$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa File: 3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: aY0anTpEZIat4/VeI01P3kjwTwtzNISJMDgT1crbBNU= Subject key identifier: DD:BA:9C:73:3F:23:45:49:9B:0D:B1:6B:C6:1B:FD:20:1F:FD:7D:1F Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 1EFC9FE68083A6C3C55717383F1B8656B53AD5E6 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa Signing time: Tue 10 Jun 2025 15:00:01 +0000 ROA not before: Tue 10 Jun 2025 14:55:01 +0000 ROA not after: Tue 09 Jun 2026 15:00:01 +0000 asID: 131111 IP address blocks: 103.22.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 21:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fc:9f:e6:80:83:a6:c3:c5:57:17:38:3f:1b:86:56:b5:3a:d5:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jun 10 14:55:01 2025 GMT Not After : Jun 9 15:00:01 2026 GMT Subject: CN=DDBA9C733F2345499B0DB16BC61BFD201FFD7D1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:98:89:2a:e7:9f:ef:74:aa:31:34:49:9a:49: 2a:37:0b:fd:e3:77:a7:78:7c:2f:9a:bb:86:9f:a4: 02:f0:63:e9:84:67:ca:6f:49:3e:f3:b3:e2:4a:bd: e7:81:92:d2:b3:ae:dd:b3:b7:6d:69:e0:66:71:1f: 87:e3:00:71:8c:b4:30:a5:17:11:3e:6d:60:a0:35: ac:8e:9e:7c:d1:17:7e:1b:ea:fd:ed:2f:c8:c5:47: 52:11:db:34:0d:73:74:0d:e8:47:da:21:12:33:e7: 05:10:85:f4:66:88:58:08:8e:d8:d4:25:16:dd:f5: ed:d0:02:35:dd:92:f0:98:71:f6:99:9c:d4:7d:71: f4:c2:36:3b:34:72:5d:a1:9d:02:6e:ca:c4:1a:d2: 86:27:25:15:b3:7d:c2:10:71:5c:31:2c:92:a2:bc: 53:7c:f3:1b:af:e4:34:5f:c6:e3:2c:8c:4c:0f:2c: 8b:05:02:62:6c:e8:6d:ba:89:28:65:a7:90:85:27: bb:48:1f:ad:e0:48:bc:7c:c5:81:3e:4c:78:20:1b: ac:84:28:3b:96:df:67:3c:fb:b9:0d:51:c2:8a:e9: 5e:04:ef:a3:1d:a9:20:9e:d8:69:32:7e:61:a0:41: 65:44:d0:0e:cd:07:5b:ce:ca:18:7b:5e:8c:28:04: 86:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BA:9C:73:3F:23:45:49:9B:0D:B1:6B:C6:1B:FD:20:1F:FD:7D:1F X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.249.0/24 Signature Algorithm: sha256WithRSAEncryption 31:74:32:88:88:b1:1e:d1:a2:86:c6:a3:1a:75:1e:9d:b7:09: a6:d2:b9:68:e0:f3:b3:c4:32:62:75:cb:41:df:92:71:a0:f5: d4:6e:82:e8:a3:45:90:d5:03:d4:83:13:08:ca:02:e0:65:0f: 6c:7a:fb:96:ae:4b:9b:18:d6:81:ed:d1:6d:48:fc:fa:e8:f4: 86:03:1e:d9:bf:98:46:5d:65:e3:76:75:7c:60:f9:4d:8c:a9: 48:b1:ed:8b:2d:55:d2:53:9e:0c:be:b7:28:b6:2c:6e:9b:a5: fc:2f:36:34:cd:6e:d3:17:d3:27:3d:2f:71:fd:66:1f:2d:0f: 15:fa:1d:67:10:b2:b9:f3:e6:15:d2:10:1f:4c:c8:8f:6e:ab: 62:a2:18:07:6f:05:15:91:7c:a0:bb:12:ef:0a:d1:ce:c4:1a: e4:fd:c3:36:77:f5:44:6d:d5:01:31:da:60:c7:ba:20:7a:8e: c9:04:4e:a0:9d:c3:0b:02:d9:37:20:ab:f5:1a:49:4c:ba:1b: ee:3a:cc:fa:51:ac:89:27:e4:f6:fb:5b:bb:3d:1c:dc:12:d1: 8f:3e:2e:7e:e8:26:44:db:98:7a:20:f6:92:a0:d9:39:a7:e2: 12:c7:66:80:bb:48:bf:15:b3:20:98:a7:58:bd:34:76:e6:ca: d0:5e:48:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHvyf5oCDpsPFVxc4PxuGVrU61eYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNTA2MTAxNDU1MDFaFw0yNjA2MDkxNTAwMDFaMDMxMTAvBgNV BAMTKEREQkE5QzczM0YyMzQ1NDk5QjBEQjE2QkM2MUJGRDIwMUZGRDdEMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3mIkq55/vdKoxNEmaSSo3C/3j d6d4fC+au4afpALwY+mEZ8pvST7zs+JKveeBktKzrt2zt21p4GZxH4fjAHGMtDCl FxE+bWCgNayOnnzRF34b6v3tL8jFR1IR2zQNc3QN6EfaIRIz5wUQhfRmiFgIjtjU JRbd9e3QAjXdkvCYcfaZnNR9cfTCNjs0cl2hnQJuysQa0oYnJRWzfcIQcVwxLJKi vFN88xuv5DRfxuMsjEwPLIsFAmJs6G26iShlp5CFJ7tIH63gSLx8xYE+THggG6yE KDuW32c8+7kNUcKK6V4E76MdqSCe2GkyfmGgQWVE0A7NB1vOyhh7XowoBIb7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3bqccz8jRUmbDbFrxhv9IB/9fR8wHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzAzMzJlMzIzMjJlMzIzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxb5MA0GCSqG SIb3DQEBCwUAA4IBAQAxdDKIiLEe0aKGxqMadR6dtwmm0rlo4POzxDJidctB35Jx oPXUboLoo0WQ1QPUgxMIygLgZQ9sevuWrkubGNaB7dFtSPz66PSGAx7Zv5hGXWXj dnV8YPlNjKlIse2LLVXSU54Mvrcotixum6X8LzY0zW7TF9MnPS9x/WYfLQ8V+h1n ELK58+YV0hAfTMiPbqtiohgHbwUVkXyguxLvCtHOxBrk/cM2d/VEbdUBMdpgx7og eo7JBE6gncMLAtk3IKv1GklMuhvuOsz6UayJJ+T2+1u7PRzcEtGPPi5+6CZE25h6 IPaSoNk5p+ISx2aAu0i/FbMgmKdYvTR25srQXkhW -----END CERTIFICATE-----Generated at Sun Jun 15 23:41:52 2025 by rpki-client