$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232332e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232332e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: IzC9oagOHS4dTtSBILXnwVll7fkLpQc9RpoCIiKjX8I= Subject key identifier: BB:A5:B7:38:F9:A3:09:B3:D8:E7:37:18:37:3F:56:63:63:56:F5:1D Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 417F46A2B89ACE8D59F850D4157E265BD54E3C44 Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232332e302f32342d3234203d3e20313338303632.roa Signing time: Mon 02 Jun 2025 01:02:58 +0000 ROA not before: Mon 02 Jun 2025 00:57:58 +0000 ROA not after: Mon 01 Jun 2026 01:02:58 +0000 asID: 138062 IP address blocks: 103.129.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7f:46:a2:b8:9a:ce:8d:59:f8:50:d4:15:7e:26:5b:d5:4e:3c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jun 2 00:57:58 2025 GMT Not After : Jun 1 01:02:58 2026 GMT Subject: CN=BBA5B738F9A309B3D8E73718373F56636356F51D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:c1:1e:da:e9:ec:04:3d:40:c3:fb:40:bb: 4c:35:45:24:36:81:c9:9a:10:5b:7d:cb:a2:f1:03: 45:b2:59:42:7e:6b:00:a7:ef:ce:56:c3:ff:32:1d: 71:5a:38:f8:20:9b:6c:d6:2f:2b:d6:06:9d:93:a1: 61:d8:e7:a2:d4:23:3e:75:73:e5:f2:b2:bc:6b:5a: fa:fe:7e:0e:86:2c:84:bd:89:19:82:f2:26:76:a6: f9:66:67:57:4f:e4:5d:2a:1b:d9:a2:6f:98:f5:b4: c4:48:f1:ab:e7:b2:4c:75:13:96:56:60:79:fe:f8: 7a:63:f5:59:08:90:24:42:38:c6:03:ce:cb:04:fe: 0a:5f:0f:60:06:80:c4:b5:11:71:99:34:e5:87:80: 01:31:ae:b6:2c:a5:e2:57:f3:5d:5e:d3:5e:f9:0e: 7e:13:9c:61:39:39:42:c7:2e:44:be:b9:8e:fe:70: 7a:bf:6f:bf:04:5e:1e:38:31:d0:7c:ab:a0:d2:5c: 08:47:7a:01:a6:58:22:76:69:97:27:34:d5:1b:ba: d8:ce:f8:8d:de:c8:69:31:01:82:dc:f2:c9:60:86: f9:0f:1b:06:a7:af:75:25:16:38:24:c5:f6:83:da: f1:0c:31:c9:be:07:69:29:da:67:6f:79:bf:47:fe: 72:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A5:B7:38:F9:A3:09:B3:D8:E7:37:18:37:3F:56:63:63:56:F5:1D X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232332e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.223.0/24 Signature Algorithm: sha256WithRSAEncryption 16:e5:ef:2c:4b:74:db:aa:29:2e:ba:c0:08:c7:97:3c:45:cf: e6:33:49:dd:45:72:bc:1f:3e:50:83:8c:6a:ba:fd:e0:6b:76: ce:da:3b:ff:47:09:7a:ef:80:d8:6f:28:ab:3a:d0:1d:7d:55: a7:4a:cd:36:27:0d:5f:0a:0b:31:4d:ca:69:b8:ec:55:9c:fa: ed:4b:a3:58:0a:68:0c:4b:85:71:7e:61:00:e9:35:ea:80:55: a1:2c:35:58:c7:2b:82:4e:1e:b4:f3:af:12:b0:7b:37:b7:c4: 1b:36:79:36:82:89:89:94:64:c4:c8:61:81:d3:f0:36:3d:3c: 5b:0b:97:51:9b:3d:28:c7:42:53:bb:b7:93:37:e7:f4:af:fa: b2:9f:cb:8b:e2:9e:05:eb:47:7d:89:24:8c:32:50:01:81:12: c2:00:c2:6a:da:3a:f2:d1:0b:10:43:f5:91:cc:38:f7:6c:35: 6f:9c:3c:6e:42:b9:6f:9d:70:12:98:0e:ab:a3:28:b5:ad:1f: a0:8e:eb:5c:32:32:ce:86:55:e1:2e:10:24:c4:6e:61:07:93: 87:5c:69:06:80:f8:db:0c:95:63:35:a6:a7:e9:69:57:2c:37: 20:f5:21:49:d1:1d:f9:64:15:49:0e:28:94:42:ab:95:88:8d: c7:80:19:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQX9Goriazo1Z+FDUFX4mW9VOPEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yNTA2MDIwMDU3NThaFw0yNjA2MDEwMTAyNThaMDMxMTAvBgNV BAMTKEJCQTVCNzM4RjlBMzA5QjNEOEU3MzcxODM3M0Y1NjYzNjM1NkY1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2tMEe2unsBD1Aw/tAu0w1RSQ2 gcmaEFt9y6LxA0WyWUJ+awCn785Ww/8yHXFaOPggm2zWLyvWBp2ToWHY56LUIz51 c+XysrxrWvr+fg6GLIS9iRmC8iZ2pvlmZ1dP5F0qG9mib5j1tMRI8avnskx1E5ZW YHn++Hpj9VkIkCRCOMYDzssE/gpfD2AGgMS1EXGZNOWHgAExrrYspeJX811e0175 Dn4TnGE5OULHLkS+uY7+cHq/b78EXh44MdB8q6DSXAhHegGmWCJ2aZcnNNUbutjO +I3eyGkxAYLc8slghvkPGwanr3UlFjgkxfaD2vEMMcm+B2kp2mdveb9H/nLjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUu6W3OPmjCbPY5zcYNz9WY2NW9R0wHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngd8wDQYJ KoZIhvcNAQELBQADggEBABbl7yxLdNuqKS66wAjHlzxFz+YzSd1FcrwfPlCDjGq6 /eBrds7aO/9HCXrvgNhvKKs60B19VadKzTYnDV8KCzFNymm47FWc+u1Lo1gKaAxL hXF+YQDpNeqAVaEsNVjHK4JOHrTzrxKweze3xBs2eTaCiYmUZMTIYYHT8DY9PFsL l1GbPSjHQlO7t5M35/Sv+rKfy4vingXrR32JJIwyUAGBEsIAwmraOvLRCxBD9ZHM OPdsNW+cPG5CuW+dcBKYDqujKLWtH6CO61wyMs6GVeEuECTEbmEHk4dcaQaA+NsM lWM1pqfpaVcsNyD1IUnRHflkFUkOKJRCq5WIjceAGeg= -----END CERTIFICATE-----Generated at Sun Jun 8 17:02:09 2025 by rpki-client