$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa File: 3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa (raw, json) Hash identifier: PZwOUUZx2EQHdYrYeYouuZVw5NeiiX9go4HwzvpQyZo= Subject key identifier: 78:C0:4F:F2:D9:AF:06:C7:9C:6C:79:F4:E0:A6:CF:E4:47:6A:D1:4E Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 6684F034C9CDB5488AF7448BC0FE290D558CA3CC Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa Signing time: Mon 02 Jun 2025 02:04:36 +0000 ROA not before: Mon 02 Jun 2025 01:59:36 +0000 ROA not after: Mon 01 Jun 2026 02:04:36 +0000 asID: 138074 IP address blocks: 103.123.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:84:f0:34:c9:cd:b5:48:8a:f7:44:8b:c0:fe:29:0d:55:8c:a3:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jun 2 01:59:36 2025 GMT Not After : Jun 1 02:04:36 2026 GMT Subject: CN=78C04FF2D9AF06C79C6C79F4E0A6CFE4476AD14E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:74:5d:1a:50:1b:5d:63:8a:bd:30:61:6c:0e: 1c:f6:ac:b1:47:02:e4:c6:e4:b7:ef:03:ae:f6:b1: 6b:c6:8f:f6:6a:ee:32:39:24:e6:a9:a3:6f:27:3e: 4b:71:79:c2:9b:d4:ca:35:de:2d:6e:1c:2c:2c:6f: 41:e6:33:2c:09:d2:ae:be:03:ca:9a:bf:3f:4c:3a: 55:99:29:ec:e2:b4:68:32:f8:46:dd:e8:20:2a:bf: 81:36:40:99:7d:7f:4f:e2:c3:a8:c8:58:52:86:5e: 91:36:43:74:2b:2c:e7:0e:2c:98:fd:cb:50:21:b0: be:14:61:2d:b0:dd:f2:15:74:a5:a2:4d:8e:30:1c: c6:70:4b:96:aa:0e:08:f9:91:cd:52:56:3e:23:a4: 45:d0:95:30:06:62:e2:bb:fa:f3:bf:9f:89:d3:da: 75:d7:b9:52:f3:dc:64:63:06:cd:11:d7:e3:11:04: cb:a4:97:f3:d8:6e:fb:d0:44:de:cc:aa:db:23:b9: 8e:14:d1:c6:02:42:a4:08:ec:11:a8:2a:95:44:6a: a6:29:72:f0:c9:f1:4b:77:af:f7:1f:f3:67:be:74: de:d0:78:0d:a7:bf:20:63:71:d8:70:3f:d0:1c:0d: d0:f1:ed:a6:b4:d5:89:f2:43:77:02:57:cd:a8:50: f5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C0:4F:F2:D9:AF:06:C7:9C:6C:79:F4:E0:A6:CF:E4:47:6A:D1:4E X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.96.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:a7:4d:32:5c:7f:82:06:56:0d:b2:dd:65:9e:e1:a4:44:3e: 34:d8:b6:98:66:64:3f:25:34:61:43:3a:e6:f9:f6:61:8e:43: 50:55:a7:a5:d3:09:4c:cc:09:ad:d3:b5:53:66:68:cd:4e:5f: 46:88:f1:cd:e8:80:a5:4d:c0:97:41:62:10:f7:79:b8:7d:9b: 6d:66:0c:6f:be:ee:66:0c:94:ac:82:4b:ca:94:fb:45:10:3f: 3e:97:c6:e9:10:f5:47:a7:c7:a8:cc:00:e9:51:cd:f6:5b:91: 80:b1:b4:94:dd:85:2a:45:5e:ff:bb:91:53:93:19:ee:7f:62: f6:9b:cd:23:a0:24:3f:5a:23:dc:1d:eb:a2:ad:18:87:e9:41: 97:a2:23:f7:7d:71:26:b4:23:54:53:97:e2:f9:e7:7c:1a:c6: 83:da:51:7e:e2:aa:1b:6d:cd:0c:d9:0d:ec:79:79:6a:e9:f3: 81:57:4d:82:ee:61:b7:cd:27:b8:8a:c6:0c:83:e2:e4:58:7a: f6:4e:59:60:55:34:4d:ef:5f:ce:17:42:14:b8:67:20:23:6b: 9f:c5:2e:a4:15:5b:99:14:3f:58:59:92:db:46:c1:95:ba:ae: 91:21:16:59:ec:66:54:17:7f:06:4a:e0:a2:e3:11:ec:ae:5e: 56:06:87:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZoTwNMnNtUiK90SLwP4pDVWMo8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNTA2MDIwMTU5MzZaFw0yNjA2MDEwMjA0MzZaMDMxMTAvBgNV BAMTKDc4QzA0RkYyRDlBRjA2Qzc5QzZDNzlGNEUwQTZDRkU0NDc2QUQxNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgdF0aUBtdY4q9MGFsDhz2rLFH AuTG5LfvA672sWvGj/Zq7jI5JOapo28nPktxecKb1Mo13i1uHCwsb0HmMywJ0q6+ A8qavz9MOlWZKezitGgy+Ebd6CAqv4E2QJl9f0/iw6jIWFKGXpE2Q3QrLOcOLJj9 y1AhsL4UYS2w3fIVdKWiTY4wHMZwS5aqDgj5kc1SVj4jpEXQlTAGYuK7+vO/n4nT 2nXXuVLz3GRjBs0R1+MRBMukl/PYbvvQRN7MqtsjuY4U0cYCQqQI7BGoKpVEaqYp cvDJ8Ut3r/cf82e+dN7QeA2nvyBjcdhwP9AcDdDx7aa01YnyQ3cCV82oUPUPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeMBP8tmvBsecbHn04KbP5Edq0U4wHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMxMzAzMzJlMzEzMjMzMmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3tgMA0GCSqG SIb3DQEBCwUAA4IBAQBbp00yXH+CBlYNst1lnuGkRD402LaYZmQ/JTRhQzrm+fZh jkNQVael0wlMzAmt07VTZmjNTl9GiPHN6IClTcCXQWIQ93m4fZttZgxvvu5mDJSs gkvKlPtFED8+l8bpEPVHp8eozADpUc32W5GAsbSU3YUqRV7/u5FTkxnuf2L2m80j oCQ/WiPcHeuirRiH6UGXoiP3fXEmtCNUU5fi+ed8GsaD2lF+4qobbc0M2Q3seXlq 6fOBV02C7mG3zSe4isYMg+LkWHr2TllgVTRN71/OF0IUuGcgI2ufxS6kFVuZFD9Y WZLbRsGVuq6RIRZZ7GZUF38GSuCi4xHsrl5WBocn -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:31 2025 by rpki-client