$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3130332e3233332e38382e302f32332d3234203d3e203536323333.roa File: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU= Subject key identifier: B0:E1:FE:53:0B:99:05:9B:FB:E0:D0:D3:FE:3F:8C:CD:84:5C:7B:D5 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: F3A7FA72FAC41B63CA49E52A166BE62460C9F9 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3130332e3233332e38382e302f32332d3234203d3e203536323333.roa Signing time: Mon 09 Jun 2025 13:02:20 +0000 ROA not before: Mon 09 Jun 2025 12:57:20 +0000 ROA not after: Mon 08 Jun 2026 13:02:20 +0000 asID: 56233 IP address blocks: 103.233.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 12:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f3:a7:fa:72:fa:c4:1b:63:ca:49:e5:2a:16:6b:e6:24:60:c9:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jun 9 12:57:20 2025 GMT Not After : Jun 8 13:02:20 2026 GMT Subject: CN=B0E1FE530B99059BFBE0D0D3FE3F8CCD845C7BD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a2:cf:e4:46:08:11:9a:aa:86:a7:81:9f:74: 33:9a:d5:67:2f:22:f7:c8:31:fe:cc:9e:47:2c:d2: 6c:a5:69:b6:3c:38:aa:c6:b0:2f:7a:ee:a4:96:c5: 06:00:8f:ff:6b:bf:97:56:af:04:20:b3:57:26:51: 83:c1:db:77:fd:c7:fb:40:72:dc:50:13:ec:e2:71: 0d:b4:c4:15:67:71:b2:6f:42:6d:07:c2:3b:ce:be: ee:63:18:58:97:6a:84:50:30:af:90:48:f2:83:fd: f7:d6:f8:ae:4a:af:7b:82:f8:b1:b2:2b:96:e0:1a: ea:4c:4e:79:56:34:88:45:7c:8b:fe:f0:99:52:d1: 3c:9e:f6:68:55:18:a9:cf:e2:ac:10:8c:ea:8a:00: 9b:cb:54:6d:70:96:7c:88:93:a2:dc:53:3b:c0:54: 82:4b:ed:5c:dd:ab:68:d8:55:9f:2c:72:4c:39:3a: b5:3d:b6:2c:f7:65:c0:36:0f:2a:9a:fc:fe:4c:5a: 97:c2:2b:0f:c6:cd:3c:f6:8b:0a:54:8a:94:dc:a9: f8:99:f0:91:6b:2b:6e:bd:65:37:73:49:92:5f:90: 65:e2:14:9d:26:00:b4:cd:31:40:a0:9f:f0:b5:e6: 3c:96:97:cc:02:1f:dd:b9:76:50:c9:2e:8a:b9:b0: 0c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E1:FE:53:0B:99:05:9B:FB:E0:D0:D3:FE:3F:8C:CD:84:5C:7B:D5 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3130332e3233332e38382e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.88.0/23 Signature Algorithm: sha256WithRSAEncryption 83:c4:8d:bd:b1:bc:70:12:a3:f0:6e:4f:55:41:fa:d3:d0:1b: ba:70:3a:07:96:57:11:64:39:d8:ef:57:be:0b:d3:d9:60:11: 7d:7d:d2:ce:5f:7a:5f:bd:24:f4:bd:91:10:8f:a2:f1:26:a7: 4e:d8:44:77:78:f3:f4:1c:5e:ab:55:1c:aa:65:46:b5:d0:45: 7f:06:1a:52:80:27:df:5a:31:6b:62:42:a9:5c:6c:97:3a:b7: 4c:76:34:a6:df:22:da:3d:06:a3:19:48:aa:15:56:e9:fd:2f: 64:e0:80:d2:3f:20:1b:6c:be:11:1d:bf:79:6d:31:b0:3f:29: 03:17:ca:cc:d6:63:75:1f:43:cf:91:a7:d0:4d:96:5d:f5:cf: 88:de:ad:77:13:b0:4a:99:ff:0c:0e:f8:0c:9d:4d:4f:84:a2: f8:6f:5c:3d:fa:71:d9:eb:70:cd:c4:55:1e:4d:cc:a5:01:c6: 5c:64:42:83:99:82:f5:01:7c:3f:47:2c:8d:ec:91:7a:89:c5: 62:c1:24:40:6f:2d:10:31:cb:bf:4a:f5:be:04:d6:c7:b1:7d: d7:bf:86:da:13:a0:d0:f2:ea:94:b5:61:68:3e:b7:41:5f:1f: 67:19:1a:74:00:b4:5b:bf:de:8c:e5:9f:b3:f5:49:66:b4:2d: 3e:cd:26:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAPOn+nL6xBtjyknlKhZr5iRgyfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTA2MDkxMjU3MjBaFw0yNjA2MDgxMzAyMjBaMDMxMTAvBgNV BAMTKEIwRTFGRTUzMEI5OTA1OUJGQkUwRDBEM0ZFM0Y4Q0NEODQ1QzdCRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEos/kRggRmqqGp4GfdDOa1Wcv IvfIMf7Mnkcs0mylabY8OKrGsC967qSWxQYAj/9rv5dWrwQgs1cmUYPB23f9x/tA ctxQE+zicQ20xBVncbJvQm0HwjvOvu5jGFiXaoRQMK+QSPKD/ffW+K5Kr3uC+LGy K5bgGupMTnlWNIhFfIv+8JlS0Tye9mhVGKnP4qwQjOqKAJvLVG1wlnyIk6LcUzvA VIJL7Vzdq2jYVZ8sckw5OrU9tiz3ZcA2Dyqa/P5MWpfCKw/GzTz2iwpUipTcqfiZ 8JFrK269ZTdzSZJfkGXiFJ0mALTNMUCgn/C15jyWl8wCH925dlDJLoq5sAz7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsOH+UwuZBZv74NDT/j+MzYRce9UwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzMxMzAzMzJlMzIzMzMzMmUzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfpWDANBgkqhkiG 9w0BAQsFAAOCAQEAg8SNvbG8cBKj8G5PVUH609AbunA6B5ZXEWQ52O9XvgvT2WAR fX3Szl96X70k9L2REI+i8SanTthEd3jz9Bxeq1UcqmVGtdBFfwYaUoAn31oxa2JC qVxslzq3THY0pt8i2j0GoxlIqhVW6f0vZOCA0j8gG2y+ER2/eW0xsD8pAxfKzNZj dR9Dz5Gn0E2WXfXPiN6tdxOwSpn/DA74DJ1NT4Si+G9cPfpx2etwzcRVHk3MpQHG XGRCg5mC9QF8P0csjeyReonFYsEkQG8tEDHLv0r1vgTWx7F917+G2hOg0PLqlLVh aD63QV8fZxkadAC0W7/ejOWfs/VJZrQtPs0mbg== -----END CERTIFICATE-----Generated at Mon Jun 16 07:00:40 2025 by rpki-client