$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa File: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (raw, json) Hash identifier: TsTDpWhEe0S4QbX7Nvx05CapjsmJk1el8Dy5qKfw9Z4= Subject key identifier: 7E:B4:AD:11:3C:52:16:B7:4A:E9:F9:EC:57:7E:9E:2A:02:E9:93:87 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 10CC2F21D3A6B0D155022F191A098F72C37463F1 Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa Signing time: Wed 14 May 2025 04:00:00 +0000 ROA not before: Wed 14 May 2025 03:55:00 +0000 ROA not after: Wed 13 May 2026 04:00:00 +0000 asID: 149901 IP address blocks: 103.190.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cc:2f:21:d3:a6:b0:d1:55:02:2f:19:1a:09:8f:72:c3:74:63:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: May 14 03:55:00 2025 GMT Not After : May 13 04:00:00 2026 GMT Subject: CN=7EB4AD113C5216B74AE9F9EC577E9E2A02E99387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:70:71:e7:74:ee:3d:e1:c6:5a:bf:ee:08: 8c:6e:c7:bc:71:45:60:4c:79:a0:9b:d2:dc:9c:3f: 83:f5:fa:0b:1b:73:6d:d2:df:40:0d:96:26:92:59: 51:b3:e7:41:98:44:f6:d9:6c:f3:40:05:86:b1:7a: bd:d4:68:53:ca:eb:7e:cf:4a:9b:f7:89:37:7a:0d: 0c:1c:73:62:7f:3f:9c:c2:34:bd:51:55:b5:f7:8e: 24:88:80:6f:2b:dd:c6:68:7b:f4:0b:8b:68:8a:09: 00:0b:42:f2:29:0a:7a:66:cd:4f:17:06:37:84:20: 69:a6:2b:4a:99:b2:24:99:46:ca:e1:34:17:13:0f: 7c:0c:f0:a4:67:82:55:e1:e9:8d:8f:f6:c6:5f:6b: 5c:fa:4f:78:c6:e8:8f:d7:29:5b:86:f4:82:be:ba: 39:f4:44:9f:c7:c0:bb:55:ba:b7:c9:c4:1f:47:55: da:4f:f9:71:22:0a:4a:b3:8e:1a:70:5f:4f:5e:3a: fa:0a:c2:49:e6:16:f9:d1:1a:bc:a0:ce:c8:a8:a4: f0:66:4a:02:fa:29:35:e0:96:75:00:90:0f:b6:dd: 0c:01:ca:f4:3e:0b:ee:cf:cc:f9:29:78:1c:85:80: cc:38:20:84:72:72:10:37:57:91:ea:f9:66:10:80: 79:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B4:AD:11:3C:52:16:B7:4A:E9:F9:EC:57:7E:9E:2A:02:E9:93:87 X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.60.0/24 Signature Algorithm: sha256WithRSAEncryption 00:0e:71:7c:ce:8c:bb:61:a0:f4:49:76:a5:63:cd:7c:43:31: 05:5b:f8:0e:72:93:c3:75:d3:6a:5b:84:49:83:1c:b0:df:1c: 3a:dd:04:68:42:b6:ea:8c:34:4e:c8:69:cd:ac:ee:a1:63:66: 9e:10:76:03:87:e9:4f:94:b6:9b:03:76:3f:08:61:d3:8a:40: 10:fa:c6:d1:58:da:f3:18:fc:85:23:af:38:c9:42:87:0d:b3: 4b:71:af:49:cb:50:b9:f0:1b:03:2b:bc:3c:a1:8a:8b:9c:f1: 48:5f:0c:91:41:54:31:9c:b7:11:50:d6:99:bf:27:64:3d:9e: d7:fc:7e:3c:a3:2c:a9:86:94:0f:37:ce:12:7f:eb:43:ce:29: 7c:3b:3f:5f:18:1b:d2:a8:00:07:8e:99:b1:df:90:28:84:99: a3:8f:a3:10:af:0a:7f:c5:7d:3a:92:16:8c:26:31:76:2d:74: 94:d9:18:90:53:14:73:8b:e9:11:77:af:26:17:c8:c2:99:55: f7:5b:dc:3a:10:27:78:cb:b6:af:25:58:23:83:18:f9:00:9d: 36:d3:a3:91:bf:a4:8b:bd:4f:36:0c:1c:ee:da:4f:58:35:53: 5a:8c:30:90:d4:1a:3a:e5:ef:31:6f:79:3c:ff:54:0b:1a:66: 5a:04:ed:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEMwvIdOmsNFVAi8ZGgmPcsN0Y/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNTA1MTQwMzU1MDBaFw0yNjA1MTMwNDAwMDBaMDMxMTAvBgNV BAMTKDdFQjRBRDExM0M1MjE2Qjc0QUU5RjlFQzU3N0U5RTJBMDJFOTkzODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmcXBx53TuPeHGWr/uCIxux7xx RWBMeaCb0tycP4P1+gsbc23S30ANliaSWVGz50GYRPbZbPNABYaxer3UaFPK637P Spv3iTd6DQwcc2J/P5zCNL1RVbX3jiSIgG8r3cZoe/QLi2iKCQALQvIpCnpmzU8X BjeEIGmmK0qZsiSZRsrhNBcTD3wM8KRnglXh6Y2P9sZfa1z6T3jG6I/XKVuG9IK+ ujn0RJ/HwLtVurfJxB9HVdpP+XEiCkqzjhpwX09eOvoKwknmFvnRGrygzsiopPBm SgL6KTXglnUAkA+23QwByvQ+C+7PzPkpeByFgMw4IIRychA3V5Hq+WYQgHlpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfrStETxSFrdK6fnsV36eKgLpk4cwHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlMzE0ODU4LWIzM2EtNGI2NS05 YTU1LWRjZTQxZTIyMzg3My8wLzMxMzAzMzJlMzEzOTMwMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ748MA0GCSqG SIb3DQEBCwUAA4IBAQAADnF8zoy7YaD0SXalY818QzEFW/gOcpPDddNqW4RJgxyw 3xw63QRoQrbqjDROyGnNrO6hY2aeEHYDh+lPlLabA3Y/CGHTikAQ+sbRWNrzGPyF I684yUKHDbNLca9Jy1C58BsDK7w8oYqLnPFIXwyRQVQxnLcRUNaZvydkPZ7X/H48 oyyphpQPN84Sf+tDzil8Oz9fGBvSqAAHjpmx35AohJmjj6MQrwp/xX06khaMJjF2 LXSU2RiQUxRzi+kRd68mF8jCmVX3W9w6ECd4y7avJVgjgxj5AJ0206ORv6SLvU82 DBzu2k9YNVNajDCQ1Bo65e8xb3k8/1QLGmZaBO39 -----END CERTIFICATE-----Generated at Tue Jun 17 21:21:19 2025 by rpki-client