$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: D6ZQ1Nszopc+tjvvlk9LxeInARJoQa1nF2ZqxR2uBQM= Subject key identifier: C0:C6:78:49:DC:27:95:B5:40:0F:EB:AC:5D:90:5D:9C:D6:6C:53:46 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 4BC28637D663E07582EA67D42083675A337BF220 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa Signing time: Mon 28 Apr 2025 02:00:00 +0000 ROA not before: Mon 28 Apr 2025 01:55:00 +0000 ROA not after: Mon 27 Apr 2026 02:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 11:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c2:86:37:d6:63:e0:75:82:ea:67:d4:20:83:67:5a:33:7b:f2:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Apr 28 01:55:00 2025 GMT Not After : Apr 27 02:00:00 2026 GMT Subject: CN=C0C67849DC2795B5400FEBAC5D905D9CD66C5346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:ab:37:4f:cb:58:a4:70:1d:94:4e:e2:11: fa:36:21:b7:97:78:3b:af:8b:ee:fc:98:2a:f8:f5: 9d:7c:fb:cb:4c:5f:3a:0b:57:10:d8:ab:d4:25:22: c2:e0:2c:74:18:55:5a:3f:1e:24:76:45:2f:ce:0e: 90:0b:45:c2:d8:13:4c:fe:e9:e8:9f:cb:14:11:03: 62:09:eb:e1:a5:62:fb:62:df:45:53:fb:7f:56:d9: d7:60:08:73:da:5b:0b:c4:bc:a3:83:9b:6c:c9:cb: ac:b7:ef:61:15:06:ca:5c:15:0a:10:f2:77:cb:1a: cc:5f:96:6b:a4:5f:d1:76:06:a5:c2:79:fd:58:30: db:63:1d:55:b3:e2:c5:ed:63:02:61:6e:7f:ca:ce: d6:d4:e3:aa:77:e6:2b:b3:8b:e6:4b:40:96:53:61: 90:26:18:ab:e9:e1:33:be:c7:23:40:01:24:ff:a1: 4d:03:07:3d:35:c2:a8:86:89:d7:31:65:84:fe:08: e3:cb:10:9e:51:31:b8:f2:89:12:25:ec:4d:10:50: d7:8c:e5:48:e1:2b:bb:c4:89:8b:c4:1d:ba:b1:35: 09:d4:94:7e:a6:48:ea:2f:ac:06:32:cd:6c:05:d2: 2c:8c:5d:e4:f5:ec:d8:75:ad:90:fb:0b:ab:c1:6d: c1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C6:78:49:DC:27:95:B5:40:0F:EB:AC:5D:90:5D:9C:D6:6C:53:46 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/23 Signature Algorithm: sha256WithRSAEncryption 44:95:52:8e:42:09:be:f7:b1:e2:d6:3d:d6:58:32:fe:79:51: 0f:61:d8:c4:b1:60:57:5e:1c:a3:03:19:57:15:07:5b:c3:7c: a8:6c:9c:49:ec:8e:63:95:22:26:a3:5b:ca:86:91:76:e2:9b: 30:7f:8b:23:02:20:72:26:f3:76:da:4f:75:9a:be:e1:3f:53: 55:78:21:64:77:61:08:b2:f4:ea:51:a6:05:34:3c:b5:9b:07: 28:3f:15:57:36:72:68:d7:3e:37:af:a0:5c:78:4c:63:69:5a: 4a:73:c6:7f:75:8c:e6:f8:79:2f:2b:f1:71:0c:73:d1:7b:03: a5:d4:b9:c3:43:82:7b:43:5f:34:7a:56:5f:b2:d9:c4:27:d3: f3:50:82:22:6c:32:b0:ae:86:e0:9f:7c:8e:80:b6:3f:d0:03: 83:05:22:5f:60:53:a9:64:8c:8d:e2:4f:20:02:88:41:eb:1c: 5b:63:5a:a2:c1:bb:df:2f:65:d6:f0:cc:34:6f:07:99:e6:00: e0:35:68:23:03:f7:b3:69:25:1b:01:bc:59:0f:8d:9e:74:d5: db:8e:e2:0c:a0:22:8e:5d:3e:4b:91:4e:01:17:a9:b9:0e:1b: eb:b5:7c:e8:d2:f3:37:e2:b2:f0:95:4a:5a:46:df:c9:3a:ea: f0:a4:e3:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS8KGN9Zj4HWC6mfUIINnWjN78iAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTA0MjgwMTU1MDBaFw0yNjA0MjcwMjAwMDBaMDMxMTAvBgNV BAMTKEMwQzY3ODQ5REMyNzk1QjU0MDBGRUJBQzVEOTA1RDlDRDY2QzUzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXb6s3T8tYpHAdlE7iEfo2IbeX eDuvi+78mCr49Z18+8tMXzoLVxDYq9QlIsLgLHQYVVo/HiR2RS/ODpALRcLYE0z+ 6eifyxQRA2IJ6+GlYvti30VT+39W2ddgCHPaWwvEvKODm2zJy6y372EVBspcFQoQ 8nfLGsxflmukX9F2BqXCef1YMNtjHVWz4sXtYwJhbn/KztbU46p35iuzi+ZLQJZT YZAmGKvp4TO+xyNAAST/oU0DBz01wqiGidcxZYT+COPLEJ5RMbjyiRIl7E0QUNeM 5UjhK7vEiYvEHbqxNQnUlH6mSOovrAYyzWwF0iyMXeT17Nh1rZD7C6vBbcF3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwMZ4SdwnlbVAD+usXZBdnNZsU0YwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlbAwDQYJ KoZIhvcNAQELBQADggEBAESVUo5CCb73seLWPdZYMv55UQ9h2MSxYFdeHKMDGVcV B1vDfKhsnEnsjmOVIiajW8qGkXbimzB/iyMCIHIm83baT3WavuE/U1V4IWR3YQiy 9OpRpgU0PLWbByg/FVc2cmjXPjevoFx4TGNpWkpzxn91jOb4eS8r8XEMc9F7A6XU ucNDgntDXzR6Vl+y2cQn0/NQgiJsMrCuhuCffI6Atj/QA4MFIl9gU6lkjI3iTyAC iEHrHFtjWqLBu98vZdbwzDRvB5nmAOA1aCMD97NpJRsBvFkPjZ501duO4gygIo5d PkuRTgEXqbkOG+u1fOjS8zfisvCVSlpG38k66vCk47o= -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:39 2025 by rpki-client