$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa File: 3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa (raw, json) Hash identifier: ilMD0aviEA5kSo/dnNu6/R96mI+Z9NJcdnN/AEMlT/M= Subject key identifier: 6C:D4:08:0F:1F:9D:7F:D6:30:12:32:6D:DB:46:AD:4F:9E:B5:73:56 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 56058EF681702A94C7AE1D7889FB56D04DCEDA42 Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa Signing time: Fri 09 May 2025 09:00:52 +0000 ROA not before: Fri 09 May 2025 08:55:52 +0000 ROA not after: Fri 08 May 2026 09:00:52 +0000 asID: 142389 IP address blocks: 103.178.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:05:8e:f6:81:70:2a:94:c7:ae:1d:78:89:fb:56:d0:4d:ce:da:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: May 9 08:55:52 2025 GMT Not After : May 8 09:00:52 2026 GMT Subject: CN=6CD4080F1F9D7FD63012326DDB46AD4F9EB57356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2f:d0:8e:cc:c3:f0:2e:da:f3:1b:6b:7f:99: ae:3b:f0:d5:db:28:43:02:d0:5b:07:e3:7b:2f:45: 29:0c:12:60:7b:ae:ed:e3:84:01:6b:c0:c3:45:ce: e2:5b:32:62:18:43:d5:bb:40:16:34:fc:b6:ed:21: 59:17:db:7c:3c:ad:ac:df:2c:33:8f:d1:f8:ac:fa: b2:2a:a3:36:d5:e2:ae:0d:c7:05:46:4e:40:ce:ae: 91:ef:88:66:3b:b6:58:dd:f2:8a:9b:7b:30:53:60: 05:bf:d7:cb:99:ad:2f:dd:f8:03:20:24:f4:c3:92: 3b:3c:1f:4b:82:c5:97:8d:75:40:05:6a:2f:6a:c2: 71:fa:02:f5:63:36:4a:03:65:73:09:56:4a:ab:57: f8:4d:67:6d:d6:f0:5e:9a:92:29:66:35:83:a4:bc: 4b:69:ad:52:ed:de:ae:fe:76:b4:f1:d6:90:cc:3c: c9:d8:19:33:71:f9:be:a1:21:db:6f:4d:61:5f:4a: a6:56:17:8a:24:bb:59:a1:a3:a7:c2:3f:2b:1b:22: e6:24:d4:b9:46:6d:c4:a1:01:45:0b:6d:3d:1d:a0: 7c:e2:07:9e:0c:e9:ec:7a:cc:fa:27:17:2f:dc:bd: 5e:76:93:bc:41:5e:f2:34:69:11:a6:bc:17:b3:16: 2e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D4:08:0F:1F:9D:7F:D6:30:12:32:6D:DB:46:AD:4F:9E:B5:73:56 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.125.0/24 Signature Algorithm: sha256WithRSAEncryption bb:8d:2e:b2:41:f8:5f:c0:91:1b:81:6a:83:7a:a8:03:57:fe: a9:a8:0c:a5:ff:dc:79:af:b4:b4:1e:1e:63:88:6d:25:83:24: 91:0d:13:aa:91:17:8c:5a:a3:2d:d8:89:96:bf:ba:1c:dc:27: 8d:1c:ba:ac:41:bf:db:16:a5:64:65:75:f0:8e:9f:c2:71:61: 17:de:4a:d9:9c:4e:98:36:8e:09:fe:c7:31:51:48:70:22:88: f3:15:21:8e:9d:00:7a:f2:6f:c9:f9:98:e8:fc:8e:15:3a:54: cc:f8:ce:51:60:c9:17:35:ea:ab:a5:3c:a2:fc:89:2e:2e:a6: 8f:5b:2d:d1:23:31:17:d9:06:50:47:af:9e:c6:38:37:c4:5d: 93:46:13:06:18:b6:75:00:12:10:6e:cc:0a:39:c7:d7:6f:89: bf:f6:d8:31:77:91:5e:fe:d6:22:b2:77:d8:56:eb:d2:d6:70: 9b:c1:18:bb:62:ef:a3:6c:a3:15:40:48:7b:77:88:9b:d8:30: 17:f4:10:64:ae:6a:52:53:25:dd:7d:31:74:1a:c5:50:17:54: 51:ba:54:a4:4f:df:fe:45:de:b8:d0:aa:bf:32:e1:e3:77:45: c2:88:b8:2f:70:be:7b:6a:d6:f7:d8:b6:4f:2d:7a:9d:98:3a: db:f5:48:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVgWO9oFwKpTHrh14iftW0E3O2kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNTA1MDkwODU1NTJaFw0yNjA1MDgwOTAwNTJaMDMxMTAvBgNV BAMTKDZDRDQwODBGMUY5RDdGRDYzMDEyMzI2RERCNDZBRDRGOUVCNTczNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFL9COzMPwLtrzG2t/ma478NXb KEMC0FsH43svRSkMEmB7ru3jhAFrwMNFzuJbMmIYQ9W7QBY0/LbtIVkX23w8razf LDOP0fis+rIqozbV4q4NxwVGTkDOrpHviGY7tljd8oqbezBTYAW/18uZrS/d+AMg JPTDkjs8H0uCxZeNdUAFai9qwnH6AvVjNkoDZXMJVkqrV/hNZ23W8F6akilmNYOk vEtprVLt3q7+drTx1pDMPMnYGTNx+b6hIdtvTWFfSqZWF4oku1mho6fCPysbIuYk 1LlGbcShAUULbT0doHziB54M6ex6zPonFy/cvV52k7xBXvI0aRGmvBezFi4FAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbNQIDx+df9YwEjJt20atT561c1YwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMxMzAzMzJlMzEzNzM4MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsn0wDQYJ KoZIhvcNAQELBQADggEBALuNLrJB+F/AkRuBaoN6qANX/qmoDKX/3HmvtLQeHmOI bSWDJJENE6qRF4xaoy3YiZa/uhzcJ40cuqxBv9sWpWRldfCOn8JxYRfeStmcTpg2 jgn+xzFRSHAiiPMVIY6dAHryb8n5mOj8jhU6VMz4zlFgyRc16qulPKL8iS4upo9b LdEjMRfZBlBHr57GODfEXZNGEwYYtnUAEhBuzAo5x9dvib/22DF3kV7+1iKyd9hW 69LWcJvBGLti76NsoxVASHt3iJvYMBf0EGSualJTJd19MXQaxVAXVFG6VKRP3/5F 3rjQqr8y4eN3RcKIuC9wvntq1vfYtk8tep2YOtv1SKo= -----END CERTIFICATE-----Generated at Sat Jun 7 11:51:25 2025 by rpki-client