$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa File: 3130332e372e312e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: HfReQfR8KQgqYxrjCjLONRll8cJTpbYph9s5PnSext8= Subject key identifier: 2F:B6:2A:68:C2:6A:57:21:AA:F3:71:4C:CA:73:49:4C:58:4E:6B:AE Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 12D58F0524F384B1F0AAE6DB9821E4688073214E Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa Signing time: Sat 14 Jun 2025 06:00:03 +0000 ROA not before: Sat 14 Jun 2025 05:55:03 +0000 ROA not after: Sat 13 Jun 2026 06:00:03 +0000 asID: 38788 IP address blocks: 103.7.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 18:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d5:8f:05:24:f3:84:b1:f0:aa:e6:db:98:21:e4:68:80:73:21:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 14 05:55:03 2025 GMT Not After : Jun 13 06:00:03 2026 GMT Subject: CN=2FB62A68C26A5721AAF3714CCA73494C584E6BAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:dc:9a:55:aa:ef:8f:44:c8:15:f1:90:40:dd: 69:38:0d:40:2b:6d:4e:2b:b0:a6:c1:cd:f9:43:e3: cc:ee:37:ee:b2:ef:57:a0:75:ba:98:6a:45:28:37: d6:2e:20:25:c3:a0:a0:2c:25:7f:a9:fa:b3:6d:73: 03:75:7a:97:53:81:9d:e1:5f:83:6d:f4:91:49:69: 02:9f:37:95:1a:b0:9a:7c:06:5e:c5:dd:1f:71:15: 1f:d4:59:0a:7e:e4:3c:3e:d1:0d:39:08:10:d2:2e: 71:e1:f3:b0:9b:1e:72:d2:ca:37:f5:db:c9:5c:fa: ae:20:bb:83:1a:0c:54:40:1e:17:c1:e5:91:c4:dd: 86:d8:61:01:c6:35:24:44:e3:fb:e9:51:6e:5f:d6: 2d:82:e9:a7:e4:70:dc:88:39:0d:4b:a3:75:2b:f4: e8:7a:8b:b0:85:17:82:ea:a0:f2:2a:8d:44:45:8b: 54:d7:b1:63:2e:4e:8b:77:0f:7a:f3:bd:47:f7:8e: 8d:55:ca:a2:1b:20:a9:94:df:9b:f3:44:29:9e:af: cb:56:f5:5b:54:e2:75:6f:1c:ff:89:17:e7:dd:9e: e7:e1:a9:8e:5a:11:15:4c:e2:c9:61:df:41:57:9c: 68:91:da:ec:a8:08:a7:67:84:27:c4:fa:41:17:bc: d1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B6:2A:68:C2:6A:57:21:AA:F3:71:4C:CA:73:49:4C:58:4E:6B:AE X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.1.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:b2:39:5b:89:f0:66:b6:ed:83:5a:f5:07:f1:71:73:ed:c2: 4d:5a:ec:d7:d8:97:b3:bb:05:b6:2a:9f:04:14:a6:0c:a8:4f: 24:10:a3:fc:89:9c:07:16:73:2a:90:da:05:02:b2:27:5f:a3: 83:42:e9:0f:b9:95:11:84:0c:60:df:9c:00:4b:da:c9:ca:ba: 6d:91:86:b6:8d:8f:cb:41:64:05:92:fe:c7:d2:9e:be:a1:f4: 2f:7b:2e:26:4e:80:ea:4e:7e:04:9b:f2:b6:08:91:34:aa:a9: b7:78:86:85:33:a9:64:80:5f:b5:88:19:a7:6c:c8:ce:bf:30: e6:dc:7a:6c:c9:cb:99:1c:6e:53:b3:2d:b7:82:b1:b2:c5:4e: 92:00:8c:4b:ae:af:b6:2a:f2:3b:69:4b:ca:8a:06:a7:c2:ee: 17:00:59:97:21:05:b5:97:c4:7c:6d:68:0c:34:b7:6e:c9:1a: 86:df:0d:39:5a:4f:f6:22:72:3e:71:82:54:95:34:cb:87:3d: ec:70:a6:cb:57:b8:1a:d5:b6:89:7e:4a:6c:98:42:63:a9:76: 23:c0:ff:0f:cd:af:a2:de:47:23:04:f0:77:15:00:fa:5e:d9: 2c:ae:a2:a0:c9:0c:f2:20:81:53:d9:13:95:6e:d7:f5:56:9b: c4:a2:6b:54 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUEtWPBSTzhLHwqubbmCHkaIBzIU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MTQwNTU1MDNaFw0yNjA2MTMwNjAwMDNaMDMxMTAvBgNV BAMTKDJGQjYyQTY4QzI2QTU3MjFBQUYzNzE0Q0NBNzM0OTRDNTg0RTZCQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg3JpVqu+PRMgV8ZBA3Wk4DUAr bU4rsKbBzflD48zuN+6y71egdbqYakUoN9YuICXDoKAsJX+p+rNtcwN1epdTgZ3h X4Nt9JFJaQKfN5UasJp8Bl7F3R9xFR/UWQp+5Dw+0Q05CBDSLnHh87CbHnLSyjf1 28lc+q4gu4MaDFRAHhfB5ZHE3YbYYQHGNSRE4/vpUW5f1i2C6afkcNyIOQ1Lo3Ur 9Oh6i7CFF4LqoPIqjURFi1TXsWMuTot3D3rzvUf3jo1VyqIbIKmU35vzRCmer8tW 9VtU4nVvHP+JF+fdnufhqY5aERVM4slh30FXnGiR2uyoCKdnhCfE+kEXvNEZAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUL7YqaMJqVyGq83FMynNJTFhOa64wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzEyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwcBMA0GCSqGSIb3DQEBCwUA A4IBAQAbsjlbifBmtu2DWvUH8XFz7cJNWuzX2JezuwW2Kp8EFKYMqE8kEKP8iZwH FnMqkNoFArInX6ODQukPuZURhAxg35wAS9rJyrptkYa2jY/LQWQFkv7H0p6+ofQv ey4mToDqTn4Em/K2CJE0qqm3eIaFM6lkgF+1iBmnbMjOvzDm3HpsycuZHG5Tsy23 grGyxU6SAIxLrq+2KvI7aUvKiganwu4XAFmXIQW1l8R8bWgMNLduyRqG3w05Wk/2 InI+cYJUlTTLhz3scKbLV7ga1baJfkpsmEJjqXYjwP8Pza+i3kcjBPB3FQD6Xtks rqKgyQzyIIFT2ROVbtf1VpvEomtU -----END CERTIFICATE-----Generated at Mon Jun 16 06:18:38 2025 by rpki-client