$ rpki-client -vvf repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3130332e3132342e3131322e302f32342d3234203d3e20313331313131.roa File: 3130332e3132342e3131322e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: xMhopN6RhUrQr0UoQBGVj4pnpruAcIyICHzqvwrwDho= Subject key identifier: 75:09:5C:3E:6B:FE:E4:98:E3:93:43:E6:C4:ED:B0:36:AA:32:C8:F3 Certificate issuer: /CN=3128E543B078826F9B4F23328CA84782DE7AAE6D Certificate serial: 7D77D1BCC6C3E3ECA11C814909DD344229D33712 Authority key identifier: 31:28:E5:43:B0:78:82:6F:9B:4F:23:32:8C:A8:47:82:DE:7A:AE:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3128E543B078826F9B4F23328CA84782DE7AAE6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3130332e3132342e3131322e302f32342d3234203d3e20313331313131.roa Signing time: Mon 02 Jun 2025 01:02:25 +0000 ROA not before: Mon 02 Jun 2025 00:57:25 +0000 ROA not after: Mon 01 Jun 2026 01:02:25 +0000 asID: 131111 IP address blocks: 103.124.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3128E543B078826F9B4F23328CA84782DE7AAE6D.crl rsync://repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3128E543B078826F9B4F23328CA84782DE7AAE6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3128E543B078826F9B4F23328CA84782DE7AAE6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:77:d1:bc:c6:c3:e3:ec:a1:1c:81:49:09:dd:34:42:29:d3:37:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3128E543B078826F9B4F23328CA84782DE7AAE6D Validity Not Before: Jun 2 00:57:25 2025 GMT Not After : Jun 1 01:02:25 2026 GMT Subject: CN=75095C3E6BFEE498E39343E6C4EDB036AA32C8F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a9:01:92:9d:c8:9a:30:2a:fe:2b:55:90:98: fb:9d:0a:e2:5a:26:91:9c:cc:05:e0:24:fe:62:f8: 1f:da:6f:ae:72:f0:12:fa:b2:73:b4:63:38:24:f9: 80:e5:e5:dc:bc:ee:fd:1d:e6:75:bf:58:4c:c7:d2: 45:e9:22:6a:5e:05:cf:df:bd:0c:2e:1e:31:18:fc: f5:3f:e0:29:e7:e9:66:dc:98:12:f4:fa:a6:d0:20: eb:d4:bc:fa:1a:1c:17:69:47:c0:8e:0b:1b:77:56: ff:05:30:2c:a9:39:e8:cc:23:34:e5:63:0d:e2:27: 14:66:6a:8a:0a:75:cc:e7:ae:86:51:99:83:6a:89: 60:90:77:77:41:20:50:be:bf:a3:83:c8:39:7d:44: dc:24:2e:9c:51:32:35:e3:cb:89:4b:21:0e:14:97: e8:77:9d:49:18:81:dd:d3:87:88:ff:c5:b9:08:07: 1d:88:fe:ee:66:68:3c:4b:3d:bd:5e:26:03:ce:51: 69:ee:ed:54:f6:5b:d2:88:4d:79:7c:19:83:cb:40: fd:f9:40:ac:d5:59:a9:9c:cb:45:73:8a:42:69:67: 71:4a:9b:14:30:c9:01:ba:7c:e6:bf:d3:be:87:b5: b2:0c:50:38:d1:04:2d:1e:46:0c:55:b9:49:5d:3f: 3f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:09:5C:3E:6B:FE:E4:98:E3:93:43:E6:C4:ED:B0:36:AA:32:C8:F3 X509v3 Authority Key Identifier: keyid:31:28:E5:43:B0:78:82:6F:9B:4F:23:32:8C:A8:47:82:DE:7A:AE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3128E543B078826F9B4F23328CA84782DE7AAE6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3128E543B078826F9B4F23328CA84782DE7AAE6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/747f8f44-277d-45e1-b213-05117fde3cb0/0/3130332e3132342e3131322e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.112.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:cc:70:89:42:c0:59:f0:18:6f:21:8a:06:09:ff:a6:db:10: 81:15:a4:df:67:0a:b9:28:1c:0f:6f:f3:06:ee:e2:a2:f3:3b: 16:87:9b:96:98:d0:1f:7b:7c:73:ad:42:1a:9a:2d:54:cd:c2: 5e:26:84:56:5e:c5:59:7a:1e:cb:3d:6d:1b:94:bf:76:c8:e8: 6d:e2:73:8d:1d:ae:92:23:fd:77:aa:32:b9:68:73:59:60:73: 1e:57:b3:d2:85:07:44:ff:02:89:23:80:32:53:9e:e3:e8:67: ff:52:b4:f1:38:e9:72:fa:98:d2:db:57:9a:c5:66:40:26:68: 28:fe:93:74:2b:8f:41:68:47:2d:20:57:1e:ca:03:38:57:d6: 65:ed:f3:33:da:e6:9b:4e:03:4c:90:31:fc:a4:6d:6f:46:32: c5:59:13:07:4e:9f:1e:eb:cf:eb:92:0c:83:e7:5d:59:10:fd: 3e:98:8c:78:49:81:89:b2:db:6e:34:dc:8b:2e:34:a1:7f:31: c1:72:e7:e1:36:8b:e2:7b:4b:59:3e:27:d1:2e:63:8a:fc:71: b1:dd:8f:9d:e4:27:4e:85:10:e4:62:8a:49:a8:73:8a:c3:a0: f2:3e:63:c6:b6:66:0e:4e:56:14:59:ad:91:2c:b5:47:5d:24: 12:69:4e:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfXfRvMbD4+yhHIFJCd00QinTNxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzEyOEU1NDNCMDc4ODI2RjlCNEYyMzMyOENBODQ3ODJE RTdBQUU2RDAeFw0yNTA2MDIwMDU3MjVaFw0yNjA2MDEwMTAyMjVaMDMxMTAvBgNV BAMTKDc1MDk1QzNFNkJGRUU0OThFMzkzNDNFNkM0RURCMDM2QUEzMkM4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpqQGSnciaMCr+K1WQmPudCuJa JpGczAXgJP5i+B/ab65y8BL6snO0Yzgk+YDl5dy87v0d5nW/WEzH0kXpImpeBc/f vQwuHjEY/PU/4Cnn6WbcmBL0+qbQIOvUvPoaHBdpR8COCxt3Vv8FMCypOejMIzTl Yw3iJxRmaooKdcznroZRmYNqiWCQd3dBIFC+v6ODyDl9RNwkLpxRMjXjy4lLIQ4U l+h3nUkYgd3Th4j/xbkIBx2I/u5maDxLPb1eJgPOUWnu7VT2W9KITXl8GYPLQP35 QKzVWamcy0VzikJpZ3FKmxQwyQG6fOa/076HtbIMUDjRBC0eRgxVuUldPz/ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdQlcPmv+5Jjjk0PmxO2wNqoyyPMwHwYDVR0j BBgwFoAUMSjlQ7B4gm+bTyMyjKhHgt56rm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDdmOGY0NC0yNzdkLTQ1ZTEtYjIxMy0wNTExN2ZkZTNjYjAvMC8zMTI4RTU0M0Iw Nzg4MjZGOUI0RjIzMzI4Q0E4NDc4MkRFN0FBRTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzEyOEU1NDNCMDc4ODI2RjlCNEYyMzMyOENBODQ3ODJERTdB QUU2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0N2Y4ZjQ0LTI3N2QtNDVlMS1i MjEzLTA1MTE3ZmRlM2NiMC8wLzMxMzAzMzJlMzEzMjM0MmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfHAwDQYJ KoZIhvcNAQELBQADggEBAErMcIlCwFnwGG8higYJ/6bbEIEVpN9nCrkoHA9v8wbu 4qLzOxaHm5aY0B97fHOtQhqaLVTNwl4mhFZexVl6Hss9bRuUv3bI6G3ic40drpIj /XeqMrloc1lgcx5Xs9KFB0T/AokjgDJTnuPoZ/9StPE46XL6mNLbV5rFZkAmaCj+ k3Qrj0FoRy0gVx7KAzhX1mXt8zPa5ptOA0yQMfykbW9GMsVZEwdOnx7rz+uSDIPn XVkQ/T6YjHhJgYmy22403IsuNKF/McFy5+E2i+J7S1k+J9EuY4r8cbHdj53kJ06F EORiikmoc4rDoPI+Y8a2Zg5OVhRZrZEstUddJBJpTqM= -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:53 2025 by rpki-client