$ rpki-client -vvf repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa File: 3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa (raw, json) Hash identifier: DGGFs/nhZ+k7NUxZJLoh30LOsNcccBtIeZpWg8Hba0w= Subject key identifier: BA:DC:7B:F9:3D:DF:EA:4A:B7:C2:D7:C5:42:E8:78:F8:66:C8:82:01 Certificate issuer: /CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Certificate serial: 61F764D24919312CAA30E35183240D363174BC5A Authority key identifier: 45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa Signing time: Mon 02 Jun 2025 02:03:17 +0000 ROA not before: Mon 02 Jun 2025 01:58:17 +0000 ROA not after: Mon 01 Jun 2026 02:03:17 +0000 asID: 138873 IP address blocks: 103.140.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f7:64:d2:49:19:31:2c:aa:30:e3:51:83:24:0d:36:31:74:bc:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Validity Not Before: Jun 2 01:58:17 2025 GMT Not After : Jun 1 02:03:17 2026 GMT Subject: CN=BADC7BF93DDFEA4AB7C2D7C542E878F866C88201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:94:89:0a:7a:d7:af:94:df:c3:c4:65:08:0d: 0b:f7:36:8f:4e:32:d5:58:6e:fd:2c:f8:49:6a:70: f9:f3:ad:7b:95:f3:99:4d:46:93:95:3c:88:83:b1: 15:27:d6:f1:fb:6c:d2:3a:04:57:34:23:b3:f9:b1: 40:ba:b9:b4:a6:8c:91:06:f2:ba:f3:a2:b9:4f:2e: e9:84:16:fe:db:51:2a:92:4e:a2:05:bf:1e:a7:b9: 3c:d4:66:88:83:fc:9a:56:40:f2:cd:f5:c4:f2:32: cc:a5:33:5a:4b:52:b3:71:8f:1f:ae:a4:40:49:09: c9:c6:4e:93:8c:e8:47:6b:dd:f9:4a:96:7d:b1:66: 45:47:26:02:2f:57:fc:a7:ef:33:b2:49:f6:73:6d: ba:97:66:0a:e8:e7:6c:c5:f0:b9:58:71:78:a4:e8: f6:16:02:dd:10:dc:28:5e:98:d4:63:6b:ed:51:80: c1:e4:a1:78:44:ec:5b:5a:bd:cf:b9:78:e7:ec:a5: 49:c3:60:f9:4c:ad:91:e3:69:b8:bc:ab:5b:42:29: 00:fb:c7:ce:0a:65:f4:f9:3c:e1:cc:b1:64:5b:56: eb:a2:d9:d6:0c:42:0f:4e:49:1c:83:e3:8d:a0:ad: 20:7c:b1:96:9c:51:76:45:d1:61:e7:01:c1:8b:c8: dd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DC:7B:F9:3D:DF:EA:4A:B7:C2:D7:C5:42:E8:78:F8:66:C8:82:01 X509v3 Authority Key Identifier: keyid:45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.78.0/23 Signature Algorithm: sha256WithRSAEncryption c3:64:b9:ac:1d:43:f0:ae:6e:b3:7c:de:b5:63:3d:ce:a6:d2: a3:ac:1a:a3:e5:eb:44:ff:96:42:2a:30:74:f6:27:7d:78:fb: 89:10:ef:ff:a2:76:b9:8b:f0:7c:94:5a:b6:1c:6a:37:da:c7: 9f:d0:dc:fb:a6:0e:5a:c1:61:a0:af:a6:09:09:83:84:09:72: a1:de:78:51:ae:5a:03:e2:ae:de:0a:b4:08:8d:61:0d:86:f8: 24:c7:b1:ec:b4:c1:bd:98:74:36:83:fd:54:d6:85:4e:d6:b3: d3:a1:38:b4:1d:c1:ec:a9:27:9b:13:e9:45:d5:95:62:91:70: 6d:a9:01:84:71:07:e7:e5:9a:45:47:23:4e:7a:51:52:6e:c8: 5f:cc:47:3c:64:52:bb:d0:eb:76:10:d0:ce:fd:a7:45:05:ad: 38:1e:1e:b7:bd:15:7e:48:e8:a5:1c:aa:80:aa:d1:c5:5c:f7: 70:11:93:30:ef:b0:53:28:8a:56:cd:84:77:4d:b2:0a:94:1b: e2:b2:ad:37:e2:fc:88:05:b2:63:5c:db:ec:6d:77:cc:df:59: 32:9a:09:92:75:1f:aa:f3:42:98:91:13:49:11:76:45:7b:d7: 7a:f5:10:e8:80:5e:1e:88:a0:cc:60:a1:4d:4b:35:1b:4c:27: a2:52:da:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYfdk0kkZMSyqMONRgyQNNjF0vFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5Qjcz QkQ2MUMzOTAeFw0yNTA2MDIwMTU4MTdaFw0yNjA2MDEwMjAzMTdaMDMxMTAvBgNV BAMTKEJBREM3QkY5M0RERkVBNEFCN0MyRDdDNTQyRTg3OEY4NjZDODgyMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLlIkKetevlN/DxGUIDQv3No9O MtVYbv0s+ElqcPnzrXuV85lNRpOVPIiDsRUn1vH7bNI6BFc0I7P5sUC6ubSmjJEG 8rrzorlPLumEFv7bUSqSTqIFvx6nuTzUZoiD/JpWQPLN9cTyMsylM1pLUrNxjx+u pEBJCcnGTpOM6Edr3flKln2xZkVHJgIvV/yn7zOySfZzbbqXZgro52zF8LlYcXik 6PYWAt0Q3ChemNRja+1RgMHkoXhE7Ftavc+5eOfspUnDYPlMrZHjabi8q1tCKQD7 x84KZfT5POHMsWRbVuui2dYMQg9OSRyD442grSB8sZacUXZF0WHnAcGLyN0RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUutx7+T3f6kq3wtfFQuh4+GbIggEwHwYDVR0j BBgwFoAURXlc5BECfGlhuJ6cD725tzvWHDkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzNhYjc5ZC0wMGQ1LTQ5Y2ItYWMxMC0zYmQ0ZjIzODZiYzYvMC80NTc5NUNFNDEx MDI3QzY5NjFCODlFOUMwRkJEQjlCNzNCRDYxQzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5QjczQkQ2 MUMzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3M2FiNzlkLTAwZDUtNDljYi1h YzEwLTNiZDRmMjM4NmJjNi8wLzMxMzAzMzJlMzEzNDMwMmUzNzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4xOMA0GCSqG SIb3DQEBCwUAA4IBAQDDZLmsHUPwrm6zfN61Yz3OptKjrBqj5etE/5ZCKjB09id9 ePuJEO//ona5i/B8lFq2HGo32sef0Nz7pg5awWGgr6YJCYOECXKh3nhRrloD4q7e CrQIjWENhvgkx7HstMG9mHQ2g/1U1oVO1rPToTi0HcHsqSebE+lF1ZVikXBtqQGE cQfn5ZpFRyNOelFSbshfzEc8ZFK70Ot2ENDO/adFBa04Hh63vRV+SOilHKqAqtHF XPdwEZMw77BTKIpWzYR3TbIKlBvisq034vyIBbJjXNvsbXfM31kymgmSdR+q80KY kRNJEXZFe9d69RDogF4eiKDMYKFNSzUbTCeiUtqp -----END CERTIFICATE-----Generated at Sat Jun 7 19:17:12 2025 by rpki-client