$ rpki-client -vvf repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/3130332e3138342e3137382e302f32332d3234203d3e20313439363632.roa File: 3130332e3138342e3137382e302f32332d3234203d3e20313439363632.roa (raw, json) Hash identifier: nafgZnAsM444PZpRUGJ2jDID9gOrDEkaukgW0FDatiE= Subject key identifier: 98:15:E2:33:BC:EF:75:46:BC:37:B6:61:A5:13:47:10:02:53:AC:A2 Certificate issuer: /CN=11B369E1CF41EB03E35A2711FF1FE0F687242467 Certificate serial: 171D31C453138837CBE9EAC651F554C7B3363C46 Authority key identifier: 11:B3:69:E1:CF:41:EB:03:E3:5A:27:11:FF:1F:E0:F6:87:24:24:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11B369E1CF41EB03E35A2711FF1FE0F687242467.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/3130332e3138342e3137382e302f32332d3234203d3e20313439363632.roa Signing time: Mon 16 Jun 2025 08:02:53 +0000 ROA not before: Mon 16 Jun 2025 07:57:53 +0000 ROA not after: Mon 15 Jun 2026 08:02:53 +0000 asID: 149662 IP address blocks: 103.184.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/11B369E1CF41EB03E35A2711FF1FE0F687242467.crl rsync://repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/11B369E1CF41EB03E35A2711FF1FE0F687242467.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11B369E1CF41EB03E35A2711FF1FE0F687242467.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:1d:31:c4:53:13:88:37:cb:e9:ea:c6:51:f5:54:c7:b3:36:3c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11B369E1CF41EB03E35A2711FF1FE0F687242467 Validity Not Before: Jun 16 07:57:53 2025 GMT Not After : Jun 15 08:02:53 2026 GMT Subject: CN=9815E233BCEF7546BC37B661A51347100253ACA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5a:b7:f0:1b:16:cb:76:5e:a3:e4:a0:32:13: c0:e2:3d:0a:56:c4:87:14:18:8d:a4:77:a7:9b:fb: 5c:50:29:70:aa:d1:1c:63:ba:fd:7a:68:d1:5a:3d: 22:65:1f:25:33:1b:24:65:88:9c:55:24:9f:43:ac: 55:30:6c:a4:37:39:34:27:01:e1:c4:ed:38:5f:e8: c6:6e:79:12:d1:e0:84:b2:1a:ac:32:68:25:ff:9e: 85:31:a2:54:4c:47:9b:63:b7:09:a5:30:b7:58:45: b7:11:cc:90:39:d8:1a:6a:49:ae:15:6e:4c:53:d3: ef:b7:f3:44:ca:95:34:a4:68:9e:93:1a:19:42:b1: 2f:19:c4:85:73:cd:29:dc:fb:62:8e:19:27:ae:65: c1:a7:e6:1c:97:72:f5:a7:4f:08:24:c5:e9:77:6a: 7d:6b:32:d6:10:25:ed:3d:42:85:c7:2e:30:4d:45: d5:11:c6:56:50:0e:02:a1:a9:8c:e7:ed:61:c9:69: 66:e8:82:a7:0c:76:fb:a7:d7:f6:c5:3f:59:90:80: 66:1e:eb:e3:f7:74:5e:c3:6d:ba:2b:56:83:b0:45: 4f:f7:c4:fb:6c:71:19:ae:67:83:f1:94:d5:89:37: 45:4b:33:13:72:1c:46:1c:04:fa:69:8d:f7:85:33: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:15:E2:33:BC:EF:75:46:BC:37:B6:61:A5:13:47:10:02:53:AC:A2 X509v3 Authority Key Identifier: keyid:11:B3:69:E1:CF:41:EB:03:E3:5A:27:11:FF:1F:E0:F6:87:24:24:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/11B369E1CF41EB03E35A2711FF1FE0F687242467.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11B369E1CF41EB03E35A2711FF1FE0F687242467.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2e0962f7-67ea-470e-a524-7ae1e40fd5b7/0/3130332e3138342e3137382e302f32332d3234203d3e20313439363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.178.0/23 Signature Algorithm: sha256WithRSAEncryption 28:e7:24:c4:33:84:2c:c2:fc:a6:7c:51:51:00:67:bf:0b:a1: f6:5f:b5:c3:44:07:4f:58:eb:02:51:95:eb:9a:8d:07:02:cb: 99:06:00:29:a2:5f:6d:40:25:4a:84:02:23:e5:0c:c7:ff:ca: ef:32:1a:fc:1d:22:b8:be:b3:e2:a9:e0:8d:c4:b7:aa:c4:a4: 58:3a:01:03:57:1c:62:e6:36:af:2b:e8:aa:4a:3f:c7:1b:da: 29:19:19:6b:c0:9e:b8:02:18:4f:89:89:64:70:a8:22:b9:68: c9:6f:d6:f0:ec:59:f6:d4:07:d6:7c:ce:15:64:80:1b:75:78: 81:7f:36:f4:32:e1:2b:46:19:6e:eb:7c:e5:f4:c9:94:19:f7: 69:17:82:15:a7:a3:2f:04:c8:da:e8:eb:bb:74:bc:d3:9c:66: cf:e2:a9:68:f0:dd:f4:30:f9:0a:eb:b8:dc:4c:03:13:fd:f4: 5c:52:20:99:66:13:1a:81:d2:15:c2:46:77:b0:19:f1:ef:1c: b5:da:bb:70:53:d4:bb:45:a9:5b:68:bf:2c:18:c5:51:9e:cd: 24:80:00:c3:92:2f:fc:2a:a9:af:f2:5b:41:b3:94:44:49:69: 39:ff:3d:bd:84:d7:6c:b3:03:8f:e3:27:c0:90:24:5d:31:d2: 36:c0:2e:46 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFx0xxFMTiDfL6erGUfVUx7M2PEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFCMzY5RTFDRjQxRUIwM0UzNUEyNzExRkYxRkUwRjY4 NzI0MjQ2NzAeFw0yNTA2MTYwNzU3NTNaFw0yNjA2MTUwODAyNTNaMDMxMTAvBgNV BAMTKDk4MTVFMjMzQkNFRjc1NDZCQzM3QjY2MUE1MTM0NzEwMDI1M0FDQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsWrfwGxbLdl6j5KAyE8DiPQpW xIcUGI2kd6eb+1xQKXCq0Rxjuv16aNFaPSJlHyUzGyRliJxVJJ9DrFUwbKQ3OTQn AeHE7Thf6MZueRLR4ISyGqwyaCX/noUxolRMR5tjtwmlMLdYRbcRzJA52BpqSa4V bkxT0++380TKlTSkaJ6TGhlCsS8ZxIVzzSnc+2KOGSeuZcGn5hyXcvWnTwgkxel3 an1rMtYQJe09QoXHLjBNRdURxlZQDgKhqYzn7WHJaWbogqcMdvun1/bFP1mQgGYe 6+P3dF7DbborVoOwRU/3xPtscRmuZ4PxlNWJN0VLMxNyHEYcBPppjfeFM4aZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmBXiM7zvdUa8N7ZhpRNHEAJTrKIwHwYDVR0j BBgwFoAUEbNp4c9B6wPjWicR/x/g9ockJGcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZTA5NjJmNy02N2VhLTQ3MGUtYTUyNC03YWUxZTQwZmQ1YjcvMC8xMUIzNjlFMUNG NDFFQjAzRTM1QTI3MTFGRjFGRTBGNjg3MjQyNDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFCMzY5RTFDRjQxRUIwM0UzNUEyNzExRkYxRkUwRjY4NzI0 MjQ2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlMDk2MmY3LTY3ZWEtNDcwZS1h NTI0LTdhZTFlNDBmZDViNy8wLzMxMzAzMzJlMzEzODM0MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnuLIwDQYJ KoZIhvcNAQELBQADggEBACjnJMQzhCzC/KZ8UVEAZ78LofZftcNEB09Y6wJRleua jQcCy5kGACmiX21AJUqEAiPlDMf/yu8yGvwdIri+s+Kp4I3Et6rEpFg6AQNXHGLm Nq8r6KpKP8cb2ikZGWvAnrgCGE+JiWRwqCK5aMlv1vDsWfbUB9Z8zhVkgBt1eIF/ NvQy4StGGW7rfOX0yZQZ92kXghWnoy8EyNro67t0vNOcZs/iqWjw3fQw+QrruNxM AxP99FxSIJlmExqB0hXCRnewGfHvHLXau3BT1LtFqVtovywYxVGezSSAAMOSL/wq qa/yW0GzlERJaTn/Pb2E12yzA4/jJ8CQJF0x0jbALkY= -----END CERTIFICATE-----Generated at Tue Jun 17 09:55:10 2025 by rpki-client