$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32342d3234203d3e20313336303739.roa File: 3130332e38362e3130302e302f32342d3234203d3e20313336303739.roa (raw, json) Hash identifier: zNkUcfseAFGChQlk9FTTSxxP9VLqeS6Xzt5hWG8FeNY= Subject key identifier: 18:56:9D:0C:84:8D:25:B0:11:F9:E2:54:67:96:5E:FD:F0:AE:FE:00 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 4C67ABF054A936434E752E17F633BA14AE72ADA3 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32342d3234203d3e20313336303739.roa Signing time: Mon 02 Jun 2025 01:03:12 +0000 ROA not before: Mon 02 Jun 2025 00:58:12 +0000 ROA not after: Mon 01 Jun 2026 01:03:12 +0000 asID: 136079 IP address blocks: 103.86.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:67:ab:f0:54:a9:36:43:4e:75:2e:17:f6:33:ba:14:ae:72:ad:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jun 2 00:58:12 2025 GMT Not After : Jun 1 01:03:12 2026 GMT Subject: CN=18569D0C848D25B011F9E25467965EFDF0AEFE00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:20:44:f5:9a:80:6d:09:aa:43:ff:dd:57:fe: a0:97:58:70:17:fe:65:9d:64:6d:02:c7:45:1c:77: fa:f0:67:34:8f:fb:df:b5:6e:b1:08:1c:61:32:77: ca:b3:07:48:da:7f:8c:59:cd:9e:7b:9d:75:c5:7f: 35:a0:24:c3:6f:13:d9:04:32:3f:23:15:58:f1:fb: 86:ed:b7:f2:c5:ed:ac:6d:39:69:b5:37:cc:30:1d: af:f1:7c:ab:df:c3:b7:49:d3:f2:88:bd:cc:83:94: 11:0d:58:09:c6:8f:42:3e:bc:db:73:fb:57:70:a3: 10:94:aa:73:71:71:41:e0:11:a8:82:4d:88:dc:58: a0:43:59:b2:af:6c:77:37:e2:17:ee:ab:a0:9f:3d: 6b:63:4c:7f:82:fc:e5:d6:6b:4b:da:1c:df:81:86: 9b:32:99:25:59:bd:8b:e5:05:8c:b1:31:66:33:5b: 48:ae:f6:6e:15:ff:83:6d:43:e1:98:5c:a5:5b:51: 49:a2:61:02:7b:95:34:5b:0e:dd:79:d3:d0:d1:5d: 98:73:a7:f5:0e:78:c2:80:b3:f4:b4:1a:ac:31:f8: a0:cc:fa:26:2e:2f:44:85:8e:2c:2c:42:1e:3e:6e: 32:96:9f:dd:e1:99:df:b9:4d:81:c4:de:22:cb:ea: 08:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:56:9D:0C:84:8D:25:B0:11:F9:E2:54:67:96:5E:FD:F0:AE:FE:00 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32342d3234203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.100.0/24 Signature Algorithm: sha256WithRSAEncryption a7:f8:f8:bc:57:04:89:31:c3:66:5c:c6:33:57:17:1f:2a:0c: 01:82:e7:1d:0d:7b:eb:fd:1c:78:a2:c2:33:45:f1:b7:55:1c: 25:a1:5c:3f:3f:55:21:94:ac:93:13:5c:62:eb:ee:77:09:31: a7:1d:11:cd:8f:3e:30:bf:95:4d:fa:02:62:bc:86:54:6a:6b: 15:91:71:83:9c:7a:99:2a:a8:0b:f3:eb:8a:c8:25:a0:9f:06: de:a9:3d:79:58:2a:4a:f7:8b:51:b5:e4:e9:de:ea:2e:07:07: a5:34:84:23:e3:48:84:4e:28:47:b9:46:9e:2b:8a:23:eb:5e: a3:b0:0b:91:25:9d:86:e1:77:ad:86:3d:2a:d1:6b:e4:46:e3: 5c:06:6a:93:f1:00:09:6c:a9:72:7b:6e:0b:d5:e7:54:01:26: 4b:59:98:db:4e:1c:0a:a1:11:09:77:62:94:28:2b:91:08:8a: 37:3b:dc:98:a2:c6:0f:7e:fd:1f:2e:5b:d2:16:96:72:aa:6a: 64:e2:14:6a:90:c1:ae:e8:27:d6:c3:10:1d:9f:a1:e0:f8:db: f9:1c:0b:8b:b1:4a:62:ba:6c:6b:c7:42:7d:b5:64:f6:1d:77: ca:9e:ba:c5:15:c4:76:d6:dc:ac:5b:65:de:15:52:af:05:20: ae:a9:26:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTGer8FSpNkNOdS4X9jO6FK5yraMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA2MDIwMDU4MTJaFw0yNjA2MDEwMTAzMTJaMDMxMTAvBgNV BAMTKDE4NTY5RDBDODQ4RDI1QjAxMUY5RTI1NDY3OTY1RUZERjBBRUZFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrIET1moBtCapD/91X/qCXWHAX /mWdZG0Cx0Ucd/rwZzSP+9+1brEIHGEyd8qzB0jaf4xZzZ57nXXFfzWgJMNvE9kE Mj8jFVjx+4btt/LF7axtOWm1N8wwHa/xfKvfw7dJ0/KIvcyDlBENWAnGj0I+vNtz +1dwoxCUqnNxcUHgEaiCTYjcWKBDWbKvbHc34hfuq6CfPWtjTH+C/OXWa0vaHN+B hpsymSVZvYvlBYyxMWYzW0iu9m4V/4NtQ+GYXKVbUUmiYQJ7lTRbDt1509DRXZhz p/UOeMKAs/S0Gqwx+KDM+iYuL0SFjiwsQh4+bjKWn93hmd+5TYHE3iLL6giLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGFadDISNJbAR+eJUZ5Ze/fCu/gAwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMxMzAzMzJlMzgzNjJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1ZkMA0GCSqG SIb3DQEBCwUAA4IBAQCn+Pi8VwSJMcNmXMYzVxcfKgwBgucdDXvr/Rx4osIzRfG3 VRwloVw/P1UhlKyTE1xi6+53CTGnHRHNjz4wv5VN+gJivIZUamsVkXGDnHqZKqgL 8+uKyCWgnwbeqT15WCpK94tRteTp3uouBwelNIQj40iETihHuUaeK4oj616jsAuR JZ2G4Xethj0q0WvkRuNcBmqT8QAJbKlye24L1edUASZLWZjbThwKoREJd2KUKCuR CIo3O9yYosYPfv0fLlvSFpZyqmpk4hRqkMGu6CfWwxAdn6Hg+Nv5HAuLsUpiumxr x0J9tWT2HXfKnrrFFcR21tysW2XeFVKvBSCuqSby -----END CERTIFICATE-----Generated at Wed Jun 18 03:20:39 2025 by rpki-client