$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20323130353337.roa File: 3130332e3131382e3137342e302f32342d3234203d3e20323130353337.roa (raw, json) Hash identifier: 5tTNaFKVIpcsc/okIuKSdd47tmmVdXhx+ntRKQSJMJQ= Subject key identifier: 92:DD:8A:C4:5D:B4:06:87:B6:07:63:84:82:2A:71:3D:89:07:8F:0A Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Certificate serial: 28BE9E095048259A1C60392AB3950B0999EECB94 Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20323130353337.roa Signing time: Thu 15 May 2025 15:00:00 +0000 ROA not before: Thu 15 May 2025 14:55:00 +0000 ROA not after: Thu 14 May 2026 15:00:00 +0000 asID: 210537 IP address blocks: 103.118.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:be:9e:09:50:48:25:9a:1c:60:39:2a:b3:95:0b:09:99:ee:cb:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Validity Not Before: May 15 14:55:00 2025 GMT Not After : May 14 15:00:00 2026 GMT Subject: CN=92DD8AC45DB40687B6076384822A713D89078F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:64:c1:b8:99:aa:09:04:d0:c7:c0:bd:12: fd:92:e3:46:2f:b0:94:3e:4f:d2:5b:a2:4d:7f:36: ca:ca:41:a3:74:05:ee:c0:75:59:75:a7:19:13:96: 7b:d1:af:a9:8d:ff:21:dc:f4:bc:f7:a9:54:95:31: eb:4b:64:ad:6f:cb:c8:44:dd:86:7f:20:56:7b:e1: e9:9a:dc:8e:6a:e7:48:4f:47:9d:96:d2:83:11:e4: e4:a8:7f:a8:13:38:be:b4:2b:52:5f:17:4c:96:4e: 61:b3:df:c2:68:3a:ad:aa:d7:33:4b:99:39:00:29: e0:8e:cc:d9:e9:2a:0d:52:3e:62:90:83:c6:ba:72: 03:2a:5f:36:aa:12:94:77:81:f6:fe:01:83:50:89: be:f0:42:d8:7b:c1:bc:b1:cf:4b:0d:f4:bf:22:11: 17:6a:44:26:13:ae:ea:04:0e:6e:97:16:bc:12:67: c5:97:a7:1b:41:7f:80:d7:2f:62:3b:6e:33:fe:d1: 29:18:65:12:de:9f:50:fc:63:8d:89:e5:85:7c:97: 94:f4:bd:0e:26:e2:c5:7a:10:8d:c9:b2:00:ea:4e: f6:2a:28:05:27:2b:68:d8:39:b6:94:43:39:6e:df: 36:3d:b4:d3:c7:15:bc:da:4b:11:6f:04:af:c4:8e: 79:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DD:8A:C4:5D:B4:06:87:B6:07:63:84:82:2A:71:3D:89:07:8F:0A X509v3 Authority Key Identifier: keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20323130353337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.174.0/24 Signature Algorithm: sha256WithRSAEncryption 15:27:0c:0d:c4:b8:58:ce:bb:3b:fa:1e:37:87:e0:92:9d:d2: 09:af:13:86:44:c5:f4:65:76:ef:c8:ca:8b:21:a0:e4:99:74: 79:7e:58:d2:56:9f:1e:dc:61:7e:98:96:d6:9b:a9:b7:8b:d1: a6:6c:9d:0f:e1:b7:5f:0f:22:e0:3e:07:08:bd:8e:41:04:8a: 48:4f:59:09:d2:1d:01:53:ca:a8:89:aa:2d:38:9a:4c:d3:41: 3f:e4:a4:0e:75:39:88:5d:4b:28:b3:a8:71:d7:66:23:73:92: e1:53:83:6f:f9:6c:d5:87:f8:32:ae:6d:b0:8e:2e:ae:b5:4c: d6:96:3c:ef:d2:f6:7a:ed:c4:d8:97:3c:be:83:13:c3:00:a4: 0d:8d:5f:79:5e:e0:10:f1:3f:71:3c:0d:b1:96:48:7d:92:4a: bd:54:db:ae:d5:18:00:06:16:98:36:f0:80:ee:13:86:61:f9: 4e:53:7e:a6:07:2d:7c:f7:3a:2a:63:1b:54:9f:83:a3:43:ee: d2:a3:0a:53:8e:66:f5:14:9b:1f:f5:c3:2f:1e:8b:8c:ef:12: 16:93:99:4e:a3:58:c6:3f:9a:57:11:1f:d3:8f:c8:8f:39:27: 89:d3:f1:34:f7:9c:a0:93:d2:7a:8f:07:96:fa:4b:88:ff:4a: 43:4d:cd:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKL6eCVBIJZocYDkqs5ULCZnuy5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZC MDhFRkJGMzAeFw0yNTA1MTUxNDU1MDBaFw0yNjA1MTQxNTAwMDBaMDMxMTAvBgNV BAMTKDkyREQ4QUM0NURCNDA2ODdCNjA3NjM4NDgyMkE3MTNEODkwNzhGMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq8GTBuJmqCQTQx8C9Ev2S40Yv sJQ+T9Jbok1/NsrKQaN0Be7AdVl1pxkTlnvRr6mN/yHc9Lz3qVSVMetLZK1vy8hE 3YZ/IFZ74ema3I5q50hPR52W0oMR5OSof6gTOL60K1JfF0yWTmGz38JoOq2q1zNL mTkAKeCOzNnpKg1SPmKQg8a6cgMqXzaqEpR3gfb+AYNQib7wQth7wbyxz0sN9L8i ERdqRCYTruoEDm6XFrwSZ8WXpxtBf4DXL2I7bjP+0SkYZRLen1D8Y42J5YV8l5T0 vQ4m4sV6EI3JsgDqTvYqKAUnK2jYObaUQzlu3zY9tNPHFbzaSxFvBK/EjnmzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkt2KxF20Boe2B2OEgipxPYkHjwowHwYDVR0j BBgwFoAU27GMz1iRRSSvsRP+EzWcxrCO+/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMC9EQkIxOENDRjU4 OTE0NTI0QUZCMTEzRkUxMzM1OUNDNkIwOEVGQkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZCMDhF RkJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMxMzAzMzJlMzEzMTM4MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMxMzAzNTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndq4wDQYJ KoZIhvcNAQELBQADggEBABUnDA3EuFjOuzv6HjeH4JKd0gmvE4ZExfRldu/Iyosh oOSZdHl+WNJWnx7cYX6YltabqbeL0aZsnQ/ht18PIuA+Bwi9jkEEikhPWQnSHQFT yqiJqi04mkzTQT/kpA51OYhdSyizqHHXZiNzkuFTg2/5bNWH+DKubbCOLq61TNaW PO/S9nrtxNiXPL6DE8MApA2NX3le4BDxP3E8DbGWSH2SSr1U267VGAAGFpg28IDu E4Zh+U5TfqYHLXz3OipjG1Sfg6ND7tKjClOOZvUUmx/1wy8ei4zvEhaTmU6jWMY/ mlcRH9OPyI85J4nT8TT3nKCT0nqPB5b6S4j/SkNNzVg= -----END CERTIFICATE-----Generated at Sat Jun 7 15:04:35 2025 by rpki-client