTRmMDgtODljYi00MzVhNTkxMWYyYzIvMC9GOTVBQkZFQ0Qx RjJDREE4M0I5NzVDMTY1MTY0NjcyMUE2MTFBODJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjk1QUJGRUNEMUYyQ0RBODNCOTc1QzE2NTE2NDY3MjFBNjEx QTgyRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjZGUxY2ZkLWNiYmMtNGYwOC04 OWNiLTQzNWE1OTExZjJjMi8wLzMxMzAzMzJlMzEzMjM3MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnf5owDQYJ KoZIhvcNAQELBQADggEBABxsqBW1fRoXyY+VZ8AGVkzFHJOcr96QWBkj97k+uBh3 Rwwr76e+ajm+GpthMjFziEpudEDCl3xmtfq0wjM8CEe4XBuyspQ02vyJQ88eq12K qw7Sx/CEj66Zn8LXb7WrF4iSTnUh5ACUH9XrkgvOo116RkBAR1e2wHPI5V+3RO5m 3dH/wmui3B0D6LyzWJ9YWHzIUyzjFX1Y/Xj6YLKPSdTnsaegDs+exHe5YryZYCwZ 6t3+N/CYkS2fKmMjKw/StZoRCT6O3mPoRRpYqec7elFQsOkyC1tvJjji7afkrXyy IIYD4xAm0G0PAZMpKEGqrwISqtlhXNTVOMMqHNxaQFI= -----END CERTIFICATE-----Generated at Tue Jul 1 19:18:45 2025 by rpki-client