$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: yHCpL2jeoTRdKkL9PeW/BmTUh9ZLAObQa8uLRwAc8Ww= Subject key identifier: 8B:B8:52:BE:71:F4:75:B3:57:96:F9:6F:0F:1C:60:03:62:00:76:03 Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 6BD62F374B3487DBB201C28267D9094B1E9C116A Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa Signing time: Mon 02 Jun 2025 02:04:10 +0000 ROA not before: Mon 02 Jun 2025 01:59:10 +0000 ROA not after: Mon 01 Jun 2026 02:04:10 +0000 asID: 138070 IP address blocks: 103.123.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d6:2f:37:4b:34:87:db:b2:01:c2:82:67:d9:09:4b:1e:9c:11:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Jun 2 01:59:10 2025 GMT Not After : Jun 1 02:04:10 2026 GMT Subject: CN=8BB852BE71F475B35796F96F0F1C600362007603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:4a:cb:63:04:57:ab:09:ae:7f:8b:36:27: d7:7e:06:c4:a1:b3:3d:80:dc:5f:48:7f:ca:ed:ea: c8:d0:25:f2:de:1f:de:66:5f:d1:53:89:1f:1c:22: 31:ef:b5:62:85:3a:66:6d:50:3f:5b:79:a2:55:7c: e4:d1:0e:ae:d2:d5:21:d7:12:83:fc:3a:8e:38:f7: 03:cf:1d:1b:e6:3a:f1:16:fc:92:30:02:dd:3c:43: e0:4a:48:7d:e4:dc:28:24:8f:3e:a8:17:43:4a:8d: fa:23:ca:8e:04:ff:05:a5:ec:e6:ee:73:08:42:e8: 68:4f:17:ad:8a:4c:3f:1c:64:75:22:6c:aa:ab:c9: ff:ed:7b:8e:33:3f:77:81:7c:37:aa:d9:1b:61:b3: c4:17:f6:6a:1e:4f:33:7a:80:24:fc:40:1c:d2:a3: de:55:71:bf:36:b5:ef:a1:78:34:0b:71:64:c3:0a: fa:f1:93:7b:50:3b:70:b5:f9:f9:65:ef:7e:a7:f1: 3b:a7:b2:ed:2d:d2:2f:fd:ae:6b:6e:13:3a:e3:4e: f0:a9:03:11:4a:e8:4a:b8:24:4f:a1:d4:5d:e4:fc: 86:94:f1:8a:b7:85:87:ec:7c:6f:3e:88:f7:66:39: c7:e1:8e:c4:39:9c:88:42:ef:3e:f7:dd:c1:f5:74: 11:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B8:52:BE:71:F4:75:B3:57:96:F9:6F:0F:1C:60:03:62:00:76:03 X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/24 Signature Algorithm: sha256WithRSAEncryption 80:e6:89:3f:39:2d:6c:18:71:d0:c3:34:3f:e6:7b:9e:74:45: 48:93:21:32:62:a6:24:f1:a3:7d:f5:cf:df:4d:82:fb:8a:97: 7f:12:42:e2:4c:5b:47:bb:32:76:90:d0:39:d8:7e:75:81:95: 7d:38:ca:95:39:e0:49:73:06:54:32:1a:f6:ab:d5:2d:f8:5d: 28:f1:a3:11:4a:bf:30:34:eb:1c:ac:0c:cf:6d:66:e8:44:93: 22:81:7c:bf:5b:ca:e4:77:39:31:0c:c3:c3:d0:17:e7:4b:09: 0e:c4:52:7e:97:bc:fa:73:7e:e6:d0:b6:63:d1:16:ce:dd:32: 3b:51:e2:3b:5e:1a:15:fe:12:80:79:f7:b5:5e:75:e5:7c:c1: b4:f5:a2:3e:1a:52:c4:31:dc:6f:0e:5b:66:17:51:76:33:04: 3b:1f:48:6d:85:e7:67:5a:77:a6:4d:42:a2:90:9a:cf:3d:45: 92:6d:88:2a:ac:18:c4:b3:fa:d4:a9:a9:d6:a4:1e:62:0c:17: 7c:44:9b:1c:4f:c7:ff:85:ff:07:81:70:29:da:39:b9:89:9b: 66:fd:81:e2:e0:a4:de:29:99:94:2d:0b:83:6c:a2:24:5e:f1: 78:c5:bb:22:92:f2:1b:be:e5:99:11:ca:93:a9:09:60:7b:e5: f5:c6:8c:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa9YvN0s0h9uyAcKCZ9kJSx6cEWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNTA2MDIwMTU5MTBaFw0yNjA2MDEwMjA0MTBaMDMxMTAvBgNV BAMTKDhCQjg1MkJFNzFGNDc1QjM1Nzk2Rjk2RjBGMUM2MDAzNjIwMDc2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqkrLYwRXqwmuf4s2J9d+BsSh sz2A3F9If8rt6sjQJfLeH95mX9FTiR8cIjHvtWKFOmZtUD9beaJVfOTRDq7S1SHX EoP8Oo449wPPHRvmOvEW/JIwAt08Q+BKSH3k3Cgkjz6oF0NKjfojyo4E/wWl7Obu cwhC6GhPF62KTD8cZHUibKqryf/te44zP3eBfDeq2Rths8QX9moeTzN6gCT8QBzS o95Vcb82te+heDQLcWTDCvrxk3tQO3C1+fll736n8Tunsu0t0i/9rmtuEzrjTvCp AxFK6Eq4JE+h1F3k/IaU8Yq3hYfsfG8+iPdmOcfhjsQ5nIhC7z733cH1dBHrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi7hSvnH0dbNXlvlvDxxgA2IAdgMwHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2gwDQYJ KoZIhvcNAQELBQADggEBAIDmiT85LWwYcdDDND/me550RUiTITJipiTxo331z99N gvuKl38SQuJMW0e7MnaQ0DnYfnWBlX04ypU54ElzBlQyGvar1S34XSjxoxFKvzA0 6xysDM9tZuhEkyKBfL9byuR3OTEMw8PQF+dLCQ7EUn6XvPpzfubQtmPRFs7dMjtR 4jteGhX+EoB597VedeV8wbT1oj4aUsQx3G8OW2YXUXYzBDsfSG2F52dad6ZNQqKQ ms89RZJtiCqsGMSz+tSpqdakHmIMF3xEmxxPx/+F/weBcCnaObmJm2b9geLgpN4p mZQtC4NsoiRe8XjFuyKS8hu+5ZkRypOpCWB75fXGjJA= -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:11 2025 by rpki-client