$ rpki-client -vvf repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232312e302f32342d3234203d3e20313338303632.roa File: 3130332e3132392e3232312e302f32342d3234203d3e20313338303632.roa (raw, json) Hash identifier: 3vA9Os0MWzKrIxrdLvYkOp/ZA589dKUhNYNySSQbRyE= Subject key identifier: 9F:C0:46:C4:80:12:7E:5B:B1:9A:13:01:CE:00:6B:71:DB:07:7A:F9 Certificate issuer: /CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Certificate serial: 09FFDB3597D3100F3F3EEF96F15F1AFCB3C1FE91 Authority key identifier: E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232312e302f32342d3234203d3e20313338303632.roa Signing time: Mon 02 Jun 2025 01:02:57 +0000 ROA not before: Mon 02 Jun 2025 00:57:57 +0000 ROA not after: Mon 01 Jun 2026 01:02:57 +0000 asID: 138062 IP address blocks: 103.129.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ff:db:35:97:d3:10:0f:3f:3e:ef:96:f1:5f:1a:fc:b3:c1:fe:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD Validity Not Before: Jun 2 00:57:57 2025 GMT Not After : Jun 1 01:02:57 2026 GMT Subject: CN=9FC046C480127E5BB19A1301CE006B71DB077AF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ff:b8:50:65:ae:54:d1:58:17:48:3a:df:4c: cc:26:04:ab:5e:36:3a:e0:46:98:6f:fd:1b:c5:9d: a3:2e:a1:43:2c:9e:84:87:41:2b:6c:03:16:1b:5c: 1b:02:a8:29:ed:2e:d2:51:5e:6d:ed:6a:d3:f9:0d: b9:4d:35:90:90:bc:eb:25:b0:56:ee:fc:77:e1:0a: b6:9a:47:03:58:b8:81:94:d7:04:e7:21:b6:f1:b0: ec:cd:df:c6:8c:f1:21:84:ee:8c:cd:1a:83:cf:a2: 58:09:f7:2a:89:ef:9d:c3:86:95:2f:7b:74:f3:c1: b1:cd:a2:34:33:0d:78:d9:72:4b:55:77:71:c5:41: df:44:47:3a:be:43:33:ac:9a:a7:02:4b:f1:35:b7: 30:b5:f6:73:10:c1:24:0a:c4:fc:3d:2c:44:00:d9: ad:91:af:39:b7:2c:44:b7:54:6a:c8:c7:10:f5:25: 31:8a:ef:88:b2:65:73:3e:a4:3f:3b:5b:ea:1b:8e: c7:b6:12:eb:e6:27:da:ae:aa:b1:8d:57:60:d6:7c: 83:96:64:52:40:42:b6:70:26:a7:f0:91:dc:44:94: f6:85:2f:7c:fb:6f:d2:61:5c:79:5b:82:99:63:1c: a8:56:25:ec:cb:de:f7:63:b8:1d:eb:9d:44:73:93: 27:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C0:46:C4:80:12:7E:5B:B1:9A:13:01:CE:00:6B:71:DB:07:7A:F9 X509v3 Authority Key Identifier: keyid:E2:7F:07:0B:27:EA:B0:96:E2:B3:52:3F:1A:1A:CD:7D:01:8D:0A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E27F070B27EAB096E2B3523F1A1ACD7D018D0ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76a002de-0cde-462e-9404-46bc6270e04f/0/3130332e3132392e3232312e302f32342d3234203d3e20313338303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.221.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:e8:3e:b0:77:33:e5:3b:ae:c6:0b:ff:6a:86:15:bd:a9:0d: 80:60:fe:54:19:6c:86:12:f5:2a:b3:0e:c5:f7:22:7d:ae:63: a3:15:4f:f4:97:33:7a:b9:b6:b1:29:41:bd:25:c0:ac:02:8c: 22:56:9d:a5:84:bd:ad:bc:ea:be:63:89:1a:24:d3:60:50:8a: 03:a1:99:d3:5d:f8:31:58:24:be:02:a7:22:a2:c7:03:8f:80: 94:f8:a5:b7:d2:b1:2f:86:87:94:08:fc:d5:8c:8d:51:a2:24: ff:af:a8:05:3c:0c:28:81:a1:6b:c6:3c:7b:a4:37:21:ac:ac: 4a:22:07:fd:37:ee:8a:dc:b6:49:64:0f:96:e8:76:c4:76:32: d4:95:05:cb:9b:94:79:ad:20:70:bb:ab:d4:d8:f7:af:5c:b7: d1:42:16:0f:cb:76:2e:f3:6c:fe:87:21:43:93:10:f3:23:4e: 6c:0b:eb:79:2a:fd:65:63:04:02:9f:03:e8:21:2c:de:8f:ea: 37:36:12:4d:6a:56:97:69:04:2d:cc:38:19:c0:7b:1e:0c:7d: 93:82:92:87:4a:da:c6:ab:fc:0f:f7:6b:fe:5e:ee:39:82:ea: 34:88:81:c3:5a:52:27:d8:87:39:78:1a:55:9a:27:e5:7a:21: 20:69:65:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCf/bNZfTEA8/Pu+W8V8a/LPB/pEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0Qw MThEMEFERDAeFw0yNTA2MDIwMDU3NTdaFw0yNjA2MDEwMTAyNTdaMDMxMTAvBgNV BAMTKDlGQzA0NkM0ODAxMjdFNUJCMTlBMTMwMUNFMDA2QjcxREIwNzdBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI/7hQZa5U0VgXSDrfTMwmBKte NjrgRphv/RvFnaMuoUMsnoSHQStsAxYbXBsCqCntLtJRXm3tatP5DblNNZCQvOsl sFbu/HfhCraaRwNYuIGU1wTnIbbxsOzN38aM8SGE7ozNGoPPolgJ9yqJ753DhpUv e3TzwbHNojQzDXjZcktVd3HFQd9ERzq+QzOsmqcCS/E1tzC19nMQwSQKxPw9LEQA 2a2Rrzm3LES3VGrIxxD1JTGK74iyZXM+pD87W+objse2EuvmJ9quqrGNV2DWfIOW ZFJAQrZwJqfwkdxElPaFL3z7b9JhXHlbgpljHKhWJezL3vdjuB3rnURzkyeDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn8BGxIASfluxmhMBzgBrcdsHevkwHwYDVR0j BBgwFoAU4n8HCyfqsJbis1I/GhrNfQGNCt0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmEwMDJkZS0wY2RlLTQ2MmUtOTQwNC00NmJjNjI3MGUwNGYvMC9FMjdGMDcwQjI3 RUFCMDk2RTJCMzUyM0YxQTFBQ0Q3RDAxOEQwQURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI3RjA3MEIyN0VBQjA5NkUyQjM1MjNGMUExQUNEN0QwMThE MEFERC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2YTAwMmRlLTBjZGUtNDYyZS05 NDA0LTQ2YmM2MjcwZTA0Zi8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngd0wDQYJ KoZIhvcNAQELBQADggEBAA/oPrB3M+U7rsYL/2qGFb2pDYBg/lQZbIYS9SqzDsX3 In2uY6MVT/SXM3q5trEpQb0lwKwCjCJWnaWEva286r5jiRok02BQigOhmdNd+DFY JL4CpyKixwOPgJT4pbfSsS+Gh5QI/NWMjVGiJP+vqAU8DCiBoWvGPHukNyGsrEoi B/037orctklkD5bodsR2MtSVBcublHmtIHC7q9TY969ct9FCFg/Ldi7zbP6HIUOT EPMjTmwL63kq/WVjBAKfA+ghLN6P6jc2Ek1qVpdpBC3MOBnAex4MfZOCkodK2sar /A/3a/5e7jmC6jSIgcNaUifYhzl4GlWaJ+V6ISBpZcE= -----END CERTIFICATE-----Generated at Tue Jun 17 23:11:53 2025 by rpki-client