$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 6uaz9H2C0Zmi7+Kl7mXUqp61Tn9wAvtzejcx5d8BSvE= Subject key identifier: FE:8D:FF:AF:B1:93:4F:20:4B:1D:9B:7E:F4:EC:C5:72:00:FD:1F:0B Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 298EBFBD7F541F8A06132EBC6CB5CDAA18BB2C30 Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa Signing time: Mon 02 Jun 2025 02:03:08 +0000 ROA not before: Mon 02 Jun 2025 01:58:08 +0000 ROA not after: Mon 01 Jun 2026 02:03:08 +0000 asID: 138096 IP address blocks: 103.124.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:8e:bf:bd:7f:54:1f:8a:06:13:2e:bc:6c:b5:cd:aa:18:bb:2c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jun 2 01:58:08 2025 GMT Not After : Jun 1 02:03:08 2026 GMT Subject: CN=FE8DFFAFB1934F204B1D9B7EF4ECC57200FD1F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c4:f0:65:15:7c:4d:3d:ff:5a:dd:5f:a5:06: a4:42:6c:a4:b4:8d:4b:72:84:c8:46:b5:96:18:32: 66:fb:c5:90:2f:d5:09:ad:00:79:8d:4a:32:3a:94: 8d:3d:17:1a:f0:1a:35:93:1b:4b:9a:25:09:ac:fb: 2d:c2:9c:a6:16:7b:be:05:f9:4f:98:29:db:4b:7f: 1b:16:73:d1:a7:fa:22:a0:e4:3a:2c:cc:32:17:4e: 8e:57:bf:42:71:8d:b0:56:4f:58:f6:dd:6c:2d:2a: 64:1d:fa:40:c4:af:a7:03:c6:9a:88:34:f4:d7:99: ea:9b:9a:46:b0:a1:eb:44:e7:3b:7b:b1:0b:11:e4: 71:3d:a6:4f:c4:59:d4:8f:9b:61:70:d7:94:69:2c: 29:40:1e:b1:ad:cd:ae:79:83:62:56:24:71:9f:b9: c2:c8:4a:2d:c5:0c:c5:b7:67:c7:b9:60:bf:b6:18: 0d:13:b2:5c:9c:9d:f4:9d:1f:ce:40:bf:82:47:1c: a8:d9:6f:28:46:d0:68:58:f6:40:ab:d5:27:46:31: 29:63:db:51:70:f5:f2:8e:8c:2d:a7:6d:99:82:6a: cc:97:c7:ec:3c:73:b0:3b:04:8d:89:b8:82:66:2c: aa:11:f6:de:db:57:cd:17:97:66:5f:2c:5f:7e:e6: 80:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8D:FF:AF:B1:93:4F:20:4B:1D:9B:7E:F4:EC:C5:72:00:FD:1F:0B X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.198.0/24 Signature Algorithm: sha256WithRSAEncryption c9:8f:ec:68:ba:9b:2b:31:9b:81:87:c6:73:aa:f0:20:fd:de: 90:b2:94:ef:dc:cb:e2:7c:fb:54:de:db:13:a9:c7:8a:a9:ee: 99:a7:37:9a:bd:23:1c:3c:b5:85:a2:71:13:1b:30:dd:cd:32: ea:d9:4a:bd:65:17:8e:ec:82:fe:bb:c1:ef:9f:ca:46:85:59: c2:21:75:aa:3f:78:d3:af:45:79:83:d3:dd:50:75:07:f3:1a: da:78:95:26:51:ae:eb:c2:b5:6a:1a:50:41:73:c5:db:0d:ff: 2e:52:59:09:06:03:a7:e6:ea:76:a7:4b:dd:27:d5:3e:76:0f: b0:f6:65:a5:ca:6e:26:4f:1e:ab:f4:1a:6b:18:20:4d:02:87: 02:00:09:56:1d:fb:c3:35:db:46:ad:fb:a4:91:a8:5b:12:1c: 4c:ba:d0:f1:4d:83:60:34:97:35:37:9d:0e:45:06:68:80:e6: 70:b7:6b:54:e7:c2:f9:e9:93:ba:03:7f:23:3d:06:8c:67:fd: 3f:0e:dd:ec:b9:d9:ed:ab:d6:ff:02:02:cd:85:00:11:1c:75: ae:2a:a0:e0:82:d3:82:00:02:bc:ac:74:b2:b5:f0:fb:13:b1: 8d:4f:94:23:f7:a5:65:41:c3:c7:45:aa:28:78:57:da:e0:2a: 3f:34:f3:76 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKY6/vX9UH4oGEy68bLXNqhi7LDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yNTA2MDIwMTU4MDhaFw0yNjA2MDEwMjAzMDhaMDMxMTAvBgNV BAMTKEZFOERGRkFGQjE5MzRGMjA0QjFEOUI3RUY0RUNDNTcyMDBGRDFGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxPBlFXxNPf9a3V+lBqRCbKS0 jUtyhMhGtZYYMmb7xZAv1QmtAHmNSjI6lI09FxrwGjWTG0uaJQms+y3CnKYWe74F +U+YKdtLfxsWc9Gn+iKg5DoszDIXTo5Xv0JxjbBWT1j23WwtKmQd+kDEr6cDxpqI NPTXmeqbmkawoetE5zt7sQsR5HE9pk/EWdSPm2Fw15RpLClAHrGtza55g2JWJHGf ucLISi3FDMW3Z8e5YL+2GA0TslycnfSdH85Av4JHHKjZbyhG0GhY9kCr1SdGMSlj 21Fw9fKOjC2nbZmCasyXx+w8c7A7BI2JuIJmLKoR9t7bV80Xl2ZfLF9+5oDnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/o3/r7GTTyBLHZt+9OzFcgD9HwswHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMYwDQYJ KoZIhvcNAQELBQADggEBAMmP7Gi6mysxm4GHxnOq8CD93pCylO/cy+J8+1Te2xOp x4qp7pmnN5q9Ixw8tYWicRMbMN3NMurZSr1lF47sgv67we+fykaFWcIhdao/eNOv RXmD091QdQfzGtp4lSZRruvCtWoaUEFzxdsN/y5SWQkGA6fm6nanS90n1T52D7D2 ZaXKbiZPHqv0GmsYIE0ChwIACVYd+8M120at+6SRqFsSHEy60PFNg2A0lzU3nQ5F BmiA5nC3a1Tnwvnpk7oDfyM9Boxn/T8O3ey52e2r1v8CAs2FABEcda4qoOCC04IA ArysdLK18PsTsY1PlCP3pWVBw8dFqih4V9rgKj8083Y= -----END CERTIFICATE-----Generated at Sat Jun 7 15:36:43 2025 by rpki-client