$ rpki-client -vvf repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa File: 3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa (raw, json) Hash identifier: 4paN7/ofK+HzSKd2thfpJlmI48KGINYbbxkJCXAEsZE= Subject key identifier: 63:70:98:3D:D8:DF:37:FE:A4:87:DD:5E:12:15:F1:26:9C:69:46:43 Certificate issuer: /CN=A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B Certificate serial: 60755B03449714713099186FE715D194FFF1EB1F Authority key identifier: A9:CC:5B:A1:E0:7F:95:80:AA:B2:19:DE:7D:68:1B:3E:0F:18:A8:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa Signing time: Fri 02 May 2025 19:00:02 +0000 ROA not before: Fri 02 May 2025 18:55:02 +0000 ROA not after: Fri 01 May 2026 19:00:02 +0000 asID: 142340 IP address blocks: 103.169.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.crl rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:75:5b:03:44:97:14:71:30:99:18:6f:e7:15:d1:94:ff:f1:eb:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B Validity Not Before: May 2 18:55:02 2025 GMT Not After : May 1 19:00:02 2026 GMT Subject: CN=6370983DD8DF37FEA487DD5E1215F1269C694643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:33:a5:2f:1c:88:a6:eb:ab:60:30:46:17:d5: 3b:e1:84:a5:da:a4:e7:3d:4b:a4:b0:c9:06:93:09: 37:b9:90:e4:a2:c9:cf:a2:3f:80:32:54:d5:a1:7f: 2c:3a:4f:7c:07:90:11:63:83:71:52:5e:3b:c0:32: 90:3d:6d:9f:29:c3:6f:1c:65:d5:93:8a:4a:ab:f6: c5:10:fc:4f:15:98:33:63:94:57:8a:67:08:bd:6c: 5b:88:19:4f:85:ce:d2:b7:b6:e2:f7:fd:99:37:b9: e0:f7:cc:80:a0:d2:3e:28:82:66:19:47:06:d7:24: 06:1c:aa:0d:ec:1f:a2:1d:9e:52:5f:85:96:76:40: e1:4a:1e:a8:8f:00:92:78:f2:42:42:b2:72:cd:b4: 02:ff:fb:bc:d5:c8:5c:14:6c:77:c5:92:01:1a:fa: e6:fd:f3:e4:5c:32:43:5a:2d:e8:58:f4:1d:44:56: d8:f8:95:2e:fd:26:7d:35:ba:14:f1:89:74:08:29: 33:48:12:5f:48:a6:8e:9f:10:3b:6d:42:8d:ed:1f: 65:70:d2:ec:b8:07:75:9a:8a:7b:c3:2f:93:10:90: 70:7e:25:b2:4f:d8:e9:e6:90:2a:4b:92:c5:ec:71: 20:95:dc:6c:27:4e:e4:00:bb:dc:af:7c:6b:bb:9f: 12:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:70:98:3D:D8:DF:37:FE:A4:87:DD:5E:12:15:F1:26:9C:69:46:43 X509v3 Authority Key Identifier: keyid:A9:CC:5B:A1:E0:7F:95:80:AA:B2:19:DE:7D:68:1B:3E:0F:18:A8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC5BA1E07F9580AAB219DE7D681B3E0F18A84B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e3f66a8-a0ff-44fa-bda6-8e5f27d61b3f/0/3130332e3136392e3133302e302f32332d3234203d3e20313432333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.130.0/23 Signature Algorithm: sha256WithRSAEncryption a1:5d:20:f6:a0:90:d0:2d:e2:81:6b:ce:00:a7:a6:e3:f2:63: bc:66:12:c7:74:30:3f:e7:9a:04:06:80:e4:bb:4c:ee:c0:ed: fe:5f:35:bd:f0:6b:ce:7e:f4:ff:61:d7:6a:5c:cd:29:2e:d4: dd:85:a1:37:d2:8b:f8:b3:67:d6:14:78:a3:17:39:66:93:7f: ef:0c:4a:b6:48:8c:e6:c1:7c:c6:a1:48:c0:8c:2e:2f:16:c8: 49:31:5c:98:3a:bf:c2:d4:f0:18:d5:44:a3:ac:7d:b4:8a:21: 80:69:2c:e8:12:a5:14:c9:70:1b:27:89:da:2b:25:04:79:15: 40:b9:ad:c7:48:5f:95:a3:4f:35:25:b9:d2:8e:43:64:2a:c5: 7e:c8:10:0b:51:d9:45:b6:b2:8f:aa:4f:a3:e7:68:1f:85:64: 14:0a:32:70:df:04:a0:b1:33:ec:83:28:52:67:4f:b6:fb:da: 7c:ab:e2:0b:17:4e:af:49:31:ca:c5:be:db:ee:ee:3f:ff:21: 96:71:99:3a:01:2f:b8:12:2b:dc:79:43:06:4f:8e:cf:2f:8d: 7d:e5:fa:61:8d:b4:75:90:d0:92:f5:a1:95:7a:d9:46:f3:1f: a2:29:6d:8a:76:5d:d4:59:97:c9:98:c7:f1:30:74:7b:c8:1f: 49:51:0f:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYHVbA0SXFHEwmRhv5xXRlP/x6x8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzVCQTFFMDdGOTU4MEFBQjIxOURFN0Q2ODFCM0Uw RjE4QTg0QjAeFw0yNTA1MDIxODU1MDJaFw0yNjA1MDExOTAwMDJaMDMxMTAvBgNV BAMTKDYzNzA5ODNERDhERjM3RkVBNDg3REQ1RTEyMTVGMTI2OUM2OTQ2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTM6UvHIim66tgMEYX1TvhhKXa pOc9S6SwyQaTCTe5kOSiyc+iP4AyVNWhfyw6T3wHkBFjg3FSXjvAMpA9bZ8pw28c ZdWTikqr9sUQ/E8VmDNjlFeKZwi9bFuIGU+FztK3tuL3/Zk3ueD3zICg0j4ogmYZ RwbXJAYcqg3sH6IdnlJfhZZ2QOFKHqiPAJJ48kJCsnLNtAL/+7zVyFwUbHfFkgEa +ub98+RcMkNaLehY9B1EVtj4lS79Jn01uhTxiXQIKTNIEl9Ipo6fEDttQo3tH2Vw 0uy4B3WainvDL5MQkHB+JbJP2OnmkCpLksXscSCV3GwnTuQAu9yvfGu7nxLzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUY3CYPdjfN/6kh91eEhXxJpxpRkMwHwYDVR0j BBgwFoAUqcxboeB/lYCqshnefWgbPg8YqEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTNmNjZhOC1hMGZmLTQ0ZmEtYmRhNi04ZTVmMjdkNjFiM2YvMC9BOUNDNUJBMUUw N0Y5NTgwQUFCMjE5REU3RDY4MUIzRTBGMThBODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzVCQTFFMDdGOTU4MEFBQjIxOURFN0Q2ODFCM0UwRjE4 QTg0Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllM2Y2NmE4LWEwZmYtNDRmYS1i ZGE2LThlNWYyN2Q2MWIzZi8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYIwDQYJ KoZIhvcNAQELBQADggEBAKFdIPagkNAt4oFrzgCnpuPyY7xmEsd0MD/nmgQGgOS7 TO7A7f5fNb3wa85+9P9h12pczSku1N2FoTfSi/izZ9YUeKMXOWaTf+8MSrZIjObB fMahSMCMLi8WyEkxXJg6v8LU8BjVRKOsfbSKIYBpLOgSpRTJcBsnidorJQR5FUC5 rcdIX5WjTzUludKOQ2QqxX7IEAtR2UW2so+qT6PnaB+FZBQKMnDfBKCxM+yDKFJn T7b72nyr4gsXTq9JMcrFvtvu7j//IZZxmToBL7gSK9x5QwZPjs8vjX3l+mGNtHWQ 0JL1oZV62UbzH6IpbYp2XdRZl8mYx/EwdHvIH0lRD5M= -----END CERTIFICATE-----Generated at Tue Jun 17 08:15:31 2025 by rpki-client