$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: Mn5S3vv0y8H86n0LvhDe7TG0qE+zI4uaMffW/k9fqwM= Subject key identifier: C4:0C:6A:07:73:10:EE:D1:18:B3:69:55:A5:DE:F0:F4:34:35:D6:3A Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 3C92A1928026655BC6E151207FF4513102502821 Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa Signing time: Mon 02 Jun 2025 01:02:57 +0000 ROA not before: Mon 02 Jun 2025 00:57:57 +0000 ROA not after: Mon 01 Jun 2026 01:02:57 +0000 asID: 138062 IP address blocks: 103.129.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:92:a1:92:80:26:65:5b:c6:e1:51:20:7f:f4:51:31:02:50:28:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jun 2 00:57:57 2025 GMT Not After : Jun 1 01:02:57 2026 GMT Subject: CN=C40C6A077310EED118B36955A5DEF0F43435D63A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e2:a0:1f:24:2c:89:78:fa:ae:ea:2f:26:16: 21:6b:ff:f0:af:45:1f:38:05:27:f9:78:88:ea:51: 84:b3:ba:4e:eb:bc:42:6e:31:bb:4a:00:f9:f0:f3: e9:68:d1:a5:da:a4:16:c6:6d:d1:f1:82:60:50:39: 5b:f3:b9:57:52:5b:e8:fe:ec:58:4b:21:71:f9:8d: 38:3d:ec:98:55:f0:7d:fe:10:a6:2f:e1:65:88:11: 41:0c:f4:94:43:88:e0:cf:06:3b:50:fa:84:c5:67: 80:4c:35:81:d6:08:3b:fc:93:5d:b6:d4:d6:22:ee: 74:1b:bc:2f:3f:65:96:72:c8:2a:92:b6:31:d5:3f: d1:8b:c7:86:ff:2f:23:ca:62:19:39:17:d3:64:83: 33:b4:a7:34:eb:f4:9a:43:33:a6:e4:d5:86:a0:70: 9f:3b:10:c7:34:d3:ac:91:af:42:d5:af:ab:5a:01: ee:f6:e9:1e:f6:95:eb:e0:bb:5d:48:5a:d9:a4:db: 6b:08:b4:ee:93:d3:c6:37:61:d6:b9:9f:de:2e:9b: 1a:60:3c:38:8e:58:e3:16:b5:f2:10:83:81:12:e4: 01:61:22:d0:f4:dc:ed:2d:09:71:7a:46:aa:b9:49: f3:3d:6d:51:64:d8:f9:f0:02:bc:8c:d2:8e:c8:bf: d6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0C:6A:07:73:10:EE:D1:18:B3:69:55:A5:DE:F0:F4:34:35:D6:3A X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232302e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.220.0/24 Signature Algorithm: sha256WithRSAEncryption 35:49:fd:ae:a9:c5:3a:04:9e:57:3f:93:f4:33:75:8d:45:62: 1d:8b:d7:0f:4f:a3:43:e3:91:72:db:f7:6d:57:b6:b8:d1:65: 9d:e0:53:8b:93:7a:67:ac:cf:35:3d:cd:8a:44:84:f1:98:a1: 2f:81:91:ef:d6:97:25:86:bf:de:3a:f4:b6:72:46:8f:1b:b6: 9c:cc:67:22:60:51:66:bd:f9:27:a6:d4:9a:40:97:51:9d:74: 10:86:a7:13:95:ee:bb:ad:74:5f:ef:31:b3:e6:f1:44:d0:74: f3:35:2d:1b:35:b8:9b:be:95:93:c1:0c:07:18:77:af:d0:df: f7:6d:2b:20:e5:91:db:ee:c4:ef:9d:75:ed:2a:17:f5:b0:9e: be:38:52:ab:e9:ac:ce:fa:01:c4:e4:ed:ca:8a:a3:cc:a7:d2: c7:0d:d5:ff:1e:6d:a8:fc:dc:b4:f8:b1:79:3a:36:e2:a0:b6: b1:43:a1:e1:9e:37:91:87:11:fc:16:0c:dc:a9:af:ba:ff:5e: 42:cd:65:b9:6f:3d:4c:46:97:e3:8a:05:bd:5e:c2:f9:a3:e5: 5d:97:90:9a:03:dc:18:9e:24:8f:91:1c:56:19:c5:ea:cb:16: a8:d9:c8:46:22:a8:14:0a:52:23:22:c8:17:86:f0:32:69:04: 11:b2:b0:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPJKhkoAmZVvG4VEgf/RRMQJQKCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yNTA2MDIwMDU3NTdaFw0yNjA2MDEwMTAyNTdaMDMxMTAvBgNV BAMTKEM0MEM2QTA3NzMxMEVFRDExOEIzNjk1NUE1REVGMEY0MzQzNUQ2M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY4qAfJCyJePqu6i8mFiFr//Cv RR84BSf5eIjqUYSzuk7rvEJuMbtKAPnw8+lo0aXapBbGbdHxgmBQOVvzuVdSW+j+ 7FhLIXH5jTg97JhV8H3+EKYv4WWIEUEM9JRDiODPBjtQ+oTFZ4BMNYHWCDv8k122 1NYi7nQbvC8/ZZZyyCqStjHVP9GLx4b/LyPKYhk5F9NkgzO0pzTr9JpDM6bk1Yag cJ87EMc006yRr0LVr6taAe726R72levgu11IWtmk22sItO6T08Y3Yda5n94umxpg PDiOWOMWtfIQg4ES5AFhItD03O0tCXF6Rqq5SfM9bVFk2PnwAryM0o7Iv9Z9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxAxqB3MQ7tEYs2lVpd7w9DQ11jowHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngdwwDQYJ KoZIhvcNAQELBQADggEBADVJ/a6pxToEnlc/k/QzdY1FYh2L1w9Po0PjkXLb921X trjRZZ3gU4uTemeszzU9zYpEhPGYoS+Bke/WlyWGv9469LZyRo8btpzMZyJgUWa9 +Sem1JpAl1GddBCGpxOV7rutdF/vMbPm8UTQdPM1LRs1uJu+lZPBDAcYd6/Q3/dt KyDlkdvuxO+dde0qF/Wwnr44UqvprM76AcTk7cqKo8yn0scN1f8ebaj83LT4sXk6 NuKgtrFDoeGeN5GHEfwWDNypr7r/XkLNZblvPUxGl+OKBb1ewvmj5V2XkJoD3Bie JI+RHFYZxerLFqjZyEYiqBQKUiMiyBeG8DJpBBGysCo= -----END CERTIFICATE-----Generated at Sat Jun 7 17:58:23 2025 by rpki-client