$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e3132372e3134342e302f32332d3233203d3e203633383732.roa File: 3130332e3132372e3134342e302f32332d3233203d3e203633383732.roa (raw, json) Hash identifier: ej36uL5q6V5lzJlk2/mVmLfbDb6eLchafID3r1d/Uc0= Subject key identifier: C8:1E:4F:AD:19:5F:81:EB:CE:50:07:E3:07:B1:83:C2:65:6D:06:C2 Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 2E30708013B635B583FA83AB5DC244E41A78C4B9 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e3132372e3134342e302f32332d3233203d3e203633383732.roa Signing time: Mon 02 Jun 2025 02:04:49 +0000 ROA not before: Mon 02 Jun 2025 01:59:49 +0000 ROA not after: Mon 01 Jun 2026 02:04:49 +0000 asID: 63872 IP address blocks: 103.127.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:30:70:80:13:b6:35:b5:83:fa:83:ab:5d:c2:44:e4:1a:78:c4:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jun 2 01:59:49 2025 GMT Not After : Jun 1 02:04:49 2026 GMT Subject: CN=C81E4FAD195F81EBCE5007E307B183C2656D06C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a8:bf:aa:9d:e7:99:da:fa:4f:79:0e:c1:2b: 1d:b7:f2:ce:cc:99:64:e6:a8:ac:da:03:2e:3b:4b: b2:f8:c8:a4:49:a3:0d:71:97:bf:48:d1:51:75:8e: e0:42:28:50:dd:da:25:b1:fe:ad:fc:9f:5a:a9:c3: 36:27:83:a5:3b:7b:64:5c:5c:8d:a0:56:16:5e:7d: 76:df:cc:b8:40:16:08:e9:f3:d9:30:81:53:2e:37: 1a:08:cf:70:dc:a8:08:dc:18:a8:32:6c:c0:55:8f: 48:c0:d4:66:c2:9d:bf:99:45:39:5b:08:61:96:82: 38:62:6e:5d:d4:a6:f6:0d:e0:c2:83:4f:d1:cd:38: d2:f1:c6:6e:1a:e0:26:34:81:7e:a2:83:67:52:79: 33:25:8f:0b:09:61:9c:d5:e1:1b:ee:11:ca:8e:52: 23:89:ce:a7:ea:c0:84:85:ef:8e:71:81:49:85:62: bd:66:de:d1:ee:e5:c2:5a:60:c9:17:96:dd:de:93: 98:11:1a:b8:b1:48:7a:d8:fa:98:42:6b:fc:e5:b6: 11:0b:a0:07:a7:e8:b6:38:d1:23:48:8f:93:23:af: 07:50:8a:85:96:ac:5e:8f:db:ff:de:6b:9e:66:5d: 50:bd:a1:e6:38:8f:3e:46:06:be:37:75:53:04:77: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1E:4F:AD:19:5F:81:EB:CE:50:07:E3:07:B1:83:C2:65:6D:06:C2 X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e3132372e3134342e302f32332d3233203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.144.0/23 Signature Algorithm: sha256WithRSAEncryption 18:08:c4:18:5b:c1:17:c7:75:76:ef:f8:0f:5f:7d:7f:d7:3d: fa:c2:be:b8:4b:6e:e8:17:2b:c4:3e:51:35:2d:b1:6a:f7:5d: ae:9d:dd:f0:a9:ba:f1:8b:a0:89:3d:10:d5:42:cb:ab:ac:33: 43:9f:59:df:3f:86:3a:f1:d3:67:11:69:76:d1:40:25:b1:0a: 75:ee:c6:2d:54:4a:77:82:a4:e9:08:4d:57:83:c8:7c:0a:6b: 3d:5e:74:e0:28:1f:23:04:5b:7c:d1:55:56:16:cc:91:6c:42: 0f:f3:16:3e:2a:be:0b:80:cd:8a:54:3b:7c:08:ca:62:4a:5e: 80:f2:c9:04:a5:cd:d1:1c:f8:9f:f9:69:4d:af:ae:6e:6a:eb: 37:04:63:f3:55:9f:15:25:e3:2e:fb:a4:dd:34:8d:da:2f:67: 3a:57:c6:c1:52:89:1c:bc:3d:cd:c1:5f:3f:3d:0c:53:6c:48: 43:79:59:58:38:ba:33:b1:a1:da:2e:f2:da:08:c5:63:39:bf: 96:07:3d:76:b1:a5:18:76:e6:94:b4:e9:8a:40:03:03:fb:f8: 4d:5b:b1:38:76:71:f4:38:d9:ff:b1:9b:63:f9:03:5f:d0:23: 02:99:ad:95:c2:fd:63:af:92:f9:90:35:3e:15:3e:2e:2d:c7: 90:38:95:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULjBwgBO2NbWD+oOrXcJE5Bp4xLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yNTA2MDIwMTU5NDlaFw0yNjA2MDEwMjA0NDlaMDMxMTAvBgNV BAMTKEM4MUU0RkFEMTk1RjgxRUJDRTUwMDdFMzA3QjE4M0MyNjU2RDA2QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiqL+qneeZ2vpPeQ7BKx238s7M mWTmqKzaAy47S7L4yKRJow1xl79I0VF1juBCKFDd2iWx/q38n1qpwzYng6U7e2Rc XI2gVhZefXbfzLhAFgjp89kwgVMuNxoIz3DcqAjcGKgybMBVj0jA1GbCnb+ZRTlb CGGWgjhibl3UpvYN4MKDT9HNONLxxm4a4CY0gX6ig2dSeTMljwsJYZzV4RvuEcqO UiOJzqfqwISF745xgUmFYr1m3tHu5cJaYMkXlt3ek5gRGrixSHrY+phCa/zlthEL oAen6LY40SNIj5MjrwdQioWWrF6P2//ea55mXVC9oeY4jz5GBr43dVMEd2YpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyB5PrRlfgevOUAfjB7GDwmVtBsIwHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMxMzAzMzJlMzEzMjM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzgzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3+QMA0GCSqG SIb3DQEBCwUAA4IBAQAYCMQYW8EXx3V27/gPX31/1z36wr64S27oFyvEPlE1LbFq 912und3wqbrxi6CJPRDVQsurrDNDn1nfP4Y68dNnEWl20UAlsQp17sYtVEp3gqTp CE1Xg8h8Cms9XnTgKB8jBFt80VVWFsyRbEIP8xY+Kr4LgM2KVDt8CMpiSl6A8skE pc3RHPif+WlNr65uaus3BGPzVZ8VJeMu+6TdNI3aL2c6V8bBUokcvD3NwV8/PQxT bEhDeVlYOLozsaHaLvLaCMVjOb+WBz12saUYduaUtOmKQAMD+/hNW7E4dnH0ONn/ sZtj+QNf0CMCma2Vwv1jr5L5kDU+FT4uLceQOJWR -----END CERTIFICATE-----Generated at Sat Jun 7 05:51:51 2025 by rpki-client