$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: L25qOwaR1z4WBpyOCt6SGRe3C1qJyUGhLdY1D+C8bH0= Subject key identifier: 15:E2:0B:4A:CD:B3:E2:DB:22:D1:C2:EC:D9:FC:EC:77:E4:8C:49:B4 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 4DA2751F4EE8B9D47831ADA3A76438EB42EEAAE2 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa Signing time: Mon 02 Jun 2025 02:01:43 +0000 ROA not before: Mon 02 Jun 2025 01:56:43 +0000 ROA not after: Mon 01 Jun 2026 02:01:43 +0000 asID: 137378 IP address blocks: 103.119.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a2:75:1f:4e:e8:b9:d4:78:31:ad:a3:a7:64:38:eb:42:ee:aa:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jun 2 01:56:43 2025 GMT Not After : Jun 1 02:01:43 2026 GMT Subject: CN=15E20B4ACDB3E2DB22D1C2ECD9FCEC77E48C49B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:13:e1:e5:03:76:8a:cb:ca:a7:7e:ad:4b: 4f:75:4a:91:16:83:56:05:94:5c:87:a9:ca:06:dd: 09:42:87:be:d7:7e:cb:ab:1e:28:0b:e2:e5:8e:17: ca:f5:ee:76:a7:6d:f5:ce:03:f9:40:64:57:ba:61: f6:71:42:23:85:c1:08:9e:bd:49:18:f0:1f:10:b6: 7d:b2:76:f7:23:f0:df:c1:f1:ae:a1:09:e0:30:9e: 9c:c8:af:cb:21:d9:65:1a:60:1f:cb:f2:ca:c3:a4: 11:5b:6c:9d:08:ae:13:83:ca:08:a2:ab:d6:5d:ff: 55:69:b4:4e:77:57:0f:b1:3d:77:6d:14:d0:8e:2d: cd:df:af:65:c0:fc:67:a8:73:10:70:6e:b1:ee:f4: ab:3d:c1:7c:1b:39:a0:05:23:70:6d:de:78:e4:ec: 28:af:38:9e:67:4b:a3:be:92:cd:0e:e5:fa:28:43: 06:8e:34:f5:ac:59:d1:26:fc:bb:5d:a0:68:41:9c: fd:01:13:29:ca:ae:2d:e6:c5:ea:27:4c:29:74:15: 77:a8:75:83:a4:31:3a:2c:ed:5e:c2:0f:5a:c0:64: ed:1b:29:cf:d9:fc:07:db:d8:1a:ab:83:7f:f0:be: ac:9e:b8:c8:96:62:cc:af:18:87:45:8d:d6:20:d3: 23:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E2:0B:4A:CD:B3:E2:DB:22:D1:C2:EC:D9:FC:EC:77:E4:8C:49:B4 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.116.0/24 Signature Algorithm: sha256WithRSAEncryption 70:a2:4f:cc:81:7c:4b:20:65:37:48:e8:85:2f:5e:14:d1:37: f7:4a:b4:b0:1d:d0:7e:c3:96:fd:b6:76:a8:97:01:e6:b1:bd: 75:d8:0b:fe:33:76:f4:b6:46:8f:c8:36:3d:38:81:f5:42:6e: e8:93:0d:96:47:0a:32:bf:0d:1f:06:b0:6a:2e:26:f8:51:d8: 90:20:b5:0a:09:7b:70:21:27:f9:fe:d4:02:bd:99:9f:41:ca: ba:14:75:78:61:8f:aa:6e:d1:8b:62:da:61:3e:ea:75:3e:f6: be:48:10:ed:7a:1a:fc:b8:78:ec:cb:9e:18:90:05:44:f7:88: fe:af:f8:f5:1c:58:8f:4e:5e:85:39:53:bb:26:d7:b0:ad:01: ba:dd:42:c7:ff:bd:6c:7e:53:0a:b7:c8:ab:6e:42:29:e6:ec: c6:2f:a4:cc:9a:b3:d6:d6:ca:1f:db:52:59:8f:84:9c:2b:c4: ab:75:05:10:e5:bb:93:3f:a1:9d:4d:06:6f:2f:c5:fa:e0:01: f1:0b:84:e4:fe:62:6d:ce:0e:80:fd:b4:d6:42:b5:dd:ed:6e: b7:dc:34:cf:66:8b:8a:78:bc:d8:40:68:a1:e5:44:54:c4:ba: ee:9f:6e:41:df:9e:94:85:00:3c:c9:5d:df:34:65:19:bb:ea: 61:93:bd:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTaJ1H07oudR4Ma2jp2Q460LuquIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNTA2MDIwMTU2NDNaFw0yNjA2MDEwMjAxNDNaMDMxMTAvBgNV BAMTKDE1RTIwQjRBQ0RCM0UyREIyMkQxQzJFQ0Q5RkNFQzc3RTQ4QzQ5QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ShPh5QN2isvKp36tS091SpEW g1YFlFyHqcoG3QlCh77XfsurHigL4uWOF8r17nanbfXOA/lAZFe6YfZxQiOFwQie vUkY8B8Qtn2ydvcj8N/B8a6hCeAwnpzIr8sh2WUaYB/L8srDpBFbbJ0IrhODygii q9Zd/1VptE53Vw+xPXdtFNCOLc3fr2XA/GeocxBwbrHu9Ks9wXwbOaAFI3Bt3njk 7CivOJ5nS6O+ks0O5fooQwaONPWsWdEm/LtdoGhBnP0BEynKri3mxeonTCl0FXeo dYOkMTos7V7CD1rAZO0bKc/Z/Afb2Bqrg3/wvqyeuMiWYsyvGIdFjdYg0yNPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFeILSs2z4tsi0cLs2fzsd+SMSbQwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3QwDQYJ KoZIhvcNAQELBQADggEBAHCiT8yBfEsgZTdI6IUvXhTRN/dKtLAd0H7Dlv22dqiX AeaxvXXYC/4zdvS2Ro/INj04gfVCbuiTDZZHCjK/DR8GsGouJvhR2JAgtQoJe3Ah J/n+1AK9mZ9ByroUdXhhj6pu0Yti2mE+6nU+9r5IEO16Gvy4eOzLnhiQBUT3iP6v +PUcWI9OXoU5U7sm17CtAbrdQsf/vWx+Uwq3yKtuQinm7MYvpMyas9bWyh/bUlmP hJwrxKt1BRDlu5M/oZ1NBm8vxfrgAfELhOT+Ym3ODoD9tNZCtd3tbrfcNM9mi4p4 vNhAaKHlRFTEuu6fbkHfnpSFADzJXd80ZRm76mGTvZ8= -----END CERTIFICATE-----Generated at Sun Jun 8 22:40:24 2025 by rpki-client