$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 9iKS8p7Xao18ldzefre+pP4jboQ9AAl4Hg0B9pQyQbE= Subject key identifier: CE:C2:01:C3:FE:E7:CB:4D:7A:91:54:BF:A9:E5:99:AE:44:F6:D9:F6 Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 4E5008F33F4534F1D094672387E6FB15EBE35510 Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa Signing time: Mon 02 Jun 2025 02:03:08 +0000 ROA not before: Mon 02 Jun 2025 01:58:08 +0000 ROA not after: Mon 01 Jun 2026 02:03:08 +0000 asID: 138096 IP address blocks: 103.124.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:50:08:f3:3f:45:34:f1:d0:94:67:23:87:e6:fb:15:eb:e3:55:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jun 2 01:58:08 2025 GMT Not After : Jun 1 02:03:08 2026 GMT Subject: CN=CEC201C3FEE7CB4D7A9154BFA9E599AE44F6D9F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:78:00:c3:e6:28:29:ff:ac:3b:75:95:9a:2d: 1d:f0:4b:c7:6d:e6:bc:95:97:b8:7c:09:83:0e:91: 71:75:74:95:1b:22:bb:85:e0:92:82:a1:23:8c:67: 77:1c:d4:27:2d:e5:49:03:e4:7f:5d:1d:06:2c:03: a3:16:9d:aa:ea:54:08:b1:39:aa:5d:cc:cd:9c:87: 37:a2:92:f8:46:22:e8:10:6b:06:53:69:c9:29:99: c5:32:88:67:16:48:c7:09:0f:3b:b0:47:b9:5f:87: dc:22:54:1c:bf:47:71:4a:77:b5:c4:1d:5f:32:b8: c9:fa:d2:71:10:02:b3:c1:3d:35:05:c3:b9:f7:22: 7e:1c:80:15:02:f5:5f:8c:10:9c:2c:d3:a5:dc:f9: 7d:c7:8f:b0:3d:64:37:d9:4f:8a:8e:c4:9d:d7:37: ea:67:53:8c:a2:e2:a7:a7:55:3a:a3:8e:97:69:f8: 00:d2:98:91:55:d0:3e:02:71:88:2c:4c:fe:6f:b8: cf:a1:1a:1a:c6:f6:b1:32:41:99:9e:cd:3d:40:59: ea:da:c3:12:47:3b:26:85:08:66:2d:7c:9c:25:2b: d5:65:65:97:58:90:39:82:8e:5a:c3:48:f8:71:ea: 08:92:7d:c7:09:ad:49:47:62:fc:2f:8a:33:06:64: d5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C2:01:C3:FE:E7:CB:4D:7A:91:54:BF:A9:E5:99:AE:44:F6:D9:F6 X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.199.0/24 Signature Algorithm: sha256WithRSAEncryption a9:bc:2b:e9:3d:09:dd:a3:f6:a8:5e:81:c7:f1:90:16:e1:5a: a0:7f:ab:cb:53:25:e9:11:73:ed:13:13:83:ad:ab:02:45:8f: c5:ea:c2:bf:b9:a9:c1:a3:37:bb:13:d9:9d:d2:d2:38:84:bd: 53:42:3e:0b:71:1d:5a:35:6f:f6:5b:be:52:58:7c:c2:de:84: a2:c4:45:42:25:db:c1:20:aa:1d:2d:63:57:bd:e9:14:01:77: db:6d:07:0c:54:85:d4:32:ad:7e:5c:ce:87:5a:cd:14:db:27: 0c:5e:cf:e1:ca:6e:6d:9b:48:ac:54:0f:72:86:e1:62:97:64: a7:c7:39:03:b5:af:4c:4f:58:99:95:87:cb:2e:ff:f0:17:22: 0d:06:05:77:64:a6:ee:52:c5:71:31:33:e3:14:b4:8e:85:23: b0:c4:db:9f:89:e7:1d:d2:2d:a9:f6:19:80:5e:50:7d:83:19: e5:9a:45:31:f1:52:a8:32:04:b0:17:40:ff:de:e0:94:60:c9: e8:a5:ed:c8:ad:f2:11:7a:e9:c7:06:40:56:8f:02:f6:2d:05: 0c:73:c6:60:d6:eb:3a:6e:f6:e4:40:01:77:a9:b0:05:ec:9f: 00:ab:fe:a0:e8:0a:30:80:43:51:1a:58:45:4d:20:38:b4:1b: 07:99:02:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTlAI8z9FNPHQlGcjh+b7FevjVRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yNTA2MDIwMTU4MDhaFw0yNjA2MDEwMjAzMDhaMDMxMTAvBgNV BAMTKENFQzIwMUMzRkVFN0NCNEQ3QTkxNTRCRkE5RTU5OUFFNDRGNkQ5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgeADD5igp/6w7dZWaLR3wS8dt 5ryVl7h8CYMOkXF1dJUbIruF4JKCoSOMZ3cc1Cct5UkD5H9dHQYsA6MWnarqVAix OapdzM2chzeikvhGIugQawZTackpmcUyiGcWSMcJDzuwR7lfh9wiVBy/R3FKd7XE HV8yuMn60nEQArPBPTUFw7n3In4cgBUC9V+MEJws06Xc+X3Hj7A9ZDfZT4qOxJ3X N+pnU4yi4qenVTqjjpdp+ADSmJFV0D4CcYgsTP5vuM+hGhrG9rEyQZmezT1AWera wxJHOyaFCGYtfJwlK9VlZZdYkDmCjlrDSPhx6giSfccJrUlHYvwvijMGZNUlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzsIBw/7ny016kVS/qeWZrkT22fYwHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMcwDQYJ KoZIhvcNAQELBQADggEBAKm8K+k9Cd2j9qhegcfxkBbhWqB/q8tTJekRc+0TE4Ot qwJFj8Xqwr+5qcGjN7sT2Z3S0jiEvVNCPgtxHVo1b/ZbvlJYfMLehKLERUIl28Eg qh0tY1e96RQBd9ttBwxUhdQyrX5czodazRTbJwxez+HKbm2bSKxUD3KG4WKXZKfH OQO1r0xPWJmVh8su//AXIg0GBXdkpu5SxXExM+MUtI6FI7DE25+J5x3SLan2GYBe UH2DGeWaRTHxUqgyBLAXQP/e4JRgyeil7cit8hF66ccGQFaPAvYtBQxzxmDW6zpu 9uRAAXepsAXsnwCr/qDoCjCAQ1EaWEVNIDi0GweZAn8= -----END CERTIFICATE-----Generated at Sat Jun 7 15:35:20 2025 by rpki-client