$ rpki-client -vvf repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/3130332e3131382e332e302f32342d3234203d3e20313337333732.roa File: 3130332e3131382e332e302f32342d3234203d3e20313337333732.roa (raw, json) Hash identifier: CnYInR0edgXU+mYMJQGAiAKWjbNlk8PVPSzC/8WPG5g= Subject key identifier: 2E:66:4E:F5:27:81:B1:C2:CD:26:45:BB:5E:2F:17:E4:54:A8:15:D3 Certificate issuer: /CN=8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1 Certificate serial: 5CD90A1182813B4F22F72B41B1ECD721CC182C87 Authority key identifier: 8B:0D:C7:9B:66:A9:6F:A7:FA:31:80:C2:0B:06:A5:C4:3C:9C:FE:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/3130332e3131382e332e302f32342d3234203d3e20313337333732.roa Signing time: Thu 12 Jun 2025 07:00:00 +0000 ROA not before: Thu 12 Jun 2025 06:55:00 +0000 ROA not after: Thu 11 Jun 2026 07:00:00 +0000 asID: 137372 IP address blocks: 103.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.crl rsync://repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d9:0a:11:82:81:3b:4f:22:f7:2b:41:b1:ec:d7:21:cc:18:2c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1 Validity Not Before: Jun 12 06:55:00 2025 GMT Not After : Jun 11 07:00:00 2026 GMT Subject: CN=2E664EF52781B1C2CD2645BB5E2F17E454A815D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:51:31:b0:ac:0c:76:ff:ac:2a:60:9e:fe:c8: 91:c2:ff:b4:cd:33:46:ce:d3:12:aa:88:35:f1:c9: 20:79:fb:13:d0:ca:5f:df:3e:ba:a8:27:7a:8f:41: 63:c0:f3:8b:6d:f9:67:75:e9:2f:59:63:0d:f6:58: a6:06:de:b2:6d:f8:ff:9b:5f:43:e5:7e:2e:f5:25: c5:4b:4e:46:44:c3:de:e2:2b:b3:c4:d2:9b:67:32: 94:e7:cd:09:6a:0f:f6:67:9a:34:e7:9e:65:84:75: 07:2e:8d:ac:af:2e:97:1d:8b:2c:9a:92:df:aa:cc: dd:7e:9a:5c:de:ff:e0:a8:81:d8:29:fe:d7:35:35: 0f:2a:4b:7c:8f:4c:ce:6e:a4:b5:7a:66:7c:bc:1a: b3:94:40:fe:bb:a4:27:5a:01:75:fc:93:a7:a1:02: 4f:85:de:87:7b:53:1c:29:1d:c6:78:c5:73:27:9e: 40:79:fd:c1:de:7d:9f:8f:b8:9c:a2:55:81:f3:2a: 28:73:ea:2f:58:d6:3c:3f:3b:27:51:50:f8:ca:4b: 25:99:9b:2b:f9:5d:e3:46:29:96:3f:e3:d3:36:cc: d4:7e:39:c2:e2:8d:94:b1:44:1f:5d:84:23:61:02: 44:9f:57:00:32:ce:fb:3e:7b:0b:7b:8e:e4:cd:2a: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:66:4E:F5:27:81:B1:C2:CD:26:45:BB:5E:2F:17:E4:54:A8:15:D3 X509v3 Authority Key Identifier: keyid:8B:0D:C7:9B:66:A9:6F:A7:FA:31:80:C2:0B:06:A5:C4:3C:9C:FE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DC79B66A96FA7FA3180C20B06A5C43C9CFEA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d5bbd81-0332-4202-9c92-eb1746a8cd9d/0/3130332e3131382e332e302f32342d3234203d3e20313337333732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.3.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:84:56:64:c9:ca:c0:e3:01:1d:5d:24:72:b3:c9:88:77:00: aa:3b:da:71:b0:83:0f:30:68:01:7d:fd:d1:2b:fd:3c:13:37: 3e:80:42:6c:65:79:72:06:55:8a:3f:c5:34:7f:d4:9f:5c:d7: 34:06:09:d3:31:96:35:d8:fa:f8:93:55:9c:68:22:fd:3d:9c: b7:fa:85:e2:16:2a:65:a4:11:2f:85:02:21:aa:52:00:6f:50: 52:a9:70:a8:4b:f6:e2:f3:0b:e8:92:de:b6:0e:c7:c5:b5:bd: ca:c1:03:ba:c2:e3:1e:9b:56:80:9c:ae:c5:fb:ba:16:5d:a0: 5f:31:db:2b:6a:1b:b7:42:94:19:bf:d6:2c:db:b7:ad:69:96: 2f:a0:18:b2:ff:41:62:65:53:f9:2d:01:ef:84:85:d0:a2:9d: 58:f3:a9:38:d1:f7:4e:bc:1c:09:67:fe:ba:01:27:13:9b:4a: 07:c2:83:4e:a3:30:f2:96:12:87:7b:a0:33:3f:fe:23:c2:cc: 5f:99:78:b6:b5:62:20:b5:99:81:58:ea:62:75:49:e3:12:fe: a1:40:22:6f:bb:31:a8:6d:f2:2d:25:0f:af:eb:69:f6:52:99: e3:e6:a4:d8:0d:8d:a4:68:de:83:38:3b:e4:8a:1a:5f:47:d0: 29:cb:9b:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXNkKEYKBO08i9ytBsezXIcwYLIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIwREM3OUI2NkE5NkZBN0ZBMzE4MEMyMEIwNkE1QzQz QzlDRkVBMTAeFw0yNTA2MTIwNjU1MDBaFw0yNjA2MTEwNzAwMDBaMDMxMTAvBgNV BAMTKDJFNjY0RUY1Mjc4MUIxQzJDRDI2NDVCQjVFMkYxN0U0NTRBODE1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0UTGwrAx2/6wqYJ7+yJHC/7TN M0bO0xKqiDXxySB5+xPQyl/fPrqoJ3qPQWPA84tt+Wd16S9ZYw32WKYG3rJt+P+b X0Plfi71JcVLTkZEw97iK7PE0ptnMpTnzQlqD/ZnmjTnnmWEdQcujayvLpcdiyya kt+qzN1+mlze/+Cogdgp/tc1NQ8qS3yPTM5upLV6Zny8GrOUQP67pCdaAXX8k6eh Ak+F3od7UxwpHcZ4xXMnnkB5/cHefZ+PuJyiVYHzKihz6i9Y1jw/OydRUPjKSyWZ myv5XeNGKZY/49M2zNR+OcLijZSxRB9dhCNhAkSfVwAyzvs+ewt7juTNKjG/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULmZO9SeBscLNJkW7Xi8X5FSoFdMwHwYDVR0j BBgwFoAUiw3Hm2apb6f6MYDCCwalxDyc/qEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDViYmQ4MS0wMzMyLTQyMDItOWM5Mi1lYjE3NDZhOGNkOWQvMC84QjBEQzc5QjY2 QTk2RkE3RkEzMTgwQzIwQjA2QTVDNDNDOUNGRUExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIwREM3OUI2NkE5NkZBN0ZBMzE4MEMyMEIwNkE1QzQzQzlD RkVBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNWJiZDgxLTAzMzItNDIwMi05 YzkyLWViMTc0NmE4Y2Q5ZC8wLzMxMzAzMzJlMzEzMTM4MmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd2AzANBgkqhkiG 9w0BAQsFAAOCAQEAn4RWZMnKwOMBHV0kcrPJiHcAqjvacbCDDzBoAX390Sv9PBM3 PoBCbGV5cgZVij/FNH/Un1zXNAYJ0zGWNdj6+JNVnGgi/T2ct/qF4hYqZaQRL4UC IapSAG9QUqlwqEv24vML6JLetg7HxbW9ysEDusLjHptWgJyuxfu6Fl2gXzHbK2ob t0KUGb/WLNu3rWmWL6AYsv9BYmVT+S0B74SF0KKdWPOpONH3TrwcCWf+ugEnE5tK B8KDTqMw8pYSh3ugMz/+I8LMX5l4trViILWZgVjqYnVJ4xL+oUAib7sxqG3yLSUP r+tp9lKZ4+ak2A2NpGjegzg75IoaX0fQKcubSw== -----END CERTIFICATE-----Generated at Wed Jun 18 12:21:39 2025 by rpki-client