$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa File: 3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa (raw, json) Hash identifier: yIxyAi+LsGKpwTABrM9lNwtjILhJjgs1G21qada+Ir4= Subject key identifier: B2:69:A9:93:AC:C5:06:D1:96:A7:EC:DC:F3:06:B1:85:57:AE:98:76 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 4C3C0DDE2E3FD861850A18526EEA4E49E362E5DF Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa Signing time: Fri 11 Jul 2025 11:00:01 +0000 ROA not before: Fri 11 Jul 2025 10:55:01 +0000 ROA not after: Fri 10 Jul 2026 11:00:01 +0000 asID: 142332 IP address blocks: 103.169.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 03:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3c:0d:de:2e:3f:d8:61:85:0a:18:52:6e:ea:4e:49:e3:62:e5:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Jul 11 10:55:01 2025 GMT Not After : Jul 10 11:00:01 2026 GMT Subject: CN=B269A993ACC506D196A7ECDCF306B18557AE9876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d2:02:0d:ea:a6:3f:67:2c:d6:2f:e1:5a:63: 69:91:53:8d:d7:7e:e7:e1:3c:3e:c7:27:41:5a:70: 15:1c:bc:84:03:ad:b2:bb:36:cf:03:f4:d9:6f:15: ec:69:2c:69:f4:01:a8:0a:fc:23:c9:35:24:f1:6f: 7d:d9:97:f5:82:15:b2:92:6e:5c:a3:d9:3b:1a:e0: ea:fd:62:3b:68:d8:46:5c:47:12:f9:90:69:10:a6: 17:f2:ce:48:6e:f7:ac:7c:85:e2:08:96:ee:1d:3f: d3:d4:36:25:77:08:9a:d4:43:46:d8:14:a1:da:56: 09:03:89:f1:58:aa:e7:48:b8:8e:9f:8c:a6:e3:1a: 74:5a:77:cc:3b:8f:99:da:22:1c:32:27:50:19:87: 3f:f3:a7:9b:1d:ed:08:65:3f:87:50:2b:1b:f1:f9: ea:79:06:ef:43:ad:a2:30:1d:88:4f:23:7a:a7:0a: 63:f2:43:e7:98:57:5f:18:58:55:e6:9d:3a:3d:df: af:97:11:a1:e3:fa:39:a0:b5:3c:9f:0e:88:18:c2: c6:7a:b2:b2:19:2c:3c:fc:e7:24:08:32:2c:97:50: f6:fa:38:d2:6d:25:8b:29:19:f0:f2:15:7b:75:3d: 68:58:93:e6:dd:1d:fd:0d:17:1e:0d:29:5e:f3:79: ee:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:69:A9:93:AC:C5:06:D1:96:A7:EC:DC:F3:06:B1:85:57:AE:98:76 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.40.0/24 Signature Algorithm: sha256WithRSAEncryption 20:68:40:ff:0c:5a:49:18:a2:40:e3:a9:0a:b0:9c:fd:9a:68: 64:3e:a0:ff:3c:eb:43:29:a8:35:77:31:7c:c3:50:a1:b2:ef: 11:a0:e9:74:b5:da:74:fb:a6:aa:de:2f:b2:7f:a4:bf:0d:c8: 82:ad:c1:d2:03:05:b3:17:43:2a:9c:81:d6:63:8e:76:bb:cd: 62:83:50:8b:6f:f5:de:42:fb:89:4e:19:b5:32:e5:1c:e5:50: 91:ef:22:ac:d4:88:ba:ea:fd:b5:21:65:0f:57:15:3d:4f:34: 81:ae:e5:54:df:8e:c8:e2:59:c3:c6:2f:3d:5c:a5:d4:94:16: ef:a4:cc:14:0b:b2:2b:42:64:37:2e:ab:cf:72:77:1f:1c:31: df:db:e3:07:8d:03:5b:d1:3b:bf:6b:a7:45:0f:b5:be:3c:1d: a5:76:11:47:16:42:cf:ee:93:14:8f:55:b1:41:d4:bb:48:16: 6b:7e:4b:79:c7:91:b4:5a:9e:5d:51:55:71:cf:8d:27:e4:c5: 5b:c3:c0:be:f0:ae:94:68:c5:a4:46:67:53:8c:74:ca:54:8f: 36:4c:04:5b:41:83:d4:e2:2a:6a:fb:49:a1:1b:fd:9a:9e:c3: 6f:67:da:e6:39:14:de:d5:55:77:33:6d:70:7a:d2:45:43:99: 5b:3d:69:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTDwN3i4/2GGFChhSbupOSeNi5d8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yNTA3MTExMDU1MDFaFw0yNjA3MTAxMTAwMDFaMDMxMTAvBgNV BAMTKEIyNjlBOTkzQUNDNTA2RDE5NkE3RUNEQ0YzMDZCMTg1NTdBRTk4NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm0gIN6qY/ZyzWL+FaY2mRU43X fufhPD7HJ0FacBUcvIQDrbK7Ns8D9NlvFexpLGn0AagK/CPJNSTxb33Zl/WCFbKS blyj2Tsa4Or9Yjto2EZcRxL5kGkQphfyzkhu96x8heIIlu4dP9PUNiV3CJrUQ0bY FKHaVgkDifFYqudIuI6fjKbjGnRad8w7j5naIhwyJ1AZhz/zp5sd7QhlP4dQKxvx +ep5Bu9DraIwHYhPI3qnCmPyQ+eYV18YWFXmnTo936+XEaHj+jmgtTyfDogYwsZ6 srIZLDz85yQIMiyXUPb6ONJtJYspGfDyFXt1PWhYk+bdHf0NFx4NKV7zee6xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsmmpk6zFBtGWp+zc8waxhVeumHYwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjYjUyNjE5LTM3OWQtNDMwYS1i MTliLTFmMGVjNTNhZTkwOS8wLzMxMzAzMzJlMzEzNjM5MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6koMA0GCSqG SIb3DQEBCwUAA4IBAQAgaED/DFpJGKJA46kKsJz9mmhkPqD/POtDKag1dzF8w1Ch su8RoOl0tdp0+6aq3i+yf6S/DciCrcHSAwWzF0MqnIHWY452u81ig1CLb/XeQvuJ Thm1MuUc5VCR7yKs1Ii66v21IWUPVxU9TzSBruVU347I4lnDxi89XKXUlBbvpMwU C7IrQmQ3LqvPcncfHDHf2+MHjQNb0Tu/a6dFD7W+PB2ldhFHFkLP7pMUj1WxQdS7 SBZrfkt5x5G0Wp5dUVVxz40n5MVbw8C+8K6UaMWkRmdTjHTKVI82TARbQYPU4ipq +0mhG/2ansNvZ9rmORTe1VV3M21wetJFQ5lbPWly -----END CERTIFICATE-----Generated at Thu Aug 7 23:57:05 2025 by rpki-client