$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa (raw, json) Hash identifier: w/W7ZPLOwJZFB+XGZFv4rUXEnNF/+lRXZH9LftXeoZo= Subject key identifier: A8:6F:69:E2:86:78:8A:3E:FE:F1:16:99:26:7A:F3:5A:3F:18:41:36 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 07518DB6CE0A3B77647BEAF3F338EEC90B03C4EF Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa Signing time: Sat 07 Jun 2025 10:00:00 +0000 ROA not before: Sat 07 Jun 2025 09:55:00 +0000 ROA not after: Sat 06 Jun 2026 10:00:00 +0000 asID: 134658 IP address blocks: 103.210.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:51:8d:b6:ce:0a:3b:77:64:7b:ea:f3:f3:38:ee:c9:0b:03:c4:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Jun 7 09:55:00 2025 GMT Not After : Jun 6 10:00:00 2026 GMT Subject: CN=A86F69E286788A3EFEF11699267AF35A3F184136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0c:84:33:52:f7:e4:f6:1c:82:6d:4f:65:02: c1:63:be:ff:01:7d:6d:28:07:19:22:28:6d:b6:e5: c5:cb:d6:bb:f6:91:2f:43:86:d6:ac:af:28:3d:3c: 5e:ca:25:bf:ab:9b:1c:e6:02:50:48:16:26:fa:55: 4d:55:63:b3:13:d2:b9:db:56:00:c0:dd:2a:f2:84: 4d:b9:ab:3c:1c:b5:e6:34:10:e1:08:9d:b8:52:de: 49:70:b6:2b:a7:eb:00:b6:a2:e6:32:2f:96:a2:1b: df:89:4f:b5:56:d7:a9:e9:42:29:4f:bc:6c:c2:f3: a5:75:30:c5:63:df:e3:da:69:5f:16:c7:62:d3:1d: e8:59:63:0e:1e:de:33:42:3c:33:64:e8:a8:e8:f8: bf:de:28:f2:b8:ba:2e:05:eb:64:1f:ff:38:c5:00: fc:5b:aa:6e:55:4b:a5:a8:c7:63:02:21:8e:8f:07: 95:fa:71:02:92:db:ce:cb:80:95:cc:bd:5a:33:57: 79:f9:6e:8d:98:54:70:9f:93:58:01:07:2e:1c:c5: 9d:5c:76:05:86:ad:0a:72:e0:21:8f:f6:b8:3b:9a: c3:7b:45:ca:1c:7b:d9:8c:a2:51:92:aa:8e:c8:48: 66:a7:24:76:0e:86:1b:7c:5d:8e:bf:01:51:7e:5b: 64:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6F:69:E2:86:78:8A:3E:FE:F1:16:99:26:7A:F3:5A:3F:18:41:36 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/22 Signature Algorithm: sha256WithRSAEncryption 24:29:42:dd:12:f7:8b:c0:3d:5a:98:2c:a9:12:de:74:2e:f6: 1b:1a:ff:0e:fb:ad:84:1d:1b:f7:d3:2e:31:b6:0a:54:41:d8: 1e:89:82:b5:09:4c:48:e0:1f:3d:0b:b4:ae:6e:07:22:b0:2f: bc:42:54:1e:8d:b4:ad:ba:78:7e:72:1f:6b:9a:de:eb:1d:9d: 19:d4:af:21:13:c8:ee:ca:2d:4c:f7:e9:cb:16:6d:d9:d0:82: e8:24:a7:06:36:1e:2d:ae:31:ff:a0:9d:c1:c3:f3:68:46:b7: e2:96:99:37:9e:e1:d3:23:d9:60:d9:ff:5b:74:7f:16:1c:25: 39:91:30:eb:66:ea:2c:1d:7a:a3:6c:15:85:02:87:ef:20:c7: 3a:18:13:11:46:f8:6b:da:35:f9:73:87:dd:db:b3:16:2f:d8: 3b:69:32:40:79:10:5d:0a:9a:f2:ff:c0:de:cf:d2:4d:22:2e: 09:ec:45:a3:d7:37:9b:5f:b5:9b:8d:b8:39:64:70:ab:45:4d: f9:1c:4f:8c:64:9c:7f:42:d5:08:c7:bd:e2:cc:5d:b2:3e:90: 43:bd:93:1b:b6:51:93:a3:f4:7a:38:70:21:46:1d:3c:47:5b: 3c:21:1c:63:ee:20:71:9b:69:16:a7:e3:67:8f:cf:99:cb:47: 42:f9:95:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB1GNts4KO3dke+rz8zjuyQsDxO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNTA2MDcwOTU1MDBaFw0yNjA2MDYxMDAwMDBaMDMxMTAvBgNV BAMTKEE4NkY2OUUyODY3ODhBM0VGRUYxMTY5OTI2N0FGMzVBM0YxODQxMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNDIQzUvfk9hyCbU9lAsFjvv8B fW0oBxkiKG225cXL1rv2kS9Dhtasryg9PF7KJb+rmxzmAlBIFib6VU1VY7MT0rnb VgDA3SryhE25qzwcteY0EOEInbhS3klwtiun6wC2ouYyL5aiG9+JT7VW16npQilP vGzC86V1MMVj3+PaaV8Wx2LTHehZYw4e3jNCPDNk6Kjo+L/eKPK4ui4F62Qf/zjF APxbqm5VS6Wox2MCIY6PB5X6cQKS287LgJXMvVozV3n5bo2YVHCfk1gBBy4cxZ1c dgWGrQpy4CGP9rg7msN7Rcoce9mMolGSqo7ISGanJHYOhht8XY6/AVF+W2RFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqG9p4oZ4ij7+8RaZJnrzWj8YQTYwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0ngwDQYJ KoZIhvcNAQELBQADggEBACQpQt0S94vAPVqYLKkS3nQu9hsa/w77rYQdG/fTLjG2 ClRB2B6JgrUJTEjgHz0LtK5uByKwL7xCVB6NtK26eH5yH2ua3usdnRnUryETyO7K LUz36csWbdnQgugkpwY2Hi2uMf+gncHD82hGt+KWmTee4dMj2WDZ/1t0fxYcJTmR MOtm6iwdeqNsFYUCh+8gxzoYExFG+GvaNflzh93bsxYv2DtpMkB5EF0KmvL/wN7P 0k0iLgnsRaPXN5tftZuNuDlkcKtFTfkcT4xknH9C1QjHveLMXbI+kEO9kxu2UZOj 9Ho4cCFGHTxHWzwhHGPuIHGbaRan42ePz5nLR0L5lQg= -----END CERTIFICATE-----Generated at Tue Jun 17 15:55:09 2025 by rpki-client