$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA= Subject key identifier: 6D:4A:2C:78:2A:81:6D:65:D2:BD:E9:DE:6C:A7:63:05:D8:5D:B3:06 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 7990B8EAD799844A8AEC598F16267FC9896903A1 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa Signing time: Fri 20 Jun 2025 07:00:00 +0000 ROA not before: Fri 20 Jun 2025 06:55:00 +0000 ROA not after: Fri 19 Jun 2026 07:00:00 +0000 asID: 138139 IP address blocks: 103.133.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:90:b8:ea:d7:99:84:4a:8a:ec:59:8f:16:26:7f:c9:89:69:03:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jun 20 06:55:00 2025 GMT Not After : Jun 19 07:00:00 2026 GMT Subject: CN=6D4A2C782A816D65D2BDE9DE6CA76305D85DB306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:d8:2f:83:5b:ff:f8:d8:49:34:c1:bd:56: 6f:8e:02:ce:1c:e9:b8:0d:20:0f:83:13:b3:d0:cb: 3c:54:72:b7:65:fe:aa:f4:0a:14:31:ca:41:6c:33: 4c:5b:2b:45:33:b4:eb:39:4d:96:c8:0e:c8:24:48: 34:1b:dd:64:88:bd:5f:59:84:98:e1:c3:da:b0:57: 77:4b:fe:dd:e3:8d:54:72:30:1b:7a:1e:96:73:2e: ec:4e:7d:58:72:ef:d7:96:c9:3d:5a:ca:27:7f:4e: a8:67:1d:53:56:c9:f2:5c:29:9e:54:58:06:64:d1: b4:3f:75:0e:7f:a8:cc:49:82:19:22:7e:6f:f1:ae: e7:5a:44:49:f5:cc:2f:cc:07:48:58:01:f7:12:a9: ba:39:1e:d1:24:4a:84:2e:b7:28:00:4e:9e:2d:97: 4a:02:d8:77:d4:f2:a3:51:78:af:16:2f:7f:5d:51: 16:eb:96:20:92:cf:60:d1:5a:44:f8:5a:64:cd:28: b4:ae:e7:e2:97:33:57:96:c3:e7:1b:b1:8c:d5:70: 3e:31:73:44:4a:f2:c7:5d:c2:e0:0e:6b:48:0c:9b: bb:ba:a0:be:ef:88:61:ec:06:a5:69:c0:e3:1e:5f: f7:6f:a0:cb:c2:a0:fa:cd:9d:11:56:be:81:70:4e: c9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4A:2C:78:2A:81:6D:65:D2:BD:E9:DE:6C:A7:63:05:D8:5D:B3:06 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.146.0/24 Signature Algorithm: sha256WithRSAEncryption 69:fd:73:c8:8e:c0:d3:a9:b9:56:72:8d:dc:97:6c:c3:b5:64: 61:36:80:c7:57:24:5f:1a:69:88:62:1d:00:09:09:16:5b:cc: 99:fa:9c:f5:6f:9d:1b:49:e7:eb:f2:6d:b1:86:e1:ed:ae:70: d2:41:71:94:52:f6:99:bb:3e:13:3e:80:5e:06:93:7d:ef:82: 7d:03:20:e0:bf:5f:19:0c:4b:6c:1e:31:b2:71:24:7a:b3:f8: 32:41:a8:37:da:b8:d5:f1:25:f2:d7:38:85:18:8d:b7:14:91: 17:f5:32:bc:2b:7a:27:df:c8:31:a6:2e:61:23:98:3f:10:70: e2:64:12:b3:9d:be:73:c1:c0:9f:67:d0:72:ee:78:23:54:51: c4:37:79:68:b8:db:3e:22:84:41:e2:c7:08:e9:15:74:67:ea: b8:23:b0:45:11:2d:62:fd:4f:bf:b2:e8:47:f2:c3:3a:ea:69: 0d:db:90:e0:25:64:ee:49:ab:13:84:84:dc:c0:37:a0:92:1a: 80:ca:eb:ed:1d:cb:2e:e6:2e:30:5a:fc:ef:a7:33:58:fc:e6: e3:5c:95:37:7f:a0:73:7a:e2:30:4d:01:06:72:7f:90:be:81: 95:cc:6c:a6:8e:4b:be:d4:e7:de:4c:86:62:92:74:ca:64:1a: 8a:97:6a:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeZC46teZhEqK7FmPFiZ/yYlpA6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA2MjAwNjU1MDBaFw0yNjA2MTkwNzAwMDBaMDMxMTAvBgNV BAMTKDZENEEyQzc4MkE4MTZENjVEMkJERTlERTZDQTc2MzA1RDg1REIzMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZuNgvg1v/+NhJNMG9Vm+OAs4c 6bgNIA+DE7PQyzxUcrdl/qr0ChQxykFsM0xbK0UztOs5TZbIDsgkSDQb3WSIvV9Z hJjhw9qwV3dL/t3jjVRyMBt6HpZzLuxOfVhy79eWyT1ayid/TqhnHVNWyfJcKZ5U WAZk0bQ/dQ5/qMxJghkifm/xrudaREn1zC/MB0hYAfcSqbo5HtEkSoQutygATp4t l0oC2HfU8qNReK8WL39dURbrliCSz2DRWkT4WmTNKLSu5+KXM1eWw+cbsYzVcD4x c0RK8sddwuAOa0gMm7u6oL7viGHsBqVpwOMeX/dvoMvCoPrNnRFWvoFwTslNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbUoseCqBbWXSvenebKdjBdhdswYwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZIwDQYJ KoZIhvcNAQELBQADggEBAGn9c8iOwNOpuVZyjdyXbMO1ZGE2gMdXJF8aaYhiHQAJ CRZbzJn6nPVvnRtJ5+vybbGG4e2ucNJBcZRS9pm7PhM+gF4Gk33vgn0DIOC/XxkM S2weMbJxJHqz+DJBqDfauNXxJfLXOIUYjbcUkRf1MrwreiffyDGmLmEjmD8QcOJk ErOdvnPBwJ9n0HLueCNUUcQ3eWi42z4ihEHixwjpFXRn6rgjsEURLWL9T7+y6Efy wzrqaQ3bkOAlZO5JqxOEhNzAN6CSGoDK6+0dyy7mLjBa/O+nM1j85uNclTd/oHN6 4jBNAQZyf5C+gZXMbKaOS77U595MhmKSdMpkGoqXauM= -----END CERTIFICATE-----Generated at Mon Jun 30 04:27:39 2025 by rpki-client