$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: Oqk+2aNoDkz3rAuUwzqbP96AFip7IVOJ+sOmFv2FC3s= Subject key identifier: 8F:5A:37:45:C6:34:E0:1F:89:81:7E:18:6B:8D:F7:16:11:09:73:E0 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 4439F270C9231959D0495BD54FB476605FB9EE81 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa Signing time: Mon 02 Jun 2025 02:01:44 +0000 ROA not before: Mon 02 Jun 2025 01:56:44 +0000 ROA not after: Mon 01 Jun 2026 02:01:44 +0000 asID: 137378 IP address blocks: 103.119.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:39:f2:70:c9:23:19:59:d0:49:5b:d5:4f:b4:76:60:5f:b9:ee:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jun 2 01:56:44 2025 GMT Not After : Jun 1 02:01:44 2026 GMT Subject: CN=8F5A3745C634E01F89817E186B8DF716110973E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a3:5b:c7:aa:2f:2c:6c:e0:f1:b6:4b:e3:08: 1f:b8:94:8b:af:1a:a4:38:75:4a:e2:cd:4d:4d:1f: 77:3a:08:9c:56:23:34:7b:d0:72:a2:80:5f:1e:27: c5:a4:db:11:f3:da:61:7f:ff:64:24:83:8c:4a:b6: 64:25:7b:4f:19:48:59:60:27:11:07:97:0d:8b:78: bb:4d:34:f5:06:71:4e:34:10:73:25:c4:7b:c5:18: 7f:3d:3e:e3:74:c4:38:41:5e:1a:7f:bc:b8:86:4f: cb:76:8f:f7:67:c0:5e:2e:e9:b8:98:b8:2b:a6:bc: a9:e2:60:fe:97:98:47:f6:b8:de:99:d1:7f:d7:d1: e8:e3:9f:24:e1:09:f7:5c:2d:f6:2c:b2:da:25:c9: 1a:04:9e:a6:e7:5b:35:9d:1e:63:20:a8:3b:3e:34: d5:8d:f5:3e:dd:4c:a0:46:4f:06:01:66:0c:bf:0a: 51:8b:64:05:76:56:91:24:1f:61:16:18:a6:24:06: 16:cf:0a:2c:4a:cb:5f:91:04:fe:a2:d1:87:8a:da: d6:68:5a:dd:44:36:f0:76:61:ec:38:e0:e5:54:cf: 16:94:c3:2b:16:7c:24:d4:f8:29:f6:98:0c:6f:83: 9a:54:cc:43:77:fb:1f:3c:b6:15:f2:32:2a:1e:48: 36:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5A:37:45:C6:34:E0:1F:89:81:7E:18:6B:8D:F7:16:11:09:73:E0 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.118.0/24 Signature Algorithm: sha256WithRSAEncryption 84:f0:65:b1:cd:a1:72:7c:9f:5c:8b:db:4e:c2:b5:ba:35:32: ef:22:eb:8c:6b:90:a7:03:ee:fa:38:38:c7:81:9b:98:93:d1: f3:56:e8:22:6a:43:15:39:b0:cb:4b:d8:14:ef:09:9f:62:ec: 70:4f:bb:f1:84:0c:d6:0f:26:e2:6c:61:f5:78:dc:02:96:87: 1b:0f:87:51:66:5a:79:62:e6:36:1d:76:4e:2d:f0:d4:64:b1: 2c:21:7d:8a:f7:ae:2f:0f:02:86:1d:94:70:45:98:be:a6:84: ca:fc:2e:c3:c4:f0:f3:a0:e3:46:0d:72:78:d2:27:9c:28:d7: c1:12:9e:84:77:6b:b0:b5:6d:f0:ca:c9:74:01:ca:57:ed:e7: b1:47:29:61:3b:ba:bc:e7:2b:c6:04:67:78:b3:ed:9d:52:a9: 0a:c4:8c:05:7e:b7:70:a2:fb:14:a3:00:40:d6:bc:5c:ea:6b: b7:99:27:7e:72:2c:24:c3:f0:c4:68:84:82:85:20:19:cc:db: 03:52:00:bb:7f:e2:fe:c0:5e:53:63:5f:2d:b3:0f:40:38:08: 8c:d2:3c:2b:98:52:41:69:e9:64:35:85:86:28:26:cd:ec:13: 81:87:51:6b:89:4b:f3:4d:d2:28:99:72:28:74:c2:b0:38:55: 9a:58:ed:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURDnycMkjGVnQSVvVT7R2YF+57oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNTA2MDIwMTU2NDRaFw0yNjA2MDEwMjAxNDRaMDMxMTAvBgNV BAMTKDhGNUEzNzQ1QzYzNEUwMUY4OTgxN0UxODZCOERGNzE2MTEwOTczRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCao1vHqi8sbODxtkvjCB+4lIuv GqQ4dUrizU1NH3c6CJxWIzR70HKigF8eJ8Wk2xHz2mF//2Qkg4xKtmQle08ZSFlg JxEHlw2LeLtNNPUGcU40EHMlxHvFGH89PuN0xDhBXhp/vLiGT8t2j/dnwF4u6biY uCumvKniYP6XmEf2uN6Z0X/X0ejjnyThCfdcLfYsstolyRoEnqbnWzWdHmMgqDs+ NNWN9T7dTKBGTwYBZgy/ClGLZAV2VpEkH2EWGKYkBhbPCixKy1+RBP6i0YeK2tZo Wt1ENvB2Yew44OVUzxaUwysWfCTU+Cn2mAxvg5pUzEN3+x88thXyMioeSDZVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj1o3RcY04B+JgX4Ya433FhEJc+AwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3YwDQYJ KoZIhvcNAQELBQADggEBAITwZbHNoXJ8n1yL207Ctbo1Mu8i64xrkKcD7vo4OMeB m5iT0fNW6CJqQxU5sMtL2BTvCZ9i7HBPu/GEDNYPJuJsYfV43AKWhxsPh1FmWnli 5jYddk4t8NRksSwhfYr3ri8PAoYdlHBFmL6mhMr8LsPE8POg40YNcnjSJ5wo18ES noR3a7C1bfDKyXQBylft57FHKWE7urznK8YEZ3iz7Z1SqQrEjAV+t3Ci+xSjAEDW vFzqa7eZJ35yLCTD8MRohIKFIBnM2wNSALt/4v7AXlNjXy2zD0A4CIzSPCuYUkFp 6WQ1hYYoJs3sE4GHUWuJS/NN0iiZcih0wrA4VZpY7aQ= -----END CERTIFICATE-----Generated at Sun Jun 8 13:37:22 2025 by rpki-client