$ rpki-client -vvf repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa File: 3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: e/+fdrBlXeDfzPxhtNh66HWs6aVcjxIjkZ4W4qgvVgQ= Subject key identifier: 28:87:2C:FB:6F:94:16:90:C0:15:35:8F:BE:75:42:E9:CA:B5:AB:91 Certificate issuer: /CN=C740DD931883C284135261B25A6958E80CDF63D2 Certificate serial: 2CC3DBAE38280DCEC6C7B98B465FEC8DA2BED616 Authority key identifier: C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa Signing time: Wed 26 Mar 2025 06:00:00 +0000 ROA not before: Wed 26 Mar 2025 05:55:00 +0000 ROA not after: Wed 25 Mar 2026 06:00:00 +0000 asID: 135636 IP address blocks: 103.139.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 18:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c3:db:ae:38:28:0d:ce:c6:c7:b9:8b:46:5f:ec:8d:a2:be:d6:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C740DD931883C284135261B25A6958E80CDF63D2 Validity Not Before: Mar 26 05:55:00 2025 GMT Not After : Mar 25 06:00:00 2026 GMT Subject: CN=28872CFB6F941690C015358FBE7542E9CAB5AB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:00:f3:1f:7a:e6:0c:c6:ef:f4:10:91:de:d0: d1:ac:9a:f2:db:07:b3:a2:ce:e8:5a:94:11:3b:a9: 12:97:19:b9:e1:9e:f2:5d:2c:02:ab:f3:3b:1a:0b: 08:2f:a1:a2:f0:48:d3:17:8b:1d:0f:1f:95:77:3d: 1c:2e:84:eb:7d:17:2b:b8:6c:c6:a1:cf:73:49:3c: f5:ed:ad:82:a1:d1:c5:ac:07:11:a2:1c:01:67:69: 9c:a0:db:8e:c5:d5:80:3c:59:98:14:9e:cb:ed:e9: 9d:4e:f0:14:64:9c:5c:74:21:25:e6:2e:db:5e:2f: cd:05:33:0c:aa:b9:09:0a:c7:5a:4a:68:cb:b2:bd: 1c:e9:e8:9c:d9:65:d3:6a:d4:14:96:67:b9:4d:bc: 0a:ad:bf:5f:8d:c6:45:41:38:9b:42:c5:ef:fd:6b: a1:ab:75:26:41:3f:44:45:a1:66:c0:76:25:12:32: 7d:29:37:fb:2a:3a:19:c4:e9:f5:84:71:91:e6:40: 1e:7f:70:d4:80:c6:5d:ad:69:4b:e2:a5:c3:df:f6: 95:84:b9:2f:3b:81:49:45:df:d0:3b:cd:36:ea:3c: 0b:58:c4:5b:76:42:c4:fe:6a:6d:b2:4f:d6:3f:52: 25:df:3a:6b:d6:ab:d2:ec:d1:23:17:19:eb:4c:5b: 08:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:87:2C:FB:6F:94:16:90:C0:15:35:8F:BE:75:42:E9:CA:B5:AB:91 X509v3 Authority Key Identifier: keyid:C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.121.0/24 Signature Algorithm: sha256WithRSAEncryption 00:15:e2:d1:ab:5c:c8:70:b2:e9:db:eb:c1:24:a0:fc:00:80: 63:1a:d0:16:e9:eb:50:78:37:ff:14:d4:98:7d:30:0f:05:d1: 78:a1:e2:27:55:6e:5f:aa:13:db:75:d1:63:fb:df:98:b0:13: cc:51:a4:73:d3:e3:a0:20:54:4c:ff:97:76:65:81:00:62:b3: cc:91:db:a9:ad:b0:3c:20:71:72:34:ab:d6:d8:6e:71:f4:72: 88:67:6d:07:c8:42:4f:06:c5:7b:32:e1:55:b2:f6:4f:78:6c: 0b:08:26:39:c1:fd:b3:51:43:d9:62:20:2e:d3:e3:e9:81:6a: d5:08:36:19:f0:6a:db:97:43:c1:36:32:7f:48:8d:3d:2d:f5: 0b:04:b0:12:11:6b:fe:25:31:f3:0d:ec:b7:31:aa:6a:fd:58: c2:13:ea:03:30:c1:48:bf:28:b4:b7:7c:27:a1:b3:74:96:0d: 36:72:2f:de:4f:ff:42:b4:ab:49:70:4c:c1:d9:03:ab:92:c9: a9:e1:73:da:5f:42:34:31:c7:35:82:5f:73:f2:ff:a3:18:59: f8:46:cc:16:32:e1:90:cf:12:a1:50:2d:3a:98:10:90:96:e1: 31:f9:72:6f:ef:23:12:65:4a:93:78:af:e2:b0:53:2f:bb:5f: 70:7c:58:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULMPbrjgoDc7Gx7mLRl/sjaK+1hYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgw Q0RGNjNEMjAeFw0yNTAzMjYwNTU1MDBaFw0yNjAzMjUwNjAwMDBaMDMxMTAvBgNV BAMTKDI4ODcyQ0ZCNkY5NDE2OTBDMDE1MzU4RkJFNzU0MkU5Q0FCNUFCOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6APMfeuYMxu/0EJHe0NGsmvLb B7OizuhalBE7qRKXGbnhnvJdLAKr8zsaCwgvoaLwSNMXix0PH5V3PRwuhOt9Fyu4 bMahz3NJPPXtrYKh0cWsBxGiHAFnaZyg247F1YA8WZgUnsvt6Z1O8BRknFx0ISXm LtteL80FMwyquQkKx1pKaMuyvRzp6JzZZdNq1BSWZ7lNvAqtv1+NxkVBOJtCxe/9 a6GrdSZBP0RFoWbAdiUSMn0pN/sqOhnE6fWEcZHmQB5/cNSAxl2taUvipcPf9pWE uS87gUlF39A7zTbqPAtYxFt2QsT+am2yT9Y/UiXfOmvWq9Ls0SMXGetMWwizAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKIcs+2+UFpDAFTWPvnVC6cq1q5EwHwYDVR0j BBgwFoAUx0DdkxiDwoQTUmGyWmlY6AzfY9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDcxNDY2NS1jNjcwLTQ1MWUtYmRjYi05MDc0MjE5ZDU1Y2UvMC9DNzQwREQ5MzE4 ODNDMjg0MTM1MjYxQjI1QTY5NThFODBDREY2M0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgwQ0RG NjNEMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0NzE0NjY1LWM2NzAtNDUxZS1i ZGNiLTkwNzQyMTlkNTVjZS8wLzMxMzAzMzJlMzEzMzM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNjMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni3kwDQYJ KoZIhvcNAQELBQADggEBAAAV4tGrXMhwsunb68EkoPwAgGMa0Bbp61B4N/8U1Jh9 MA8F0Xih4idVbl+qE9t10WP735iwE8xRpHPT46AgVEz/l3ZlgQBis8yR26mtsDwg cXI0q9bYbnH0cohnbQfIQk8GxXsy4VWy9k94bAsIJjnB/bNRQ9liIC7T4+mBatUI NhnwatuXQ8E2Mn9IjT0t9QsEsBIRa/4lMfMN7Lcxqmr9WMIT6gMwwUi/KLS3fCeh s3SWDTZyL95P/0K0q0lwTMHZA6uSyanhc9pfQjQxxzWCX3Py/6MYWfhGzBYy4ZDP EqFQLTqYEJCW4TH5cm/vIxJlSpN4r+KwUy+7X3B8WOE= -----END CERTIFICATE-----Generated at Sun Apr 6 23:35:12 2025 by rpki-client