$ rpki-client -vvf repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa File: 3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa (raw, json) Hash identifier: q9pcjfkInqPcGghxGeh0wF/8x9n+wp0JshUKi76J40w= Subject key identifier: EF:11:A9:E8:B3:F1:DE:83:AE:79:AC:0E:5D:78:EC:24:20:91:2C:55 Certificate issuer: /CN=977EA5118551E98AEAA8BB11C9D99D7196D3DEBA Certificate serial: 3019DBAC1B641035D239971D93B22737B9E60B38 Authority key identifier: 97:7E:A5:11:85:51:E9:8A:EA:A8:BB:11:C9:D9:9D:71:96:D3:DE:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa Signing time: Mon 02 Jun 2025 02:04:43 +0000 ROA not before: Mon 02 Jun 2025 01:59:43 +0000 ROA not after: Mon 01 Jun 2026 02:04:43 +0000 asID: 138066 IP address blocks: 103.123.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.crl rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:19:db:ac:1b:64:10:35:d2:39:97:1d:93:b2:27:37:b9:e6:0b:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977EA5118551E98AEAA8BB11C9D99D7196D3DEBA Validity Not Before: Jun 2 01:59:43 2025 GMT Not After : Jun 1 02:04:43 2026 GMT Subject: CN=EF11A9E8B3F1DE83AE79AC0E5D78EC2420912C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cb:83:b9:02:8e:19:8d:17:69:64:57:40:5d: 87:03:73:b1:c7:5f:49:4c:f3:d7:b9:18:2b:41:e5: cd:9d:8e:b2:4e:32:2f:98:bd:92:e1:ba:30:55:78: b0:e1:cd:6c:ce:cf:d5:09:00:d3:dc:25:ce:be:d1: f4:90:5f:e0:e3:84:03:8a:85:8c:ba:23:3b:af:25: 6f:b9:5f:3a:e8:86:32:3b:33:4d:ae:f3:ab:d9:41: 05:05:8c:e8:c7:88:07:cd:21:10:3e:75:42:dd:26: ca:65:a0:64:1e:8d:0c:84:e7:7c:18:0b:80:50:d4: 8a:34:09:33:e7:4d:4b:99:c5:2a:58:c5:36:4a:23: 8b:df:e7:f7:e1:32:a3:26:10:f0:a5:e5:84:ea:96: d9:58:26:7e:b5:f4:c1:d1:3c:e6:e3:3a:8d:f5:7f: c9:f9:67:38:17:94:40:d0:54:98:00:53:a7:3e:3c: db:cb:6f:58:df:1a:92:91:97:84:69:b3:e3:96:0e: 02:4a:5c:ff:f3:3b:78:ac:92:a3:89:f1:41:ca:db: 96:29:b0:e4:f2:f1:1b:f3:74:68:f7:0c:e1:dc:ec: 13:87:6e:11:b5:eb:96:b0:3e:eb:59:55:aa:64:b1: a4:04:a8:df:99:82:26:59:49:35:b2:da:7a:95:60: c8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:11:A9:E8:B3:F1:DE:83:AE:79:AC:0E:5D:78:EC:24:20:91:2C:55 X509v3 Authority Key Identifier: keyid:97:7E:A5:11:85:51:E9:8A:EA:A8:BB:11:C9:D9:9D:71:96:D3:DE:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.108.0/24 Signature Algorithm: sha256WithRSAEncryption eb:4b:98:a2:aa:b4:9f:7b:a5:cf:55:0e:cf:bd:f3:d3:99:96: da:66:9c:39:e5:1a:45:08:39:bf:d1:72:e1:dd:b7:21:13:38: 47:85:aa:26:37:0c:94:54:42:cf:94:7c:cc:d2:eb:b8:40:0f: 6b:ef:3e:ae:7e:87:73:5d:00:17:d9:51:72:59:b3:e0:0c:4b: 47:ef:2d:f4:59:12:3b:f6:e0:be:5c:2a:90:2d:b4:c3:4f:26: 21:16:7f:a6:a0:ba:49:5f:94:09:ef:91:b5:12:e7:e3:37:6e: e0:80:0b:85:cf:aa:55:58:cd:a0:70:b7:3e:3a:d9:f0:d4:e1: e0:eb:85:20:3f:2b:56:9d:c6:4d:33:5b:a1:bd:e7:2c:c3:20: ed:d0:56:b6:b5:f6:69:45:0c:de:a6:ee:2f:1b:96:de:fb:61: cd:f6:98:cf:bd:9f:87:1c:c3:6d:48:d0:a2:08:27:19:28:2c: 17:87:7a:12:e7:05:a4:28:63:a5:cc:a2:d1:05:fc:6c:5e:72: ac:ae:95:91:0f:56:94:63:73:e3:16:14:6f:73:27:d3:25:c4: ac:e5:a8:bb:17:cc:9d:5b:27:24:03:68:66:9c:d8:f6:07:10: 04:31:99:ab:52:28:a8:7f:fb:f3:93:5c:19:f7:29:6e:40:3b: 88:41:f1:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMBnbrBtkEDXSOZcdk7InN7nmCzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc3RUE1MTE4NTUxRTk4QUVBQThCQjExQzlEOTlENzE5 NkQzREVCQTAeFw0yNTA2MDIwMTU5NDNaFw0yNjA2MDEwMjA0NDNaMDMxMTAvBgNV BAMTKEVGMTFBOUU4QjNGMURFODNBRTc5QUMwRTVENzhFQzI0MjA5MTJDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWy4O5Ao4ZjRdpZFdAXYcDc7HH X0lM89e5GCtB5c2djrJOMi+YvZLhujBVeLDhzWzOz9UJANPcJc6+0fSQX+DjhAOK hYy6IzuvJW+5XzrohjI7M02u86vZQQUFjOjHiAfNIRA+dULdJsploGQejQyE53wY C4BQ1Io0CTPnTUuZxSpYxTZKI4vf5/fhMqMmEPCl5YTqltlYJn619MHRPObjOo31 f8n5ZzgXlEDQVJgAU6c+PNvLb1jfGpKRl4Rps+OWDgJKXP/zO3iskqOJ8UHK25Yp sOTy8RvzdGj3DOHc7BOHbhG165awPutZVapksaQEqN+ZgiZZSTWy2nqVYMj1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7xGp6LPx3oOueawOXXjsJCCRLFUwHwYDVR0j BBgwFoAUl36lEYVR6YrqqLsRydmdcZbT3rowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTg4YzBmMi0yODAwLTQ4ZGEtYTgzZS1hYjU0ZGY2NWM1NzQvMC85NzdFQTUxMTg1 NTFFOThBRUFBOEJCMTFDOUQ5OUQ3MTk2RDNERUJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc3RUE1MTE4NTUxRTk4QUVBQThCQjExQzlEOTlENzE5NkQz REVCQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ODhjMGYyLTI4MDAtNDhkYS1h ODNlLWFiNTRkZjY1YzU3NC8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2wwDQYJ KoZIhvcNAQELBQADggEBAOtLmKKqtJ97pc9VDs+989OZltpmnDnlGkUIOb/RcuHd tyETOEeFqiY3DJRUQs+UfMzS67hAD2vvPq5+h3NdABfZUXJZs+AMS0fvLfRZEjv2 4L5cKpAttMNPJiEWf6aguklflAnvkbUS5+M3buCAC4XPqlVYzaBwtz462fDU4eDr hSA/K1adxk0zW6G95yzDIO3QVra19mlFDN6m7i8blt77Yc32mM+9n4ccw21I0KII JxkoLBeHehLnBaQoY6XMotEF/GxecqyulZEPVpRjc+MWFG9zJ9MlxKzlqLsXzJ1b JyQDaGac2PYHEAQxmatSKKh/+/OTXBn3KW5AO4hB8YU= -----END CERTIFICATE-----Generated at Mon Jun 9 00:57:05 2025 by rpki-client