$ rpki-client -vvf repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132392e302f32342d3234203d3e20313339333933.roa File: 3130332e3134332e3132392e302f32342d3234203d3e20313339333933.roa (raw, json) Hash identifier: 3wetidkcCavxQpjkiXbTz/VCnjcuje+VreUWREjQdgQ= Subject key identifier: E2:3C:25:6A:0B:3E:7C:F6:2F:A4:08:9F:53:DF:56:3D:DC:84:21:B8 Certificate issuer: /CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Certificate serial: 5E7108A82F9998D26C1FB22449114EDE5FD68848 Authority key identifier: 29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132392e302f32342d3234203d3e20313339333933.roa Signing time: Fri 06 Jun 2025 14:38:58 +0000 ROA not before: Fri 06 Jun 2025 14:33:58 +0000 ROA not after: Fri 05 Jun 2026 14:38:58 +0000 asID: 139393 IP address blocks: 103.143.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:71:08:a8:2f:99:98:d2:6c:1f:b2:24:49:11:4e:de:5f:d6:88:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Validity Not Before: Jun 6 14:33:58 2025 GMT Not After : Jun 5 14:38:58 2026 GMT Subject: CN=E23C256A0B3E7CF62FA4089F53DF563DDC8421B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:38:ed:e4:2c:82:4f:b8:6c:53:07:1f:da:41: 14:84:1e:f2:f1:bf:dd:5b:ad:fc:43:1b:12:b4:3b: c8:b9:cb:6a:ef:a7:76:1b:12:75:f0:4d:9e:97:08: 79:44:96:47:10:e5:27:21:dc:ff:84:64:ef:c4:7c: 73:07:6e:9c:c6:70:cb:af:07:29:c2:c0:b2:76:64: b0:cb:32:bf:65:c9:66:29:3a:f4:f3:d7:e1:7d:2b: 50:d0:cd:be:bd:67:4a:7d:95:73:37:bc:a7:03:5b: 75:aa:d1:fb:cf:be:2a:7f:51:ce:d5:88:7e:33:b7: 79:1f:76:27:e6:54:73:ee:40:fb:de:0c:96:65:5d: 46:ec:05:6f:c8:14:23:0a:ac:cb:fd:f4:0d:ae:90: 26:95:15:f9:26:3b:af:29:01:b5:e5:ed:fb:e4:84: 9e:ad:36:28:29:aa:a1:55:31:b3:45:ac:af:85:3e: 22:d0:f0:62:51:b2:c7:40:01:c3:52:06:d5:2a:3b: 24:ce:1a:1b:ff:b2:cb:42:17:af:f9:df:fa:75:96: 37:45:20:76:38:05:d8:7a:84:3e:5a:0f:b3:fd:7e: 0d:43:de:53:47:ac:e3:01:af:2d:70:4e:6d:aa:21: c1:33:46:1c:f4:cc:12:09:0f:9f:f9:ec:89:89:19: 66:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3C:25:6A:0B:3E:7C:F6:2F:A4:08:9F:53:DF:56:3D:DC:84:21:B8 X509v3 Authority Key Identifier: keyid:29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132392e302f32342d3234203d3e20313339333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.129.0/24 Signature Algorithm: sha256WithRSAEncryption 26:a7:bc:80:11:7c:49:56:8a:8f:51:21:24:c0:86:25:9f:c7: 74:40:96:cb:91:ae:56:94:d1:0c:22:70:69:06:9b:c5:4c:da: 35:a9:69:3e:4e:18:dd:89:7f:76:3d:8f:d6:7a:68:a7:39:57: dc:14:1b:b0:fb:74:2c:74:24:72:8c:e1:d8:07:e7:85:1a:48: 17:88:b6:89:62:a4:76:d3:27:df:f0:e9:69:f7:0f:40:59:64: 46:16:e9:bd:e4:91:82:ae:9f:4f:08:56:63:95:d1:70:c4:d9: 02:e6:c4:47:24:25:8c:1a:5c:28:9d:0d:2c:b1:63:62:0e:66: 55:d2:20:4e:68:3e:40:9d:e8:44:53:5b:22:84:5e:84:5c:6a: 37:53:9f:b2:54:c1:fc:5e:b6:b9:78:64:3f:31:f6:93:d2:82: d0:f3:af:5f:53:87:fa:05:36:e8:eb:44:1e:6a:35:d1:88:53: 15:15:e6:a6:99:e3:c4:0f:8a:4e:2c:0e:bf:1c:e2:df:54:48: f1:2c:26:ab:89:62:72:e5:c9:ac:3b:25:f2:77:0b:43:92:ca: a6:ba:9e:46:c4:09:b0:4b:ee:3c:7f:16:f6:c6:a1:98:f5:36: 03:82:b5:17:d8:97:2d:35:93:bb:97:f0:0b:1d:6e:fb:30:1c: f5:27:5e:e0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXnEIqC+ZmNJsH7IkSRFO3l/WiEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURG QjQzRERCMjAeFw0yNTA2MDYxNDMzNThaFw0yNjA2MDUxNDM4NThaMDMxMTAvBgNV BAMTKEUyM0MyNTZBMEIzRTdDRjYyRkE0MDg5RjUzREY1NjNEREM4NDIxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2OO3kLIJPuGxTBx/aQRSEHvLx v91brfxDGxK0O8i5y2rvp3YbEnXwTZ6XCHlElkcQ5Sch3P+EZO/EfHMHbpzGcMuv BynCwLJ2ZLDLMr9lyWYpOvTz1+F9K1DQzb69Z0p9lXM3vKcDW3Wq0fvPvip/Uc7V iH4zt3kfdifmVHPuQPveDJZlXUbsBW/IFCMKrMv99A2ukCaVFfkmO68pAbXl7fvk hJ6tNigpqqFVMbNFrK+FPiLQ8GJRssdAAcNSBtUqOyTOGhv/sstCF6/53/p1ljdF IHY4Bdh6hD5aD7P9fg1D3lNHrOMBry1wTm2qIcEzRhz0zBIJD5/57ImJGWYPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4jwlags+fPYvpAifU99WPdyEIbgwHwYDVR0j BBgwFoAUKb53H+bXiMpQnnh3h/IYrftD3bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmU5NmJmMy1kMDIxLTRkODQtOTBkNS1jMjQ1NThhYTQ5NWYvMC8yOUJFNzcxRkU2 RDc4OENBNTA5RTc4Nzc4N0YyMThBREZCNDNEREIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURGQjQz RERCMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTk2YmYzLWQwMjEtNGQ4NC05 MGQ1LWMyNDU1OGFhNDk1Zi8wLzMxMzAzMzJlMzEzNDMzMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj4EwDQYJ KoZIhvcNAQELBQADggEBACanvIARfElWio9RISTAhiWfx3RAlsuRrlaU0QwicGkG m8VM2jWpaT5OGN2Jf3Y9j9Z6aKc5V9wUG7D7dCx0JHKM4dgH54UaSBeItolipHbT J9/w6Wn3D0BZZEYW6b3kkYKun08IVmOV0XDE2QLmxEckJYwaXCidDSyxY2IOZlXS IE5oPkCd6ERTWyKEXoRcajdTn7JUwfxetrl4ZD8x9pPSgtDzr19Th/oFNujrRB5q NdGIUxUV5qaZ48QPik4sDr8c4t9USPEsJquJYnLlyaw7JfJ3C0OSyqa6nkbECbBL 7jx/FvbGoZj1NgOCtRfYly01k7uX8AsdbvswHPUnXuA= -----END CERTIFICATE-----Generated at Mon Jun 30 18:26:46 2025 by rpki-client