$ rpki-client -vvf repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/3130332e32302e31362e302f32342d3234203d3e20313439393633.roa File: 3130332e32302e31362e302f32342d3234203d3e20313439393633.roa (raw, json) Hash identifier: zDyrXTGOoVhoyVXFQzLfzvSBhhtitp+cvr9nrYj9PZk= Subject key identifier: 12:41:36:90:05:DC:E9:77:2F:E7:36:F5:D8:11:DC:6A:60:EC:CE:26 Certificate issuer: /CN=8714172B5D3FC9C36A83EBA27AB946FC69A4F821 Certificate serial: 41C9DED47CAC4B1149EFD9447FF5F8C547FB3BE3 Authority key identifier: 87:14:17:2B:5D:3F:C9:C3:6A:83:EB:A2:7A:B9:46:FC:69:A4:F8:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.cer Subject info access: rsync://repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/3130332e32302e31362e302f32342d3234203d3e20313439393633.roa Signing time: Tue 27 May 2025 05:00:00 +0000 ROA not before: Tue 27 May 2025 04:55:00 +0000 ROA not after: Tue 26 May 2026 05:00:00 +0000 asID: 149963 IP address blocks: 103.20.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.crl rsync://repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 08:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:c9:de:d4:7c:ac:4b:11:49:ef:d9:44:7f:f5:f8:c5:47:fb:3b:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8714172B5D3FC9C36A83EBA27AB946FC69A4F821 Validity Not Before: May 27 04:55:00 2025 GMT Not After : May 26 05:00:00 2026 GMT Subject: CN=1241369005DCE9772FE736F5D811DC6A60ECCE26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:1c:75:bd:9b:7c:31:9b:72:a2:67:ec:d1: e4:a4:5c:2e:c9:41:5c:0a:88:ba:78:1d:3b:24:21: 24:f9:67:f6:8b:69:22:10:5e:25:4f:5d:ae:3d:fe: 2b:66:96:30:03:e8:25:85:c0:d5:71:6f:29:bf:32: 45:c8:b3:bd:27:01:9b:11:89:e3:cf:c2:93:ff:00: 6d:04:09:ce:7a:74:5d:46:db:5b:a8:a8:a9:e4:7b: 0c:83:ae:12:c5:9c:46:8e:5a:c9:12:34:49:c1:b5: ef:b9:09:25:13:de:d6:1c:1c:10:fe:fa:80:25:be: 68:c3:77:e5:a5:a5:e0:03:86:b1:1a:51:66:38:50: e6:2c:1f:41:8b:4c:dd:30:2d:76:e7:d5:95:cb:c1: 37:33:05:6f:87:15:3c:70:70:58:ed:70:25:e2:ae: 32:ad:aa:07:0b:4f:c7:fc:ef:36:a0:10:5c:7b:06: 66:35:9b:ac:a5:bc:70:cd:9b:23:c7:15:c2:21:ac: b0:18:12:d1:83:fe:38:bf:60:75:ee:c7:36:59:fa: 59:85:90:ba:fe:89:88:d1:dc:07:28:95:b8:69:47: 80:da:34:ee:61:9b:f3:54:36:ce:39:fb:ba:50:da: 34:67:8a:4c:d1:80:22:bc:67:98:d0:47:fb:2f:cf: 05:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:41:36:90:05:DC:E9:77:2F:E7:36:F5:D8:11:DC:6A:60:EC:CE:26 X509v3 Authority Key Identifier: keyid:87:14:17:2B:5D:3F:C9:C3:6A:83:EB:A2:7A:B9:46:FC:69:A4:F8:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8714172B5D3FC9C36A83EBA27AB946FC69A4F821.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643db7d2-b3fd-4214-b6a4-d0162f95e72e/0/3130332e32302e31362e302f32342d3234203d3e20313439393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.16.0/24 Signature Algorithm: sha256WithRSAEncryption 54:1b:a1:bc:29:9b:b5:28:7b:38:6d:e1:1b:66:32:8e:a7:b3: 9a:df:82:2a:f7:99:4b:b6:0f:32:e4:4e:e5:c3:8e:bc:fc:12: f5:3f:a4:7b:b0:c0:bb:a2:71:2d:90:59:89:5b:c2:e3:6f:53: 11:18:c0:dd:1b:bd:33:34:15:f4:c0:a5:71:d6:e7:47:32:f9: c9:98:3e:40:02:7a:f9:38:d4:84:69:36:6b:a0:86:c4:b5:fe: 3f:ce:fa:a6:f8:c8:62:33:0e:af:71:5a:1d:c0:52:08:9e:27: b6:c4:2f:fc:ac:1e:cb:c8:fa:cc:20:8f:e5:06:7a:d6:b6:68: 82:59:08:ae:8c:b2:bc:67:4d:3b:f8:8d:41:b6:95:f3:4f:05: 90:75:0f:b4:0d:19:e8:b9:a5:55:58:8a:ce:94:47:28:e4:fe: d4:0e:4e:f0:ac:9d:46:6b:09:ff:9e:cc:03:fb:d8:68:3d:6f: 7a:94:1c:c2:4a:7c:2f:41:72:78:0b:58:65:a0:11:45:09:fc: 83:be:71:eb:81:28:6f:47:f2:af:1d:6a:ae:da:78:1a:a7:ae: 14:10:d4:6b:41:6b:09:1d:29:ad:2e:6e:87:97:bc:c1:a9:63: 76:03:fa:97:10:0b:87:6b:2e:35:b7:50:a6:c6:1d:00:5f:b1: a2:5c:3b:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQcne1HysSxFJ79lEf/X4xUf7O+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxNDE3MkI1RDNGQzlDMzZBODNFQkEyN0FCOTQ2RkM2 OUE0RjgyMTAeFw0yNTA1MjcwNDU1MDBaFw0yNjA1MjYwNTAwMDBaMDMxMTAvBgNV BAMTKDEyNDEzNjkwMDVEQ0U5NzcyRkU3MzZGNUQ4MTFEQzZBNjBFQ0NFMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvthx1vZt8MZtyomfs0eSkXC7J QVwKiLp4HTskIST5Z/aLaSIQXiVPXa49/itmljAD6CWFwNVxbym/MkXIs70nAZsR iePPwpP/AG0ECc56dF1G21uoqKnkewyDrhLFnEaOWskSNEnBte+5CSUT3tYcHBD+ +oAlvmjDd+WlpeADhrEaUWY4UOYsH0GLTN0wLXbn1ZXLwTczBW+HFTxwcFjtcCXi rjKtqgcLT8f87zagEFx7BmY1m6ylvHDNmyPHFcIhrLAYEtGD/ji/YHXuxzZZ+lmF kLr+iYjR3AcolbhpR4DaNO5hm/NUNs45+7pQ2jRnikzRgCK8Z5jQR/svzwUFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEkE2kAXc6Xcv5zb12BHcamDsziYwHwYDVR0j BBgwFoAUhxQXK10/ycNqg+uierlG/Gmk+CEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDNkYjdkMi1iM2ZkLTQyMTQtYjZhNC1kMDE2MmY5NWU3MmUvMC84NzE0MTcyQjVE M0ZDOUMzNkE4M0VCQTI3QUI5NDZGQzY5QTRGODIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODcxNDE3MkI1RDNGQzlDMzZBODNFQkEyN0FCOTQ2RkM2OUE0 RjgyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0M2RiN2QyLWIzZmQtNDIxNC1i NmE0LWQwMTYyZjk1ZTcyZS8wLzMxMzAzMzJlMzIzMDJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM5MzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUEDANBgkqhkiG 9w0BAQsFAAOCAQEAVBuhvCmbtSh7OG3hG2Yyjqezmt+CKveZS7YPMuRO5cOOvPwS 9T+ke7DAu6JxLZBZiVvC429TERjA3Ru9MzQV9MClcdbnRzL5yZg+QAJ6+TjUhGk2 a6CGxLX+P876pvjIYjMOr3FaHcBSCJ4ntsQv/Kwey8j6zCCP5QZ61rZoglkIroyy vGdNO/iNQbaV808FkHUPtA0Z6LmlVViKzpRHKOT+1A5O8KydRmsJ/57MA/vYaD1v epQcwkp8L0FyeAtYZaARRQn8g75x64Eob0fyrx1qrtp4GqeuFBDUa0FrCR0prS5u h5e8waljdgP6lxALh2suNbdQpsYdAF+xolw7sw== -----END CERTIFICATE-----Generated at Tue Jun 17 18:00:08 2025 by rpki-client