$ rpki-client -vvf repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa File: 3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa (raw, json) Hash identifier: h8z8T7cMvO94VMJFPw+4vnKbTM1KYMCD+Y7LpeHOwow= Subject key identifier: DB:8A:5A:F0:E0:06:53:67:9A:C3:DC:74:41:A7:90:7D:03:3B:15:36 Certificate issuer: /CN=477C72D3EF66E3FE6923E38128D2757CBB2ABE05 Certificate serial: 2B80FA5D1B27E1183F78478C376E2D426DDF83EC Authority key identifier: 47:7C:72:D3:EF:66:E3:FE:69:23:E3:81:28:D2:75:7C:BB:2A:BE:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa Signing time: Wed 19 Mar 2025 11:02:20 +0000 ROA not before: Wed 19 Mar 2025 10:57:20 +0000 ROA not after: Wed 18 Mar 2026 11:02:20 +0000 asID: 138058 IP address blocks: 103.129.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.crl rsync://repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 20:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:80:fa:5d:1b:27:e1:18:3f:78:47:8c:37:6e:2d:42:6d:df:83:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=477C72D3EF66E3FE6923E38128D2757CBB2ABE05 Validity Not Before: Mar 19 10:57:20 2025 GMT Not After : Mar 18 11:02:20 2026 GMT Subject: CN=DB8A5AF0E00653679AC3DC7441A7907D033B1536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:69:9b:ee:f0:09:08:3b:d2:b4:48:8b:5f:d1: 3d:92:6f:32:51:c7:a8:53:b1:62:d7:be:19:3b:14: c1:df:7f:52:c4:91:41:19:19:da:f5:1a:a0:e1:7f: f9:79:19:0b:7c:f4:28:a0:af:7a:1e:4d:7f:5e:93: e4:e6:bf:7e:8b:18:d7:6e:06:ac:65:2b:67:58:70: 62:0f:a0:c0:8b:63:f2:e8:e8:7c:59:9a:f1:6a:a7: ec:ee:22:24:d4:6e:88:08:16:18:1d:d6:7a:35:82: 29:16:7b:ef:42:de:52:3b:8b:68:27:23:62:3e:1c: 2c:c8:ef:34:77:4f:9d:f1:b2:09:6e:9e:ba:47:be: 74:3d:e5:ea:b8:f1:fb:da:42:e4:ed:fd:a0:51:e4: 2e:11:95:e9:7b:96:ff:4e:61:28:94:02:6c:69:72: 45:d2:8c:d1:2d:3f:f3:2e:f4:6c:30:a7:3a:ba:a6: 08:37:c8:b6:60:f5:6c:30:0a:e2:17:c8:8a:bd:7a: c6:b8:0c:ef:af:80:7a:75:a2:4f:41:3f:2d:e9:98: f9:e1:02:6f:74:7c:e1:d6:39:9d:78:94:7b:8b:13: 32:3f:fb:1b:2f:a9:6b:d5:97:9e:05:08:3d:52:ac: fb:91:b8:24:3e:bf:b2:fb:70:1a:60:1b:06:70:7a: ab:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:8A:5A:F0:E0:06:53:67:9A:C3:DC:74:41:A7:90:7D:03:3B:15:36 X509v3 Authority Key Identifier: keyid:47:7C:72:D3:EF:66:E3:FE:69:23:E3:81:28:D2:75:7C:BB:2A:BE:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/477C72D3EF66E3FE6923E38128D2757CBB2ABE05.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2e6bbe4d-3a2b-4e1b-a1aa-593610b3dec9/0/3130332e3132392e36302e302f32342d3234203d3e20313338303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.60.0/24 Signature Algorithm: sha256WithRSAEncryption a1:40:7b:01:2d:b1:bb:ae:3c:f9:77:a8:77:30:3e:c2:99:f7: e6:e4:28:e4:1f:b0:3e:ab:9d:2a:eb:49:fb:5e:c5:6f:a2:bd: df:f1:1c:36:d6:f4:35:c3:ee:0c:14:3d:c2:70:05:47:db:da: bb:8c:6e:de:7d:ba:61:81:bb:a3:bf:49:93:e7:90:10:1a:5e: 17:aa:34:23:f0:02:da:62:87:6e:8a:4a:0b:58:3b:a8:16:58: 03:00:a0:2d:9f:d1:7d:f6:19:e6:65:36:07:43:f5:70:0a:9e: a8:b5:a3:3b:1e:e6:12:00:e9:ad:f6:11:9b:93:2e:2e:03:2e: a2:8d:09:59:aa:82:81:c2:5a:20:3f:60:8e:af:3c:33:ad:f4: 31:01:ab:a1:17:da:12:32:fa:29:67:90:a2:4f:45:fa:58:e3: 66:98:b4:b4:76:7a:a2:14:aa:e3:66:c5:24:a3:bb:22:0a:cb: 9e:43:ad:2e:15:77:6f:c2:ea:8e:6b:77:3e:4d:13:87:7b:5b: 67:64:14:7a:a0:8f:25:cd:90:06:c4:fd:31:28:b4:ae:de:24: 7e:00:82:7b:d7:c3:02:e7:8e:b6:e7:9c:9e:12:9e:de:ff:55: 43:d1:5f:27:ef:21:0a:59:4c:51:b7:f9:9a:e8:35:33:8e:75: 01:51:bd:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK4D6XRsn4Rg/eEeMN24tQm3fg+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc3QzcyRDNFRjY2RTNGRTY5MjNFMzgxMjhEMjc1N0NC QjJBQkUwNTAeFw0yNTAzMTkxMDU3MjBaFw0yNjAzMTgxMTAyMjBaMDMxMTAvBgNV BAMTKERCOEE1QUYwRTAwNjUzNjc5QUMzREM3NDQxQTc5MDdEMDMzQjE1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiaZvu8AkIO9K0SItf0T2SbzJR x6hTsWLXvhk7FMHff1LEkUEZGdr1GqDhf/l5GQt89Cigr3oeTX9ek+Tmv36LGNdu BqxlK2dYcGIPoMCLY/Lo6HxZmvFqp+zuIiTUbogIFhgd1no1gikWe+9C3lI7i2gn I2I+HCzI7zR3T53xsglunrpHvnQ95eq48fvaQuTt/aBR5C4Rlel7lv9OYSiUAmxp ckXSjNEtP/Mu9Gwwpzq6pgg3yLZg9WwwCuIXyIq9esa4DO+vgHp1ok9BPy3pmPnh Am90fOHWOZ14lHuLEzI/+xsvqWvVl54FCD1SrPuRuCQ+v7L7cBpgGwZweqsRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU24pa8OAGU2eaw9x0QaeQfQM7FTYwHwYDVR0j BBgwFoAUR3xy0+9m4/5pI+OBKNJ1fLsqvgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZTZiYmU0ZC0zYTJiLTRlMWItYTFhYS01OTM2MTBiM2RlYzkvMC80NzdDNzJEM0VG NjZFM0ZFNjkyM0UzODEyOEQyNzU3Q0JCMkFCRTA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc3QzcyRDNFRjY2RTNGRTY5MjNFMzgxMjhEMjc1N0NCQjJB QkUwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlNmJiZTRkLTNhMmItNGUxYi1h MWFhLTU5MzYxMGIzZGVjOS8wLzMxMzAzMzJlMzEzMjM5MmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4E8MA0GCSqG SIb3DQEBCwUAA4IBAQChQHsBLbG7rjz5d6h3MD7Cmffm5CjkH7A+q50q60n7XsVv or3f8Rw21vQ1w+4MFD3CcAVH29q7jG7efbphgbujv0mT55AQGl4XqjQj8ALaYodu ikoLWDuoFlgDAKAtn9F99hnmZTYHQ/VwCp6otaM7HuYSAOmt9hGbky4uAy6ijQlZ qoKBwlogP2COrzwzrfQxAauhF9oSMvopZ5CiT0X6WONmmLS0dnqiFKrjZsUko7si CsueQ60uFXdvwuqOa3c+TROHe1tnZBR6oI8lzZAGxP0xKLSu3iR+AIJ718MC5462 55yeEp7e/1VD0V8n7yEKWUxRt/ma6DUzjnUBUb1k -----END CERTIFICATE-----Generated at Sat Apr 19 02:24:44 2025 by rpki-client