$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa File: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (raw, json) Hash identifier: qGUv354O5bgjhTMZ45JMcvyFGWQg1EdVxERPegJoKCQ= Subject key identifier: 2C:7E:69:37:CD:53:17:AF:9B:F7:14:C0:14:B0:00:1D:96:49:42:BD Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 4D7764E9F8A5E2CD434181110E8A232E6BA1FBE9 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa Signing time: Thu 12 Jun 2025 03:00:00 +0000 ROA not before: Thu 12 Jun 2025 02:55:00 +0000 ROA not after: Thu 11 Jun 2026 03:00:00 +0000 asID: 151575 IP address blocks: 103.99.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 04:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:77:64:e9:f8:a5:e2:cd:43:41:81:11:0e:8a:23:2e:6b:a1:fb:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jun 12 02:55:00 2025 GMT Not After : Jun 11 03:00:00 2026 GMT Subject: CN=2C7E6937CD5317AF9BF714C014B0001D964942BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:58:19:85:d1:9b:0d:24:84:d3:ce:e9:c1: 76:9a:d5:b7:4d:d7:0a:6c:3c:58:86:0b:46:d2:89: 9d:da:e3:43:32:c1:fa:21:d2:d0:7e:a9:cd:46:cb: 28:1a:c2:af:c6:45:e4:72:14:2e:22:61:98:82:5f: 38:6d:17:d2:80:3a:f9:91:dd:d3:60:83:ad:ff:4a: 8a:c4:64:9a:1e:57:90:b9:fa:87:9f:6c:e6:c6:64: eb:71:06:0a:f5:7a:d1:98:de:d9:de:e6:d3:60:96: 2c:c3:18:a0:eb:c8:84:ba:2f:ce:44:8a:a3:e3:75: 97:05:ed:00:69:3b:e9:d1:45:a9:9d:9c:76:f4:ff: fa:fb:a4:09:1f:fb:0a:b7:a9:b2:43:da:5d:84:c8: 0d:ff:a3:18:12:16:2b:22:52:14:fd:77:a5:db:45: 48:1a:f3:f4:50:8c:64:c6:32:2e:9a:e1:2d:cd:33: 5e:cc:03:a0:6d:94:6e:fd:90:0d:70:a1:b8:e6:f6: bf:ac:9b:c7:fd:b0:fc:54:f6:4b:9b:8d:52:9a:83: 39:d7:cc:ad:eb:9f:86:eb:c3:d4:72:88:c0:04:3e: a5:5e:80:99:00:fc:93:75:6b:d1:76:a4:62:3d:cc: 56:ca:33:67:88:f6:9f:71:05:f7:c6:41:24:dd:a4: 13:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7E:69:37:CD:53:17:AF:9B:F7:14:C0:14:B0:00:1D:96:49:42:BD X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.137.0/24 Signature Algorithm: sha256WithRSAEncryption 56:43:0a:19:4e:87:6d:ba:a3:e4:1a:96:87:fd:ec:29:83:d8: 54:1d:7b:f4:6e:cc:c4:10:3b:12:c9:20:43:0a:57:ef:be:63: 0e:db:28:98:56:5c:18:d8:c4:81:9e:82:07:fc:16:a1:25:ef: 79:91:7c:01:8b:72:d0:2a:5b:fd:32:b2:43:dd:6a:94:eb:60: e8:80:52:0b:0b:a6:6d:78:e4:f0:27:72:d6:10:bc:77:37:57: 0e:74:6d:a5:6f:bd:ba:83:c8:6a:d5:8f:75:6e:78:1a:08:38: 75:87:2d:82:34:ab:57:d5:b8:7c:23:f6:c4:c3:cc:9b:30:3b: d5:ff:bc:12:1c:7c:98:f6:f6:4b:87:78:94:d8:66:bc:c9:81: e1:af:f9:4a:a3:7e:22:e3:07:4e:b0:49:89:8c:e6:53:a2:f8: aa:a8:bc:73:59:41:34:1e:fa:1e:c4:30:c9:6a:8e:1c:03:76: 8b:75:7f:21:e9:6b:09:da:ce:e7:84:63:5b:8b:7a:4f:81:59: 1c:b4:44:11:d7:17:71:e4:2b:bd:ca:dc:3c:79:0b:7e:f8:84: 0c:96:01:b9:0f:96:2d:11:3e:e6:48:c0:bc:ef:f5:01:d7:80: 1b:37:bd:04:30:4e:3b:a8:a6:ff:3d:49:8b:06:23:ad:98:7b: 5b:84:fe:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTXdk6fil4s1DQYERDoojLmuh++kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTA2MTIwMjU1MDBaFw0yNjA2MTEwMzAwMDBaMDMxMTAvBgNV BAMTKDJDN0U2OTM3Q0Q1MzE3QUY5QkY3MTRDMDE0QjAwMDFEOTY0OTQyQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAl1gZhdGbDSSE087pwXaa1bdN 1wpsPFiGC0bSiZ3a40Mywfoh0tB+qc1Gyygawq/GReRyFC4iYZiCXzhtF9KAOvmR 3dNgg63/SorEZJoeV5C5+oefbObGZOtxBgr1etGY3tne5tNglizDGKDryIS6L85E iqPjdZcF7QBpO+nRRamdnHb0//r7pAkf+wq3qbJD2l2EyA3/oxgSFisiUhT9d6Xb RUga8/RQjGTGMi6a4S3NM17MA6BtlG79kA1wobjm9r+sm8f9sPxU9kubjVKagznX zK3rn4brw9RyiMAEPqVegJkA/JN1a9F2pGI9zFbKM2eI9p9xBffGQSTdpBOvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULH5pN81TF6+b9xTAFLAAHZZJQr0wHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2OJMA0GCSqG SIb3DQEBCwUAA4IBAQBWQwoZTodtuqPkGpaH/ewpg9hUHXv0bszEEDsSySBDClfv vmMO2yiYVlwY2MSBnoIH/BahJe95kXwBi3LQKlv9MrJD3WqU62DogFILC6ZteOTw J3LWELx3N1cOdG2lb726g8hq1Y91bngaCDh1hy2CNKtX1bh8I/bEw8ybMDvV/7wS HHyY9vZLh3iU2Ga8yYHhr/lKo34i4wdOsEmJjOZToviqqLxzWUE0HvoexDDJao4c A3aLdX8h6WsJ2s7nhGNbi3pPgVkctEQR1xdx5Cu9ytw8eQt++IQMlgG5D5YtET7m SMC87/UB14AbN70EME47qKb/PUmLBiOtmHtbhP7V -----END CERTIFICATE-----Generated at Mon Jun 16 22:33:26 2025 by rpki-client