$ rpki-client -vvf repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: ylXHQm3DiD4h9n4NuN0yUGCouUxigE+BSv0spOzfo/w= Subject key identifier: F9:D0:5C:99:C1:3F:73:64:8E:0E:69:39:21:59:1C:4F:C0:98:1B:06 Certificate issuer: /CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Certificate serial: 0EBD41ECEF05F9B65AB20AB6C5B9F664A352569D Authority key identifier: AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 11:02:24 +0000 ROA not before: Fri 04 Jul 2025 10:57:24 +0000 ROA not after: Fri 03 Jul 2026 11:02:24 +0000 asID: 17995 IP address blocks: 103.169.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 20:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:bd:41:ec:ef:05:f9:b6:5a:b2:0a:b6:c5:b9:f6:64:a3:52:56:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Validity Not Before: Jul 4 10:57:24 2025 GMT Not After : Jul 3 11:02:24 2026 GMT Subject: CN=F9D05C99C13F73648E0E693921591C4FC0981B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:81:d2:01:f3:98:52:be:f8:73:9a:88:4f: 1c:3e:f1:c2:4b:01:91:ec:e3:20:3b:d4:ce:c0:be: 92:6b:d1:92:a9:10:a2:96:ee:0b:6d:1a:80:66:8c: 0e:a7:ae:b7:d0:3e:15:c7:54:e4:2b:4a:e2:d7:84: 73:c3:ac:42:d7:be:86:86:54:d4:ba:bc:c7:17:10: 54:78:ff:98:77:a3:08:cc:74:e4:eb:81:84:1d:cd: 9e:6f:2d:f8:e3:9c:53:92:d9:ec:99:d6:56:0d:18: d1:bd:f9:7e:c9:66:6b:60:3e:86:37:90:1c:6b:6c: cb:6d:92:03:bd:1e:ba:03:96:a1:67:45:18:cb:a8: 28:86:3c:46:e4:6d:66:eb:35:95:d9:29:ae:e2:4f: 20:12:68:4d:3e:78:de:fa:77:f7:61:2b:a2:c3:b5: 7d:d9:e9:c6:a3:50:a7:f6:c7:7f:54:00:ff:21:14: dd:74:23:90:c9:cb:43:88:14:cb:7d:df:1c:74:d5: ba:7b:ef:c0:dc:a1:dc:64:61:00:f8:ba:14:9e:55: cb:22:80:10:30:aa:0b:f0:bd:3f:cd:f7:bd:35:87: bf:fc:97:7a:0b:8b:db:5d:9d:52:48:75:1f:bc:3a: b1:73:e3:ea:3f:ba:6a:fe:02:6d:c0:63:7d:69:bf: 26:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D0:5C:99:C1:3F:73:64:8E:0E:69:39:21:59:1C:4F:C0:98:1B:06 X509v3 Authority Key Identifier: keyid:AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.4.0/23 Signature Algorithm: sha256WithRSAEncryption b2:40:74:47:b5:28:68:38:95:4c:8b:c1:46:bd:e8:13:8e:8c: cf:cb:c9:4a:c7:e9:9e:0a:9c:56:85:e0:b6:ff:1b:75:41:01: e7:f2:5d:09:44:7d:be:d7:7a:0b:0c:21:f3:3b:e0:56:4c:f4: 47:ae:0a:b4:23:12:88:58:bb:f2:59:71:a5:76:16:bc:39:04: 2a:ba:40:27:c7:0b:be:33:48:3a:26:31:01:d2:6c:13:51:47: 67:88:58:ce:5a:00:36:42:9b:1a:4a:16:67:43:96:a3:ef:24: c3:86:68:45:6b:64:fa:84:c3:63:b5:00:12:58:f8:61:e1:bb: 03:ba:ff:bb:7b:98:b1:91:64:d7:68:23:c9:e8:d0:cb:e7:8e: 18:da:71:a9:83:d9:8c:55:fd:0e:8d:46:5c:f5:4d:6f:e3:48: 41:38:84:e9:73:e3:f7:2a:64:16:8a:a9:b6:be:7f:82:4f:42: 67:65:2b:9f:b7:15:a7:cf:09:d4:c3:73:66:0d:a0:b6:ee:70: a4:ae:56:6c:b9:86:ec:84:09:0a:c4:9f:5f:21:3d:ea:8b:58: 27:61:61:68:82:3d:c6:50:e1:90:ba:a8:44:47:aa:2b:0f:b4: f3:ad:65:41:cc:c5:bb:21:9b:b3:9a:b4:14:bb:9b:fe:60:1e: 89:90:0b:0e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDr1B7O8F+bZasgq2xbn2ZKNSVp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBG MTAwQ0UzODAeFw0yNTA3MDQxMDU3MjRaFw0yNjA3MDMxMTAyMjRaMDMxMTAvBgNV BAMTKEY5RDA1Qzk5QzEzRjczNjQ4RTBFNjkzOTIxNTkxQzRGQzA5ODFCMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0dYHSAfOYUr74c5qITxw+8cJL AZHs4yA71M7AvpJr0ZKpEKKW7gttGoBmjA6nrrfQPhXHVOQrSuLXhHPDrELXvoaG VNS6vMcXEFR4/5h3owjMdOTrgYQdzZ5vLfjjnFOS2eyZ1lYNGNG9+X7JZmtgPoY3 kBxrbMttkgO9HroDlqFnRRjLqCiGPEbkbWbrNZXZKa7iTyASaE0+eN76d/dhK6LD tX3Z6cajUKf2x39UAP8hFN10I5DJy0OIFMt93xx01bp778DcodxkYQD4uhSeVcsi gBAwqgvwvT/N9701h7/8l3oLi9tdnVJIdR+8OrFz4+o/umr+Am3AY31pvyZxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+dBcmcE/c2SODmk5IVkcT8CYGwYwHwYDVR0j BBgwFoAUr1oq0Mnlyx2e+F5vj0QDEPEAzjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDFlNGFjOS1jMDZiLTQzNDMtODUyNi0zYTFmMWIxYjVkODIvMC9BRjVBMkFEMEM5 RTVDQjFEOUVGODVFNkY4RjQ0MDMxMEYxMDBDRTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBGMTAw Q0UzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MWU0YWM5LWMwNmItNDM0My04 NTI2LTNhMWYxYjFiNWQ4Mi8wLzMxMzAzMzJlMzEzNjM5MmUzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqQQwDQYJKoZIhvcN AQELBQADggEBALJAdEe1KGg4lUyLwUa96BOOjM/LyUrH6Z4KnFaF4Lb/G3VBAefy XQlEfb7XegsMIfM74FZM9EeuCrQjEohYu/JZcaV2Frw5BCq6QCfHC74zSDomMQHS bBNRR2eIWM5aADZCmxpKFmdDlqPvJMOGaEVrZPqEw2O1ABJY+GHhuwO6/7t7mLGR ZNdoI8no0MvnjhjacamD2YxV/Q6NRlz1TW/jSEE4hOlz4/cqZBaKqba+f4JPQmdl K5+3FafPCdTDc2YNoLbucKSuVmy5huyECQrEn18hPeqLWCdhYWiCPcZQ4ZC6qERH qisPtPOtZUHMxbshm7OatBS7m/5gHomQCw4= -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:27 2025 by rpki-client