$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa File: 3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa (raw, json) Hash identifier: UUq68ar7HAMDX81IMpy1nkM8WYEb11BQCvn3QoFFoCE= Subject key identifier: 39:66:15:83:CD:B9:96:9C:C0:69:05:5E:2B:34:B8:76:09:82:D1:CE Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 518B65F3D5474873F2500FA79DB42325DDDBE14E Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa Signing time: Thu 15 May 2025 10:00:01 +0000 ROA not before: Thu 15 May 2025 09:55:01 +0000 ROA not after: Thu 14 May 2026 10:00:01 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 16:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8b:65:f3:d5:47:48:73:f2:50:0f:a7:9d:b4:23:25:dd:db:e1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: May 15 09:55:01 2025 GMT Not After : May 14 10:00:01 2026 GMT Subject: CN=39661583CDB9969CC069055E2B34B8760982D1CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:15:2c:de:ea:67:8c:3d:3f:5e:ee:1c:9d: 6a:05:3c:1d:7f:30:47:d8:15:97:5c:de:d0:27:69: e4:68:c4:56:c3:ef:71:4a:3b:aa:05:44:b5:86:2c: 0d:5d:7f:0e:9a:98:3e:61:f2:78:d2:36:1b:b0:f6: a7:1b:85:25:a8:48:31:41:ca:78:a3:ee:d9:31:03: b0:fe:aa:5b:b7:fa:b9:2e:7e:ef:8a:57:d3:ce:0d: 86:ab:d1:4c:f1:53:f9:a3:dd:c8:49:c3:9f:71:d7: b7:84:4b:fe:7b:89:db:0c:0e:c0:4b:86:d7:7d:ff: 4c:bf:70:f4:7f:83:ae:64:35:09:3f:52:58:d5:36: 81:9f:e3:df:75:75:41:c9:01:ba:50:9a:bb:f8:0d: e9:d3:4c:c4:9c:46:62:21:c5:ed:58:a1:ef:11:6b: 9b:12:01:25:a5:d4:be:76:ca:7d:ba:99:4f:00:c8: 60:d7:bc:62:18:2c:17:cb:0a:14:9a:5d:e9:b8:e2: b8:41:82:a5:dc:0d:68:e5:54:53:51:0b:79:1f:cd: d1:ef:dc:1e:b7:3d:7c:10:5d:a3:c8:16:30:31:b5: 23:29:4a:e0:d5:09:b2:4d:bd:15:52:84:86:1e:a9: 84:1b:59:ab:8c:5d:9f:51:0b:7c:7a:5a:d5:27:46: 12:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:66:15:83:CD:B9:96:9C:C0:69:05:5E:2B:34:B8:76:09:82:D1:CE X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 Signature Algorithm: sha256WithRSAEncryption 67:40:3d:08:47:ec:fd:04:27:aa:fd:e7:4a:21:44:0b:17:2d: cc:a2:29:5b:c9:f9:ca:32:ff:74:a6:89:b6:64:55:1a:fc:28: 44:11:c2:97:8e:f5:12:cd:16:9b:5f:4e:d1:1c:f1:b5:15:cc: 21:f6:38:f8:3b:ae:5d:29:cd:e2:b4:77:f0:da:fb:00:7c:38: cf:9e:04:8c:49:96:7b:e8:e8:51:31:88:e7:86:46:e5:a3:32: 1c:a1:e6:7d:f6:33:10:30:66:ab:25:37:46:93:d1:5f:26:8e: b0:35:4a:fd:86:79:90:f0:7a:86:9b:69:4c:e2:32:65:ac:65: b8:e9:81:e4:c9:74:69:87:09:0b:48:5f:5a:ca:c7:28:63:99: 18:32:06:bc:ae:32:6b:4a:13:fb:59:e1:1d:78:59:11:d7:fa: ad:5d:c5:9c:b4:89:0c:0a:f8:c0:b6:33:ac:81:15:02:96:f6: 56:94:81:46:bc:6d:3a:3e:21:06:b8:8d:83:76:6b:2a:27:31: 9f:34:30:30:1e:51:a8:04:34:c1:34:1b:7e:51:b0:ef:69:d3: 17:e7:b6:51:5a:cd:ee:75:70:99:e4:e9:9c:03:fe:3e:8e:c9: be:5b:46:86:2a:ed:d4:ad:dd:61:ab:29:eb:31:63:b7:2f:be: dd:f4:d2:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUYtl89VHSHPyUA+nnbQjJd3b4U4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA1MTUwOTU1MDFaFw0yNjA1MTQxMDAwMDFaMDMxMTAvBgNV BAMTKDM5NjYxNTgzQ0RCOTk2OUNDMDY5MDU1RTJCMzRCODc2MDk4MkQxQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9rhUs3upnjD0/Xu4cnWoFPB1/ MEfYFZdc3tAnaeRoxFbD73FKO6oFRLWGLA1dfw6amD5h8njSNhuw9qcbhSWoSDFB ynij7tkxA7D+qlu3+rkufu+KV9PODYar0UzxU/mj3chJw59x17eES/57idsMDsBL htd9/0y/cPR/g65kNQk/UljVNoGf4991dUHJAbpQmrv4DenTTMScRmIhxe1Yoe8R a5sSASWl1L52yn26mU8AyGDXvGIYLBfLChSaXem44rhBgqXcDWjlVFNRC3kfzdHv 3B63PXwQXaPIFjAxtSMpSuDVCbJNvRVShIYeqYQbWauMXZ9RC3x6WtUnRhJXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOWYVg825lpzAaQVeKzS4dgmC0c4wHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4QMMA0GCSqG SIb3DQEBCwUAA4IBAQBnQD0IR+z9BCeq/edKIUQLFy3MoilbyfnKMv90pom2ZFUa /ChEEcKXjvUSzRabX07RHPG1Fcwh9jj4O65dKc3itHfw2vsAfDjPngSMSZZ76OhR MYjnhkblozIcoeZ99jMQMGarJTdGk9FfJo6wNUr9hnmQ8HqGm2lM4jJlrGW46YHk yXRphwkLSF9ayscoY5kYMga8rjJrShP7WeEdeFkR1/qtXcWctIkMCvjAtjOsgRUC lvZWlIFGvG06PiEGuI2DdmsqJzGfNDAwHlGoBDTBNBt+UbDvadMX57ZRWs3udXCZ 5OmcA/4+jsm+W0aGKu3Urd1hqynrMWO3L77d9NIv -----END CERTIFICATE-----Generated at Wed Jun 18 18:18:24 2025 by rpki-client