$ rpki-client -vvf repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132302e302f32342d3234203d3e20313338303732.roa File: 3130332e3132332e3132302e302f32342d3234203d3e20313338303732.roa (raw, json) Hash identifier: etcdt1rptra2wpD632iI4CEj+HZk7gKrmvWLBgXFbpI= Subject key identifier: E4:F2:16:3F:33:F9:38:30:50:2A:0E:22:6B:1B:5E:95:DA:C3:AE:20 Certificate issuer: /CN=579618DB6FFA608F5998FCD968B270AE61BDB97C Certificate serial: 709035BDB86C293A55BCA17DE808705BF0475EE1 Authority key identifier: 57:96:18:DB:6F:FA:60:8F:59:98:FC:D9:68:B2:70:AE:61:BD:B9:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132302e302f32342d3234203d3e20313338303732.roa Signing time: Thu 15 May 2025 14:00:00 +0000 ROA not before: Thu 15 May 2025 13:55:00 +0000 ROA not after: Thu 14 May 2026 14:00:00 +0000 asID: 138072 IP address blocks: 103.123.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.crl rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:90:35:bd:b8:6c:29:3a:55:bc:a1:7d:e8:08:70:5b:f0:47:5e:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579618DB6FFA608F5998FCD968B270AE61BDB97C Validity Not Before: May 15 13:55:00 2025 GMT Not After : May 14 14:00:00 2026 GMT Subject: CN=E4F2163F33F93830502A0E226B1B5E95DAC3AE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6d:a9:35:07:c1:d5:62:9e:7d:36:8c:69:af: 5e:2c:03:b4:9f:ac:24:be:6f:e0:9b:4b:e4:63:50: 64:11:39:a7:0b:36:f7:ed:ac:d2:8d:c5:7d:0b:0e: 22:cd:d1:a8:a3:f1:cd:9e:16:7b:17:c9:88:42:78: f4:1b:65:16:c8:25:0d:9f:01:38:d9:ae:88:28:1f: c9:6c:8a:8f:aa:9a:21:48:27:f4:66:24:03:40:77: ef:cb:f9:d2:31:50:43:7b:36:8f:f0:2e:c9:0f:f9: 93:f5:a0:0a:e4:3c:6e:da:44:99:ef:91:e7:95:cb: e0:d8:10:b6:68:af:f3:d8:92:19:8f:f9:f1:70:cf: 20:d9:f5:52:3f:ae:53:a6:d9:3d:09:15:64:68:79: 55:34:2b:4d:7c:50:ec:00:99:5b:b9:70:f6:fb:a9: 38:22:7d:72:52:ea:a6:dd:b1:d0:94:ba:9d:64:89: f4:58:ae:58:6b:1a:0b:49:c0:ae:f0:9a:45:18:61: e1:f9:01:63:65:d7:60:54:25:64:f4:72:a4:7b:f2: fe:3e:1d:dd:c8:ad:53:f1:9f:7e:c8:71:6f:90:ff: 69:d3:d7:66:13:30:66:e6:cc:d7:67:f2:fa:d5:9e: 6a:fb:47:c3:41:45:d4:b7:55:84:a2:31:f0:91:10: 42:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F2:16:3F:33:F9:38:30:50:2A:0E:22:6B:1B:5E:95:DA:C3:AE:20 X509v3 Authority Key Identifier: keyid:57:96:18:DB:6F:FA:60:8F:59:98:FC:D9:68:B2:70:AE:61:BD:B9:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132302e302f32342d3234203d3e20313338303732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.120.0/24 Signature Algorithm: sha256WithRSAEncryption 72:eb:79:6e:81:47:12:dc:46:cc:65:96:01:9c:39:02:82:7c: a1:80:c6:5e:ee:ef:ef:d2:8c:d7:f4:e6:3a:45:31:a2:53:bb: dc:1f:87:ac:ed:9c:5b:d7:db:8b:81:2d:8b:ff:db:0b:cc:e7: 2e:3c:ce:bd:78:3f:fd:f7:96:14:4b:ae:e1:49:8b:ba:e4:06: 5c:83:52:b7:e7:95:d5:ed:b4:42:d0:fa:18:99:d0:30:36:9c: 1e:3a:f2:ae:2b:50:cd:3b:d1:a6:12:d5:ba:7e:e0:d6:1a:4e: 76:63:e9:aa:1d:19:ab:43:d8:66:b7:57:53:0a:35:a4:34:e2: d2:fe:54:30:28:5f:7f:1c:ef:4f:fb:ce:96:01:9b:c3:7c:66: 70:ed:9c:57:24:7f:60:ea:db:27:8e:b6:7c:88:84:58:65:d3: 95:94:01:4a:fd:bb:af:af:ad:02:e1:ef:5d:6d:e9:fe:4c:90: 5b:e2:ce:80:b5:4e:e3:19:6e:8c:26:87:40:9c:f2:11:74:49: 1f:ce:91:3d:8a:7a:ff:76:af:46:e2:7f:de:6e:c9:47:dc:8c: 4c:40:14:0b:81:29:fe:cb:9b:ed:27:5f:47:7d:72:a2:e7:f2: 88:a3:fc:b4:02:db:be:66:a0:b0:fb:65:d1:9d:35:ab:13:90: 13:aa:dc:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcJA1vbhsKTpVvKF96AhwW/BHXuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5NjE4REI2RkZBNjA4RjU5OThGQ0Q5NjhCMjcwQUU2 MUJEQjk3QzAeFw0yNTA1MTUxMzU1MDBaFw0yNjA1MTQxNDAwMDBaMDMxMTAvBgNV BAMTKEU0RjIxNjNGMzNGOTM4MzA1MDJBMEUyMjZCMUI1RTk1REFDM0FFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbak1B8HVYp59Noxpr14sA7Sf rCS+b+CbS+RjUGQROacLNvftrNKNxX0LDiLN0aij8c2eFnsXyYhCePQbZRbIJQ2f ATjZrogoH8lsio+qmiFIJ/RmJANAd+/L+dIxUEN7No/wLskP+ZP1oArkPG7aRJnv keeVy+DYELZor/PYkhmP+fFwzyDZ9VI/rlOm2T0JFWRoeVU0K018UOwAmVu5cPb7 qTgifXJS6qbdsdCUup1kifRYrlhrGgtJwK7wmkUYYeH5AWNl12BUJWT0cqR78v4+ Hd3IrVPxn37IcW+Q/2nT12YTMGbmzNdn8vrVnmr7R8NBRdS3VYSiMfCREELBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5PIWPzP5ODBQKg4iaxteldrDriAwHwYDVR0j BBgwFoAUV5YY22/6YI9ZmPzZaLJwrmG9uXwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NjI2NjM5YS05YTFjLTRjMGUtYmExNy1mNjc5ZjA1MDZjYmMvMC81Nzk2MThEQjZG RkE2MDhGNTk5OEZDRDk2OEIyNzBBRTYxQkRCOTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc5NjE4REI2RkZBNjA4RjU5OThGQ0Q5NjhCMjcwQUU2MUJE Qjk3Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2MjY2MzlhLTlhMWMtNGMwZS1i YTE3LWY2NzlmMDUwNmNiYy8wLzMxMzAzMzJlMzEzMjMzMmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne3gwDQYJ KoZIhvcNAQELBQADggEBAHLreW6BRxLcRsxllgGcOQKCfKGAxl7u7+/SjNf05jpF MaJTu9wfh6ztnFvX24uBLYv/2wvM5y48zr14P/33lhRLruFJi7rkBlyDUrfnldXt tELQ+hiZ0DA2nB468q4rUM070aYS1bp+4NYaTnZj6aodGatD2Ga3V1MKNaQ04tL+ VDAoX38c70/7zpYBm8N8ZnDtnFckf2Dq2yeOtnyIhFhl05WUAUr9u6+vrQLh711t 6f5MkFvizoC1TuMZbowmh0Cc8hF0SR/OkT2Kev92r0bif95uyUfcjExAFAuBKf7L m+0nX0d9cqLn8oij/LQC275moLD7ZdGdNasTkBOq3Nw= -----END CERTIFICATE-----Generated at Sun Jun 8 07:44:36 2025 by rpki-client