$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: dqbXh2fh2OaVSVgJTjSWxwpOg/4I40zirFE6nOuWYzo= Subject key identifier: AD:2C:AB:DD:E7:26:5A:47:67:82:5B:F7:3B:72:FF:62:C4:D2:E4:69 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 5F72C1A219CD8F965CBFD8C54EF88C518830312A Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa Signing time: Mon 02 Jun 2025 02:01:43 +0000 ROA not before: Mon 02 Jun 2025 01:56:43 +0000 ROA not after: Mon 01 Jun 2026 02:01:43 +0000 asID: 137378 IP address blocks: 103.119.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:72:c1:a2:19:cd:8f:96:5c:bf:d8:c5:4e:f8:8c:51:88:30:31:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jun 2 01:56:43 2025 GMT Not After : Jun 1 02:01:43 2026 GMT Subject: CN=AD2CABDDE7265A4767825BF73B72FF62C4D2E469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:cd:e4:f4:4c:a5:46:ab:dc:42:d4:15:00: f5:d2:d8:d8:88:ad:4e:8c:b9:02:19:b6:7f:7d:e1: 8d:2d:2a:11:78:19:af:d7:75:4e:d5:fe:44:fe:f6: 54:27:22:d0:1e:3c:f0:e0:80:00:29:0c:90:66:a1: 54:54:b4:81:b2:e9:30:61:d8:4d:bf:45:57:42:b8: 6a:9f:d1:f3:50:5a:47:ea:3a:10:16:c3:95:de:94: 69:99:51:5c:24:a1:fa:92:dc:43:f3:76:0a:ce:b0: d5:45:9e:21:7c:ed:f2:a0:b7:5e:9e:76:ad:ea:12: be:27:c6:eb:e7:0e:a5:00:ab:a1:45:99:9e:df:34: c9:40:f7:eb:97:28:ed:6e:80:ac:26:db:92:7f:1e: 94:7f:ef:04:ac:f3:7c:57:f2:73:63:9e:34:88:f7: 00:50:e7:05:f0:c9:77:29:d1:a1:6f:17:93:96:bb: 97:7f:d3:fa:3e:17:17:e0:3e:cc:e6:79:51:69:f5: f8:e7:fc:77:30:54:06:4c:bc:77:8f:40:7b:ce:ff: 03:a4:2d:63:68:cd:82:80:0b:12:8f:aa:1f:b6:fe: d9:cf:50:17:52:97:b2:03:46:fd:59:b6:ff:55:e2: 03:92:ed:f1:9c:7a:c4:b5:81:25:e7:bb:87:11:f6: 7f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:2C:AB:DD:E7:26:5A:47:67:82:5B:F7:3B:72:FF:62:C4:D2:E4:69 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.119.0/24 Signature Algorithm: sha256WithRSAEncryption 16:76:2e:fd:7f:d6:ad:97:a2:07:2e:43:78:db:39:ca:9c:57: 4e:91:a6:9e:d4:ab:8c:fc:c9:01:bf:09:22:09:5f:ab:aa:a0: 51:8f:a5:4f:b4:9b:79:c1:5e:22:58:61:af:ed:4b:46:90:84: d5:2f:cb:8a:39:bb:39:0c:7d:90:d8:76:82:6e:23:e8:b9:72: 60:f4:ed:fd:64:13:5f:2e:cb:14:e9:51:42:0c:cc:e0:fa:0b: d2:ef:01:dc:9b:3e:e5:11:e1:0f:a5:2a:92:88:d5:7a:cc:63: 16:c7:b2:fc:a7:3b:dd:b1:2e:b7:53:3d:44:21:25:d1:6f:e5: 77:8b:9d:d3:50:e8:6c:6f:05:32:65:ad:3d:6c:87:ba:06:a3: 53:00:bb:5f:9f:81:c4:b8:4c:46:c4:0f:95:af:d0:36:c4:67: 8b:64:d5:05:80:c0:be:01:ce:3b:6f:5c:8b:0a:36:10:98:98: 1a:2f:3d:31:b9:81:ba:ab:6a:09:6d:0b:e6:9e:cf:2b:8c:a8: 2b:06:ba:a9:7c:8b:3f:f4:a6:5c:43:cb:d6:a5:de:0e:e5:80: af:0c:48:76:82:3e:b9:60:ed:69:a7:b7:25:05:52:d3:51:fc: 80:2d:e9:15:a8:27:2e:53:b9:f7:e5:70:db:77:8d:71:ff:b3: 28:d1:15:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX3LBohnNj5Zcv9jFTviMUYgwMSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNTA2MDIwMTU2NDNaFw0yNjA2MDEwMjAxNDNaMDMxMTAvBgNV BAMTKEFEMkNBQkRERTcyNjVBNDc2NzgyNUJGNzNCNzJGRjYyQzREMkU0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEes3k9EylRqvcQtQVAPXS2NiI rU6MuQIZtn994Y0tKhF4Ga/XdU7V/kT+9lQnItAePPDggAApDJBmoVRUtIGy6TBh 2E2/RVdCuGqf0fNQWkfqOhAWw5XelGmZUVwkofqS3EPzdgrOsNVFniF87fKgt16e dq3qEr4nxuvnDqUAq6FFmZ7fNMlA9+uXKO1ugKwm25J/HpR/7wSs83xX8nNjnjSI 9wBQ5wXwyXcp0aFvF5OWu5d/0/o+FxfgPszmeVFp9fjn/HcwVAZMvHePQHvO/wOk LWNozYKACxKPqh+2/tnPUBdSl7IDRv1Ztv9V4gOS7fGcesS1gSXnu4cR9n9fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrSyr3ecmWkdnglv3O3L/YsTS5GkwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3cwDQYJ KoZIhvcNAQELBQADggEBABZ2Lv1/1q2XogcuQ3jbOcqcV06Rpp7Uq4z8yQG/CSIJ X6uqoFGPpU+0m3nBXiJYYa/tS0aQhNUvy4o5uzkMfZDYdoJuI+i5cmD07f1kE18u yxTpUUIMzOD6C9LvAdybPuUR4Q+lKpKI1XrMYxbHsvynO92xLrdTPUQhJdFv5XeL ndNQ6GxvBTJlrT1sh7oGo1MAu1+fgcS4TEbED5Wv0DbEZ4tk1QWAwL4BzjtvXIsK NhCYmBovPTG5gbqragltC+aezyuMqCsGuql8iz/0plxDy9al3g7lgK8MSHaCPrlg 7WmntyUFUtNR/IAt6RWoJy5TufflcNt3jXH/syjRFZQ= -----END CERTIFICATE-----Generated at Sat Jun 7 06:05:13 2025 by rpki-client