$ rpki-client -vvf repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa File: 3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: nuw56AWJFQx7bF2mLso7Fp7ypapHW7bx18alMUZHm9U= Subject key identifier: 9E:73:2F:04:B7:F0:B7:37:06:37:49:D2:44:61:9A:64:D1:22:39:35 Certificate issuer: /CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Certificate serial: 3D1C5054AE8EDF3DC02607DC4D21565A4D61BA07 Authority key identifier: 8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 03:02:52 +0000 ROA not before: Mon 16 Jun 2025 02:57:52 +0000 ROA not after: Mon 15 Jun 2026 03:02:52 +0000 asID: 48465 IP address blocks: 103.186.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 11:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1c:50:54:ae:8e:df:3d:c0:26:07:dc:4d:21:56:5a:4d:61:ba:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Validity Not Before: Jun 16 02:57:52 2025 GMT Not After : Jun 15 03:02:52 2026 GMT Subject: CN=9E732F04B7F0B737063749D244619A64D1223935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:70:8f:0d:8b:51:a0:cc:4e:80:ca:64:89: 36:30:05:c1:43:24:db:57:8d:88:44:47:f1:e4:ea: e1:de:2f:d0:4a:c4:35:e4:05:09:91:ca:92:7d:0f: f9:2a:24:f5:57:52:16:be:7d:45:d2:a9:97:9b:f1: 25:c9:cd:b0:69:fc:34:1b:8b:14:7e:bd:3a:32:ad: 0f:9b:41:73:09:c6:2d:ae:7b:c4:4d:74:0b:f9:8c: cd:98:61:dc:41:ea:9d:a4:41:0c:6b:0a:27:2d:6d: 32:eb:fe:03:7c:73:6e:13:ef:d5:ce:31:a2:4e:24: 4c:16:d4:f5:9e:45:03:3e:5e:5f:37:ae:13:26:23: b5:26:b2:c3:5b:c5:63:89:fa:ae:5f:88:7d:46:57: 6e:0e:45:ff:05:90:00:c5:15:cf:ba:9a:0d:ae:b0: 2e:35:4b:d7:d8:9e:6c:85:b7:52:28:5e:06:15:67: 4c:ad:30:c8:8b:f0:07:b4:57:e5:2e:f0:95:ae:0f: cd:e6:14:dc:8a:fb:1e:3c:06:60:8d:e6:68:16:66: 16:31:52:eb:6a:57:7c:07:ba:ce:10:01:14:59:78: 9c:18:47:eb:20:2f:40:39:4e:33:1b:6a:5c:03:e6: 0d:41:42:79:51:92:08:ce:3d:fc:87:fc:36:14:81: 43:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:73:2F:04:B7:F0:B7:37:06:37:49:D2:44:61:9A:64:D1:22:39:35 X509v3 Authority Key Identifier: keyid:8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:af:2e:08:7b:ab:76:ce:8d:34:73:98:38:84:93:d3:d5:f9: f4:c1:c9:b8:5b:35:f0:f3:de:24:b3:77:fd:90:2a:fc:f1:2a: 01:17:e8:ea:be:8a:a3:83:2a:e3:a2:b0:5e:7f:df:73:8a:52: 18:45:0f:c1:07:0d:bb:4f:c6:c5:0e:d3:63:f4:37:e6:9e:d5: a1:08:93:95:e3:3f:fd:c2:c2:0f:43:8c:cc:35:51:a7:3f:b2: 04:93:0c:4c:fe:9e:fa:e6:82:3a:dd:00:d5:01:c0:4e:5c:4e: 60:e3:8f:08:3b:b2:5e:9d:e0:3a:b7:8a:ee:dc:21:b2:94:01: a5:81:24:03:d3:bd:e2:9e:d6:b7:c7:f4:ee:2d:a7:33:ec:31: af:a4:1a:74:9e:0b:7f:b2:1e:29:46:8f:ed:46:a3:cf:31:c8: d5:01:ff:9e:17:74:dd:3c:11:d8:74:52:1d:34:e0:77:5e:49: 68:38:07:b2:24:70:ec:cf:49:22:05:2f:27:6c:78:d2:cd:e9: 62:eb:e6:bc:50:2e:53:e6:c5:4b:2c:4f:48:8a:64:07:b6:b6: 8e:ee:9d:c5:b3:b9:50:03:59:7a:81:5d:33:2a:2c:4d:e5:89: f7:92:e9:95:c9:2c:16:ae:e0:a7:99:d2:d0:b2:42:e7:f6:54: 06:4d:b2:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPRxQVK6O3z3AJgfcTSFWWk1hugcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhB MDlBNUY1OTAeFw0yNTA2MTYwMjU3NTJaFw0yNjA2MTUwMzAyNTJaMDMxMTAvBgNV BAMTKDlFNzMyRjA0QjdGMEI3MzcwNjM3NDlEMjQ0NjE5QTY0RDEyMjM5MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY2nCPDYtRoMxOgMpkiTYwBcFD JNtXjYhER/Hk6uHeL9BKxDXkBQmRypJ9D/kqJPVXUha+fUXSqZeb8SXJzbBp/DQb ixR+vToyrQ+bQXMJxi2ue8RNdAv5jM2YYdxB6p2kQQxrCictbTLr/gN8c24T79XO MaJOJEwW1PWeRQM+Xl83rhMmI7UmssNbxWOJ+q5fiH1GV24ORf8FkADFFc+6mg2u sC41S9fYnmyFt1IoXgYVZ0ytMMiL8Ae0V+Uu8JWuD83mFNyK+x48BmCN5mgWZhYx UutqV3wHus4QARRZeJwYR+sgL0A5TjMbalwD5g1BQnlRkgjOPfyH/DYUgUOfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnnMvBLfwtzcGN0nSRGGaZNEiOTUwHwYDVR0j BBgwFoAUjPsifaHvUdsjNku6A00PaKCaX1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjUyZWFkMy1kYzhmLTRkODYtYWZjZi1hMTQwZTViODc1MzIvMC84Q0ZCMjI3REEx RUY1MURCMjMzNjRCQkEwMzREMEY2OEEwOUE1RjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhBMDlB NUY1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7rCMA0GCSqG SIb3DQEBCwUAA4IBAQBbry4Ie6t2zo00c5g4hJPT1fn0wcm4WzXw894ks3f9kCr8 8SoBF+jqvoqjgyrjorBef99zilIYRQ/BBw27T8bFDtNj9DfmntWhCJOV4z/9wsIP Q4zMNVGnP7IEkwxM/p765oI63QDVAcBOXE5g448IO7JeneA6t4ru3CGylAGlgSQD 073inta3x/TuLacz7DGvpBp0ngt/sh4pRo/tRqPPMcjVAf+eF3TdPBHYdFIdNOB3 XkloOAeyJHDsz0kiBS8nbHjSzeli6+a8UC5T5sVLLE9IimQHtraO7p3Fs7lQA1l6 gV0zKixN5Yn3kumVySwWruCnmdLQskLn9lQGTbJ9 -----END CERTIFICATE-----Generated at Mon Jun 16 21:20:31 2025 by rpki-client