$ rpki-client -vvf repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa File: 3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa (raw, json) Hash identifier: Fk8DplImfz+K8DXRwes7LY4gqzQurTG9SsMeFcuo2l8= Subject key identifier: A3:18:94:CE:74:5B:E2:79:90:B4:91:D7:C9:17:37:23:67:4F:7E:E4 Certificate issuer: /CN=F89969E8BABE05C45C6D6E25F625E9F1845CCC9C Certificate serial: 571602CDDFE4C7D4C7E68999CC038DB4ADCA8A06 Authority key identifier: F8:99:69:E8:BA:BE:05:C4:5C:6D:6E:25:F6:25:E9:F1:84:5C:CC:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa Signing time: Mon 02 Jun 2025 01:03:13 +0000 ROA not before: Mon 02 Jun 2025 00:58:13 +0000 ROA not after: Mon 01 Jun 2026 01:03:13 +0000 asID: 138109 IP address blocks: 103.126.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.crl rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:16:02:cd:df:e4:c7:d4:c7:e6:89:99:cc:03:8d:b4:ad:ca:8a:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89969E8BABE05C45C6D6E25F625E9F1845CCC9C Validity Not Before: Jun 2 00:58:13 2025 GMT Not After : Jun 1 01:03:13 2026 GMT Subject: CN=A31894CE745BE27990B491D7C9173723674F7EE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:5e:c0:45:fe:00:ad:bf:2b:8f:35:da:89: 63:6c:51:52:86:0c:18:c3:7e:1d:1c:70:73:f7:3b: b4:fc:e6:79:cc:da:e9:cf:87:20:bf:ad:61:98:a5: 9d:e6:9a:1c:25:df:56:a8:42:20:04:c6:db:b5:ef: 87:05:ea:76:e8:4e:3d:8f:ba:a2:a5:f7:71:97:3f: 06:05:03:c2:7f:cc:79:0c:55:e5:c7:bb:cd:ca:3d: 2c:42:d6:59:da:d4:59:37:4a:67:e0:c3:f0:86:be: e0:21:4c:ac:81:b3:d2:13:6c:b8:0e:06:4b:20:b2: 4f:da:36:c9:ab:be:13:ba:dd:3f:fd:72:2b:ea:66: 13:ef:aa:ae:47:ae:cb:12:39:2b:fd:cf:a4:29:1a: 6a:02:bc:0b:12:4d:96:81:7a:bb:1f:0c:c3:19:53: 8b:18:16:45:c2:50:fd:d3:73:95:24:ce:2c:73:8f: a4:63:11:12:73:a1:be:44:d8:43:10:32:31:a4:51: 61:e4:20:1d:93:64:c3:e3:35:b8:3d:cf:6c:5f:c4: 44:d6:8e:f5:b4:4f:5f:09:56:b7:00:de:92:08:91: 14:e5:b4:d6:fc:4a:ab:cb:fb:19:d5:39:5b:15:5c: d4:7a:45:ff:50:d3:27:35:fb:0f:57:98:c6:67:33: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:18:94:CE:74:5B:E2:79:90:B4:91:D7:C9:17:37:23:67:4F:7E:E4 X509v3 Authority Key Identifier: keyid:F8:99:69:E8:BA:BE:05:C4:5C:6D:6E:25:F6:25:E9:F1:84:5C:CC:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.84.0/22 Signature Algorithm: sha256WithRSAEncryption bd:99:dd:a7:47:26:10:2c:28:73:c1:27:4d:d3:ec:36:5b:a2: 80:5e:1c:94:72:57:27:d5:c8:c5:79:51:97:db:7c:9d:36:b7: 0c:da:4e:93:76:88:da:7f:84:e8:9f:f6:7f:07:b5:11:f2:c2: 6e:84:af:34:cd:c2:db:59:c5:df:8c:61:48:8d:ac:5e:c5:7c: e2:c7:39:42:0c:ed:78:c6:bf:f5:f8:51:7b:d1:ba:e6:7a:c0: a5:b2:a4:f9:45:19:de:55:db:30:b6:fd:b6:53:4c:c9:1c:4c: 9d:86:64:e7:df:28:52:c1:03:64:0e:92:09:ff:ce:9a:c0:cc: c0:72:b2:fb:b6:4e:19:dc:47:45:a0:df:5f:af:59:f7:27:19: 81:39:16:8f:63:e2:e2:dc:24:e1:29:7a:f4:08:e4:f2:04:7f: 4f:aa:79:f0:44:29:e1:2d:08:56:43:2e:ab:9d:a6:cd:26:51: 61:19:20:17:33:5d:52:33:b5:40:f8:84:4a:81:66:23:a7:95: ce:88:16:87:0c:8d:f0:2c:ae:10:aa:7b:97:8b:4b:bf:d7:ff: 41:47:60:81:b6:ba:dd:49:56:d0:20:4f:eb:56:f9:0c:d6:19: 87:46:6f:56:92:8b:f1:ca:52:39:cd:5e:84:32:9d:33:bf:6e: 7d:5d:4e:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVxYCzd/kx9TH5omZzAONtK3KigYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjg5OTY5RThCQUJFMDVDNDVDNkQ2RTI1RjYyNUU5RjE4 NDVDQ0M5QzAeFw0yNTA2MDIwMDU4MTNaFw0yNjA2MDEwMTAzMTNaMDMxMTAvBgNV BAMTKEEzMTg5NENFNzQ1QkUyNzk5MEI0OTFEN0M5MTczNzIzNjc0RjdFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNol7ARf4Arb8rjzXaiWNsUVKG DBjDfh0ccHP3O7T85nnM2unPhyC/rWGYpZ3mmhwl31aoQiAExtu174cF6nboTj2P uqKl93GXPwYFA8J/zHkMVeXHu83KPSxC1lna1Fk3Smfgw/CGvuAhTKyBs9ITbLgO Bksgsk/aNsmrvhO63T/9civqZhPvqq5HrssSOSv9z6QpGmoCvAsSTZaBersfDMMZ U4sYFkXCUP3Tc5Ukzixzj6RjERJzob5E2EMQMjGkUWHkIB2TZMPjNbg9z2xfxETW jvW0T18JVrcA3pIIkRTltNb8SqvL+xnVOVsVXNR6Rf9Q0yc1+w9XmMZnMzVBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoxiUznRb4nmQtJHXyRc3I2dPfuQwHwYDVR0j BBgwFoAU+Jlp6Lq+BcRcbW4l9iXp8YRczJwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGI0ZmI4OC04ZjQyLTQ3ZjItYmU4MC0wOWU0MzU2MGRkZGYvMC9GODk5NjlFOEJB QkUwNUM0NUM2RDZFMjVGNjI1RTlGMTg0NUNDQzlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjg5OTY5RThCQUJFMDVDNDVDNkQ2RTI1RjYyNUU5RjE4NDVD Q0M5Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0YjRmYjg4LThmNDItNDdmMi1i ZTgwLTA5ZTQzNTYwZGRkZi8wLzMxMzAzMzJlMzEzMjM2MmUzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ35UMA0GCSqG SIb3DQEBCwUAA4IBAQC9md2nRyYQLChzwSdN0+w2W6KAXhyUclcn1cjFeVGX23yd NrcM2k6Tdojaf4Ton/Z/B7UR8sJuhK80zcLbWcXfjGFIjaxexXzixzlCDO14xr/1 +FF70brmesClsqT5RRneVdswtv22U0zJHEydhmTn3yhSwQNkDpIJ/86awMzAcrL7 tk4Z3EdFoN9fr1n3JxmBORaPY+Li3CThKXr0COTyBH9PqnnwRCnhLQhWQy6rnabN JlFhGSAXM11SM7VA+IRKgWYjp5XOiBaHDI3wLK4QqnuXi0u/1/9BR2CBtrrdSVbQ IE/rVvkM1hmHRm9WkovxylI5zV6EMp0zv259XU7i -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:17 2025 by rpki-client