$ rpki-client -vvf repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/3130332e3131372e31302e302f32342d3234203d3e20313530343738.roa File: 3130332e3131372e31302e302f32342d3234203d3e20313530343738.roa (raw, json) Hash identifier: +olAq7p56zfhKu5twJLCWaLZ5DJyPxgYj3wH5RLPlus= Subject key identifier: E0:9A:25:80:AF:FC:A7:E2:CD:45:6B:51:0B:DC:5D:EC:7A:C4:B7:73 Certificate issuer: /CN=9D97131B953D97C18D6B71F6DE63209F6541DB0E Certificate serial: 60AC3A2AB559441F97D3FC5DD5E6BC5D24BE22C9 Authority key identifier: 9D:97:13:1B:95:3D:97:C1:8D:6B:71:F6:DE:63:20:9F:65:41:DB:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D97131B953D97C18D6B71F6DE63209F6541DB0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/3130332e3131372e31302e302f32342d3234203d3e20313530343738.roa Signing time: Fri 02 May 2025 10:00:02 +0000 ROA not before: Fri 02 May 2025 09:55:02 +0000 ROA not after: Fri 01 May 2026 10:00:02 +0000 asID: 150478 IP address blocks: 103.117.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/9D97131B953D97C18D6B71F6DE63209F6541DB0E.crl rsync://repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/9D97131B953D97C18D6B71F6DE63209F6541DB0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D97131B953D97C18D6B71F6DE63209F6541DB0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 04:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ac:3a:2a:b5:59:44:1f:97:d3:fc:5d:d5:e6:bc:5d:24:be:22:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D97131B953D97C18D6B71F6DE63209F6541DB0E Validity Not Before: May 2 09:55:02 2025 GMT Not After : May 1 10:00:02 2026 GMT Subject: CN=E09A2580AFFCA7E2CD456B510BDC5DEC7AC4B773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:53:90:be:23:e9:9f:9b:b1:91:8b:cc:97: 05:b9:b1:15:20:d7:98:33:bc:61:7e:a3:66:9f:98: 68:26:8d:fe:2f:81:de:6d:f9:85:37:6a:dd:12:b9: 1d:4d:fa:69:5a:30:2c:bf:ae:01:d1:78:09:60:3d: d0:c0:37:f4:07:f8:66:0f:fc:89:c4:63:d2:40:24: d3:2f:04:48:f1:e6:75:b1:92:2c:f6:5e:cc:63:b3: 90:ec:39:bf:e0:e5:c1:97:f0:13:8f:8c:91:12:a9: fd:c3:4e:54:99:1c:f0:f6:9d:97:e1:83:0f:4a:b2: f3:df:43:1c:a0:75:8b:50:85:f0:ee:1c:1b:48:cc: 50:6c:ec:24:bf:bc:46:14:78:15:5e:2f:af:c0:a2: b2:1e:db:72:05:10:f7:62:43:fe:9d:09:6b:a5:54: f3:d0:cf:1e:89:bb:c2:fe:e5:cb:cf:51:c1:4a:b2: 1a:b2:a3:7a:f0:cc:86:63:9c:6c:6f:e5:be:88:f5: fa:18:a2:5a:0a:fc:16:d1:2b:33:a2:c0:58:1d:a0: 6f:66:30:2c:27:e0:a5:56:7d:ee:3c:3a:65:91:45: 90:d8:2b:8a:ca:37:af:4a:9b:a0:66:3d:c6:c4:a2: fd:68:55:00:f5:40:c0:a2:62:f4:92:c0:08:be:52: 17:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9A:25:80:AF:FC:A7:E2:CD:45:6B:51:0B:DC:5D:EC:7A:C4:B7:73 X509v3 Authority Key Identifier: keyid:9D:97:13:1B:95:3D:97:C1:8D:6B:71:F6:DE:63:20:9F:65:41:DB:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/9D97131B953D97C18D6B71F6DE63209F6541DB0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D97131B953D97C18D6B71F6DE63209F6541DB0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dc6ccd2-8897-4a4e-81ce-c361a5e68dd6/0/3130332e3131372e31302e302f32342d3234203d3e20313530343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.10.0/24 Signature Algorithm: sha256WithRSAEncryption 06:c9:6e:6c:e0:1c:81:f4:97:a7:f2:21:c9:88:1a:09:7a:d0: de:b2:1b:89:18:49:f5:07:68:c1:a2:67:c8:f9:67:ad:82:c2: 93:87:22:2e:06:93:f0:04:d6:35:ae:19:10:ba:8e:62:99:6c: bb:45:01:f1:04:d3:a5:9e:99:e7:5e:ee:de:7e:48:64:45:d9: 76:5e:e2:c0:8b:7e:99:b3:30:e5:18:c9:0d:52:c5:ca:9c:50: 02:80:d2:5a:e4:7d:ad:65:63:b5:d4:e0:66:64:72:f6:f5:f1: f3:4f:ae:04:b0:4b:6a:28:1a:1a:26:28:83:eb:36:2d:6f:51: dc:bb:bd:da:93:35:86:f9:d7:23:b5:37:cb:19:35:2b:57:35: f7:63:3f:f0:7b:2c:87:48:3a:47:7a:b1:a1:fb:37:21:41:f6: 4d:0d:80:a6:99:e3:71:62:35:3c:95:b9:10:be:a0:5b:6a:63: c0:aa:53:60:21:62:17:27:e8:c7:52:47:fb:2c:20:f3:46:d7: 42:07:13:c4:36:33:00:3d:68:ff:b3:c5:da:a1:14:7f:61:86: d8:6a:0a:dd:88:5d:38:a3:88:e8:23:a6:b0:27:58:0c:7b:39: fd:b8:b1:33:92:99:54:b8:bf:f8:0b:8b:35:8b:15:89:e5:0b: 14:7e:55:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYKw6KrVZRB+X0/xd1ea8XSS+IskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ5NzEzMUI5NTNEOTdDMThENkI3MUY2REU2MzIwOUY2 NTQxREIwRTAeFw0yNTA1MDIwOTU1MDJaFw0yNjA1MDExMDAwMDJaMDMxMTAvBgNV BAMTKEUwOUEyNTgwQUZGQ0E3RTJDRDQ1NkI1MTBCREM1REVDN0FDNEI3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxHFOQviPpn5uxkYvMlwW5sRUg 15gzvGF+o2afmGgmjf4vgd5t+YU3at0SuR1N+mlaMCy/rgHReAlgPdDAN/QH+GYP /InEY9JAJNMvBEjx5nWxkiz2Xsxjs5DsOb/g5cGX8BOPjJESqf3DTlSZHPD2nZfh gw9KsvPfQxygdYtQhfDuHBtIzFBs7CS/vEYUeBVeL6/AorIe23IFEPdiQ/6dCWul VPPQzx6Ju8L+5cvPUcFKshqyo3rwzIZjnGxv5b6I9foYoloK/BbRKzOiwFgdoG9m MCwn4KVWfe48OmWRRZDYK4rKN69Km6BmPcbEov1oVQD1QMCiYvSSwAi+Uhe1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4JolgK/8p+LNRWtRC9xd7HrEt3MwHwYDVR0j BBgwFoAUnZcTG5U9l8GNa3H23mMgn2VB2w4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGM2Y2NkMi04ODk3LTRhNGUtODFjZS1jMzYxYTVlNjhkZDYvMC85RDk3MTMxQjk1 M0Q5N0MxOEQ2QjcxRjZERTYzMjA5RjY1NDFEQjBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQ5NzEzMUI5NTNEOTdDMThENkI3MUY2REU2MzIwOUY2NTQx REIwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYzZjY2QyLTg4OTctNGE0ZS04 MWNlLWMzNjFhNWU2OGRkNi8wLzMxMzAzMzJlMzEzMTM3MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3UKMA0GCSqG SIb3DQEBCwUAA4IBAQAGyW5s4ByB9Jen8iHJiBoJetDeshuJGEn1B2jBomfI+Wet gsKThyIuBpPwBNY1rhkQuo5imWy7RQHxBNOlnpnnXu7efkhkRdl2XuLAi36ZszDl GMkNUsXKnFACgNJa5H2tZWO11OBmZHL29fHzT64EsEtqKBoaJiiD6zYtb1Hcu73a kzWG+dcjtTfLGTUrVzX3Yz/weyyHSDpHerGh+zchQfZNDYCmmeNxYjU8lbkQvqBb amPAqlNgIWIXJ+jHUkf7LCDzRtdCBxPENjMAPWj/s8XaoRR/YYbYagrdiF04o4jo I6awJ1gMezn9uLEzkplUuL/4C4s1ixWJ5QsUflV5 -----END CERTIFICATE-----Generated at Mon Jun 30 06:58:20 2025 by rpki-client