$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: miixVejqadzJoJUmMD6XBggcBXEaUqaEEMBzMvAqTNc= Subject key identifier: 8D:A3:8F:44:12:3C:BE:76:81:EC:1D:74:77:12:41:C4:F9:A4:07:8B Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 34949E8171209F68D81DDF3F0910E804B3B1DB14 Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa Signing time: Mon 02 Jun 2025 01:02:57 +0000 ROA not before: Mon 02 Jun 2025 00:57:57 +0000 ROA not after: Mon 01 Jun 2026 01:02:57 +0000 asID: 138062 IP address blocks: 103.129.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:94:9e:81:71:20:9f:68:d8:1d:df:3f:09:10:e8:04:b3:b1:db:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jun 2 00:57:57 2025 GMT Not After : Jun 1 01:02:57 2026 GMT Subject: CN=8DA38F44123CBE7681EC1D74771241C4F9A4078B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:74:77:43:5d:a6:e5:e7:da:04:bd:4d:11:81: 80:9b:25:0a:c7:81:4a:ae:2d:9a:07:27:12:16:fd: 3c:d4:36:54:2f:2a:6a:27:b1:f7:55:0f:64:8f:33: 46:29:a3:93:f9:d2:04:84:66:1a:73:7c:ef:38:a6: e4:e6:bb:e8:2e:e1:64:c9:21:a3:db:2e:11:0f:f0: 92:59:42:d5:c5:94:dd:39:90:54:6f:17:d8:83:2a: 2a:55:a2:a6:6e:04:c7:11:cc:72:34:66:72:6b:59: ed:b1:74:e9:d5:1c:84:fd:67:6e:cc:f6:8c:c8:bd: c1:e2:85:ed:78:e6:b5:e8:be:22:23:00:77:ae:88: 66:a5:5f:20:71:9a:16:60:9a:ab:96:ff:bd:6e:fb: c5:e1:07:83:f6:72:5d:78:fb:ba:ba:9a:7d:2c:f1: 1c:00:ce:62:5e:c4:f9:c6:c3:e2:44:d4:0b:ab:6d: f0:48:c9:b0:81:25:53:09:13:4c:32:1f:99:ed:5e: 36:2d:73:69:74:b4:6b:34:63:7b:1e:1c:e9:85:f5: ca:2a:07:a8:e4:86:f4:25:0c:2b:f3:c7:61:d5:32: 77:84:94:67:e6:26:39:5a:f2:db:75:b4:1b:73:9c: 59:e6:73:c6:ca:c3:26:ea:2e:de:c1:03:18:0e:dc: 02:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A3:8F:44:12:3C:BE:76:81:EC:1D:74:77:12:41:C4:F9:A4:07:8B X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232322e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.222.0/24 Signature Algorithm: sha256WithRSAEncryption 19:b9:44:07:29:b5:17:75:82:36:fc:55:14:15:32:22:f2:5f: 48:f2:33:34:08:63:f9:62:3a:a1:04:fb:14:7b:86:1f:f5:ec: 29:68:2c:0c:ee:b2:b2:39:81:2d:98:bd:56:b3:d3:5a:20:cc: 91:8c:16:e7:1b:2f:07:41:c3:dc:61:30:2e:77:63:00:1e:8f: 64:f3:65:48:40:d6:a1:40:19:86:04:57:9e:9e:c1:41:18:4a: 9c:08:88:61:8f:f1:be:1e:af:6a:ca:b1:99:3a:91:fa:a5:0c: e1:7b:ea:cd:cd:0c:34:a1:07:ec:87:67:88:1e:38:05:2e:6d: 1c:30:0e:9e:d4:26:34:d4:71:05:e5:db:24:db:29:f8:53:b1: 8d:8f:5f:fd:95:37:2c:9c:36:fc:e5:e9:97:84:00:ea:fc:a9: 34:38:82:96:a4:15:2e:d7:ff:15:28:06:3a:85:94:3b:1a:42: fe:2f:b9:00:03:eb:7a:86:f9:09:88:83:7a:ad:37:75:b5:d1: f0:ab:5d:6a:61:ca:50:a4:38:8e:a2:d7:35:ec:26:60:c5:30: 4a:ec:33:2d:5c:0c:0f:53:7a:62:f9:ee:9c:75:b3:69:5b:0a: 87:c4:c0:fd:23:da:d9:29:eb:42:51:64:66:f5:82:9f:65:4f: 23:d4:5c:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNJSegXEgn2jYHd8/CRDoBLOx2xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yNTA2MDIwMDU3NTdaFw0yNjA2MDEwMTAyNTdaMDMxMTAvBgNV BAMTKDhEQTM4RjQ0MTIzQ0JFNzY4MUVDMUQ3NDc3MTI0MUM0RjlBNDA3OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsdHdDXabl59oEvU0RgYCbJQrH gUquLZoHJxIW/TzUNlQvKmonsfdVD2SPM0Ypo5P50gSEZhpzfO84puTmu+gu4WTJ IaPbLhEP8JJZQtXFlN05kFRvF9iDKipVoqZuBMcRzHI0ZnJrWe2xdOnVHIT9Z27M 9ozIvcHihe145rXoviIjAHeuiGalXyBxmhZgmquW/71u+8XhB4P2cl14+7q6mn0s 8RwAzmJexPnGw+JE1AurbfBIybCBJVMJE0wyH5ntXjYtc2l0tGs0Y3seHOmF9coq B6jkhvQlDCvzx2HVMneElGfmJjla8tt1tBtznFnmc8bKwybqLt7BAxgO3ALfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjaOPRBI8vnaB7B10dxJBxPmkB4swHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngd4wDQYJ KoZIhvcNAQELBQADggEBABm5RAcptRd1gjb8VRQVMiLyX0jyMzQIY/liOqEE+xR7 hh/17CloLAzusrI5gS2YvVaz01ogzJGMFucbLwdBw9xhMC53YwAej2TzZUhA1qFA GYYEV56ewUEYSpwIiGGP8b4er2rKsZk6kfqlDOF76s3NDDShB+yHZ4geOAUubRww Dp7UJjTUcQXl2yTbKfhTsY2PX/2VNyycNvzl6ZeEAOr8qTQ4gpakFS7X/xUoBjqF lDsaQv4vuQAD63qG+QmIg3qtN3W10fCrXWphylCkOI6i1zXsJmDFMErsMy1cDA9T emL57px1s2lbCofEwP0j2tkp60JRZGb1gp9lTyPUXJA= -----END CERTIFICATE-----Generated at Sat Jun 7 17:59:37 2025 by rpki-client