$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e203438343635.roa File: 3130332e3136382e3138342e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: 1UJAHonWaadwHYuLef8BFUV8SSyJkucgr+FB5CesNHg= Subject key identifier: D0:BB:5D:CA:6F:83:7C:66:29:2A:94:C9:95:11:63:03:76:E2:10:75 Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 60185C2BA78CF05127E29DB95BDF71C3D7377F3B Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 03:02:52 +0000 ROA not before: Mon 16 Jun 2025 02:57:52 +0000 ROA not after: Mon 15 Jun 2026 03:02:52 +0000 asID: 48465 IP address blocks: 103.168.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 08:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:18:5c:2b:a7:8c:f0:51:27:e2:9d:b9:5b:df:71:c3:d7:37:7f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Jun 16 02:57:52 2025 GMT Not After : Jun 15 03:02:52 2026 GMT Subject: CN=D0BB5DCA6F837C66292A94C99511630376E21075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:56:b8:b5:2d:f4:2e:62:cd:23:fe:27:54: 03:be:24:a7:ab:4f:4c:43:4e:02:93:89:61:50:42: e2:85:92:38:57:77:d8:ae:df:83:7d:d4:57:cb:9b: d1:49:07:cc:a5:76:5a:70:c9:d4:bf:c6:94:5e:8d: 60:fa:b8:5c:89:41:62:69:48:62:50:e4:9b:0c:a7: 96:b7:25:39:e5:d2:84:03:7c:09:35:cd:9d:7a:44: a2:4f:3b:9d:0d:90:99:06:bc:15:41:05:33:f6:22: 24:86:69:60:c5:7f:5a:d9:d9:f7:d4:58:08:e5:b0: f9:fb:ff:1f:a8:ac:10:21:6c:fc:fc:96:ea:73:bd: 63:b1:ef:c1:e0:53:e0:2d:24:c6:7d:24:4f:b2:ca: f3:af:8d:9f:e9:90:c1:a8:8d:f2:d4:ba:44:a6:29: 83:50:14:b2:03:8d:7f:5f:bc:a1:b4:17:10:ee:60: 1f:3f:21:f4:66:42:95:5b:6d:2f:af:1a:8b:3e:b4: 65:ff:62:7a:dd:00:bc:f0:18:e2:d0:87:2e:53:51: 5b:23:61:79:85:87:8e:eb:08:c7:ed:46:2e:30:b9: b6:bc:fc:08:68:01:b0:f0:ff:be:a8:ce:d5:d6:43: 48:f7:15:36:e5:fd:ec:01:ab:6d:cc:c9:65:f8:04: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BB:5D:CA:6F:83:7C:66:29:2A:94:C9:95:11:63:03:76:E2:10:75 X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.184.0/24 Signature Algorithm: sha256WithRSAEncryption d3:f5:b7:25:e1:c9:8b:67:95:10:dd:18:73:b4:b3:b5:46:78: 22:3d:81:f1:a3:75:22:11:68:14:41:0c:75:70:1f:a4:4a:91: 35:df:8d:38:12:cd:dd:25:9c:df:01:53:72:66:ad:1a:e3:5d: dc:1e:b9:c0:f5:ad:b5:5a:18:65:32:28:81:96:fc:f7:83:39: 08:4d:21:48:11:ef:96:c7:48:34:57:b1:28:c7:af:82:22:f8: 97:63:47:dd:4f:ec:ea:81:a2:b7:08:4d:9f:9e:3c:07:a7:ec: 1a:13:39:f0:44:98:f8:3b:4d:7b:da:7c:38:9a:c7:61:fe:58: 0e:42:6c:66:d5:7c:40:9a:50:28:b2:31:bc:ae:5b:7f:12:26: f3:65:c7:f5:23:da:45:f6:3c:62:b6:4c:aa:53:37:22:f8:e1: 6b:8f:f9:84:c5:58:4c:1f:62:37:b2:ac:d7:e1:e1:6f:3c:c6: c0:eb:ce:10:f8:fc:03:b2:da:9b:b4:de:1d:20:3c:b1:fe:32: 38:6e:50:89:d8:e1:fc:a8:a0:4e:cf:c0:44:5a:07:18:38:d6: c6:7a:66:d7:1f:b5:04:08:8a:c5:46:03:8f:a7:94:98:20:5e: 0d:00:29:ca:ba:14:96:f0:01:b3:0c:46:6f:34:4f:be:f2:e1: f4:93:8b:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYBhcK6eM8FEn4p25W99xw9c3fzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNTA2MTYwMjU3NTJaFw0yNjA2MTUwMzAyNTJaMDMxMTAvBgNV BAMTKEQwQkI1RENBNkY4MzdDNjYyOTJBOTRDOTk1MTE2MzAzNzZFMjEwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzaFa4tS30LmLNI/4nVAO+JKer T0xDTgKTiWFQQuKFkjhXd9iu34N91FfLm9FJB8yldlpwydS/xpRejWD6uFyJQWJp SGJQ5JsMp5a3JTnl0oQDfAk1zZ16RKJPO50NkJkGvBVBBTP2IiSGaWDFf1rZ2ffU WAjlsPn7/x+orBAhbPz8lupzvWOx78HgU+AtJMZ9JE+yyvOvjZ/pkMGojfLUukSm KYNQFLIDjX9fvKG0FxDuYB8/IfRmQpVbbS+vGos+tGX/YnrdALzwGOLQhy5TUVsj YXmFh47rCMftRi4wuba8/AhoAbDw/76oztXWQ0j3FTbl/ewBq23MyWX4BG5JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0Ltdym+DfGYpKpTJlRFjA3biEHUwHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6i4MA0GCSqG SIb3DQEBCwUAA4IBAQDT9bcl4cmLZ5UQ3RhztLO1RngiPYHxo3UiEWgUQQx1cB+k SpE13404Es3dJZzfAVNyZq0a413cHrnA9a21WhhlMiiBlvz3gzkITSFIEe+Wx0g0 V7Eox6+CIviXY0fdT+zqgaK3CE2fnjwHp+waEznwRJj4O0172nw4msdh/lgOQmxm 1XxAmlAosjG8rlt/EibzZcf1I9pF9jxitkyqUzci+OFrj/mExVhMH2I3sqzX4eFv PMbA684Q+PwDstqbtN4dIDyx/jI4blCJ2OH8qKBOz8BEWgcYONbGembXH7UECIrF RgOPp5SYIF4NACnKuhSW8AGzDEZvNE++8uH0k4u5 -----END CERTIFICATE-----Generated at Mon Jun 16 12:23:24 2025 by rpki-client