$ rpki-client -vvf repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa File: 3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa (raw, json) Hash identifier: ekJ6EWJjK3BnK95R5dRKHaTG8w4+znJQJhayH3/qkyg= Subject key identifier: B4:0C:E9:EC:40:31:25:45:2E:13:A8:30:27:3F:A9:A6:A2:AD:D9:8F Certificate issuer: /CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Certificate serial: 21241F3222AD51A7A155D0F990D4A228C6018644 Authority key identifier: 5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa Signing time: Mon 02 Jun 2025 02:03:01 +0000 ROA not before: Mon 02 Jun 2025 01:58:01 +0000 ROA not after: Mon 01 Jun 2026 02:03:01 +0000 asID: 136102 IP address blocks: 103.90.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 19:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:24:1f:32:22:ad:51:a7:a1:55:d0:f9:90:d4:a2:28:c6:01:86:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Validity Not Before: Jun 2 01:58:01 2025 GMT Not After : Jun 1 02:03:01 2026 GMT Subject: CN=B40CE9EC403125452E13A830273FA9A6A2ADD98F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a2:ee:40:23:9a:d2:5d:43:1b:19:50:8c:b7: 80:89:e3:2f:95:25:3d:62:50:23:36:c5:9e:ad:c7: f0:dd:35:23:c1:57:80:7a:38:b1:36:9a:a6:8c:24: 88:e3:4e:2a:ae:c4:74:d0:97:b4:90:6e:77:e5:fe: 64:6a:b8:f3:61:f1:b9:07:d0:17:0a:f6:0f:58:47: 46:17:24:1b:88:b6:79:3a:95:fd:0a:c5:7c:33:7e: ab:c9:54:0e:11:66:39:55:aa:fa:7d:76:9c:49:74: 57:6e:b5:0d:9b:7d:8f:a5:8f:a0:7a:e1:0d:a7:86: 9e:bf:f2:b6:17:c6:e2:20:d8:ee:1f:7c:4b:9d:f3: 0d:b3:58:0d:0e:52:92:4c:89:ab:cf:aa:4a:72:0c: ff:42:ec:81:13:77:1e:89:7f:1b:46:93:aa:e1:40: 4c:89:49:7b:ca:ff:1e:fc:5f:74:7e:08:04:bc:b6: a2:89:f0:a6:75:34:2a:ad:8b:7a:82:b0:53:87:5a: 0e:6c:79:c1:97:fa:26:e7:9c:7c:87:f3:b3:90:f9: d0:56:4c:f7:67:07:f9:cc:32:49:55:ce:9a:bf:4c: 22:88:f7:d6:69:3b:b9:9e:b1:0e:5d:56:2d:8d:a0: 70:43:d0:a6:28:0f:37:21:f1:e2:17:ba:f9:2a:97: 49:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:0C:E9:EC:40:31:25:45:2E:13:A8:30:27:3F:A9:A6:A2:AD:D9:8F X509v3 Authority Key Identifier: keyid:5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.250.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:bb:10:e9:13:d5:b0:52:76:71:74:c9:0b:91:fd:45:6d:96: 9b:a5:e7:b6:5c:5b:3a:29:f6:55:65:ca:16:b3:0e:5e:d5:b8: c4:c3:53:67:8a:a7:39:ed:17:96:ee:df:6c:98:59:83:ba:f5: 36:e8:94:f7:83:03:2b:92:e3:61:b5:78:f7:f1:62:8e:f5:d1: e9:a3:1a:8b:90:2f:2d:a9:2f:2a:32:4e:84:20:ad:f1:be:2e: 5f:79:76:65:aa:08:e4:d8:9a:f1:48:49:77:5d:43:89:97:b0: 48:a0:7a:8a:18:2e:94:d7:3d:88:7a:68:c4:75:b3:39:48:d2: 40:07:81:b6:b3:89:c0:2f:39:a0:78:d7:a0:59:73:2c:98:14: 2f:f0:1f:9f:5d:18:91:84:09:1f:fb:a6:c5:ec:5d:4e:47:98: 1e:bf:d5:f2:17:9e:aa:c4:73:a0:38:e7:34:73:e8:d2:cb:38: de:2e:8b:9a:25:40:77:6f:7d:9e:4c:53:88:42:6e:d5:78:d9: 17:f0:8b:54:fc:27:3c:06:34:7a:1d:94:03:84:52:f9:1b:49: 74:fb:e7:ca:97:db:d7:5a:65:29:d4:99:ee:01:d7:3d:77:4f: a3:4c:38:65:7a:7c:a4:e6:36:5d:16:9c:e2:16:4c:be:8c:21: 86:25:bf:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUISQfMiKtUaehVdD5kNSiKMYBhkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNF MTczRTcxQzAeFw0yNTA2MDIwMTU4MDFaFw0yNjA2MDEwMjAzMDFaMDMxMTAvBgNV BAMTKEI0MENFOUVDNDAzMTI1NDUyRTEzQTgzMDI3M0ZBOUE2QTJBREQ5OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmou5AI5rSXUMbGVCMt4CJ4y+V JT1iUCM2xZ6tx/DdNSPBV4B6OLE2mqaMJIjjTiquxHTQl7SQbnfl/mRquPNh8bkH 0BcK9g9YR0YXJBuItnk6lf0KxXwzfqvJVA4RZjlVqvp9dpxJdFdutQ2bfY+lj6B6 4Q2nhp6/8rYXxuIg2O4ffEud8w2zWA0OUpJMiavPqkpyDP9C7IETdx6JfxtGk6rh QEyJSXvK/x78X3R+CAS8tqKJ8KZ1NCqti3qCsFOHWg5secGX+ibnnHyH87OQ+dBW TPdnB/nMMklVzpq/TCKI99ZpO7mesQ5dVi2NoHBD0KYoDzch8eIXuvkql0nbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtAzp7EAxJUUuE6gwJz+ppqKt2Y8wHwYDVR0j BBgwFoAUXx7AN4x7OokSyjLjgtLAg+Fz5xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDAyZGFhNS1mYjBjLTRhMjQtOTg4OS0zM2JkNTBkYjRmZTAvMC81RjFFQzAzNzhD N0IzQTg5MTJDQTMyRTM4MkQyQzA4M0UxNzNFNzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNFMTcz RTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzkzMDJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1r6MA0GCSqG SIb3DQEBCwUAA4IBAQANuxDpE9WwUnZxdMkLkf1FbZabpee2XFs6KfZVZcoWsw5e 1bjEw1Nniqc57ReW7t9smFmDuvU26JT3gwMrkuNhtXj38WKO9dHpoxqLkC8tqS8q Mk6EIK3xvi5feXZlqgjk2JrxSEl3XUOJl7BIoHqKGC6U1z2IemjEdbM5SNJAB4G2 s4nALzmgeNegWXMsmBQv8B+fXRiRhAkf+6bF7F1OR5gev9XyF56qxHOgOOc0c+jS yzjeLouaJUB3b32eTFOIQm7VeNkX8ItU/Cc8BjR6HZQDhFL5G0l0++fKl9vXWmUp 1JnuAdc9d0+jTDhlenyk5jZdFpziFky+jCGGJb/L -----END CERTIFICATE-----Generated at Tue Jun 17 02:48:16 2025 by rpki-client