$ rpki-client -vvf repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/3130332e36302e39302e302f32342d3234203d3e20313531353730.roa File: 3130332e36302e39302e302f32342d3234203d3e20313531353730.roa (raw, json) Hash identifier: YhTpL/afIyHAI7098wyo60hPl3dD1A2rEVVKj7Elh/k= Subject key identifier: F9:02:3D:DB:DC:0F:88:04:23:15:15:1B:9B:DD:BC:F3:62:2F:F8:62 Certificate issuer: /CN=46BF7D6907C7E35726A4180F0BC5F133F6C5AD93 Certificate serial: 1F747E2EFA4814660D41034643C63346E985B40F Authority key identifier: 46:BF:7D:69:07:C7:E3:57:26:A4:18:0F:0B:C5:F1:33:F6:C5:AD:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/3130332e36302e39302e302f32342d3234203d3e20313531353730.roa Signing time: Sat 17 May 2025 23:00:02 +0000 ROA not before: Sat 17 May 2025 22:55:02 +0000 ROA not after: Sat 16 May 2026 23:00:02 +0000 asID: 151570 IP address blocks: 103.60.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.crl rsync://repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 12:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:74:7e:2e:fa:48:14:66:0d:41:03:46:43:c6:33:46:e9:85:b4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46BF7D6907C7E35726A4180F0BC5F133F6C5AD93 Validity Not Before: May 17 22:55:02 2025 GMT Not After : May 16 23:00:02 2026 GMT Subject: CN=F9023DDBDC0F88042315151B9BDDBCF3622FF862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:14:6c:c2:c2:d0:b5:ba:f2:5b:ff:57:61: f5:9a:37:1d:e7:c1:94:97:62:b1:19:d6:4f:57:53: 69:e9:93:4d:9e:a0:c2:32:be:ae:8d:a2:82:13:61: 68:27:f7:96:63:6c:55:b0:5e:91:d9:d8:a6:c5:45: d7:b3:3f:f6:e4:9c:47:62:f5:de:66:96:1d:d2:22: b3:0a:d0:d8:58:a8:74:0f:b7:63:be:e8:9a:16:f9: 87:d5:da:74:bf:50:c7:a3:80:88:89:db:ee:e1:68: f5:24:b4:89:1c:67:a5:ee:33:8c:2d:29:56:b9:24: 4b:b4:d8:8e:aa:4d:71:6c:48:eb:14:dc:ae:e3:6c: dc:93:e5:96:5f:e7:ae:60:a5:0f:fa:e3:eb:2b:32: f6:83:1a:ad:dd:f5:6d:25:d1:e9:9d:83:20:09:6b: 6e:76:c6:51:f6:36:ab:2e:00:d7:dd:e4:98:14:88: 73:3f:d9:9f:93:25:8d:b6:4c:fc:5c:fc:86:97:60: 74:e4:1f:2d:3c:84:9c:cf:11:cd:11:9d:64:1c:cb: b0:15:04:df:cf:5e:73:23:47:17:e1:7b:71:e5:85: 28:87:58:d3:9b:e5:ee:11:ca:bd:90:ff:ae:ac:28: 2b:2f:4a:fa:13:b6:b2:60:66:19:68:a1:77:3b:c7: 27:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:02:3D:DB:DC:0F:88:04:23:15:15:1B:9B:DD:BC:F3:62:2F:F8:62 X509v3 Authority Key Identifier: keyid:46:BF:7D:69:07:C7:E3:57:26:A4:18:0F:0B:C5:F1:33:F6:C5:AD:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46BF7D6907C7E35726A4180F0BC5F133F6C5AD93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0146632a-b2e1-420a-a895-c4a1e2217da3/0/3130332e36302e39302e302f32342d3234203d3e20313531353730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.90.0/24 Signature Algorithm: sha256WithRSAEncryption a0:80:d5:33:21:be:b3:b4:bb:9a:49:58:d6:fc:fa:bb:0a:cd: 22:9a:5d:99:ad:95:b8:46:5f:86:ed:24:77:b7:dd:c7:7e:99: a4:ac:71:dc:cc:2a:dd:1f:0a:cf:f6:7b:08:b2:34:76:9b:6a: 44:7b:af:37:c4:26:b7:be:ec:d4:06:94:69:cf:08:82:cd:ae: 28:e9:ba:53:b4:55:af:52:23:fc:c7:00:08:8e:02:8a:a0:63: 1c:89:f6:19:fd:1a:51:65:26:03:eb:07:ae:bb:14:aa:2a:ab: a4:ff:83:64:b6:3d:30:cb:db:6f:5c:36:bc:c7:07:0c:30:e1: 07:de:e0:7c:04:a4:d5:a1:11:8b:6b:7f:0b:1c:96:bb:34:ee: 48:75:71:ba:0f:1e:f1:ad:56:67:66:50:37:9b:12:ea:93:31: 64:dc:fc:f8:08:3f:3b:05:e5:85:a1:04:f8:96:16:85:6d:75: 55:60:b8:86:d5:50:98:50:3b:7f:9f:e7:e6:71:fa:53:fb:d1: ee:8b:ea:19:87:ae:d8:71:f4:75:49:df:53:b2:a9:b3:28:46: 49:be:b3:fd:52:2e:d9:89:a1:fb:63:8e:68:ef:29:92:8d:50: a9:f4:c2:f5:77:51:b4:70:aa:7d:64:e1:41:4a:25:2f:3b:fe: 30:8d:a2:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH3R+LvpIFGYNQQNGQ8YzRumFtA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZCRjdENjkwN0M3RTM1NzI2QTQxODBGMEJDNUYxMzNG NkM1QUQ5MzAeFw0yNTA1MTcyMjU1MDJaFw0yNjA1MTYyMzAwMDJaMDMxMTAvBgNV BAMTKEY5MDIzRERCREMwRjg4MDQyMzE1MTUxQjlCRERCQ0YzNjIyRkY4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz6xRswsLQtbryW/9XYfWaNx3n wZSXYrEZ1k9XU2npk02eoMIyvq6NooITYWgn95ZjbFWwXpHZ2KbFRdezP/bknEdi 9d5mlh3SIrMK0NhYqHQPt2O+6JoW+YfV2nS/UMejgIiJ2+7haPUktIkcZ6XuM4wt KVa5JEu02I6qTXFsSOsU3K7jbNyT5ZZf565gpQ/64+srMvaDGq3d9W0l0emdgyAJ a252xlH2NqsuANfd5JgUiHM/2Z+TJY22TPxc/IaXYHTkHy08hJzPEc0RnWQcy7AV BN/PXnMjRxfhe3HlhSiHWNOb5e4Ryr2Q/66sKCsvSvoTtrJgZhlooXc7xydjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+QI929wPiAQjFRUbm92882Iv+GIwHwYDVR0j BBgwFoAURr99aQfH41cmpBgPC8XxM/bFrZMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTQ2NjMyYS1iMmUxLTQyMGEtYTg5NS1jNGExZTIyMTdkYTMvMC80NkJGN0Q2OTA3 QzdFMzU3MjZBNDE4MEYwQkM1RjEzM0Y2QzVBRDkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDZCRjdENjkwN0M3RTM1NzI2QTQxODBGMEJDNUYxMzNGNkM1 QUQ5My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxNDY2MzJhLWIyZTEtNDIwYS1h ODk1LWM0YTFlMjIxN2RhMy8wLzMxMzAzMzJlMzYzMDJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc8WjANBgkqhkiG 9w0BAQsFAAOCAQEAoIDVMyG+s7S7mklY1vz6uwrNIppdma2VuEZfhu0kd7fdx36Z pKxx3Mwq3R8Kz/Z7CLI0dptqRHuvN8Qmt77s1AaUac8Igs2uKOm6U7RVr1Ij/McA CI4CiqBjHIn2Gf0aUWUmA+sHrrsUqiqrpP+DZLY9MMvbb1w2vMcHDDDhB97gfASk 1aERi2t/CxyWuzTuSHVxug8e8a1WZ2ZQN5sS6pMxZNz8+Ag/OwXlhaEE+JYWhW11 VWC4htVQmFA7f5/n5nH6U/vR7ovqGYeu2HH0dUnfU7KpsyhGSb6z/VIu2Ymh+2OO aO8pko1QqfTC9XdRtHCqfWThQUolLzv+MI2ieQ== -----END CERTIFICATE-----Generated at Tue Jun 17 02:11:01 2025 by rpki-client