$ rpki-client -vvf repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e20313338313134.roa File: 3130332e3132352e3138352e302f32342d3234203d3e20313338313134.roa (raw, json) Hash identifier: noI2jWxEeYAXqaAE/PBFmQAfbP3FU/DH8uqnt/6EwU8= Subject key identifier: 82:DB:37:64:02:F3:9A:62:08:AF:B8:B3:CC:77:E7:21:0E:D1:B1:A2 Certificate issuer: /CN=129285A478A166EE0B54DBCDA60771DA54C4F65F Certificate serial: 3A785CEA2B360C29C34FEF944143897E82DAD976 Authority key identifier: 12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e20313338313134.roa Signing time: Mon 02 Jun 2025 02:04:07 +0000 ROA not before: Mon 02 Jun 2025 01:59:07 +0000 ROA not after: Mon 01 Jun 2026 02:04:07 +0000 asID: 138114 IP address blocks: 103.125.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:78:5c:ea:2b:36:0c:29:c3:4f:ef:94:41:43:89:7e:82:da:d9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129285A478A166EE0B54DBCDA60771DA54C4F65F Validity Not Before: Jun 2 01:59:07 2025 GMT Not After : Jun 1 02:04:07 2026 GMT Subject: CN=82DB376402F39A6208AFB8B3CC77E7210ED1B1A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c2:a6:68:86:42:94:71:98:e6:33:49:e6:b2: a0:42:2d:9f:70:fb:58:35:3b:e2:ed:f8:83:0f:7d: f0:dd:91:85:c6:be:a1:00:a5:b1:b5:2a:b5:30:f9: 7b:a1:d5:bf:a2:e8:12:3b:69:f7:28:17:8e:d0:0e: 5e:4b:6d:54:b2:f8:c3:26:75:5b:7f:46:95:66:cd: 81:b4:d7:49:58:27:b1:f7:cc:71:93:58:ed:04:61: f4:22:8d:6d:e4:c5:09:51:e0:53:4a:77:b1:58:8d: ff:3b:77:ee:c2:7d:90:11:51:a9:3c:d8:f0:3b:56: 03:06:dd:9e:e2:0c:d9:f8:d7:94:3f:d2:9c:dd:1b: c8:eb:44:65:1c:10:17:fb:9a:7e:36:24:de:13:f8: 0d:25:dc:34:cb:33:8a:6f:87:7e:4d:f8:af:2d:3b: 5f:ab:b2:ee:b6:d6:5b:86:f5:2d:2b:13:46:0a:74: a1:a6:c7:a7:94:3b:c8:0a:83:62:e5:b8:49:41:6e: 6a:84:f0:bf:b4:57:96:b8:ee:31:7e:92:0b:aa:ee: 67:1c:8e:d7:83:e2:7e:a3:f9:ea:cc:3c:52:e0:fd: e8:36:6d:2e:af:59:8c:df:68:73:7f:68:62:53:67: ea:3f:d8:19:a4:96:fb:92:fc:75:92:9e:16:88:31: 8f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:DB:37:64:02:F3:9A:62:08:AF:B8:B3:CC:77:E7:21:0E:D1:B1:A2 X509v3 Authority Key Identifier: keyid:12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e20313338313134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.185.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:b2:9a:94:16:1a:19:9e:30:d0:a9:38:9b:2e:a5:46:2c:06: 64:38:ce:67:e1:4f:32:fb:7f:68:ef:46:34:26:31:7f:15:1e: 9e:c9:84:64:b9:f2:ed:59:4b:4d:52:c4:64:c7:3c:93:88:24: ed:09:28:e5:b8:8f:c9:84:ca:fb:d6:ed:b7:95:b2:2a:3a:54: dd:33:01:fd:d0:85:20:d5:5a:35:14:44:53:27:5e:8f:70:7c: 5a:ed:62:5c:50:57:e9:9b:8a:19:6b:ad:22:0d:5e:68:5e:8e: b3:47:0d:3c:6a:79:12:8a:6f:e0:b0:76:bd:04:6a:90:3a:1f: 60:95:ac:d1:f5:81:5c:b7:a7:19:83:e7:26:88:24:d6:77:97: f6:46:fc:86:33:56:61:85:11:93:b4:be:e7:cf:a5:e0:9e:8f: c8:5d:7c:79:28:ba:3d:b2:cd:1b:3d:56:e3:dd:64:88:c8:38: 7c:f9:dc:91:e9:97:f6:b8:d2:d1:e8:7e:22:1d:f7:99:94:6d: 30:87:9c:16:5f:14:b5:0b:fa:b6:d9:1b:6d:27:91:22:ad:80: 83:4b:3a:34:5c:f1:c1:ea:bd:e0:7d:1a:24:b7:87:21:f0:6d: 09:c6:6e:f7:df:6f:37:b8:e7:4b:fb:09:6b:a0:b6:d1:41:9d: 08:89:19:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOnhc6is2DCnDT++UQUOJfoLa2XYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5Mjg1QTQ3OEExNjZFRTBCNTREQkNEQTYwNzcxREE1 NEM0RjY1RjAeFw0yNTA2MDIwMTU5MDdaFw0yNjA2MDEwMjA0MDdaMDMxMTAvBgNV BAMTKDgyREIzNzY0MDJGMzlBNjIwOEFGQjhCM0NDNzdFNzIxMEVEMUIxQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuwqZohkKUcZjmM0nmsqBCLZ9w +1g1O+Lt+IMPffDdkYXGvqEApbG1KrUw+Xuh1b+i6BI7afcoF47QDl5LbVSy+MMm dVt/RpVmzYG010lYJ7H3zHGTWO0EYfQijW3kxQlR4FNKd7FYjf87d+7CfZARUak8 2PA7VgMG3Z7iDNn415Q/0pzdG8jrRGUcEBf7mn42JN4T+A0l3DTLM4pvh35N+K8t O1+rsu621luG9S0rE0YKdKGmx6eUO8gKg2LluElBbmqE8L+0V5a47jF+kguq7mcc jteD4n6j+erMPFLg/eg2bS6vWYzfaHN/aGJTZ+o/2BmklvuS/HWSnhaIMY+LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgts3ZALzmmIIr7izzHfnIQ7RsaIwHwYDVR0j BBgwFoAUEpKFpHihZu4LVNvNpgdx2lTE9l8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2Q5MjY4Yi01ZTYxLTQzYjItYTYyNC00MWIwMWQ3ZDc2YjIvMC8xMjkyODVBNDc4 QTE2NkVFMEI1NERCQ0RBNjA3NzFEQTU0QzRGNjVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5Mjg1QTQ3OEExNjZFRTBCNTREQkNEQTYwNzcxREE1NEM0 RjY1Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzZDkyNjhiLTVlNjEtNDNiMi1h NjI0LTQxYjAxZDdkNzZiMi8wLzMxMzAzMzJlMzEzMjM1MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfbkwDQYJ KoZIhvcNAQELBQADggEBAA+ympQWGhmeMNCpOJsupUYsBmQ4zmfhTzL7f2jvRjQm MX8VHp7JhGS58u1ZS01SxGTHPJOIJO0JKOW4j8mEyvvW7beVsio6VN0zAf3QhSDV WjUURFMnXo9wfFrtYlxQV+mbihlrrSINXmhejrNHDTxqeRKKb+Cwdr0EapA6H2CV rNH1gVy3pxmD5yaIJNZ3l/ZG/IYzVmGFEZO0vufPpeCej8hdfHkouj2yzRs9VuPd ZIjIOHz53JHpl/a40tHofiId95mUbTCHnBZfFLUL+rbZG20nkSKtgINLOjRc8cHq veB9GiS3hyHwbQnGbvffbze450v7CWugttFBnQiJGZk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:21:35 2025 by rpki-client