$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3235312e302f32342d3234203d3e20313331313131.roa File: 3130332e32322e3235312e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: FQpoIAC9AkHOj7gF3JsxAlTSaEMd9sYKYRZgoHuK7yw= Subject key identifier: 7D:69:2D:E7:55:BA:51:F7:88:16:D9:DF:53:AD:09:53:62:C1:C2:CE Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 4D5005FCE942212CBA91D6771131796659BFE391 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3235312e302f32342d3234203d3e20313331313131.roa Signing time: Tue 10 Jun 2025 16:00:02 +0000 ROA not before: Tue 10 Jun 2025 15:55:02 +0000 ROA not after: Tue 09 Jun 2026 16:00:02 +0000 asID: 131111 IP address blocks: 103.22.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 21:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:50:05:fc:e9:42:21:2c:ba:91:d6:77:11:31:79:66:59:bf:e3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jun 10 15:55:02 2025 GMT Not After : Jun 9 16:00:02 2026 GMT Subject: CN=7D692DE755BA51F78816D9DF53AD095362C1C2CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:e7:0a:c4:24:ea:1d:1a:c2:04:8c:e5:11: e8:ab:a9:fa:3e:cd:93:4f:a9:ed:11:25:57:db:fe: 02:7e:24:b2:d7:04:49:a5:08:d4:eb:ce:f7:36:22: 11:71:c8:00:80:09:21:5a:d7:b6:6e:ec:e8:88:02: f7:b6:e2:ea:f3:08:f9:46:34:19:4c:e0:fc:2b:8e: e7:f8:e3:d1:0c:2a:f4:bd:90:a4:07:30:f3:d7:38: 5a:9b:ee:2b:1b:f2:eb:34:47:d5:a2:15:41:30:dc: c6:16:71:bd:e1:07:a5:aa:8b:9b:20:17:79:6b:67: b1:71:02:65:d0:fc:a0:4e:19:35:7e:b6:80:28:01: 2e:56:27:de:9b:50:6f:b1:a7:f2:2d:50:62:24:b2: 83:7b:57:8f:6c:0b:d4:02:b2:c8:3c:e5:45:e9:1b: 14:1a:a6:f9:11:55:b2:a0:b1:e8:e8:4d:81:c8:54: db:db:90:44:6f:00:cd:db:89:40:17:1e:bd:6c:ef: 4c:24:2c:2c:8b:db:4d:1e:c1:7b:de:4a:45:62:09: 7b:88:b8:0b:23:7d:8d:f4:78:88:84:fb:25:46:c8: 33:ad:cf:16:a6:0e:7a:b6:5c:e0:5f:a7:5a:da:b5: 65:e8:dd:40:36:3a:65:36:d8:0f:1b:74:31:25:5d: da:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:69:2D:E7:55:BA:51:F7:88:16:D9:DF:53:AD:09:53:62:C1:C2:CE X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3235312e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e8:dc:80:1b:b1:cc:22:32:96:a6:6c:e0:a2:26:b2:21:47: 59:08:a5:a5:fb:9f:31:1c:8a:d3:7c:36:53:4f:e6:a0:cb:15: 45:16:72:ec:29:79:e2:17:3c:8a:b3:b5:d0:ff:fd:66:57:ba: ae:ca:eb:5a:c3:00:15:83:b2:05:2d:8f:d2:52:96:e4:13:37: 09:4c:fd:52:ec:6d:77:df:8d:d4:74:f1:d0:41:4f:71:a7:ea: 4b:55:2d:aa:10:84:39:4d:ca:99:3f:32:90:6a:86:9f:c2:4b: 5f:ce:2a:9d:2b:d6:05:c7:f8:6c:ef:e1:10:e9:f9:2a:19:72: 97:22:de:5d:38:a3:d5:b2:14:46:63:13:f3:08:61:b0:76:b8: b3:40:a1:bc:1d:b6:e3:0f:a8:6f:94:cc:e2:1f:4f:08:cc:4a: 03:c7:c7:a0:69:c0:37:06:9a:67:2a:05:cd:cd:fc:fc:0e:82: ce:73:12:ee:e5:e0:07:7d:61:21:38:f3:1c:e7:75:1a:e5:07: 17:ff:8a:55:c3:a7:d2:ef:3b:ed:cb:3a:56:ff:53:9e:a6:2a: 06:cc:7d:54:d3:35:14:8a:b3:a5:94:73:f1:89:51:ce:d1:d8: d3:ef:bd:b6:7d:55:00:06:32:54:55:5b:7e:6d:40:ff:0c:07: 25:bb:ff:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTVAF/OlCISy6kdZ3ETF5Zlm/45EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNTA2MTAxNTU1MDJaFw0yNjA2MDkxNjAwMDJaMDMxMTAvBgNV BAMTKDdENjkyREU3NTVCQTUxRjc4ODE2RDlERjUzQUQwOTUzNjJDMUMyQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPTecKxCTqHRrCBIzlEeirqfo+ zZNPqe0RJVfb/gJ+JLLXBEmlCNTrzvc2IhFxyACACSFa17Zu7OiIAve24urzCPlG NBlM4Pwrjuf449EMKvS9kKQHMPPXOFqb7isb8us0R9WiFUEw3MYWcb3hB6Wqi5sg F3lrZ7FxAmXQ/KBOGTV+toAoAS5WJ96bUG+xp/ItUGIksoN7V49sC9QCssg85UXp GxQapvkRVbKgsejoTYHIVNvbkERvAM3biUAXHr1s70wkLCyL200ewXveSkViCXuI uAsjfY30eIiE+yVGyDOtzxamDnq2XOBfp1ratWXo3UA2OmU22A8bdDElXdrRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfWkt51W6UfeIFtnfU60JU2LBws4wHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzAzMzJlMzIzMjJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxb7MA0GCSqG SIb3DQEBCwUAA4IBAQCb6NyAG7HMIjKWpmzgoiayIUdZCKWl+58xHIrTfDZTT+ag yxVFFnLsKXniFzyKs7XQ//1mV7quyutawwAVg7IFLY/SUpbkEzcJTP1S7G13343U dPHQQU9xp+pLVS2qEIQ5TcqZPzKQaoafwktfziqdK9YFx/hs7+EQ6fkqGXKXIt5d OKPVshRGYxPzCGGwdrizQKG8HbbjD6hvlMziH08IzEoDx8egacA3BppnKgXNzfz8 DoLOcxLu5eAHfWEhOPMc53Ua5QcX/4pVw6fS7zvtyzpW/1OepioGzH1U0zUUirOl lHPxiVHO0djT7722fVUABjJUVVt+bUD/DAclu/8/ -----END CERTIFICATE-----Generated at Mon Jun 16 05:15:26 2025 by rpki-client