$ rpki-client -vvf repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130342e302f32342d3234203d3e20313338313030.roa File: 3130332e3132352e3130342e302f32342d3234203d3e20313338313030.roa (raw, json) Hash identifier: /hZNCU+SsofMv92WwnPvYTJr/ZtDqFUwKFLDDf8wL5k= Subject key identifier: D3:2D:8B:33:6B:CE:33:2B:CC:04:33:51:CB:54:05:FD:C6:1F:02:72 Certificate issuer: /CN=06C079105A8A7FB53C97370CDE636B0A22588747 Certificate serial: 20E92403D7EF63068BF6CF808CC2E428EAB58FD9 Authority key identifier: 06:C0:79:10:5A:8A:7F:B5:3C:97:37:0C:DE:63:6B:0A:22:58:87:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/06C079105A8A7FB53C97370CDE636B0A22588747.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130342e302f32342d3234203d3e20313338313030.roa Signing time: Mon 02 Jun 2025 02:02:57 +0000 ROA not before: Mon 02 Jun 2025 01:57:57 +0000 ROA not after: Mon 01 Jun 2026 02:02:57 +0000 asID: 138100 IP address blocks: 103.125.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/06C079105A8A7FB53C97370CDE636B0A22588747.crl rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/06C079105A8A7FB53C97370CDE636B0A22588747.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/06C079105A8A7FB53C97370CDE636B0A22588747.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 23:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e9:24:03:d7:ef:63:06:8b:f6:cf:80:8c:c2:e4:28:ea:b5:8f:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06C079105A8A7FB53C97370CDE636B0A22588747 Validity Not Before: Jun 2 01:57:57 2025 GMT Not After : Jun 1 02:02:57 2026 GMT Subject: CN=D32D8B336BCE332BCC043351CB5405FDC61F0272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:9b:d4:7a:19:0d:ca:c5:c8:2a:6a:e5:63: 37:9d:73:4d:ea:fd:99:3d:7c:7a:7b:ba:20:56:fd: b3:e8:6e:44:fd:68:4b:dd:a3:bc:44:1d:a2:c5:3b: 54:21:8f:d5:c0:1a:eb:91:3e:ba:24:19:02:d3:52: bb:4d:c6:aa:bb:5b:ff:23:c6:95:1d:19:ed:16:a1: eb:f7:de:2b:7a:5d:f3:9a:4e:39:aa:1e:88:75:43: 97:82:9b:2c:6c:b5:0a:fc:22:fc:a5:d9:d3:cf:ff: aa:ed:f3:9a:80:35:9f:64:bc:a1:47:ae:78:99:68: ba:64:66:ed:89:63:04:19:11:85:6c:5f:1d:54:74: 8a:89:49:16:7e:5a:1f:a0:50:14:ed:2f:71:ae:1b: 58:72:b2:59:48:3f:0d:9e:fe:bf:a3:2c:c9:60:eb: fa:fe:7d:8c:fc:fe:63:7e:4a:99:1d:45:55:7c:08: ed:1e:6c:ed:17:fc:ac:4f:85:d0:38:aa:06:ee:a2: 07:10:3c:80:cc:9d:0a:a0:9b:0b:30:f3:ec:d1:68: d6:23:f4:c4:9f:7c:4a:d3:6e:71:b1:3e:9a:46:7c: fa:65:64:ca:2f:01:4f:9f:a0:b5:f7:45:f2:9b:63: e6:a6:9f:cf:80:43:b6:dc:45:3d:00:bf:bf:7e:ab: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2D:8B:33:6B:CE:33:2B:CC:04:33:51:CB:54:05:FD:C6:1F:02:72 X509v3 Authority Key Identifier: keyid:06:C0:79:10:5A:8A:7F:B5:3C:97:37:0C:DE:63:6B:0A:22:58:87:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/06C079105A8A7FB53C97370CDE636B0A22588747.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/06C079105A8A7FB53C97370CDE636B0A22588747.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130342e302f32342d3234203d3e20313338313030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.104.0/24 Signature Algorithm: sha256WithRSAEncryption c1:b3:7d:78:2e:47:3b:6e:0c:5b:1e:0b:8c:bd:68:e4:ca:5e: 6d:78:70:29:f4:d4:92:c2:81:63:24:b8:dd:f3:10:d8:fe:3b: 39:80:83:91:f9:a7:ec:2f:08:47:01:88:96:9c:e4:c2:3a:02: 35:fb:9d:08:74:ec:f2:68:c9:41:55:c3:49:d4:80:38:2b:6e: e2:ee:ac:d9:f7:65:46:45:90:84:0b:0d:d4:45:40:ec:62:ce: 56:52:e9:fb:c2:2f:47:58:9b:3d:d0:bd:06:0e:ec:5e:e7:7d: 80:ca:3a:eb:05:82:ab:ee:21:60:6b:b3:93:64:ce:36:68:59: 21:c5:c2:27:a0:b2:e1:b0:cc:51:11:d0:a6:4f:1e:e2:90:47: dc:ce:fb:76:3b:38:84:ae:67:c4:a6:ad:3b:80:a7:3e:c5:c0: 8e:af:6b:8c:1e:56:3f:45:cb:a9:71:e2:c5:3c:d7:ca:25:47: 93:3d:e5:bb:60:9a:ab:07:31:3c:45:48:dc:1a:fe:79:73:6f: d9:b2:0d:43:5a:bd:6f:e1:30:c3:12:1f:00:ab:f1:a8:b8:52: c2:4a:3a:c2:4f:46:a7:0b:44:88:07:ba:66:c8:25:10:db:c4: ba:9e:96:0e:2f:38:82:be:ef:64:54:a5:6f:db:4b:96:9c:18: fc:78:0a:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIOkkA9fvYwaL9s+AjMLkKOq1j9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZDMDc5MTA1QThBN0ZCNTNDOTczNzBDREU2MzZCMEEy MjU4ODc0NzAeFw0yNTA2MDIwMTU3NTdaFw0yNjA2MDEwMjAyNTdaMDMxMTAvBgNV BAMTKEQzMkQ4QjMzNkJDRTMzMkJDQzA0MzM1MUNCNTQwNUZEQzYxRjAyNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGiZvUehkNysXIKmrlYzedc03q /Zk9fHp7uiBW/bPobkT9aEvdo7xEHaLFO1Qhj9XAGuuRProkGQLTUrtNxqq7W/8j xpUdGe0Woev33it6XfOaTjmqHoh1Q5eCmyxstQr8Ivyl2dPP/6rt85qANZ9kvKFH rniZaLpkZu2JYwQZEYVsXx1UdIqJSRZ+Wh+gUBTtL3GuG1hysllIPw2e/r+jLMlg 6/r+fYz8/mN+SpkdRVV8CO0ebO0X/KxPhdA4qgbuogcQPIDMnQqgmwsw8+zRaNYj 9MSffErTbnGxPppGfPplZMovAU+foLX3RfKbY+amn8+AQ7bcRT0Av79+q/pFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0y2LM2vOMyvMBDNRy1QF/cYfAnIwHwYDVR0j BBgwFoAUBsB5EFqKf7U8lzcM3mNrCiJYh0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OGNhYzE2MS1mODgwLTQyMDYtOGQyYy1kYWE2MDRmZTA5MDIvMC8wNkMwNzkxMDVB OEE3RkI1M0M5NzM3MENERTYzNkIwQTIyNTg4NzQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDZDMDc5MTA1QThBN0ZCNTNDOTczNzBDREU2MzZCMEEyMjU4 ODc0Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4Y2FjMTYxLWY4ODAtNDIwNi04 ZDJjLWRhYTYwNGZlMDkwMi8wLzMxMzAzMzJlMzEzMjM1MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfWgwDQYJ KoZIhvcNAQELBQADggEBAMGzfXguRztuDFseC4y9aOTKXm14cCn01JLCgWMkuN3z ENj+OzmAg5H5p+wvCEcBiJac5MI6AjX7nQh07PJoyUFVw0nUgDgrbuLurNn3ZUZF kIQLDdRFQOxizlZS6fvCL0dYmz3QvQYO7F7nfYDKOusFgqvuIWBrs5NkzjZoWSHF wiegsuGwzFER0KZPHuKQR9zO+3Y7OISuZ8SmrTuApz7FwI6va4weVj9Fy6lx4sU8 18olR5M95btgmqsHMTxFSNwa/nlzb9myDUNavW/hMMMSHwCr8ai4UsJKOsJPRqcL RIgHumbIJRDbxLqelg4vOIK+72RUpW/bS5acGPx4CjY= -----END CERTIFICATE-----Generated at Tue Jun 17 19:43:53 2025 by rpki-client