$ rpki-client -vvf repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa File: 3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: J4NiRzqR7OJJpZcBvTEqABRnGVn4+G6RK0nifMHQkIc= Subject key identifier: 1A:FE:CE:78:0E:E6:4A:62:74:C2:03:E7:15:D7:32:A4:72:E8:69:5F Certificate issuer: /CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Certificate serial: 3C074A650F4519ECEE417AEEB5D64E58FB1479BC Authority key identifier: 39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa Signing time: Fri 30 May 2025 09:00:01 +0000 ROA not before: Fri 30 May 2025 08:55:01 +0000 ROA not after: Fri 29 May 2026 09:00:01 +0000 asID: 9341 IP address blocks: 103.137.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:07:4a:65:0f:45:19:ec:ee:41:7a:ee:b5:d6:4e:58:fb:14:79:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Validity Not Before: May 30 08:55:01 2025 GMT Not After : May 29 09:00:01 2026 GMT Subject: CN=1AFECE780EE64A6274C203E715D732A472E8695F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:c4:e9:60:8e:5a:89:77:3b:22:be:18:73: b5:35:cc:9b:e6:81:c8:dd:11:74:9f:13:e5:74:35: 82:f8:af:d1:46:e4:8f:c3:e6:50:57:27:1f:88:b9: c4:54:6a:46:0b:3d:c3:d0:27:23:fe:61:0c:3e:6d: bc:50:b5:f3:fd:4b:58:01:92:0d:8a:55:ca:cd:c3: 32:e6:fb:bc:d5:dd:83:60:92:89:93:76:41:5a:b9: ea:e1:41:95:ee:76:62:d0:f8:d5:8c:92:c2:54:5b: a0:b2:3a:ff:ee:3f:8e:0f:ee:71:b9:58:78:8b:03: a0:8a:55:aa:c9:ba:d1:3b:dd:07:40:74:31:3a:61: ea:03:88:e7:ba:35:3e:9b:a4:0d:02:d0:c5:fc:e5: 80:e3:14:3b:09:99:f4:40:67:3d:2d:e2:a9:9c:30: 7f:d6:41:62:7e:8e:01:08:a5:44:dd:95:66:ff:9d: 7f:c4:ce:38:f1:37:cd:bf:db:31:78:7a:f4:0d:fe: 48:af:3a:6e:ec:76:8e:90:f4:9e:b6:58:7c:da:d3: 43:1f:4f:93:51:67:ed:8b:80:a2:73:da:0c:04:3e: 1a:6e:38:b9:b4:3b:75:36:b3:25:e7:63:ab:fe:8b: cd:09:b7:33:09:4e:3e:78:c5:f5:9e:c2:da:d3:5c: 12:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:CE:78:0E:E6:4A:62:74:C2:03:E7:15:D7:32:A4:72:E8:69:5F X509v3 Authority Key Identifier: keyid:39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.189.0/24 Signature Algorithm: sha256WithRSAEncryption 01:91:91:14:87:a1:03:4d:2a:b2:04:e7:35:70:02:e3:de:1e: 0f:52:c3:a0:d2:dc:20:e9:8d:61:17:c9:03:5a:29:3a:be:ea: 00:d2:00:96:1e:45:66:1a:07:4d:0a:7f:d4:c1:27:a8:93:c6: a7:69:23:13:77:07:f8:bf:5e:c2:7e:d4:31:47:fe:ce:85:b4: 27:a2:ca:d3:e4:79:96:70:75:b9:4c:0a:61:b4:9f:2c:af:29: 0e:3e:39:7e:db:15:9e:cb:f1:32:3d:eb:60:f1:15:68:8c:60: 2e:65:3a:48:52:b5:9f:70:10:34:4c:9d:80:74:ad:fe:d5:58: 38:b5:6b:da:c7:14:0b:f3:9b:ba:16:46:09:5a:0c:dc:35:79: a5:11:a0:bd:5e:c2:3a:f9:97:3a:19:3f:92:50:83:1c:9c:90: f1:26:ef:c3:65:65:cf:5f:d4:21:7f:35:b1:7a:2f:38:53:dd: c1:25:30:f6:46:23:d5:fc:d7:a9:2e:21:d2:10:b2:a6:e7:f8: 48:4a:a1:f3:8b:96:d7:5a:12:89:dc:c8:67:2e:a4:d3:84:8b: 5a:bd:54:9d:87:0c:c0:52:a2:59:52:4b:89:ff:f6:60:e6:fa: aa:ed:c1:86:47:5c:1d:72:4e:dd:53:da:7f:b1:28:37:86:c5: 64:89:0e:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPAdKZQ9FGezuQXrutdZOWPsUebwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1 NTA1RUQzMDAeFw0yNTA1MzAwODU1MDFaFw0yNjA1MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDFBRkVDRTc4MEVFNjRBNjI3NEMyMDNFNzE1RDczMkE0NzJFODY5NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtcTpYI5aiXc7Ir4Yc7U1zJvm gcjdEXSfE+V0NYL4r9FG5I/D5lBXJx+IucRUakYLPcPQJyP+YQw+bbxQtfP9S1gB kg2KVcrNwzLm+7zV3YNgkomTdkFauerhQZXudmLQ+NWMksJUW6CyOv/uP44P7nG5 WHiLA6CKVarJutE73QdAdDE6YeoDiOe6NT6bpA0C0MX85YDjFDsJmfRAZz0t4qmc MH/WQWJ+jgEIpUTdlWb/nX/EzjjxN82/2zF4evQN/kivOm7sdo6Q9J62WHza00Mf T5NRZ+2LgKJz2gwEPhpuOLm0O3U2syXnY6v+i80JtzMJTj54xfWewtrTXBJ7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGv7OeA7mSmJ0wgPnFdcypHLoaV8wHwYDVR0j BBgwFoAUOZ+EEY7e+q1d2TZzv9Ybn1UF7TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmMxMjcwMy1mMWY3LTQzYzktYTIyMC05MmVkZDg2ZWZlNWUvMC8zOTlGODQxMThF REVGQUFENUREOTM2NzNCRkQ2MUI5RjU1MDVFRDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1NTA1 RUQzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YzEyNzAzLWYxZjctNDNjOS1h MjIwLTkyZWRkODZlZmU1ZS8wLzMxMzAzMzJlMzEzMzM3MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeJvTANBgkqhkiG 9w0BAQsFAAOCAQEAAZGRFIehA00qsgTnNXAC494eD1LDoNLcIOmNYRfJA1opOr7q ANIAlh5FZhoHTQp/1MEnqJPGp2kjE3cH+L9ewn7UMUf+zoW0J6LK0+R5lnB1uUwK YbSfLK8pDj45ftsVnsvxMj3rYPEVaIxgLmU6SFK1n3AQNEydgHSt/tVYOLVr2scU C/ObuhZGCVoM3DV5pRGgvV7COvmXOhk/klCDHJyQ8Sbvw2Vlz1/UIX81sXovOFPd wSUw9kYj1fzXqS4h0hCypuf4SEqh84uW11oSidzIZy6k04SLWr1UnYcMwFKiWVJL if/2YOb6qu3BhkdcHXJO3VPaf7EoN4bFZIkO0Q== -----END CERTIFICATE-----Generated at Fri Jun 6 16:43:28 2025 by rpki-client