$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa File: 3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: i565en58aZkxitE/Cu7dj7vQtPe24rOc0XFo1zdj2pA= Subject key identifier: 24:B3:9D:19:A7:36:04:CA:E3:9F:DC:05:74:8B:3C:71:C0:37:86:CE Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 38F5334CFBC096B34D0B0671345C99CF9DA5E983 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa Signing time: Sat 14 Jun 2025 07:00:02 +0000 ROA not before: Sat 14 Jun 2025 06:55:02 +0000 ROA not after: Sat 13 Jun 2026 07:00:02 +0000 asID: 38788 IP address blocks: 103.242.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 18:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f5:33:4c:fb:c0:96:b3:4d:0b:06:71:34:5c:99:cf:9d:a5:e9:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 14 06:55:02 2025 GMT Not After : Jun 13 07:00:02 2026 GMT Subject: CN=24B39D19A73604CAE39FDC05748B3C71C03786CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:ce:82:f8:d1:d8:35:69:f1:43:4d:76:f2: df:d6:ea:30:f5:3a:69:31:a4:77:98:96:97:29:5c: 7c:67:7e:6a:44:55:78:e1:34:2e:20:22:cf:e8:e4: 31:64:b1:30:97:75:af:02:d8:e4:73:c1:e1:c6:a3: 50:51:a4:a3:a4:23:d7:ae:e6:fc:01:81:be:95:68: 0b:78:32:10:ee:f8:6e:f4:0e:2c:69:fc:a7:96:de: 99:0a:57:69:3c:7f:5c:a6:6b:c4:06:bd:a1:a9:f1: 4c:27:c4:34:fb:82:1f:0c:fb:2e:5f:a8:82:1f:ab: 80:63:70:ed:10:fa:f1:8f:77:99:86:a9:5c:0a:ff: 25:49:d7:81:15:d8:e5:45:9e:cd:95:97:83:2a:fa: c4:87:95:f0:b0:d0:3b:f7:a2:73:c8:5b:4a:d5:60: 55:bc:a2:cb:fa:12:1b:1d:43:f5:31:95:be:a4:36: fe:87:f0:f9:45:0a:b8:ef:a3:30:e8:a1:53:5f:70: 59:d6:8a:b8:db:43:57:f6:27:fa:39:dc:74:ac:c3: 98:13:ad:c7:07:fd:3d:4e:9f:9d:cb:57:a0:84:79: d1:6a:0f:56:d7:bf:d0:ca:e9:f7:f5:59:a1:a3:49: 8c:b3:62:29:7a:16:da:41:d3:1a:77:fe:12:67:29: ab:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B3:9D:19:A7:36:04:CA:E3:9F:DC:05:74:8B:3C:71:C0:37:86:CE X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.181.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:63:37:96:0c:28:e5:87:45:a8:5b:2a:5b:bd:71:ba:0a:16: cc:7b:18:c1:58:00:bc:2b:12:ab:20:4c:f5:c7:51:37:8e:c8: ea:71:3f:f1:3d:cb:e9:3d:03:f9:06:9f:68:4b:1d:4f:af:d0: 9d:a4:96:28:2a:b1:b8:5d:2e:48:d5:49:b0:e6:3c:20:b2:04: 92:f7:16:5c:78:5e:55:9d:4c:24:b8:84:47:0e:9e:3d:05:99: 1c:db:05:c0:f3:64:8d:53:b4:b5:62:7d:be:d4:94:88:49:45: e0:4d:e4:6c:72:63:4c:89:9d:76:cd:cd:08:5d:c0:d2:1b:2b: e1:47:9a:7c:c9:cb:69:17:f3:64:87:aa:ca:02:ce:6b:50:2c: 1e:f7:de:2c:94:e0:52:67:36:b6:fb:a9:bd:17:f0:9a:ce:cd: 91:9d:10:56:da:c7:af:e1:05:c2:16:4f:be:49:29:e7:64:83: f5:39:a6:7e:08:6d:81:2f:cf:66:49:9d:fe:4b:80:ce:c6:72: b0:fa:e3:f2:7c:27:92:f3:4b:a8:82:5d:41:a7:f8:96:b8:8c: 43:3a:6e:1c:04:51:9e:b7:5b:a1:5d:0b:d7:f1:9a:a0:7e:85: 52:99:71:fe:36:23:eb:12:7e:e4:e6:19:57:63:d7:e5:8d:09: 01:6a:68:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOPUzTPvAlrNNCwZxNFyZz52l6YMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MTQwNjU1MDJaFw0yNjA2MTMwNzAwMDJaMDMxMTAvBgNV BAMTKDI0QjM5RDE5QTczNjA0Q0FFMzlGREMwNTc0OEIzQzcxQzAzNzg2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPr86C+NHYNWnxQ0128t/W6jD1 OmkxpHeYlpcpXHxnfmpEVXjhNC4gIs/o5DFksTCXda8C2ORzweHGo1BRpKOkI9eu 5vwBgb6VaAt4MhDu+G70Dixp/KeW3pkKV2k8f1yma8QGvaGp8UwnxDT7gh8M+y5f qIIfq4BjcO0Q+vGPd5mGqVwK/yVJ14EV2OVFns2Vl4Mq+sSHlfCw0Dv3onPIW0rV YFW8osv6EhsdQ/Uxlb6kNv6H8PlFCrjvozDooVNfcFnWirjbQ1f2J/o53HSsw5gT rccH/T1On53LV6CEedFqD1bXv9DK6ff1WaGjSYyzYil6FtpB0xp3/hJnKasnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJLOdGac2BMrjn9wFdIs8ccA3hs4wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/K1MA0GCSqG SIb3DQEBCwUAA4IBAQCNYzeWDCjlh0WoWypbvXG6ChbMexjBWAC8KxKrIEz1x1E3 jsjqcT/xPcvpPQP5Bp9oSx1Pr9CdpJYoKrG4XS5I1Umw5jwgsgSS9xZceF5VnUwk uIRHDp49BZkc2wXA82SNU7S1Yn2+1JSISUXgTeRscmNMiZ12zc0IXcDSGyvhR5p8 yctpF/Nkh6rKAs5rUCwe994slOBSZza2+6m9F/Cazs2RnRBW2sev4QXCFk++SSnn ZIP1OaZ+CG2BL89mSZ3+S4DOxnKw+uPyfCeS80uogl1Bp/iWuIxDOm4cBFGet1uh XQvX8ZqgfoVSmXH+NiPrEn7k5hlXY9fljQkBamj1 -----END CERTIFICATE-----Generated at Mon Jun 16 06:23:09 2025 by rpki-client