$ rpki-client -vvf repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: pJiq9ojTyK7ZZqOiMbF+1PX7W4BwHy5wyU1KAl8QMPg= Subject key identifier: D2:39:E9:D1:82:6E:F0:87:BE:BB:5C:51:54:F1:60:C9:A6:A2:CF:5A Certificate issuer: /CN=13BAA0DF960A8AD207C380328B5666205D55F24C Certificate serial: 797D45A4300061A7AEA938FE6F1EF3D3FF85934B Authority key identifier: 13:BA:A0:DF:96:0A:8A:D2:07:C3:80:32:8B:56:66:20:5D:55:F2:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13BAA0DF960A8AD207C380328B5666205D55F24C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 12:02:20 +0000 ROA not before: Fri 04 Jul 2025 11:57:20 +0000 ROA not after: Fri 03 Jul 2026 12:02:20 +0000 asID: 17995 IP address blocks: 103.169.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/13BAA0DF960A8AD207C380328B5666205D55F24C.crl rsync://repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/13BAA0DF960A8AD207C380328B5666205D55F24C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13BAA0DF960A8AD207C380328B5666205D55F24C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 04:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7d:45:a4:30:00:61:a7:ae:a9:38:fe:6f:1e:f3:d3:ff:85:93:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13BAA0DF960A8AD207C380328B5666205D55F24C Validity Not Before: Jul 4 11:57:20 2025 GMT Not After : Jul 3 12:02:20 2026 GMT Subject: CN=D239E9D1826EF087BEBB5C5154F160C9A6A2CF5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:d8:c8:6c:92:71:12:14:b0:d8:06:c2:bb: bb:45:21:c0:c6:e1:6f:43:91:d0:77:41:be:83:66: a7:78:8a:49:d7:cc:71:ca:30:d4:0f:bd:5e:5a:b8: 96:36:17:82:6a:1c:16:ee:b5:52:6c:ea:26:65:84: 56:89:fd:bc:da:f3:92:35:41:49:40:f8:e9:54:a1: 45:46:27:84:e8:e6:77:a3:e7:98:f9:b9:b4:4b:e6: 12:38:4c:74:eb:62:26:ce:e9:17:ce:fb:53:6d:b6: a2:60:4a:b0:48:c8:ef:d1:42:11:9d:a8:35:b6:4f: e9:bc:4a:a5:d3:2a:1a:b7:13:42:53:21:9b:52:23: 57:95:67:4d:f4:0f:51:5e:a2:32:93:79:4d:5c:fe: 51:bc:52:c3:60:05:6b:75:df:5c:c0:4f:f6:35:60: d6:40:32:b0:33:08:93:60:95:54:b0:47:1f:34:7a: 41:1c:06:f6:0f:08:b2:db:53:34:1e:eb:eb:a7:08: 13:ee:1c:6b:8a:6e:be:bd:fe:3a:e0:c5:5d:b8:0a: 84:26:29:29:4a:83:6f:25:02:24:3c:de:40:b8:54: 51:52:b4:a8:04:8f:d2:98:4d:1f:e5:48:79:d7:53: 91:d1:ba:d0:6d:0d:cb:61:72:d9:12:f5:95:40:c1: 3f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:39:E9:D1:82:6E:F0:87:BE:BB:5C:51:54:F1:60:C9:A6:A2:CF:5A X509v3 Authority Key Identifier: keyid:13:BA:A0:DF:96:0A:8A:D2:07:C3:80:32:8B:56:66:20:5D:55:F2:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/13BAA0DF960A8AD207C380328B5666205D55F24C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/13BAA0DF960A8AD207C380328B5666205D55F24C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b8c543c-de1f-4ef4-92b1-68556ff131a3/0/3130332e3136392e3235322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.252.0/23 Signature Algorithm: sha256WithRSAEncryption 17:df:f7:2a:bc:4c:83:e3:18:7b:98:82:c1:d8:8c:47:a8:9a: c9:ce:20:bb:37:bc:51:dd:50:9f:50:b8:98:8a:fa:01:dc:67: 61:87:6a:55:13:76:fc:c7:c0:d7:6e:38:67:2f:3f:65:c7:bb: 03:94:51:dd:d9:f2:6b:9e:7e:79:60:f5:d6:78:bf:32:8b:64: c1:7b:35:79:ae:45:fc:f4:ee:da:cc:58:61:61:11:12:4e:f5: e7:c5:90:2a:b4:9e:37:91:87:2f:f9:ec:94:2f:75:d6:20:b7: 26:a0:05:3b:1a:4c:72:d3:1d:66:03:36:fe:f9:0e:20:e0:1d: d0:5b:c7:5f:f7:10:ed:b8:52:18:54:85:0b:14:51:e0:ec:ce: e6:6d:52:97:e3:ad:04:3e:6c:6a:ee:51:86:c7:60:d9:cb:2a: 94:8e:8e:80:05:fa:45:d0:fd:88:90:08:dc:29:f7:78:dc:d3: d1:70:11:2a:5c:a2:ed:31:76:3f:6e:cf:27:2a:28:09:a9:24: 4e:c0:9c:0a:2d:f7:7f:0e:15:29:b9:e6:67:e3:a1:45:0b:f5: 21:ac:20:28:2c:a5:af:96:fe:81:0a:55:09:91:70:f1:36:68: a4:b9:8b:be:92:de:8c:19:1a:55:c7:ad:83:68:49:15:e9:eb: a0:56:e8:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeX1FpDAAYaeuqTj+bx7z0/+Fk0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTNCQUEwREY5NjBBOEFEMjA3QzM4MDMyOEI1NjY2MjA1 RDU1RjI0QzAeFw0yNTA3MDQxMTU3MjBaFw0yNjA3MDMxMjAyMjBaMDMxMTAvBgNV BAMTKEQyMzlFOUQxODI2RUYwODdCRUJCNUM1MTU0RjE2MEM5QTZBMkNGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfhdjIbJJxEhSw2AbCu7tFIcDG 4W9DkdB3Qb6DZqd4iknXzHHKMNQPvV5auJY2F4JqHBbutVJs6iZlhFaJ/bza85I1 QUlA+OlUoUVGJ4To5nej55j5ubRL5hI4THTrYibO6RfO+1NttqJgSrBIyO/RQhGd qDW2T+m8SqXTKhq3E0JTIZtSI1eVZ030D1FeojKTeU1c/lG8UsNgBWt131zAT/Y1 YNZAMrAzCJNglVSwRx80ekEcBvYPCLLbUzQe6+unCBPuHGuKbr69/jrgxV24CoQm KSlKg28lAiQ83kC4VFFStKgEj9KYTR/lSHnXU5HRutBtDcthctkS9ZVAwT/7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0jnp0YJu8Ie+u1xRVPFgyaaiz1owHwYDVR0j BBgwFoAUE7qg35YKitIHw4Ayi1ZmIF1V8kwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YjhjNTQzYy1kZTFmLTRlZjQtOTJiMS02ODU1NmZmMTMxYTMvMC8xM0JBQTBERjk2 MEE4QUQyMDdDMzgwMzI4QjU2NjYyMDVENTVGMjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTNCQUEwREY5NjBBOEFEMjA3QzM4MDMyOEI1NjY2MjA1RDU1 RjI0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViOGM1NDNjLWRlMWYtNGVmNC05 MmIxLTY4NTU2ZmYxMzFhMy8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6n8MA0GCSqG SIb3DQEBCwUAA4IBAQAX3/cqvEyD4xh7mILB2IxHqJrJziC7N7xR3VCfULiYivoB 3Gdhh2pVE3b8x8DXbjhnLz9lx7sDlFHd2fJrnn55YPXWeL8yi2TBezV5rkX89O7a zFhhYRESTvXnxZAqtJ43kYcv+eyUL3XWILcmoAU7Gkxy0x1mAzb++Q4g4B3QW8df 9xDtuFIYVIULFFHg7M7mbVKX460EPmxq7lGGx2DZyyqUjo6ABfpF0P2IkAjcKfd4 3NPRcBEqXKLtMXY/bs8nKigJqSROwJwKLfd/DhUpueZn46FFC/UhrCAoLKWvlv6B ClUJkXDxNmikuYu+kt6MGRpVx62DaEkV6eugVuhr -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:17 2025 by rpki-client