$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa File: 3130332e3133352e37322e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: YN/2s31112uMwq4KT5YT8EMIK9P8Spv9BQ+gu6aYN4g= Subject key identifier: 72:C6:7A:29:53:56:D0:1F:ED:D6:94:4E:EB:A3:6F:88:DB:EE:D9:13 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 4530EB00E07897746CCC9BBA16B9A2B229DB04E3 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa Signing time: Mon 02 Jun 2025 01:02:36 +0000 ROA not before: Mon 02 Jun 2025 00:57:36 +0000 ROA not after: Mon 01 Jun 2026 01:02:36 +0000 asID: 46026 IP address blocks: 103.135.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:30:eb:00:e0:78:97:74:6c:cc:9b:ba:16:b9:a2:b2:29:db:04:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jun 2 00:57:36 2025 GMT Not After : Jun 1 01:02:36 2026 GMT Subject: CN=72C67A295356D01FEDD6944EEBA36F88DBEED913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:32:01:3a:1e:2b:2d:4c:92:03:57:69:d3:c9: 46:07:e0:f0:ac:65:4a:b1:67:df:b5:5c:42:db:e1: 37:52:ff:77:3c:df:91:92:9c:9e:9d:4d:9b:4e:4d: f6:9e:8c:bb:e3:4f:22:2a:9e:84:50:08:22:69:50: 7f:dc:84:23:58:83:98:07:0b:a6:24:64:35:e2:2e: a0:1e:fa:a5:f2:97:88:13:d7:80:ad:66:4d:76:a8: 94:d0:ed:54:c8:2d:ec:00:0e:5e:0c:54:f4:08:69: 88:22:62:2d:c9:25:a8:1d:6e:44:a8:db:05:d7:20: 2c:78:b8:c4:d5:c8:e1:a6:c1:27:aa:47:83:54:99: ca:1e:8b:a3:0f:77:ac:ed:4c:ea:ee:70:82:8d:28: ce:a3:a1:9c:c5:70:ae:4e:f3:8a:57:9b:73:29:70: 15:bd:d2:ad:4a:72:5b:9f:c8:fd:71:8f:dc:56:44: f3:26:b9:25:9f:78:92:15:a3:f2:3e:da:2b:a0:90: 70:50:f9:32:d1:fb:52:75:be:5c:72:64:db:a5:31: a6:cf:38:e1:38:7c:f4:05:b0:62:7b:3c:7f:57:57: 49:7a:10:ec:d8:94:61:40:b3:80:75:4a:3d:c8:0a: 3a:af:8c:24:af:55:5f:06:40:e9:3f:be:13:1f:17: 36:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C6:7A:29:53:56:D0:1F:ED:D6:94:4E:EB:A3:6F:88:DB:EE:D9:13 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37322e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.72.0/24 Signature Algorithm: sha256WithRSAEncryption b5:1c:ea:23:14:68:54:05:1b:22:6f:61:7f:e4:f6:69:b4:c9: 93:d8:21:f0:8a:3f:4f:10:71:d1:a5:51:83:86:bc:77:46:85: 97:28:e7:a2:2d:46:5b:c8:cb:0f:ba:22:97:4b:31:1d:b7:c8: 0b:22:b4:49:a0:e7:af:5f:49:41:67:bd:e3:5f:53:c0:cf:a9: 39:95:a1:af:04:98:66:e4:f7:80:37:f9:c8:44:d6:8a:aa:f0: 84:2d:70:d7:20:26:75:4f:79:25:f8:76:f2:e7:f0:23:73:86: 14:18:12:3f:24:3e:59:a5:c5:09:ff:d6:34:ab:8d:54:2c:3d: f3:1f:0a:5c:03:c9:14:c2:71:89:6a:83:37:7d:6e:cc:60:f1: 79:a2:88:50:db:13:5b:0d:3a:59:8e:60:9d:00:7e:7f:63:de: e6:11:9f:98:a9:4f:3b:03:dd:8b:38:31:4c:4b:7e:13:e8:55: ce:be:9c:f9:0b:30:f5:19:89:d9:8b:bb:73:b6:b3:cd:f3:b7: 56:ec:aa:0a:43:73:07:ff:35:9f:93:ab:d8:c6:a3:81:18:da: a3:43:96:ee:e1:af:14:ee:60:02:dc:4f:3f:7e:34:12:c3:38: 26:74:18:e5:7d:84:64:ef:53:98:e0:7d:70:55:9b:59:5c:db: d5:c8:a5:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURTDrAOB4l3RszJu6FrmisinbBOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNTA2MDIwMDU3MzZaFw0yNjA2MDEwMTAyMzZaMDMxMTAvBgNV BAMTKDcyQzY3QTI5NTM1NkQwMUZFREQ2OTQ0RUVCQTM2Rjg4REJFRUQ5MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJMgE6HistTJIDV2nTyUYH4PCs ZUqxZ9+1XELb4TdS/3c835GSnJ6dTZtOTfaejLvjTyIqnoRQCCJpUH/chCNYg5gH C6YkZDXiLqAe+qXyl4gT14CtZk12qJTQ7VTILewADl4MVPQIaYgiYi3JJagdbkSo 2wXXICx4uMTVyOGmwSeqR4NUmcoei6MPd6ztTOrucIKNKM6joZzFcK5O84pXm3Mp cBW90q1KclufyP1xj9xWRPMmuSWfeJIVo/I+2iugkHBQ+TLR+1J1vlxyZNulMabP OOE4fPQFsGJ7PH9XV0l6EOzYlGFAs4B1Sj3ICjqvjCSvVV8GQOk/vhMfFzaJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcsZ6KVNW0B/t1pRO66NviNvu2RMwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzAzMzJlMzEzMzM1MmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeHSDANBgkqhkiG 9w0BAQsFAAOCAQEAtRzqIxRoVAUbIm9hf+T2abTJk9gh8Io/TxBx0aVRg4a8d0aF lyjnoi1GW8jLD7oil0sxHbfICyK0SaDnr19JQWe9419TwM+pOZWhrwSYZuT3gDf5 yETWiqrwhC1w1yAmdU95Jfh28ufwI3OGFBgSPyQ+WaXFCf/WNKuNVCw98x8KXAPJ FMJxiWqDN31uzGDxeaKIUNsTWw06WY5gnQB+f2Pe5hGfmKlPOwPdizgxTEt+E+hV zr6c+Qsw9RmJ2Yu7c7azzfO3VuyqCkNzB/81n5Or2MajgRjao0OW7uGvFO5gAtxP P340EsM4JnQY5X2EZO9TmOB9cFWbWVzb1cil9Q== -----END CERTIFICATE-----Generated at Mon Jun 16 13:06:28 2025 by rpki-client