$ rpki-client -vvf repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36322e302f32342d3234203d3e20313338303739.roa File: 3130332e3133302e36322e302f32342d3234203d3e20313338303739.roa (raw, json) Hash identifier: gA/G4KU0S654m0JbYV6SpYNvybqVwcWtbGvUC8YnGdc= Subject key identifier: C5:29:05:25:2E:AC:94:AB:CC:74:90:B1:3E:9E:20:F4:2B:EE:62:1C Certificate issuer: /CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Certificate serial: 0D87685662CD72CD546456E69AB4DD7AAE3067C5 Authority key identifier: E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36322e302f32342d3234203d3e20313338303739.roa Signing time: Mon 02 Jun 2025 02:03:29 +0000 ROA not before: Mon 02 Jun 2025 01:58:29 +0000 ROA not after: Mon 01 Jun 2026 02:03:29 +0000 asID: 138079 IP address blocks: 103.130.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:87:68:56:62:cd:72:cd:54:64:56:e6:9a:b4:dd:7a:ae:30:67:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Validity Not Before: Jun 2 01:58:29 2025 GMT Not After : Jun 1 02:03:29 2026 GMT Subject: CN=C52905252EAC94ABCC7490B13E9E20F42BEE621C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:54:53:ec:c0:c0:1a:37:6a:9d:2b:22:a9: a1:d1:70:10:9e:6a:5c:00:47:38:df:de:53:a9:14: c4:ff:0e:89:f1:0f:a2:10:5b:e4:f3:34:db:71:ab: 1e:20:96:c4:69:b0:bc:16:d7:d4:6c:50:de:b7:3b: b0:77:35:53:fd:5c:d2:6f:84:02:47:c5:18:2a:64: 3c:4b:28:62:0e:11:9a:87:c1:c3:07:f7:dc:2e:60: 7e:23:48:27:33:9e:72:81:5b:de:c8:72:b7:b8:47: 49:41:8b:d1:c5:7d:e6:28:94:c0:07:ac:3f:7e:49: d8:d8:5e:77:e0:78:3d:6a:ee:d0:c4:78:16:b0:d2: 3c:38:85:08:00:a1:9a:a0:b7:71:c4:a9:75:46:5f: a0:9a:ee:52:0d:c6:ec:be:5d:c2:30:bf:f8:70:14: e8:16:cc:98:b3:3f:c9:9b:26:13:5d:9c:74:8e:67: 58:7f:59:7c:6c:15:7e:11:57:2d:bf:58:3d:39:44: 62:5a:42:47:8c:9d:57:58:5e:49:f6:8b:83:ce:82: e7:24:72:aa:a8:4b:33:73:b3:c4:48:88:d2:cb:1e: 99:f5:e7:28:96:71:5a:61:64:67:d4:47:00:4b:ca: f9:cb:08:f6:c9:3c:bd:3a:6d:71:4e:52:12:11:cb: 9f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:29:05:25:2E:AC:94:AB:CC:74:90:B1:3E:9E:20:F4:2B:EE:62:1C X509v3 Authority Key Identifier: keyid:E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36322e302f32342d3234203d3e20313338303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.62.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:d1:c3:e9:9a:51:78:af:cf:d8:03:e4:ea:0d:5a:bc:70:7f: 0e:75:db:69:f6:b2:c3:58:18:00:85:11:4f:6a:74:8d:96:e1: 31:e9:d1:ad:4d:77:9b:94:7a:1c:1a:f9:da:f5:e0:6b:29:55: 39:2f:18:fb:ca:be:00:bd:3e:08:6d:d0:b6:18:0a:65:15:52: 0d:51:7c:9a:2a:51:fe:aa:c7:8f:da:fa:c3:08:74:e2:48:07: 90:24:f9:0b:9d:98:46:43:51:9a:07:25:0c:ab:a6:9d:90:0d: a5:5d:74:4b:c5:d9:c0:6e:51:bf:d7:19:ad:dc:c7:dd:c6:77: 4b:d7:e6:ec:5a:8b:35:95:90:1d:1d:23:fe:f7:f3:70:71:25: d3:1d:05:e8:73:8f:fe:99:eb:b7:b7:b1:32:34:33:a9:23:55: 85:73:6e:72:fe:6b:4b:32:e3:f8:f9:f9:05:73:ea:b0:5b:1b: bb:d9:1c:9d:7d:11:cc:2b:ba:70:96:e3:dc:3c:8b:e3:3b:1d: 8f:c4:69:91:d1:47:3b:9a:8b:94:5c:0f:d9:27:a5:cd:0d:f9: bc:1d:9b:36:e1:b4:da:5c:29:65:98:eb:b4:a3:e3:27:91:47: 31:c5:fd:fd:0e:98:d5:9b:b3:64:ad:7f:83:9b:27:70:81:fe: 58:85:53:db -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDYdoVmLNcs1UZFbmmrTdeq4wZ8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVE Q0YwOEY1MjAeFw0yNTA2MDIwMTU4MjlaFw0yNjA2MDEwMjAzMjlaMDMxMTAvBgNV BAMTKEM1MjkwNTI1MkVBQzk0QUJDQzc0OTBCMTNFOUUyMEY0MkJFRTYyMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCF1RT7MDAGjdqnSsiqaHRcBCe alwARzjf3lOpFMT/DonxD6IQW+TzNNtxqx4glsRpsLwW19RsUN63O7B3NVP9XNJv hAJHxRgqZDxLKGIOEZqHwcMH99wuYH4jSCcznnKBW97Icre4R0lBi9HFfeYolMAH rD9+SdjYXnfgeD1q7tDEeBaw0jw4hQgAoZqgt3HEqXVGX6Ca7lINxuy+XcIwv/hw FOgWzJizP8mbJhNdnHSOZ1h/WXxsFX4RVy2/WD05RGJaQkeMnVdYXkn2i4POguck cqqoSzNzs8RIiNLLHpn15yiWcVphZGfURwBLyvnLCPbJPL06bXFOUhIRy5+fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxSkFJS6slKvMdJCxPp4g9CvuYhwwHwYDVR0j BBgwFoAU4XpeuUFW3iP83I8pshD83tzwj1IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTJhM2YyOC04MjczLTRkZDUtODdmYy0xZWYwMGFjYWM5YjYvMC9FMTdBNUVCOTQx NTZERTIzRkNEQzhGMjlCMjEwRkNERURDRjA4RjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVEQ0Yw OEY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMmEzZjI4LTgyNzMtNGRkNS04 N2ZjLTFlZjAwYWNhYzliNi8wLzMxMzAzMzJlMzEzMzMwMmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4I+MA0GCSqG SIb3DQEBCwUAA4IBAQBc0cPpmlF4r8/YA+TqDVq8cH8Oddtp9rLDWBgAhRFPanSN luEx6dGtTXeblHocGvna9eBrKVU5Lxj7yr4AvT4IbdC2GAplFVINUXyaKlH+qseP 2vrDCHTiSAeQJPkLnZhGQ1GaByUMq6adkA2lXXRLxdnAblG/1xmt3MfdxndL1+bs Wos1lZAdHSP+9/NwcSXTHQXoc4/+meu3t7EyNDOpI1WFc25y/mtLMuP4+fkFc+qw Wxu72RydfRHMK7pwluPcPIvjOx2PxGmR0Uc7mouUXA/ZJ6XNDfm8HZs24bTaXCll mOu0o+MnkUcxxf39DpjVm7NkrX+Dmydwgf5YhVPb -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:23 2025 by rpki-client