$ rpki-client -vvf repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa File: 3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa (raw, json) Hash identifier: K2fIlKFX85sJnEGjOMrjt29RukBDvMWsg0CxSB5ZaiE= Subject key identifier: 3A:81:1D:FA:FA:8E:7B:B3:F6:3C:4C:9F:BD:AA:B4:61:59:A0:29:57 Certificate issuer: /CN=179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F Certificate serial: 73E45B834AC8CBE2CFACCD8AB90D82288CA8BB98 Authority key identifier: 17:9B:4E:B2:33:0E:26:EC:D7:7C:82:54:D8:F8:BD:DD:1C:CB:6E:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa Signing time: Tue 20 May 2025 12:00:01 +0000 ROA not before: Tue 20 May 2025 11:55:01 +0000 ROA not after: Tue 19 May 2026 12:00:01 +0000 asID: 131713 IP address blocks: 103.149.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.crl rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 19:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e4:5b:83:4a:c8:cb:e2:cf:ac:cd:8a:b9:0d:82:28:8c:a8:bb:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F Validity Not Before: May 20 11:55:01 2025 GMT Not After : May 19 12:00:01 2026 GMT Subject: CN=3A811DFAFA8E7BB3F63C4C9FBDAAB46159A02957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:c7:86:76:12:b3:ba:ac:77:70:4b:35:8e: 2a:64:4b:df:d4:87:5d:75:03:55:89:2e:44:f8:2f: 13:97:30:74:48:f6:23:09:57:19:e4:0e:cd:a1:67: 95:30:8c:8f:ab:6a:ef:8f:3e:1a:6c:67:38:ef:7f: f2:93:45:c3:2a:87:4a:cf:81:28:f2:1e:a4:07:63: 19:37:bb:a0:81:77:6c:3f:df:3b:11:03:bc:a0:79: c8:bd:87:f5:b5:a0:e6:85:0e:c1:93:6b:8d:c9:e9: 5a:a5:ad:58:13:a7:07:35:09:d7:54:32:67:b7:c4: ea:6f:99:b1:ae:6b:b9:e2:44:9f:ea:db:83:30:3c: 04:4a:be:3c:56:fc:e1:a6:af:57:fc:b3:16:6e:2d: 6a:ba:18:48:9b:4b:57:d8:57:73:97:7f:fb:71:98: 7c:7d:de:a5:ba:00:48:bb:d0:56:32:c0:b7:36:9a: 57:40:a3:0d:3a:08:10:5f:39:de:e6:42:d7:b9:87: bf:b6:1d:c2:7f:96:6d:9f:13:38:c6:fb:e0:57:bf: 4e:d4:66:ee:33:67:93:57:b1:05:8e:23:b1:71:8a: 21:88:2e:2b:38:92:74:56:c9:a4:7b:c5:54:8f:1b: 66:d8:46:f2:c4:e8:09:5b:60:df:5b:2c:54:f0:99: b8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:81:1D:FA:FA:8E:7B:B3:F6:3C:4C:9F:BD:AA:B4:61:59:A0:29:57 X509v3 Authority Key Identifier: keyid:17:9B:4E:B2:33:0E:26:EC:D7:7C:82:54:D8:F8:BD:DD:1C:CB:6E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.140.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:e5:70:90:4b:26:6b:9d:0c:5a:d0:8c:a9:4b:06:97:58:ed: 7d:41:5f:40:76:6e:40:be:f5:48:5a:76:1f:c3:db:56:0d:36: bd:23:cd:3d:f7:73:2b:4f:79:6f:a5:5c:21:69:a1:b6:12:cb: 53:ce:1f:fe:6b:f5:30:3d:03:0b:41:8f:c9:c1:28:8e:8b:9d: 72:19:68:4c:9a:ba:42:b7:0c:01:c9:38:13:db:67:cb:d1:a6: ed:bb:60:ec:d6:3c:3a:d3:fb:d7:8e:d6:03:f5:db:da:14:aa: ca:a0:c3:09:8a:d8:a4:2e:d7:33:1d:36:c5:45:cb:dc:ed:c7: ab:85:36:14:9c:d4:49:90:f6:3a:0a:1e:d8:41:a5:92:d5:80: c5:2e:02:b7:4c:89:43:da:ef:ba:e1:1e:0a:7a:2d:17:d3:f4: d9:3d:3a:5d:7f:b1:53:17:3b:79:90:44:a8:b5:c4:8f:68:fd: a3:5c:12:f1:79:ad:6f:45:9c:bf:5e:3e:64:50:d7:24:2e:88: c3:0e:68:e4:24:96:63:3c:1d:e6:42:d8:5b:91:8d:bb:9d:82: 53:ec:9c:b9:94:1f:b6:b1:56:07:13:7a:78:51:27:e0:c2:e1: 52:51:d6:1f:94:94:fb:3f:e5:0c:03:c7:8a:83:9b:43:b7:97: de:5d:44:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc+Rbg0rIy+LPrM2KuQ2CKIyou5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc5QjRFQjIzMzBFMjZFQ0Q3N0M4MjU0RDhGOEJEREQx Q0NCNkU3RjAeFw0yNTA1MjAxMTU1MDFaFw0yNjA1MTkxMjAwMDFaMDMxMTAvBgNV BAMTKDNBODExREZBRkE4RTdCQjNGNjNDNEM5RkJEQUFCNDYxNTlBMDI5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvpMeGdhKzuqx3cEs1jipkS9/U h111A1WJLkT4LxOXMHRI9iMJVxnkDs2hZ5UwjI+rau+PPhpsZzjvf/KTRcMqh0rP gSjyHqQHYxk3u6CBd2w/3zsRA7ygeci9h/W1oOaFDsGTa43J6VqlrVgTpwc1CddU Mme3xOpvmbGua7niRJ/q24MwPARKvjxW/OGmr1f8sxZuLWq6GEibS1fYV3OXf/tx mHx93qW6AEi70FYywLc2mldAow06CBBfOd7mQte5h7+2HcJ/lm2fEzjG++BXv07U Zu4zZ5NXsQWOI7FxiiGILis4knRWyaR7xVSPG2bYRvLE6AlbYN9bLFTwmbiFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOoEd+vqOe7P2PEyfvaq0YVmgKVcwHwYDVR0j BBgwFoAUF5tOsjMOJuzXfIJU2Pi93RzLbn8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTdmMGU2Yy0xNDVhLTRjZjMtYjI4My00MmM0YWY4MTkxODgvMC8xNzlCNEVCMjMz MEUyNkVDRDc3QzgyNTREOEY4QkRERDFDQ0I2RTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTc5QjRFQjIzMzBFMjZFQ0Q3N0M4MjU0RDhGOEJEREQxQ0NC NkU3Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1N2YwZTZjLTE0NWEtNGNmMy1i MjgzLTQyYzRhZjgxOTE4OC8wLzMxMzAzMzJlMzEzNDM5MmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlYwwDQYJ KoZIhvcNAQELBQADggEBACzlcJBLJmudDFrQjKlLBpdY7X1BX0B2bkC+9Uhadh/D 21YNNr0jzT33cytPeW+lXCFpobYSy1POH/5r9TA9AwtBj8nBKI6LnXIZaEyaukK3 DAHJOBPbZ8vRpu27YOzWPDrT+9eO1gP129oUqsqgwwmK2KQu1zMdNsVFy9ztx6uF NhSc1EmQ9joKHthBpZLVgMUuArdMiUPa77rhHgp6LRfT9Nk9Ol1/sVMXO3mQRKi1 xI9o/aNcEvF5rW9FnL9ePmRQ1yQuiMMOaOQklmM8HeZC2FuRjbudglPsnLmUH7ax VgcTenhRJ+DC4VJR1h+UlPs/5QwDx4qDm0O3l95dRAU= -----END CERTIFICATE-----Generated at Sun Jun 8 06:41:57 2025 by rpki-client