$ rpki-client -vvf repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/3130332e3138302e3234362e302f32332d3234203d3e20313439333731.roa File: 3130332e3138302e3234362e302f32332d3234203d3e20313439333731.roa (raw, json) Hash identifier: VQEEEXuPlisinrBwT/1FJcAfMTnGRscgl2dxnDWnkuY= Subject key identifier: DF:39:70:B6:9E:F2:0B:EF:6D:B1:4B:70:A1:70:D1:D3:FD:AC:99:C0 Certificate issuer: /CN=60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C Certificate serial: 2EEE64172DF21CCC1EA8247913DC489C3BF8460F Authority key identifier: 60:BC:30:7C:E1:DD:1C:8E:D9:D9:C8:7D:85:E4:D8:00:64:BB:93:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/3130332e3138302e3234362e302f32332d3234203d3e20313439333731.roa Signing time: Wed 28 May 2025 05:00:01 +0000 ROA not before: Wed 28 May 2025 04:55:01 +0000 ROA not after: Wed 27 May 2026 05:00:01 +0000 asID: 149371 IP address blocks: 103.180.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.crl rsync://repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 08:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ee:64:17:2d:f2:1c:cc:1e:a8:24:79:13:dc:48:9c:3b:f8:46:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C Validity Not Before: May 28 04:55:01 2025 GMT Not After : May 27 05:00:01 2026 GMT Subject: CN=DF3970B69EF20BEF6DB14B70A170D1D3FDAC99C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fa:f5:eb:ba:c4:24:79:5e:fb:e8:33:df:a1: 8c:5b:ab:52:a6:29:c5:88:76:2a:f8:85:0d:7f:8b: 27:56:b0:46:5c:c5:68:10:f9:7e:af:88:6f:69:3b: 43:19:43:5a:43:b9:20:01:4c:fd:06:ad:5e:b3:d9: b2:15:0b:05:04:7e:b8:64:d9:88:07:5f:0f:ce:fd: 72:fb:7d:13:5a:b4:2b:6c:f9:9c:17:02:20:32:3b: 59:4d:d5:be:e6:9a:cb:0b:6a:96:fc:34:89:d2:01: 55:f7:00:48:95:1e:84:6f:58:2c:d2:cc:86:e4:05: ee:03:e4:25:c0:f3:86:ee:55:cf:85:3a:81:e2:c8: 5d:3b:e1:bd:dd:18:2b:40:ba:30:6f:71:d8:20:96: 74:b7:37:89:0d:23:a5:70:3b:47:42:82:61:2f:5d: 81:59:ba:9f:75:03:62:8a:88:f7:e6:99:da:2f:ab: 89:95:f1:f4:ba:c3:51:ff:c5:4e:0c:90:50:5d:11: 2f:e7:b1:16:b0:72:bc:f2:83:44:e1:9c:68:e8:dd: a7:b1:3b:a9:2f:a1:4c:32:de:f1:d3:59:91:d5:7f: 2a:01:3c:bc:d1:15:e4:08:32:6e:64:f7:03:cf:ea: 57:cf:e6:4b:3c:f4:be:a6:11:8c:d7:48:89:f4:02: 97:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:39:70:B6:9E:F2:0B:EF:6D:B1:4B:70:A1:70:D1:D3:FD:AC:99:C0 X509v3 Authority Key Identifier: keyid:60:BC:30:7C:E1:DD:1C:8E:D9:D9:C8:7D:85:E4:D8:00:64:BB:93:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BC307CE1DD1C8ED9D9C87D85E4D80064BB935C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c0de6c82-d92b-4085-8893-d647791c277f/0/3130332e3138302e3234362e302f32332d3234203d3e20313439333731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.246.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:7a:a4:19:81:48:d3:9a:51:a1:52:dd:d8:57:90:28:a3:2e: d4:ff:43:21:99:49:15:27:09:2c:60:1b:dc:11:47:61:17:b4: 5d:f0:35:35:73:49:c3:dc:17:fc:cd:95:04:7f:a7:06:a7:a1: 5a:91:f0:fe:8b:a1:35:d7:48:f0:78:5a:99:c7:1d:64:de:69: 45:9e:9b:06:3c:b7:23:ac:63:6c:be:36:aa:be:95:84:0c:39: cb:12:97:a6:2d:df:5e:36:b5:5e:19:dc:13:55:15:ef:7c:47: 71:54:88:97:d9:b0:e4:68:3e:6a:6f:e1:90:49:c6:f8:89:e0: 12:af:47:e2:c1:1d:96:f0:3b:80:34:71:ea:b4:c7:f6:d1:63: ab:51:bb:a3:af:af:03:bd:3f:a2:34:ba:55:74:3e:bd:99:a3: 94:c2:39:aa:89:81:98:09:93:98:40:95:35:c7:00:67:f1:f8: 78:7b:eb:8f:be:b1:bb:d7:2d:44:f4:8f:02:9b:e9:6e:af:ba: 3d:57:f5:3d:f8:65:fa:c9:93:3e:fe:0d:74:17:d2:70:c6:fc: a7:b6:27:35:4f:f1:f2:18:f7:d1:df:73:78:4b:a4:dc:d2:01: 4d:8b:a0:62:68:c9:f2:fe:90:9f:c6:4e:4d:af:ed:ed:86:8a: 23:eb:c8:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULu5kFy3yHMweqCR5E9xInDv4Rg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBCQzMwN0NFMUREMUM4RUQ5RDlDODdEODVFNEQ4MDA2 NEJCOTM1QzAeFw0yNTA1MjgwNDU1MDFaFw0yNjA1MjcwNTAwMDFaMDMxMTAvBgNV BAMTKERGMzk3MEI2OUVGMjBCRUY2REIxNEI3MEExNzBEMUQzRkRBQzk5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq+vXrusQkeV776DPfoYxbq1Km KcWIdir4hQ1/iydWsEZcxWgQ+X6viG9pO0MZQ1pDuSABTP0GrV6z2bIVCwUEfrhk 2YgHXw/O/XL7fRNatCts+ZwXAiAyO1lN1b7mmssLapb8NInSAVX3AEiVHoRvWCzS zIbkBe4D5CXA84buVc+FOoHiyF074b3dGCtAujBvcdgglnS3N4kNI6VwO0dCgmEv XYFZup91A2KKiPfmmdovq4mV8fS6w1H/xU4MkFBdES/nsRawcrzyg0ThnGjo3aex O6kvoUwy3vHTWZHVfyoBPLzRFeQIMm5k9wPP6lfP5ks89L6mEYzXSIn0ApdZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3zlwtp7yC+9tsUtwoXDR0/2smcAwHwYDVR0j BBgwFoAUYLwwfOHdHI7Z2ch9heTYAGS7k1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MGRlNmM4Mi1kOTJiLTQwODUtODg5My1kNjQ3NzkxYzI3N2YvMC82MEJDMzA3Q0Ux REQxQzhFRDlEOUM4N0Q4NUU0RDgwMDY0QkI5MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBCQzMwN0NFMUREMUM4RUQ5RDlDODdEODVFNEQ4MDA2NEJC OTM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwZGU2YzgyLWQ5MmItNDA4NS04 ODkzLWQ2NDc3OTFjMjc3Zi8wLzMxMzAzMzJlMzEzODMwMmUzMjM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntPYwDQYJ KoZIhvcNAQELBQADggEBADp6pBmBSNOaUaFS3dhXkCijLtT/QyGZSRUnCSxgG9wR R2EXtF3wNTVzScPcF/zNlQR/pwanoVqR8P6LoTXXSPB4WpnHHWTeaUWemwY8tyOs Y2y+Nqq+lYQMOcsSl6Yt3142tV4Z3BNVFe98R3FUiJfZsORoPmpv4ZBJxviJ4BKv R+LBHZbwO4A0ceq0x/bRY6tRu6OvrwO9P6I0ulV0Pr2Zo5TCOaqJgZgJk5hAlTXH AGfx+Hh764++sbvXLUT0jwKb6W6vuj1X9T34ZfrJkz7+DXQX0nDG/Ke2JzVP8fIY 99Hfc3hLpNzSAU2LoGJoyfL+kJ/GTk2v7e2GiiPryF0= -----END CERTIFICATE-----Generated at Sat Jun 7 15:32:26 2025 by rpki-client