$ rpki-client -vvf repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e203435333035.roa File: 3130332e3137352e3234302e302f32332d3234203d3e203435333035.roa (raw, json) Hash identifier: cPalj//L2DQWwry9XW3mJXHIMP/VWhMLdNmkuNDvOfc= Subject key identifier: 12:8E:21:EC:57:40:FF:1F:F7:27:20:93:EF:D6:6B:D4:AB:B3:DB:AE Certificate issuer: /CN=A9DD956A549689BA0A3E2FC62291352AAABD591B Certificate serial: 621849E5A5CFF5707166C5F6DA1CCE738C8EB326 Authority key identifier: A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e203435333035.roa Signing time: Mon 02 Jun 2025 05:00:01 +0000 ROA not before: Mon 02 Jun 2025 04:55:01 +0000 ROA not after: Mon 01 Jun 2026 05:00:01 +0000 asID: 45305 IP address blocks: 103.175.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.crl rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:18:49:e5:a5:cf:f5:70:71:66:c5:f6:da:1c:ce:73:8c:8e:b3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9DD956A549689BA0A3E2FC62291352AAABD591B Validity Not Before: Jun 2 04:55:01 2025 GMT Not After : Jun 1 05:00:01 2026 GMT Subject: CN=128E21EC5740FF1FF7272093EFD66BD4ABB3DBAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:2c:10:2d:78:0b:9d:22:1a:8a:9e:61:86: 6f:18:85:96:32:ec:31:45:9f:46:14:04:50:13:45: 20:28:5a:9c:de:8e:98:b3:2e:46:44:8a:69:5d:b2: d8:02:1e:a8:76:19:72:20:25:a5:18:fa:81:25:95: ac:fb:f2:37:8f:7b:81:52:e6:4b:75:d5:d1:a5:64: 75:66:1b:4b:ea:6a:08:cc:56:01:46:7b:7d:ad:95: d4:7d:a3:bc:6d:01:1c:29:e7:fc:1f:d1:16:85:01: 9f:df:e6:5d:f2:5f:c1:21:62:77:c0:8d:91:ab:64: 12:8c:ac:1f:5f:d3:d9:dd:ee:86:77:0b:9b:cf:77: 8f:16:12:b6:de:08:2b:42:b9:52:89:d5:0f:c3:c3: 56:20:b9:a5:db:91:bd:d7:3a:98:5d:69:6c:05:b5: 21:2a:d0:f1:9e:2f:8b:d4:0b:fd:84:24:f1:b6:68: df:9b:30:7d:a7:05:8f:38:37:5f:06:e7:c2:db:69: fa:a2:20:4c:d4:2b:24:54:42:86:1b:bb:40:86:95: 8d:b0:05:10:d9:81:81:4a:68:c7:14:01:d7:c8:37: 33:df:cf:0d:21:04:0f:f6:72:b2:1f:e7:e7:e8:95: 7f:15:25:1b:77:c1:28:6b:23:a3:ae:b2:7b:f9:a7: d4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8E:21:EC:57:40:FF:1F:F7:27:20:93:EF:D6:6B:D4:AB:B3:DB:AE X509v3 Authority Key Identifier: keyid:A9:DD:95:6A:54:96:89:BA:0A:3E:2F:C6:22:91:35:2A:AA:BD:59:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/A9DD956A549689BA0A3E2FC62291352AAABD591B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9DD956A549689BA0A3E2FC62291352AAABD591B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dc1c49c-d404-45a1-9e7d-86f5f852e276/0/3130332e3137352e3234302e302f32332d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.240.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:c7:6b:55:10:1e:85:37:17:9c:c7:71:48:d6:f8:98:44:8d: f8:97:78:2e:b8:55:37:6f:35:07:72:1a:ac:3f:78:12:2c:d8: 2f:d1:80:01:2a:b7:2f:59:ad:8e:db:c6:c4:ad:c9:bd:3a:17: 37:32:10:f3:12:3d:f1:ce:5c:86:1f:52:98:a0:e5:af:45:06: 84:08:bd:a5:bb:c9:cd:ef:24:1e:82:d7:ae:6c:eb:c3:29:0b: 9d:15:2f:79:9a:52:fc:23:97:bc:74:98:2c:ef:ff:d5:43:4b: ee:bd:be:3e:13:dc:7f:aa:e2:4e:57:36:17:6e:86:95:d0:05: 00:79:05:53:b6:c9:76:98:37:35:92:e3:dd:d4:39:0f:46:e4: 9e:6c:b9:60:1e:d4:af:7c:29:38:6d:d3:5c:78:98:e0:c6:13: ad:94:2a:0b:4e:da:4d:ec:37:6e:2d:cc:13:d1:06:35:fc:aa: cf:ce:98:1b:e6:33:f3:09:3b:4e:3e:e3:90:3b:e2:b6:b1:8d: 0b:ca:13:cf:74:6f:54:96:e9:e0:87:f7:f6:25:f8:16:e2:85: 04:93:94:0b:8e:e3:f4:67:8e:38:34:72:cf:5a:e1:0b:8d:f4: c5:26:a6:d2:df:62:30:da:9e:66:50:31:90:7f:bf:45:f9:73: 4f:2a:cd:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYhhJ5aXP9XBxZsX22hzOc4yOsyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlERDk1NkE1NDk2ODlCQTBBM0UyRkM2MjI5MTM1MkFB QUJENTkxQjAeFw0yNTA2MDIwNDU1MDFaFw0yNjA2MDEwNTAwMDFaMDMxMTAvBgNV BAMTKDEyOEUyMUVDNTc0MEZGMUZGNzI3MjA5M0VGRDY2QkQ0QUJCM0RCQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDENSwQLXgLnSIaip5hhm8YhZYy 7DFFn0YUBFATRSAoWpzejpizLkZEimldstgCHqh2GXIgJaUY+oEllaz78jePe4FS 5kt11dGlZHVmG0vqagjMVgFGe32tldR9o7xtARwp5/wf0RaFAZ/f5l3yX8EhYnfA jZGrZBKMrB9f09nd7oZ3C5vPd48WErbeCCtCuVKJ1Q/Dw1YguaXbkb3XOphdaWwF tSEq0PGeL4vUC/2EJPG2aN+bMH2nBY84N18G58LbafqiIEzUKyRUQoYbu0CGlY2w BRDZgYFKaMcUAdfINzPfzw0hBA/2crIf5+folX8VJRt3wShrI6Ousnv5p9TlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEo4h7FdA/x/3JyCT79Zr1Kuz264wHwYDVR0j BBgwFoAUqd2ValSWiboKPi/GIpE1Kqq9WRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGMxYzQ5Yy1kNDA0LTQ1YTEtOWU3ZC04NmY1Zjg1MmUyNzYvMC9BOUREOTU2QTU0 OTY4OUJBMEEzRTJGQzYyMjkxMzUyQUFBQkQ1OTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlERDk1NkE1NDk2ODlCQTBBM0UyRkM2MjI5MTM1MkFBQUJE NTkxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYzFjNDljLWQ0MDQtNDVhMS05 ZTdkLTg2ZjVmODUyZTI3Ni8wLzMxMzAzMzJlMzEzNzM1MmUzMjM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6/wMA0GCSqG SIb3DQEBCwUAA4IBAQBPx2tVEB6FNxecx3FI1viYRI34l3guuFU3bzUHchqsP3gS LNgv0YABKrcvWa2O28bErcm9Ohc3MhDzEj3xzlyGH1KYoOWvRQaECL2lu8nN7yQe gteubOvDKQudFS95mlL8I5e8dJgs7//VQ0vuvb4+E9x/quJOVzYXboaV0AUAeQVT tsl2mDc1kuPd1DkPRuSebLlgHtSvfCk4bdNceJjgxhOtlCoLTtpN7DduLcwT0QY1 /KrPzpgb5jPzCTtOPuOQO+K2sY0LyhPPdG9Ulungh/f2JfgW4oUEk5QLjuP0Z444 NHLPWuELjfTFJqbS32Iw2p5mUDGQf79F+XNPKs0m -----END CERTIFICATE-----Generated at Sat Jun 7 22:55:24 2025 by rpki-client