$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: nzLKnI/D3cwy5mjROOKEojLaE+IM3VD8CZS+m6prGYU= Subject key identifier: 88:72:40:7B:EA:96:1D:1C:03:5E:05:82:06:02:88:D8:A7:9D:24:08 Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 0302A60BF66F17A7EF146357C453B74945EA0148 Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa Signing time: Mon 02 Jun 2025 02:03:08 +0000 ROA not before: Mon 02 Jun 2025 01:58:08 +0000 ROA not after: Mon 01 Jun 2026 02:03:08 +0000 asID: 138096 IP address blocks: 103.124.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:02:a6:0b:f6:6f:17:a7:ef:14:63:57:c4:53:b7:49:45:ea:01:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jun 2 01:58:08 2025 GMT Not After : Jun 1 02:03:08 2026 GMT Subject: CN=8872407BEA961D1C035E0582060288D8A79D2408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:aa:01:4f:15:6f:27:8b:43:7e:fd:8f:25:76: ad:22:10:f7:35:01:71:bb:49:a1:9f:f3:ac:f2:ca: fa:9d:7f:06:bc:1c:9b:9e:07:cd:74:38:ed:cb:5a: 6e:84:94:24:96:d0:04:03:7f:53:f7:80:b1:76:0b: 0e:a7:7f:d4:1e:22:19:b5:a7:d2:1a:89:3a:0e:ad: a1:e8:13:32:9b:4b:8f:cf:f4:7b:76:3a:46:5a:ec: f7:29:e7:19:38:ca:a6:29:f6:f9:e8:6c:d6:28:89: a4:56:60:65:9f:6a:0d:0e:be:12:52:f8:d6:e7:bb: 9d:b2:2e:2b:46:f2:fd:e2:5a:47:84:9d:fb:c0:64: 8c:cb:a2:16:26:8a:f4:1e:54:c7:06:ae:48:53:53: c2:42:f3:67:33:16:5a:a7:50:46:06:0d:f8:d3:60: d8:6b:ab:00:95:90:d7:52:e1:4b:00:85:f5:ca:55: c3:3e:04:17:3f:40:d1:d1:7e:a3:9c:c1:81:8f:9f: a4:b8:22:9a:49:e2:85:05:a0:c8:13:f6:9b:13:e5: 9e:cf:04:65:90:f2:df:ae:52:9f:02:80:dd:8c:68: ca:de:d4:cf:fe:64:ff:04:f4:92:07:53:bf:75:f0: e3:be:37:ac:a3:7f:4a:b7:e4:2d:02:5f:f8:3c:46: ca:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:72:40:7B:EA:96:1D:1C:03:5E:05:82:06:02:88:D8:A7:9D:24:08 X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.197.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:9a:da:85:38:e1:59:8a:ea:30:5d:85:53:23:fd:3b:af:f6: 1d:9a:bd:83:42:40:e6:40:3e:12:2a:5c:91:15:e7:01:f6:f9: 67:df:99:98:f5:dc:5c:58:ad:56:3d:43:94:29:13:02:24:2f: 92:be:01:f2:c3:19:51:a6:ec:56:d4:4d:fe:5d:5c:4c:bf:94: ac:2b:70:e0:9b:02:d0:72:23:22:61:dc:0f:53:2b:ab:07:9f: 25:0d:9f:23:23:7c:ed:34:ce:1a:e4:e4:1e:81:55:7f:db:99: 9c:5a:99:4e:01:a0:15:69:76:c8:29:55:e7:a0:02:39:40:fe: 8b:33:51:d1:11:ff:2c:7f:9e:78:a2:72:cc:20:20:f4:be:6d: 5f:e0:09:8c:d4:cb:26:86:16:04:47:db:82:9f:2f:69:65:72: f5:3d:56:6e:75:3f:26:79:ec:d3:c9:80:af:89:77:5c:c0:ce: b9:97:32:1f:ab:5a:b4:d7:04:85:01:da:9d:d3:8a:cd:dd:ee: 88:6c:8e:f9:d2:26:4a:c0:f3:17:73:42:97:46:83:00:9f:5d: 4e:e2:be:fa:3f:72:9c:c8:6f:fa:ce:98:04:96:8e:a5:4d:fd: 89:1d:52:b5:f7:b1:ba:b4:3f:64:4d:5e:62:26:3c:cb:6b:ed: 18:3f:b2:f1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAwKmC/ZvF6fvFGNXxFO3SUXqAUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yNTA2MDIwMTU4MDhaFw0yNjA2MDEwMjAzMDhaMDMxMTAvBgNV BAMTKDg4NzI0MDdCRUE5NjFEMUMwMzVFMDU4MjA2MDI4OEQ4QTc5RDI0MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVqgFPFW8ni0N+/Y8ldq0iEPc1 AXG7SaGf86zyyvqdfwa8HJueB810OO3LWm6ElCSW0AQDf1P3gLF2Cw6nf9QeIhm1 p9IaiToOraHoEzKbS4/P9Ht2OkZa7Pcp5xk4yqYp9vnobNYoiaRWYGWfag0OvhJS +Nbnu52yLitG8v3iWkeEnfvAZIzLohYmivQeVMcGrkhTU8JC82czFlqnUEYGDfjT YNhrqwCVkNdS4UsAhfXKVcM+BBc/QNHRfqOcwYGPn6S4IppJ4oUFoMgT9psT5Z7P BGWQ8t+uUp8CgN2MaMre1M/+ZP8E9JIHU7918OO+N6yjf0q35C0CX/g8Rsp7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiHJAe+qWHRwDXgWCBgKI2KedJAgwHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMUwDQYJ KoZIhvcNAQELBQADggEBAJqa2oU44VmK6jBdhVMj/Tuv9h2avYNCQOZAPhIqXJEV 5wH2+WffmZj13FxYrVY9Q5QpEwIkL5K+AfLDGVGm7FbUTf5dXEy/lKwrcOCbAtBy IyJh3A9TK6sHnyUNnyMjfO00zhrk5B6BVX/bmZxamU4BoBVpdsgpVeegAjlA/osz UdER/yx/nniicswgIPS+bV/gCYzUyyaGFgRH24KfL2llcvU9Vm51PyZ57NPJgK+J d1zAzrmXMh+rWrTXBIUB2p3Tis3d7ohsjvnSJkrA8xdzQpdGgwCfXU7ivvo/cpzI b/rOmASWjqVN/YkdUrX3sbq0P2RNXmImPMtr7Rg/svE= -----END CERTIFICATE-----Generated at Sun Jun 8 01:12:46 2025 by rpki-client