$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa File: 3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa (raw, json) Hash identifier: iKqR4sdrDvQYzAbaXB9On/A/Jy5fdaFvtV4f3tabdnk= Subject key identifier: 7A:10:D1:C8:88:3B:EB:6C:1B:DD:28:C5:D4:FA:3A:7F:9D:72:DA:BF Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 387533325045A0183B582C2DC64A70B411835B49 Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa Signing time: Mon 02 Jun 2025 01:02:54 +0000 ROA not before: Mon 02 Jun 2025 00:57:54 +0000 ROA not after: Mon 01 Jun 2026 01:02:54 +0000 asID: 138113 IP address blocks: 103.126.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:75:33:32:50:45:a0:18:3b:58:2c:2d:c6:4a:70:b4:11:83:5b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Jun 2 00:57:54 2025 GMT Not After : Jun 1 01:02:54 2026 GMT Subject: CN=7A10D1C8883BEB6C1BDD28C5D4FA3A7F9D72DABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:9b:5c:73:99:c0:3f:cd:96:2d:86:ad:e6: 4c:92:fb:60:0b:46:22:38:35:d1:ba:24:c6:12:3b: 62:58:c6:89:6e:10:1f:41:96:fb:a8:c7:ba:5c:2b: bf:a8:7d:4d:1f:88:a8:e8:c5:07:30:42:e5:4e:2c: c7:49:dd:12:da:32:6e:22:23:9a:fe:6c:c2:7a:4e: ae:ce:e7:51:70:c7:bf:ba:58:d2:83:96:4d:d2:90: d2:6f:d4:2a:42:d8:91:d7:2b:35:56:a7:fa:86:37: c0:43:a8:68:a8:12:0d:8b:fb:74:53:c2:68:d9:42: a3:62:42:e5:36:2a:48:e3:4d:2f:cc:9a:7e:d7:26: db:7e:cb:73:41:86:a4:09:7a:da:05:4e:05:80:f5: e5:9d:7b:81:12:74:87:51:30:0c:7f:f5:03:15:35: 3f:28:bb:a9:c4:16:23:ca:75:f6:45:e9:c8:61:8e: 79:62:c5:fc:49:59:77:5f:94:41:f3:ca:e7:3f:ef: 69:96:5d:fc:4f:73:38:de:56:12:cb:41:e3:ce:17: c9:9a:7a:6f:10:df:9c:f2:8c:49:f5:1d:c2:52:cf: d3:d2:7d:2c:72:d3:d7:0a:a9:a1:7e:8c:fe:6d:00: 36:cc:4b:e4:38:cf:d9:c4:ed:ba:40:51:ac:0f:c3: 62:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:10:D1:C8:88:3B:EB:6C:1B:DD:28:C5:D4:FA:3A:7F:9D:72:DA:BF X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.200.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:66:85:6f:23:c9:aa:44:b2:77:27:61:da:0d:1c:18:f4:36: 11:b4:46:fe:70:d7:63:44:72:34:8b:af:7d:50:35:49:57:6c: 9d:60:c5:43:f0:dc:91:3b:d7:d3:db:f5:66:3e:5d:99:08:2f: 0c:ad:79:83:ac:ce:03:2b:3d:9f:43:c9:35:88:61:38:2f:ab: d2:70:f2:3e:8a:e5:8d:a9:ab:0c:3a:34:25:03:a4:ab:9d:30: 86:7a:82:ac:ee:0d:75:ab:26:bb:f4:0f:0a:a6:04:21:7e:84: 8f:65:68:43:8e:6f:08:05:d2:fb:cd:a1:8d:18:b0:32:ee:1f: c4:3b:ce:f3:c4:62:0b:4a:0c:07:f4:3b:c0:fd:0d:97:b0:17: 90:76:2f:b9:60:35:b6:8d:9e:db:30:e1:99:21:7e:1d:1c:aa: 3b:e2:b7:81:5e:d7:88:ef:d8:23:fb:2a:09:e3:14:c2:76:03: ae:37:ac:63:be:6a:ab:05:b3:d3:62:b7:e7:54:7f:4f:9a:1f: b9:e0:11:c7:23:6f:a4:f4:60:59:97:98:fb:55:68:e5:a4:32: 5e:5f:8f:1b:1d:15:89:ba:70:1e:b2:04:12:8a:21:1d:85:b5: fe:96:e4:9a:33:8d:16:4c:1c:b1:10:c8:10:ae:39:0a:c0:43: 78:bf:a3:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOHUzMlBFoBg7WCwtxkpwtBGDW0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNTA2MDIwMDU3NTRaFw0yNjA2MDEwMTAyNTRaMDMxMTAvBgNV BAMTKDdBMTBEMUM4ODgzQkVCNkMxQkREMjhDNUQ0RkEzQTdGOUQ3MkRBQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3fJtcc5nAP82WLYat5kyS+2AL RiI4NdG6JMYSO2JYxoluEB9Blvuox7pcK7+ofU0fiKjoxQcwQuVOLMdJ3RLaMm4i I5r+bMJ6Tq7O51Fwx7+6WNKDlk3SkNJv1CpC2JHXKzVWp/qGN8BDqGioEg2L+3RT wmjZQqNiQuU2KkjjTS/Mmn7XJtt+y3NBhqQJetoFTgWA9eWde4ESdIdRMAx/9QMV NT8ou6nEFiPKdfZF6chhjnlixfxJWXdflEHzyuc/72mWXfxPczjeVhLLQePOF8ma em8Q35zyjEn1HcJSz9PSfSxy09cKqaF+jP5tADbMS+Q4z9nE7bpAUawPw2IRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUehDRyIg762wb3SjF1Po6f51y2r8wHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhMmU1YjY5LWFkYmQtNGUyZC04 NDdkLTM3NDgxNTU4MWQ4Ni8wLzMxMzAzMzJlMzEzMjM2MmUzMjMwMzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzgzMTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfsgwDQYJ KoZIhvcNAQELBQADggEBAB1mhW8jyapEsncnYdoNHBj0NhG0Rv5w12NEcjSLr31Q NUlXbJ1gxUPw3JE719Pb9WY+XZkILwyteYOszgMrPZ9DyTWIYTgvq9Jw8j6K5Y2p qww6NCUDpKudMIZ6gqzuDXWrJrv0DwqmBCF+hI9laEOObwgF0vvNoY0YsDLuH8Q7 zvPEYgtKDAf0O8D9DZewF5B2L7lgNbaNntsw4Zkhfh0cqjvit4Fe14jv2CP7Kgnj FMJ2A643rGO+aqsFs9Nit+dUf0+aH7ngEccjb6T0YFmXmPtVaOWkMl5fjxsdFYm6 cB6yBBKKIR2Ftf6W5JozjRZMHLEQyBCuOQrAQ3i/o94= -----END CERTIFICATE-----Generated at Sun Jun 8 12:47:19 2025 by rpki-client