$ rpki-client -vvf repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36332e302f32342d3234203d3e20313338303739.roa File: 3130332e3133302e36332e302f32342d3234203d3e20313338303739.roa (raw, json) Hash identifier: BTJyyClQJ2ooNN9EN9agUZZ+ml+xViKf+qFHMjyGIK0= Subject key identifier: DD:01:D0:18:81:B2:AA:B9:46:E4:97:06:B7:7C:35:96:38:B5:E0:87 Certificate issuer: /CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Certificate serial: 0CC1033EA088B5AB68F977EDD3582024117056CC Authority key identifier: E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36332e302f32342d3234203d3e20313338303739.roa Signing time: Mon 02 Jun 2025 02:03:28 +0000 ROA not before: Mon 02 Jun 2025 01:58:28 +0000 ROA not after: Mon 01 Jun 2026 02:03:28 +0000 asID: 138079 IP address blocks: 103.130.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c1:03:3e:a0:88:b5:ab:68:f9:77:ed:d3:58:20:24:11:70:56:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52 Validity Not Before: Jun 2 01:58:28 2025 GMT Not After : Jun 1 02:03:28 2026 GMT Subject: CN=DD01D01881B2AAB946E49706B77C359638B5E087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:88:34:be:a4:41:19:92:31:ab:83:33:5f:1f: 2b:20:c3:88:6e:42:cf:71:c6:df:3c:51:d6:f6:64: 41:db:22:2e:1f:5f:1a:15:16:99:c0:1e:ce:1a:ff: d0:09:52:99:00:f3:ca:f5:52:d6:01:f5:04:57:be: 8f:cc:39:92:03:f3:23:bf:d1:dd:ea:c6:9c:4f:bd: f1:7d:7b:af:c0:50:0a:6a:3c:4c:62:83:91:b2:3d: f2:19:0b:b1:31:42:70:e9:a5:79:cf:80:b7:f2:8f: 3b:b0:20:f7:34:d8:0e:28:b5:9d:7c:c8:71:c0:3b: 08:cd:f0:d1:af:ef:69:d8:50:66:20:d6:5f:90:52: 5e:71:21:f8:39:0b:53:cc:5b:aa:ed:e8:b7:ab:8c: 15:cb:27:05:a3:c5:85:62:e3:3f:c4:f1:8c:10:48: 64:11:f2:6c:f0:c0:03:a2:16:85:5d:13:c0:86:ab: d0:2e:2e:d7:42:35:d0:a4:29:c6:4c:9d:12:9f:8a: d9:98:05:a2:50:67:0d:b7:96:f1:d8:c5:90:41:45: 47:8f:09:10:80:4f:ab:fa:0b:48:4f:8c:8f:95:9d: 39:6c:9b:94:98:9e:02:09:68:e2:64:1b:a6:eb:00: d6:87:a4:25:00:7e:7d:52:74:a7:f8:46:28:a4:6d: 5d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:01:D0:18:81:B2:AA:B9:46:E4:97:06:B7:7C:35:96:38:B5:E0:87 X509v3 Authority Key Identifier: keyid:E1:7A:5E:B9:41:56:DE:23:FC:DC:8F:29:B2:10:FC:DE:DC:F0:8F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17A5EB94156DE23FCDC8F29B210FCDEDCF08F52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/912a3f28-8273-4dd5-87fc-1ef00acac9b6/0/3130332e3133302e36332e302f32342d3234203d3e20313338303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.63.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:f1:1f:20:d8:12:ba:90:7b:30:bc:c9:ac:68:ce:0c:d1:80: 23:86:5a:82:b9:bd:9e:8c:81:af:73:91:98:18:3d:71:d0:a3: 5d:13:10:62:75:6c:34:5b:51:18:18:d2:82:f0:81:68:df:f6: 7a:60:e3:2f:30:fc:71:b4:46:ea:99:2c:03:68:a0:ca:de:53: ba:50:17:85:6b:c3:b1:78:57:86:e7:f1:38:ef:71:11:3b:6b: 6b:0b:62:10:58:e1:12:60:62:34:bd:4c:73:29:2f:fa:c4:62: 5a:a1:6c:28:63:2c:7c:cf:70:f3:61:3d:d7:b8:07:a2:52:af: b9:c6:b4:39:0c:fd:84:aa:fc:75:5a:c3:55:44:4d:81:3c:e4: 04:85:04:43:6f:d8:58:e6:e2:24:8b:a7:e0:2b:6a:e4:8f:a6: 59:c5:63:af:8a:ff:58:fc:06:fb:85:39:1b:ab:e9:08:c0:fc: fd:67:0e:ae:f2:bf:c3:e6:95:f6:ad:ee:76:09:bc:71:e3:77: a5:3b:a6:8c:0e:63:f8:1f:18:39:bf:c1:01:a9:e5:bd:57:14: d9:d0:b1:da:8e:1b:cc:16:6d:82:85:83:62:d9:42:de:ef:a4: d3:8d:93:d0:71:ab:69:cc:83:e1:40:71:2c:6a:1a:23:df:b9: fc:c1:fb:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDMEDPqCItato+Xft01ggJBFwVswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVE Q0YwOEY1MjAeFw0yNTA2MDIwMTU4MjhaFw0yNjA2MDEwMjAzMjhaMDMxMTAvBgNV BAMTKEREMDFEMDE4ODFCMkFBQjk0NkU0OTcwNkI3N0MzNTk2MzhCNUUwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiiDS+pEEZkjGrgzNfHysgw4hu Qs9xxt88Udb2ZEHbIi4fXxoVFpnAHs4a/9AJUpkA88r1UtYB9QRXvo/MOZID8yO/ 0d3qxpxPvfF9e6/AUApqPExig5GyPfIZC7ExQnDppXnPgLfyjzuwIPc02A4otZ18 yHHAOwjN8NGv72nYUGYg1l+QUl5xIfg5C1PMW6rt6LerjBXLJwWjxYVi4z/E8YwQ SGQR8mzwwAOiFoVdE8CGq9AuLtdCNdCkKcZMnRKfitmYBaJQZw23lvHYxZBBRUeP CRCAT6v6C0hPjI+VnTlsm5SYngIJaOJkG6brANaHpCUAfn1SdKf4RiikbV3hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3QHQGIGyqrlG5JcGt3w1lji14IcwHwYDVR0j BBgwFoAU4XpeuUFW3iP83I8pshD83tzwj1IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTJhM2YyOC04MjczLTRkZDUtODdmYy0xZWYwMGFjYWM5YjYvMC9FMTdBNUVCOTQx NTZERTIzRkNEQzhGMjlCMjEwRkNERURDRjA4RjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3QTVFQjk0MTU2REUyM0ZDREM4RjI5QjIxMEZDREVEQ0Yw OEY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMmEzZjI4LTgyNzMtNGRkNS04 N2ZjLTFlZjAwYWNhYzliNi8wLzMxMzAzMzJlMzEzMzMwMmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4I/MA0GCSqG SIb3DQEBCwUAA4IBAQAO8R8g2BK6kHswvMmsaM4M0YAjhlqCub2ejIGvc5GYGD1x 0KNdExBidWw0W1EYGNKC8IFo3/Z6YOMvMPxxtEbqmSwDaKDK3lO6UBeFa8OxeFeG 5/E473ERO2trC2IQWOESYGI0vUxzKS/6xGJaoWwoYyx8z3DzYT3XuAeiUq+5xrQ5 DP2Eqvx1WsNVRE2BPOQEhQRDb9hY5uIki6fgK2rkj6ZZxWOviv9Y/Ab7hTkbq+kI wPz9Zw6u8r/D5pX2re52Cbxx43elO6aMDmP4Hxg5v8EBqeW9VxTZ0LHajhvMFm2C hYNi2ULe76TTjZPQcatpzIPhQHEsahoj37n8wfsz -----END CERTIFICATE-----Generated at Fri Jun 6 16:43:32 2025 by rpki-client