$ rpki-client -vvf repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32332d3233203d3e20313338303739.roa File: 3130332e3133302e36302e302f32332d3233203d3e20313338303739.roa (raw, json) Hash identifier: t1GlQPTqCX0tSN2oGwnozLwYbWtyVQRe58xqkUEfAuQ= Subject key identifier: 0D:3E:10:1A:B4:94:CF:9F:D9:DA:64:59:BF:C1:AB:2C:26:12:15:22 Certificate issuer: /CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Certificate serial: 70F3AC7CE9BBD08A486ACD8B1529518B7D248DC5 Authority key identifier: E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32332d3233203d3e20313338303739.roa Signing time: Mon 02 Jun 2025 02:03:29 +0000 ROA not before: Mon 02 Jun 2025 01:58:29 +0000 ROA not after: Mon 01 Jun 2026 02:03:29 +0000 asID: 138079 IP address blocks: 103.130.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f3:ac:7c:e9:bb:d0:8a:48:6a:cd:8b:15:29:51:8b:7d:24:8d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Validity Not Before: Jun 2 01:58:29 2025 GMT Not After : Jun 1 02:03:29 2026 GMT Subject: CN=0D3E101AB494CF9FD9DA6459BFC1AB2C26121522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c6:64:4d:56:86:14:33:33:c4:bb:c6:6f:5c: fd:71:e3:1f:ff:b3:59:e4:b3:a1:d4:c7:01:25:5d: 93:07:8c:91:43:59:24:a5:9f:65:4b:ee:8a:cf:2c: 99:c0:fc:c5:02:84:a1:de:2c:cc:a7:22:93:ce:46: 8c:8a:6b:f9:9d:7e:4e:2c:46:ba:41:9b:d3:c9:f0: 71:ce:60:e9:42:b4:10:0f:10:63:e3:93:16:ed:42: 92:e0:7f:4f:a8:d4:97:06:1d:84:63:14:60:dc:64: a2:90:6e:c3:41:a7:23:69:88:ab:c0:a9:e9:a5:6f: 53:24:d5:af:c1:eb:f6:32:52:57:aa:98:98:22:5f: eb:49:dd:a0:0c:46:b7:bc:8b:6d:4a:91:e2:47:ab: 7c:82:fa:f7:17:e8:24:17:0b:a8:03:59:d9:40:60: 82:fe:bb:f0:50:2c:b1:ee:a3:dd:4b:99:50:fe:e9: 4f:97:e6:86:05:ab:11:7d:5f:cf:70:33:ed:f4:e0: 67:f1:94:65:f8:52:41:1f:d4:99:03:be:78:af:9e: e5:a4:e2:30:19:21:24:aa:93:87:93:80:79:87:49: 1c:9d:7f:fd:70:59:a0:3b:d0:8b:65:00:52:fd:0e: 01:c6:18:bf:af:75:e4:a3:5c:10:a7:e0:7c:85:98: c7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3E:10:1A:B4:94:CF:9F:D9:DA:64:59:BF:C1:AB:2C:26:12:15:22 X509v3 Authority Key Identifier: keyid:E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36302e302f32332d3233203d3e20313338303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.60.0/23 Signature Algorithm: sha256WithRSAEncryption 17:01:f6:e0:78:b9:c8:02:5a:78:c4:d1:5b:5c:c4:93:5e:5c: b8:3d:cc:08:b3:7b:f4:60:5e:ba:47:de:fe:b8:a7:7e:af:40: f2:c4:91:9b:61:a0:72:51:1e:fd:2d:4e:55:d9:fd:1d:b6:ac: 1f:b6:a8:66:b2:4f:86:be:8c:58:6d:6b:5b:c6:73:38:1b:c4: c0:e4:c8:a8:c8:8b:f7:a0:d6:74:b8:70:5a:55:1b:b2:5e:f8: 13:ec:9f:f3:5a:51:f5:ca:a2:b6:c8:2d:29:7e:5b:20:0d:57: 93:fc:eb:f2:80:7c:77:ad:82:eb:99:ad:8b:a4:16:b4:73:06: 8d:47:01:7c:b1:18:90:d1:6d:46:b6:72:ae:c2:23:c3:fd:22: 7b:38:75:2a:58:8a:38:37:37:1f:1c:ab:be:86:a9:72:8b:55: a8:5a:a1:a0:d2:6e:e7:5c:89:95:d8:84:e6:08:a1:d0:07:ac: e7:05:09:9d:cd:4e:81:da:ea:d0:d0:d5:7b:93:01:a8:67:d0: f0:d7:3d:04:42:b4:e3:30:13:16:e2:76:fa:fb:3a:18:a6:50: 6b:9f:3d:25:59:b9:d3:91:53:b8:ff:3b:92:33:b6:28:33:a9: 07:df:3c:bc:8c:6a:8c:76:3c:1a:08:dd:b6:6f:04:d4:8b:93: 6f:0b:74:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcPOsfOm70IpIas2LFSlRi30kjcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVE Q0YwOEY1MjAeFw0yNTA2MDIwMTU4MjlaFw0yNjA2MDEwMjAzMjlaMDMxMTAvBgNV BAMTKDBEM0UxMDFBQjQ5NENGOUZEOURBNjQ1OUJGQzFBQjJDMjYxMjE1MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLxmRNVoYUMzPEu8ZvXP1x4x// s1nks6HUxwElXZMHjJFDWSSln2VL7orPLJnA/MUChKHeLMynIpPORoyKa/mdfk4s RrpBm9PJ8HHOYOlCtBAPEGPjkxbtQpLgf0+o1JcGHYRjFGDcZKKQbsNBpyNpiKvA qemlb1Mk1a/B6/YyUleqmJgiX+tJ3aAMRre8i21KkeJHq3yC+vcX6CQXC6gDWdlA YIL+u/BQLLHuo91LmVD+6U+X5oYFqxF9X89wM+304GfxlGX4UkEf1JkDvnivnuWk 4jAZISSqk4eTgHmHSRydf/1wWaA70ItlAFL9DgHGGL+vdeSjXBCn4HyFmMfrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDT4QGrSUz5/Z2mRZv8GrLCYSFSIwHwYDVR0j BBgwFoAU4XpeuUFW3iP83I8pshD83tzwj1IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTJhM2YyOC04MjczLTRkZDUtODdmYy0xZWYwMGFjYWM5YjYvMC9FMTdBNUVCOTQx NTZERTIzRkNEQzhGMjlCMjEwRkNERURDRjA4RjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVEQ0Yw OEY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMmEzZjI4LTgyNzMtNGRkNS04 N2ZjLTFlZjAwYWNhYzliNi8wLzMxMzAzMzJlMzEzMzMwMmUzNjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4I8MA0GCSqG SIb3DQEBCwUAA4IBAQAXAfbgeLnIAlp4xNFbXMSTXly4PcwIs3v0YF66R97+uKd+ r0DyxJGbYaByUR79LU5V2f0dtqwftqhmsk+GvoxYbWtbxnM4G8TA5MioyIv3oNZ0 uHBaVRuyXvgT7J/zWlH1yqK2yC0pflsgDVeT/OvygHx3rYLrma2LpBa0cwaNRwF8 sRiQ0W1GtnKuwiPD/SJ7OHUqWIo4NzcfHKu+hqlyi1WoWqGg0m7nXImV2ITmCKHQ B6znBQmdzU6B2urQ0NV7kwGoZ9Dw1z0EQrTjMBMW4nb6+zoYplBrnz0lWbnTkVO4 /zuSM7YoM6kH3zy8jGqMdjwaCN22bwTUi5NvC3RU -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:21 2025 by rpki-client