$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa File: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (raw, json) Hash identifier: en7yrsRqDUaal9vRU4LRRex8mQ3pcI0rlYghVnCEE78= Subject key identifier: F8:44:D3:CF:44:96:0F:68:AE:4A:A3:46:00:EA:BE:6E:F8:B8:89:05 Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 799F9CB738980E0C98DA4E9F27739B74E309A0DB Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa Signing time: Thu 12 Jun 2025 14:00:00 +0000 ROA not before: Thu 12 Jun 2025 13:55:00 +0000 ROA not after: Thu 11 Jun 2026 14:00:00 +0000 asID: 138860 IP address blocks: 103.139.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 22:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9f:9c:b7:38:98:0e:0c:98:da:4e:9f:27:73:9b:74:e3:09:a0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Jun 12 13:55:00 2025 GMT Not After : Jun 11 14:00:00 2026 GMT Subject: CN=F844D3CF44960F68AE4AA34600EABE6EF8B88905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d2:38:3f:b5:6b:46:9b:a7:7a:19:24:ba:c1: 85:9e:0f:f2:f1:2d:fd:47:68:5e:a1:37:f6:c8:e2: b8:35:37:5d:8c:e1:8d:e6:96:25:f7:d5:26:e4:65: 06:45:cd:9b:8f:1a:26:cf:17:91:d6:6f:d1:67:75: 3e:6a:b6:2f:26:37:b4:95:6c:1b:51:6f:b4:9a:ad: ca:7b:87:a5:be:6c:3a:76:19:d4:0f:91:37:d2:dc: 2d:77:63:d1:f0:06:7e:3b:00:f5:58:b2:48:e4:a1: ef:b2:d2:93:3a:70:51:ba:70:52:56:d9:5a:f9:fe: 15:8f:4c:54:97:29:48:13:0b:8d:85:f7:8e:b4:ab: 8d:42:6b:47:78:85:cc:94:8f:65:32:be:d4:95:82: 97:09:97:9e:a8:e0:8f:de:a7:16:98:54:0a:6d:8b: c1:34:1b:b4:2f:4c:3d:10:46:1b:5e:61:0b:d3:de: df:a9:ce:97:f8:43:e3:11:9f:82:84:15:5f:c1:8f: f4:fb:74:9d:32:ea:52:54:de:39:f6:ef:e6:7d:e2: e8:c2:c1:1a:8d:9c:7a:15:9d:bb:cf:13:5b:24:68: ff:53:39:13:a1:ad:51:fe:a6:81:d3:8d:34:2f:1e: 09:73:53:1c:3d:c9:42:9c:13:34:1d:77:7a:be:62: 5b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:44:D3:CF:44:96:0F:68:AE:4A:A3:46:00:EA:BE:6E:F8:B8:89:05 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.26.0/23 Signature Algorithm: sha256WithRSAEncryption 85:53:b6:aa:49:72:73:42:1f:65:45:b7:76:cd:ab:b6:e7:07: 5b:fc:1f:3e:ac:5d:99:e8:99:90:9c:2d:f4:2b:97:9a:6b:ab: 03:f7:6b:0e:9e:ee:2f:6b:b8:74:5b:59:be:cd:01:59:a6:18: 2b:40:27:7b:46:c0:7a:a2:46:ee:5b:18:bb:b3:54:31:53:8e: 53:66:d8:17:24:af:92:da:20:c0:6b:1c:fe:3a:31:25:d4:cc: 04:4b:64:19:3d:50:45:5f:45:12:9d:3a:ee:af:00:16:f4:5c: 3e:38:b2:0d:6d:9c:79:3a:ff:ca:f9:cb:20:39:12:60:66:13: 4c:c9:ad:6b:66:15:fc:83:92:67:42:a2:86:5f:a6:2e:7a:62: 48:e5:b3:a4:8f:df:65:4b:9b:22:7f:67:95:f4:20:72:c9:bb: 2e:13:70:64:42:01:30:0c:51:10:a3:30:f2:c4:09:71:84:72: df:c6:90:81:a7:f7:1b:6b:37:63:6d:0f:7a:ff:9d:f3:b6:4b: cd:6a:a0:fd:39:37:cb:4b:0d:55:bb:9f:41:4c:86:83:9f:04: 77:f3:5f:25:7f:22:59:d4:7f:db:b7:c9:1f:0a:0f:f9:a7:a2: be:a0:f1:ae:59:e7:f4:b3:89:4a:77:28:e0:64:bb:fa:d6:c7: 3f:1a:f4:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeZ+ctziYDgyY2k6fJ3ObdOMJoNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTA2MTIxMzU1MDBaFw0yNjA2MTExNDAwMDBaMDMxMTAvBgNV BAMTKEY4NDREM0NGNDQ5NjBGNjhBRTRBQTM0NjAwRUFCRTZFRjhCODg5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf0jg/tWtGm6d6GSS6wYWeD/Lx Lf1HaF6hN/bI4rg1N12M4Y3mliX31SbkZQZFzZuPGibPF5HWb9FndT5qti8mN7SV bBtRb7Sarcp7h6W+bDp2GdQPkTfS3C13Y9HwBn47APVYskjkoe+y0pM6cFG6cFJW 2Vr5/hWPTFSXKUgTC42F9460q41Ca0d4hcyUj2UyvtSVgpcJl56o4I/epxaYVApt i8E0G7QvTD0QRhteYQvT3t+pzpf4Q+MRn4KEFV/Bj/T7dJ0y6lJU3jn27+Z94ujC wRqNnHoVnbvPE1skaP9TOROhrVH+poHTjTQvHglzUxw9yUKcEzQdd3q+Ylu9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+ETTz0SWD2iuSqNGAOq+bvi4iQUwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2NWQ4OGYxLWI5YzAtNDg1ZS05 MTZlLTU5YjdlMzY5OGRhMS8wLzMxMzAzMzJlMzEzMzM5MmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4saMA0GCSqG SIb3DQEBCwUAA4IBAQCFU7aqSXJzQh9lRbd2zau25wdb/B8+rF2Z6JmQnC30K5ea a6sD92sOnu4va7h0W1m+zQFZphgrQCd7RsB6okbuWxi7s1QxU45TZtgXJK+S2iDA axz+OjEl1MwES2QZPVBFX0USnTrurwAW9Fw+OLINbZx5Ov/K+csgORJgZhNMya1r ZhX8g5JnQqKGX6YuemJI5bOkj99lS5sif2eV9CByybsuE3BkQgEwDFEQozDyxAlx hHLfxpCBp/cbazdjbQ96/53ztkvNaqD9OTfLSw1Vu59BTIaDnwR3818lfyJZ1H/b t8kfCg/5p6K+oPGuWef0s4lKdyjgZLv61sc/GvSd -----END CERTIFICATE-----Generated at Mon Jun 16 04:16:26 2025 by rpki-client