$ rpki-client -vvf repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa File: 3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: 9ysblGZ5nRnpD9uRTt/CttmsXFnbP66QhYFS5MHljXI= Subject key identifier: 2B:1C:65:3D:C0:25:09:4E:1C:32:A0:0F:58:90:9E:FC:CC:07:17:BE Certificate issuer: /CN=8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD Certificate serial: 1B573872AFD3E9CEEF79AC5F2A64E8BF29B84070 Authority key identifier: 8B:E4:A7:01:F2:92:4B:4B:FB:8A:98:3A:1B:0B:D5:C8:86:3B:F3:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa Signing time: Mon 02 Jun 2025 02:03:10 +0000 ROA not before: Mon 02 Jun 2025 01:58:10 +0000 ROA not after: Mon 01 Jun 2026 02:03:10 +0000 asID: 138131 IP address blocks: 103.121.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.crl rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 08:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:57:38:72:af:d3:e9:ce:ef:79:ac:5f:2a:64:e8:bf:29:b8:40:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD Validity Not Before: Jun 2 01:58:10 2025 GMT Not After : Jun 1 02:03:10 2026 GMT Subject: CN=2B1C653DC025094E1C32A00F58909EFCCC0717BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:3a:a3:f7:97:ae:3a:a5:66:3c:6f:2e:49: e6:09:cb:8c:3a:ce:c5:78:3b:28:6e:a8:f2:c3:4d: d4:de:ad:0e:c6:2c:6e:b1:b4:4a:8f:0b:70:1a:27: d2:a3:c4:bc:9e:ba:5c:a4:13:a7:9f:5c:75:46:3b: 8d:b0:1f:44:d7:0d:3c:78:ca:d3:71:0c:42:5b:b9: e3:05:6f:35:9a:d1:5f:3d:a9:9b:85:d5:80:54:70: 21:70:f0:cc:cd:df:6f:06:97:7b:ab:7a:4a:17:3e: c7:dc:2f:0f:9b:e1:6b:38:18:c7:ff:3d:3f:7e:f0: 68:da:f2:18:5d:3a:d8:97:d2:ea:32:72:a6:e8:d6: dd:b2:00:c1:25:54:0b:72:82:57:53:f3:e4:a2:30: b6:88:3e:5f:9c:64:ef:93:42:83:9f:b5:98:2f:74: 3e:69:71:b3:77:c0:4b:43:1e:04:58:dd:30:5b:51: 7c:37:3b:b2:11:8a:88:f6:f0:15:f5:93:ab:fc:58: 88:5b:fd:33:92:e8:d9:80:e9:c2:5b:1f:0d:c0:f3: 47:2c:b3:e7:b4:0e:c1:4d:6d:13:07:5e:e8:65:ae: f9:d1:a6:01:2d:0a:a0:11:24:d9:5a:02:1b:80:49: e0:64:88:46:01:5f:72:fb:c7:a7:38:c7:b4:ca:8e: 78:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1C:65:3D:C0:25:09:4E:1C:32:A0:0F:58:90:9E:FC:CC:07:17:BE X509v3 Authority Key Identifier: keyid:8B:E4:A7:01:F2:92:4B:4B:FB:8A:98:3A:1B:0B:D5:C8:86:3B:F3:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.122.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:99:fb:0e:93:9d:ad:2d:e2:4f:06:ae:88:36:3f:47:54:41: 2c:cd:9c:53:b6:f1:b1:e0:16:8d:16:f3:64:0c:ee:38:29:bb: 0c:50:72:9a:b4:85:f7:b9:bb:05:bd:d7:af:3f:a2:23:eb:cf: df:63:d6:00:da:1f:b3:21:25:97:5d:94:46:8d:55:9e:d3:6d: bc:86:f8:90:1e:91:b5:2a:13:0a:1e:85:09:c7:a6:ed:87:c5: be:44:a5:8b:8c:dd:0f:ca:a5:9e:6b:11:bb:8b:45:46:86:ea: 38:74:f8:ed:89:4a:90:b4:ad:70:6c:23:8e:e0:b9:ff:76:6e: 40:90:52:5e:0a:03:1d:98:00:c2:3d:b2:42:3e:4c:47:45:71: 52:b8:1c:33:c2:ed:01:a1:cf:48:ed:28:2d:10:4f:c1:87:08: c0:9e:05:15:e3:67:b2:55:e0:03:b7:b1:e0:1b:37:16:18:6a: de:58:f2:d5:bd:55:9f:8d:a2:c0:bc:11:7d:6b:91:ae:30:e6: e4:bf:1b:40:f3:f1:b9:89:d8:bd:4c:11:cd:56:f7:f4:f7:63: 7a:a3:f8:8e:b7:64:14:ee:a0:df:cc:db:ac:09:4b:c8:d0:18: ef:9a:ea:b4:b1:d2:76:48:23:25:54:97:2b:2e:19:d7:70:61: 6b:3e:3c:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG1c4cq/T6c7veaxfKmTovym4QHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFNEE3MDFGMjkyNEI0QkZCOEE5ODNBMUIwQkQ1Qzg4 NjNCRjNGRDAeFw0yNTA2MDIwMTU4MTBaFw0yNjA2MDEwMjAzMTBaMDMxMTAvBgNV BAMTKDJCMUM2NTNEQzAyNTA5NEUxQzMyQTAwRjU4OTA5RUZDQ0MwNzE3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd/Dqj95euOqVmPG8uSeYJy4w6 zsV4OyhuqPLDTdTerQ7GLG6xtEqPC3AaJ9KjxLyeulykE6efXHVGO42wH0TXDTx4 ytNxDEJbueMFbzWa0V89qZuF1YBUcCFw8MzN328Gl3urekoXPsfcLw+b4Ws4GMf/ PT9+8Gja8hhdOtiX0uoycqbo1t2yAMElVAtygldT8+SiMLaIPl+cZO+TQoOftZgv dD5pcbN3wEtDHgRY3TBbUXw3O7IRioj28BX1k6v8WIhb/TOS6NmA6cJbHw3A80cs s+e0DsFNbRMHXuhlrvnRpgEtCqARJNlaAhuASeBkiEYBX3L7x6c4x7TKjngPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKxxlPcAlCU4cMqAPWJCe/MwHF74wHwYDVR0j BBgwFoAUi+SnAfKSS0v7ipg6GwvVyIY78/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDYzNDdmNC1lYTI2LTRkNGMtYTU2OC0xZDg2MzM2MGU0MjEvMC84QkU0QTcwMUYy OTI0QjRCRkI4QTk4M0ExQjBCRDVDODg2M0JGM0ZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJFNEE3MDFGMjkyNEI0QkZCOEE5ODNBMUIwQkQ1Qzg4NjNC RjNGRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNjM0N2Y0LWVhMjYtNGQ0Yy1h NTY4LTFkODYzMzYwZTQyMS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneXowDQYJ KoZIhvcNAQELBQADggEBAJqZ+w6Tna0t4k8Grog2P0dUQSzNnFO28bHgFo0W82QM 7jgpuwxQcpq0hfe5uwW9168/oiPrz99j1gDaH7MhJZddlEaNVZ7TbbyG+JAekbUq EwoehQnHpu2Hxb5EpYuM3Q/KpZ5rEbuLRUaG6jh0+O2JSpC0rXBsI47guf92bkCQ Ul4KAx2YAMI9skI+TEdFcVK4HDPC7QGhz0jtKC0QT8GHCMCeBRXjZ7JV4AO3seAb NxYYat5Y8tW9VZ+NosC8EX1rka4w5uS/G0Dz8bmJ2L1MEc1W9/T3Y3qj+I63ZBTu oN/M26wJS8jQGO+a6rSx0nZIIyVUlysuGddwYWs+PNQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:17:50 2025 by rpki-client