$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa File: 3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: hum6PwDa+tJlyU75JQFBXd7LlyucqEnCFxIhwk7g/uE= Subject key identifier: 17:7B:75:10:95:E5:99:D8:B5:E3:C0:A3:EF:3B:DF:99:D9:5C:DE:D4 Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 3F30A0FC009517B8A351940999989E7878D0677D Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 03:02:52 +0000 ROA not before: Mon 16 Jun 2025 02:57:52 +0000 ROA not after: Mon 15 Jun 2026 03:02:52 +0000 asID: 48465 IP address blocks: 103.168.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 08:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:30:a0:fc:00:95:17:b8:a3:51:94:09:99:98:9e:78:78:d0:67:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Jun 16 02:57:52 2025 GMT Not After : Jun 15 03:02:52 2026 GMT Subject: CN=177B751095E599D8B5E3C0A3EF3BDF99D95CDED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:b6:26:8d:88:3c:70:c8:f7:9d:c8:94:a7: b2:cc:29:9f:64:7b:3b:c1:48:c4:95:15:55:3e:67: c0:4e:55:71:bf:c6:ee:e7:b6:25:dc:d1:a5:3f:02: cc:95:a9:a6:00:f9:c4:21:7a:6c:a3:34:8f:dd:88: 74:7c:52:ce:e5:0f:31:bc:9a:08:34:20:0e:8f:e9: 08:98:41:a2:39:d2:26:f6:6d:5a:7c:ec:1b:77:1a: 09:7d:1f:fc:85:ff:cc:d2:ad:3f:4c:30:9e:3c:1b: e9:c9:09:32:86:ff:3a:17:a7:7a:c3:42:9f:77:e4: 74:b1:e6:29:13:09:33:54:95:1b:1c:89:7f:63:67: b0:69:55:98:da:ac:1e:0d:40:8e:03:24:8c:58:af: 0e:f3:52:61:e9:35:c2:9a:3f:4b:de:1f:fb:03:da: 83:8b:38:d3:2a:3e:16:d8:23:26:a7:4a:68:cf:96: f7:03:27:b3:44:9b:62:c1:65:11:1e:28:63:77:d2: 90:84:d0:d8:46:11:7a:21:79:04:61:34:5e:cd:bd: 6b:a7:7c:73:81:7d:91:83:91:f5:ad:86:92:e3:4b: 6e:fa:02:65:48:5f:2c:4b:e5:95:2c:be:3a:e2:dc: 26:12:a7:5e:08:30:1c:fc:d0:cb:bf:f7:49:a1:31: ec:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7B:75:10:95:E5:99:D8:B5:E3:C0:A3:EF:3B:DF:99:D9:5C:DE:D4 X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.185.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f5:c8:1e:99:16:3e:ef:31:7b:9a:d8:cf:fc:71:12:38:52: db:e1:b1:1c:77:67:c3:a2:22:4c:e2:a3:62:21:2b:05:83:2e: cd:9f:bc:ba:c4:90:45:79:10:cf:de:2a:08:0f:39:ae:e1:d7: 9f:82:f2:67:71:df:28:af:1a:f1:d5:7a:38:8e:a1:61:a5:65: 71:b4:c0:ab:39:cf:b9:5e:94:20:28:b5:e1:9f:0b:46:43:66: 47:81:0e:eb:ba:6b:db:38:4a:40:e6:c1:1a:74:ee:fb:99:d9: 94:5d:54:54:1b:3c:ca:f4:72:81:ba:dc:6a:49:e1:4b:ec:6f: 58:09:e3:fe:88:8d:79:65:4b:c1:7b:84:d0:52:51:c7:ec:f0: 46:e4:35:18:21:4e:50:e0:31:5f:54:d6:98:ac:89:d4:da:da: 89:9f:52:3f:d6:82:2f:80:b0:a7:11:b0:00:fb:fc:41:3f:07: 58:56:bd:69:c4:f8:6c:0a:6c:b4:8b:6c:0c:e9:93:06:4e:49: 0d:f8:c5:db:f4:7d:5d:e1:a1:b2:c8:66:7c:84:30:87:2c:9f: 1f:f5:4b:d7:e1:b3:d9:c7:8c:43:03:a2:73:42:53:07:36:db: e6:e6:e6:ff:57:36:41:40:ce:e5:8b:2e:f1:ea:9a:0f:ec:a5: a6:74:2a:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPzCg/ACVF7ijUZQJmZieeHjQZ30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNTA2MTYwMjU3NTJaFw0yNjA2MTUwMzAyNTJaMDMxMTAvBgNV BAMTKDE3N0I3NTEwOTVFNTk5RDhCNUUzQzBBM0VGM0JERjk5RDk1Q0RFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/nLYmjYg8cMj3nciUp7LMKZ9k ezvBSMSVFVU+Z8BOVXG/xu7ntiXc0aU/AsyVqaYA+cQhemyjNI/diHR8Us7lDzG8 mgg0IA6P6QiYQaI50ib2bVp87Bt3Ggl9H/yF/8zSrT9MMJ48G+nJCTKG/zoXp3rD Qp935HSx5ikTCTNUlRsciX9jZ7BpVZjarB4NQI4DJIxYrw7zUmHpNcKaP0veH/sD 2oOLONMqPhbYIyanSmjPlvcDJ7NEm2LBZREeKGN30pCE0NhGEXoheQRhNF7NvWun fHOBfZGDkfWthpLjS276AmVIXyxL5ZUsvjri3CYSp14IMBz80Mu/90mhMewfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUF3t1EJXlmdi148Cj7zvfmdlc3tQwHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6i5MA0GCSqG SIb3DQEBCwUAA4IBAQAq9cgemRY+7zF7mtjP/HESOFLb4bEcd2fDoiJM4qNiISsF gy7Nn7y6xJBFeRDP3ioIDzmu4defgvJncd8orxrx1Xo4jqFhpWVxtMCrOc+5XpQg KLXhnwtGQ2ZHgQ7rumvbOEpA5sEadO77mdmUXVRUGzzK9HKButxqSeFL7G9YCeP+ iI15ZUvBe4TQUlHH7PBG5DUYIU5Q4DFfVNaYrInU2tqJn1I/1oIvgLCnEbAA+/xB PwdYVr1pxPhsCmy0i2wM6ZMGTkkN+MXb9H1d4aGyyGZ8hDCHLJ8f9UvX4bPZx4xD A6JzQlMHNtvm5ub/VzZBQM7liy7x6poP7KWmdCqN -----END CERTIFICATE-----Generated at Mon Jun 16 12:32:01 2025 by rpki-client