$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa File: 3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa (raw, json) Hash identifier: 9pTXaEmfCAIZ2elcDY8x5651yYxommQlVzX4FaEZZFs= Subject key identifier: 41:82:A4:5C:CA:16:76:03:54:78:8A:79:A5:94:13:D6:84:A0:BD:CE Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 6A2DD3B7FD36AEC221A77AE9F4E5E2A73201F47E Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa Signing time: Mon 02 Jun 2025 02:04:04 +0000 ROA not before: Mon 02 Jun 2025 01:59:04 +0000 ROA not after: Mon 01 Jun 2026 02:04:04 +0000 asID: 138117 IP address blocks: 103.120.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:2d:d3:b7:fd:36:ae:c2:21:a7:7a:e9:f4:e5:e2:a7:32:01:f4:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Jun 2 01:59:04 2025 GMT Not After : Jun 1 02:04:04 2026 GMT Subject: CN=4182A45CCA16760354788A79A59413D684A0BDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:67:70:7f:57:b9:27:ac:d8:43:6a:2c:24: 6c:32:1b:62:fe:1a:29:ca:fb:9f:43:ea:dc:ab:5f: 2d:ea:f4:ad:54:ff:1d:9c:db:f7:9d:d8:5a:a3:c0: 7b:d4:83:38:1d:12:4f:9d:03:d7:1a:71:4c:d0:d8: 10:51:30:26:c8:7a:e6:1e:79:c0:81:9e:85:d0:70: 04:7d:d5:5d:7e:6b:23:c8:91:57:d6:54:62:65:f3: 88:cf:1b:e1:73:2b:2c:e6:59:94:38:4c:01:48:90: 67:d5:5f:ea:dc:94:8e:d0:f3:8b:07:c6:21:23:20: 3c:f3:72:4b:1f:e8:97:f1:0a:fa:95:22:e3:c2:c5: d9:84:b3:00:3a:51:45:a2:ab:de:97:92:0e:6d:a1: 9c:f3:54:db:06:c0:c3:99:08:ea:5d:71:74:b0:41: 27:c8:9c:a3:83:27:d8:42:66:a5:78:49:0f:ff:5e: 52:90:41:05:40:da:74:66:c0:f6:01:23:78:4e:09: e3:7b:c4:b1:39:68:d2:ae:6d:78:ef:1b:8f:30:af: 87:5b:a0:75:25:c3:fd:79:86:40:1b:51:01:7a:a8: 4c:6d:98:d7:dc:02:88:26:3a:9c:38:b0:73:ae:32: ca:1a:29:7d:de:5b:36:86:91:bd:1a:f0:b3:5e:fd: cf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:82:A4:5C:CA:16:76:03:54:78:8A:79:A5:94:13:D6:84:A0:BD:CE X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.124.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:7d:78:ac:88:bb:31:1e:b9:fc:95:75:0a:ec:81:6e:ee:59: 03:95:bf:7e:56:67:d7:39:ed:fe:de:16:0c:4d:f0:70:d6:62: f1:96:4f:ad:d4:d8:bc:be:37:58:e6:3b:d2:ad:b9:48:c7:3c: 43:48:4e:97:95:c7:2c:a4:47:87:dd:17:d6:24:1e:41:41:e4: 95:5e:ef:61:fe:a9:05:92:5b:ef:5e:a1:51:0b:06:eb:0e:1c: 2f:57:06:fa:6c:a9:96:4f:c2:ce:c8:72:c7:41:af:85:a8:d0: 88:22:99:31:ef:27:d5:70:c2:e8:85:1c:87:34:71:22:93:e6: 25:20:16:c7:44:dc:bf:54:1e:46:c8:34:0f:18:80:61:bd:eb: f6:93:43:24:ed:b2:2a:c7:8a:96:4f:b0:ba:d4:f0:cf:63:93: dd:16:3b:71:9a:ba:41:5d:82:a9:74:e1:5e:49:36:77:5c:f4: d2:61:fc:41:0b:2e:db:3b:9b:e3:00:1c:60:cc:11:ba:45:62: 69:56:24:00:10:fb:ec:0f:ce:15:09:6d:ce:65:95:36:d2:e5: e6:ae:2c:0d:49:62:a6:37:75:85:ee:99:4d:57:c2:91:40:47: dc:b9:b2:02:93:5e:9d:f2:74:f6:37:c7:3c:73:4f:92:35:1c: ee:b5:32:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUai3Tt/02rsIhp3rp9OXipzIB9H4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yNTA2MDIwMTU5MDRaFw0yNjA2MDEwMjA0MDRaMDMxMTAvBgNV BAMTKDQxODJBNDVDQ0ExNjc2MDM1NDc4OEE3OUE1OTQxM0Q2ODRBMEJEQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGCmdwf1e5J6zYQ2osJGwyG2L+ GinK+59D6tyrXy3q9K1U/x2c2/ed2FqjwHvUgzgdEk+dA9cacUzQ2BBRMCbIeuYe ecCBnoXQcAR91V1+ayPIkVfWVGJl84jPG+FzKyzmWZQ4TAFIkGfVX+rclI7Q84sH xiEjIDzzcksf6JfxCvqVIuPCxdmEswA6UUWiq96Xkg5toZzzVNsGwMOZCOpdcXSw QSfInKODJ9hCZqV4SQ//XlKQQQVA2nRmwPYBI3hOCeN7xLE5aNKubXjvG48wr4db oHUlw/15hkAbUQF6qExtmNfcAogmOpw4sHOuMsoaKX3eWzaGkb0a8LNe/c87AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQYKkXMoWdgNUeIp5pZQT1oSgvc4wHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMxMzAzMzJlMzEzMjMwMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneHwwDQYJ KoZIhvcNAQELBQADggEBAA59eKyIuzEeufyVdQrsgW7uWQOVv35WZ9c57f7eFgxN 8HDWYvGWT63U2Ly+N1jmO9KtuUjHPENITpeVxyykR4fdF9YkHkFB5JVe72H+qQWS W+9eoVELBusOHC9XBvpsqZZPws7IcsdBr4Wo0IgimTHvJ9VwwuiFHIc0cSKT5iUg FsdE3L9UHkbINA8YgGG96/aTQyTtsirHipZPsLrU8M9jk90WO3GaukFdgql04V5J Nndc9NJh/EELLts7m+MAHGDMEbpFYmlWJAAQ++wPzhUJbc5llTbS5eauLA1JYqY3 dYXumU1XwpFAR9y5sgKTXp3ydPY3xzxzT5I1HO61Mjo= -----END CERTIFICATE-----Generated at Sun Jun 8 13:36:47 2025 by rpki-client