$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: BfFCh7Vfs8z+WKVbxTTngHawwEIYaKlayBm3t+ZFnyU= Subject key identifier: 8B:79:30:80:0E:16:E3:FC:DD:8F:AE:DE:52:CA:59:C4:E9:1E:33:1E Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 11B0AC79B1346FACAEF456FE39DFE4B62699C13F Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa Signing time: Mon 02 Jun 2025 02:04:11 +0000 ROA not before: Mon 02 Jun 2025 01:59:11 +0000 ROA not after: Mon 01 Jun 2026 02:04:11 +0000 asID: 138070 IP address blocks: 103.123.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b0:ac:79:b1:34:6f:ac:ae:f4:56:fe:39:df:e4:b6:26:99:c1:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Jun 2 01:59:11 2025 GMT Not After : Jun 1 02:04:11 2026 GMT Subject: CN=8B7930800E16E3FCDD8FAEDE52CA59C4E91E331E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:02:8e:96:df:00:c7:55:64:45:d3:a3:0c:be: bd:66:10:94:69:d0:3a:2c:f1:22:01:0e:c0:a8:05: ca:70:eb:cc:65:f0:c7:44:b2:2f:81:82:8d:ea:aa: d3:5f:a2:ca:6e:98:ff:a2:20:6e:10:d2:c3:4d:93: 62:b6:de:29:0f:bd:b6:27:68:68:d4:24:72:aa:75: ec:65:9e:12:c7:f2:43:de:93:9a:3b:bb:d3:ed:d9: 61:e2:65:00:63:e1:03:f7:a1:59:8a:05:da:bf:66: 48:9e:2b:0f:1d:cd:17:55:51:69:ce:f0:ff:12:ec: 48:78:a6:79:69:39:3d:59:31:99:44:68:3d:e6:42: e6:46:68:cc:f8:e3:eb:5d:bd:1a:6b:fa:e7:7e:35: 75:4b:62:7a:60:35:69:bb:9c:33:e8:5d:a0:60:71: ed:8b:dd:6d:92:2c:e8:55:c1:9a:fd:f6:1f:6a:23: d7:5b:b7:b8:c1:fc:15:fe:a5:fc:9b:b0:8d:aa:bc: 3e:0b:58:08:2e:00:2e:83:10:76:2c:fb:9d:dc:01: 14:af:fd:77:80:ee:66:25:10:55:0f:a0:90:13:72: df:d1:fa:83:06:6a:cd:3b:c5:16:90:58:b2:11:78: b1:c1:e3:ab:57:73:0f:20:3c:ba:55:4c:42:68:c8: 69:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:79:30:80:0E:16:E3:FC:DD:8F:AE:DE:52:CA:59:C4:E9:1E:33:1E X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.105.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:b8:70:6c:cd:4f:60:8b:2a:99:c9:e1:33:db:ea:81:c1:4e: 16:1e:11:02:40:4c:74:0e:95:e2:38:b5:36:51:14:02:87:21: 1a:55:61:ab:17:64:6d:92:6f:7d:b4:ed:e7:b2:b2:91:38:17: ba:a2:22:72:00:22:cd:2b:39:f2:55:4a:81:9f:8b:35:76:c7: 61:a2:0c:36:24:83:88:d9:95:27:54:45:10:ef:34:0b:63:b3: 3c:a4:e6:83:83:4f:40:b5:16:0c:05:ee:8a:99:95:06:42:f5: 71:ce:0f:39:54:49:60:06:17:3e:91:d5:86:e4:7e:2d:d7:a2: f4:e4:92:22:1a:65:5c:8c:de:af:9f:79:5b:a9:41:94:80:cb: 46:ad:96:0c:e8:e9:1f:5a:5f:dd:eb:68:f7:6d:fb:13:10:8b: ae:f7:a7:38:ea:49:8e:dd:22:6e:7e:59:a1:75:b9:40:92:f7: 39:bf:d1:4c:61:59:19:b0:1f:14:65:1d:40:05:56:ac:df:71: 19:cb:b4:44:06:39:13:50:0f:d1:c1:d9:4e:a0:93:6b:30:5f: 9b:ec:60:fe:fb:c5:1f:87:2f:83:ac:a7:89:95:33:7b:84:39: 9b:7e:cf:f4:4b:54:ad:90:18:03:27:2a:8f:77:16:5d:4d:18: f9:01:42:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEbCsebE0b6yu9Fb+Od/ktiaZwT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNTA2MDIwMTU5MTFaFw0yNjA2MDEwMjA0MTFaMDMxMTAvBgNV BAMTKDhCNzkzMDgwMEUxNkUzRkNERDhGQUVERTUyQ0E1OUM0RTkxRTMzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTAo6W3wDHVWRF06MMvr1mEJRp 0Dos8SIBDsCoBcpw68xl8MdEsi+Bgo3qqtNfospumP+iIG4Q0sNNk2K23ikPvbYn aGjUJHKqdexlnhLH8kPek5o7u9Pt2WHiZQBj4QP3oVmKBdq/ZkieKw8dzRdVUWnO 8P8S7Eh4pnlpOT1ZMZlEaD3mQuZGaMz44+tdvRpr+ud+NXVLYnpgNWm7nDPoXaBg ce2L3W2SLOhVwZr99h9qI9dbt7jB/BX+pfybsI2qvD4LWAguAC6DEHYs+53cARSv /XeA7mYlEFUPoJATct/R+oMGas07xRaQWLIReLHB46tXcw8gPLpVTEJoyGmLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi3kwgA4W4/zdj67eUspZxOkeMx4wHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2kwDQYJ KoZIhvcNAQELBQADggEBAB+4cGzNT2CLKpnJ4TPb6oHBThYeEQJATHQOleI4tTZR FAKHIRpVYasXZG2Sb3207eeyspE4F7qiInIAIs0rOfJVSoGfizV2x2GiDDYkg4jZ lSdURRDvNAtjszyk5oODT0C1FgwF7oqZlQZC9XHODzlUSWAGFz6R1Ybkfi3XovTk kiIaZVyM3q+feVupQZSAy0atlgzo6R9aX93raPdt+xMQi673pzjqSY7dIm5+WaF1 uUCS9zm/0UxhWRmwHxRlHUAFVqzfcRnLtEQGORNQD9HB2U6gk2swX5vsYP77xR+H L4Osp4mVM3uEOZt+z/RLVK2QGAMnKo93Fl1NGPkBQpc= -----END CERTIFICATE-----Generated at Thu Jun 5 18:32:38 2025 by rpki-client