$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa File: 3130332e36362e34362e302f32342d3234203d3e203233363934.roa (raw, json) Hash identifier: xxFYLgnOs6wDgHlT3HJi54CQjUA2KWj+T7DvpjE3DPU= Subject key identifier: D7:08:70:EB:7F:C1:B2:1E:97:1E:D9:93:2B:08:FB:AA:18:14:5E:71 Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Certificate serial: 60B23B1CC0E8B7EACFCCE7D7EFD7A12D10ECF014 Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa Signing time: Thu 08 May 2025 11:00:01 +0000 ROA not before: Thu 08 May 2025 10:55:01 +0000 ROA not after: Thu 07 May 2026 11:00:01 +0000 asID: 23694 IP address blocks: 103.66.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 12:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b2:3b:1c:c0:e8:b7:ea:cf:cc:e7:d7:ef:d7:a1:2d:10:ec:f0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Validity Not Before: May 8 10:55:01 2025 GMT Not After : May 7 11:00:01 2026 GMT Subject: CN=D70870EB7FC1B21E971ED9932B08FBAA18145E71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:62:f6:f2:8c:99:64:a5:73:10:b6:2d:86: d4:b8:90:1c:f2:9b:4d:ed:db:c2:8c:dd:86:60:d5: c2:bf:c3:d0:61:07:22:0c:bd:b7:ad:4b:cc:4e:09: 33:d0:59:07:52:27:5d:10:f9:f7:67:f8:c7:ed:6b: c1:d4:45:41:a7:1d:9c:a8:4b:6e:48:46:09:6c:0e: d5:0e:d3:86:3a:fc:54:05:7d:0a:54:41:f7:a4:d5: 65:eb:0a:be:84:ef:50:7a:b7:df:02:68:81:33:76: 17:0e:b7:e1:af:69:4f:0d:be:1c:cd:e6:a7:b0:32: 3f:12:85:67:18:4f:11:c0:3d:f1:35:5e:7b:61:e5: eb:1f:f1:57:a4:3e:0f:58:09:97:c3:8c:10:d7:d7: 5d:15:16:00:f3:b6:77:ca:1b:38:4a:c6:b2:e0:c3: a5:4f:81:e0:f0:37:dd:b3:06:d8:9f:76:da:ee:f0: 5b:87:cd:8f:11:83:75:df:ad:ea:ad:d2:26:ad:82: 7f:e7:46:73:af:41:0c:9c:ad:1c:92:e2:30:9a:ea: e0:f1:8c:1f:10:58:12:eb:29:c1:5b:49:c3:b7:1f: 47:70:52:81:08:ae:3c:0a:d8:e7:3c:1b:2c:4d:e5: 1c:ed:08:cb:8d:5e:db:59:74:49:57:3e:4c:e9:c6: e1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:08:70:EB:7F:C1:B2:1E:97:1E:D9:93:2B:08:FB:AA:18:14:5E:71 X509v3 Authority Key Identifier: keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.46.0/24 Signature Algorithm: sha256WithRSAEncryption ba:e3:3c:0b:3d:b5:19:c6:3e:3f:6d:65:7f:de:e5:49:f5:b7: 3a:f8:2d:62:64:f3:94:36:e3:17:8f:74:88:6c:36:f7:fb:ff: e6:f4:66:b1:fb:fd:e6:8c:18:ac:0c:6a:9a:93:65:0c:6a:09: ab:ec:90:eb:c1:fc:ec:f8:bd:8d:94:0b:aa:16:c1:2b:3c:97: b6:79:33:84:16:fb:87:74:94:63:03:59:14:43:9e:40:f8:22: 85:59:07:21:9b:36:82:ba:09:29:03:dd:b0:bb:ce:16:e3:68: ae:82:e7:5d:2c:03:da:55:36:39:ba:34:2e:a9:ee:82:81:ad: 16:1f:e8:de:b5:75:73:52:31:95:f4:8a:63:1c:39:a4:74:12: 48:72:46:f0:b0:0f:bf:eb:dc:40:cf:a2:24:69:93:73:6a:e0: 2f:b1:09:2f:a6:da:c3:bb:a9:f2:7b:d5:d6:46:d6:b5:c9:16: c8:df:67:d6:25:ef:af:da:a1:e8:b8:05:a3:1e:88:7a:d7:15: 36:14:e0:d0:eb:73:3c:e1:ba:78:dc:d3:a7:6b:7f:18:c8:22: 53:5d:28:d9:50:0a:95:34:f8:b5:d4:3c:c7:84:0b:d0:47:34: 23:61:9d:bc:f2:8b:5b:c1:17:dc:91:d0:91:18:3a:a4:44:9d: 6e:86:4b:b4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYLI7HMDot+rPzOfX79ehLRDs8BQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJE NjI3RUQzNjAeFw0yNTA1MDgxMDU1MDFaFw0yNjA1MDcxMTAwMDFaMDMxMTAvBgNV BAMTKEQ3MDg3MEVCN0ZDMUIyMUU5NzFFRDk5MzJCMDhGQkFBMTgxNDVFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/smL28oyZZKVzELYthtS4kBzy m03t28KM3YZg1cK/w9BhByIMvbetS8xOCTPQWQdSJ10Q+fdn+Mfta8HURUGnHZyo S25IRglsDtUO04Y6/FQFfQpUQfek1WXrCr6E71B6t98CaIEzdhcOt+GvaU8NvhzN 5qewMj8ShWcYTxHAPfE1Xnth5esf8VekPg9YCZfDjBDX110VFgDztnfKGzhKxrLg w6VPgeDwN92zBtifdtru8FuHzY8Rg3Xfreqt0iatgn/nRnOvQQycrRyS4jCa6uDx jB8QWBLrKcFbScO3H0dwUoEIrjwK2Oc8GyxN5RztCMuNXttZdElXPkzpxuGLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1whw63/Bsh6XHtmTKwj7qhgUXnEwHwYDVR0j BBgwFoAUPg0GDyFN+OZJMkMDPr0wq9Yn7TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjRmODUxMS0wN2IzLTRhNjEtYmQwNC0yZTY2NWM5Mjc4ZmMvMC8zRTBEMDYwRjIx NERGOEU2NDkzMjQzMDMzRUJEMzBBQkQ2MjdFRDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJENjI3 RUQzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i ZDA0LTJlNjY1YzkyNzhmYy8wLzMxMzAzMzJlMzYzNjJlMzQzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzMzNjM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQi4wDQYJKoZIhvcN AQELBQADggEBALrjPAs9tRnGPj9tZX/e5Un1tzr4LWJk85Q24xePdIhsNvf7/+b0 ZrH7/eaMGKwMapqTZQxqCavskOvB/Oz4vY2UC6oWwSs8l7Z5M4QW+4d0lGMDWRRD nkD4IoVZByGbNoK6CSkD3bC7zhbjaK6C510sA9pVNjm6NC6p7oKBrRYf6N61dXNS MZX0imMcOaR0EkhyRvCwD7/r3EDPoiRpk3Nq4C+xCS+m2sO7qfJ71dZG1rXJFsjf Z9Yl76/aoei4BaMeiHrXFTYU4NDrczzhunjc06drfxjIIlNdKNlQCpU0+LXUPMeE C9BHNCNhnbzyi1vBF9yR0JEYOqREnW6GS7Q= -----END CERTIFICATE-----Generated at Tue Nov 4 23:07:09 2025 by rpki-client