$ rpki-client -vvf repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32342d3234203d3e20313530353535.roa File: 3130332e38352e35322e302f32342d3234203d3e20313530353535.roa (raw, json) Hash identifier: kUp7KI2fPhlmcspldsUBOsyjkjUvmMSaheteN59dWW0= Subject key identifier: EA:3C:56:9A:BD:DC:EC:6F:18:80:85:5D:C0:C4:35:F0:E9:E7:FA:D0 Certificate issuer: /CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3 Certificate serial: 37D7AD8582A7DEF1D15A06FC2F999CAC1296E191 Authority key identifier: EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32342d3234203d3e20313530353535.roa Signing time: Thu 12 Jun 2025 04:00:00 +0000 ROA not before: Thu 12 Jun 2025 03:55:00 +0000 ROA not after: Thu 11 Jun 2026 04:00:00 +0000 asID: 150555 IP address blocks: 103.85.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.crl rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d7:ad:85:82:a7:de:f1:d1:5a:06:fc:2f:99:9c:ac:12:96:e1:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3 Validity Not Before: Jun 12 03:55:00 2025 GMT Not After : Jun 11 04:00:00 2026 GMT Subject: CN=EA3C569ABDDCEC6F1880855DC0C435F0E9E7FAD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:07:15:70:b4:d9:c8:f6:3e:3a:92:5f:a2:3c: 3a:6a:89:34:84:41:78:de:4e:0a:17:80:77:7f:08: 46:d3:72:47:60:b1:16:af:55:89:42:ff:b2:65:5a: b3:ca:ce:cd:ee:1a:29:a8:3c:7b:65:77:8e:79:41: 30:0e:ba:65:3f:fa:72:c7:b8:22:6c:6d:8a:af:41: 5d:f0:58:96:74:49:87:f7:d9:77:f0:54:0d:72:e8: af:f7:75:05:df:c0:04:2b:03:9b:61:a8:83:f3:09: aa:b6:31:da:12:9b:41:8e:c2:8b:eb:7f:b3:50:13: c9:e0:7e:92:f9:5c:e3:b7:21:a7:98:55:6a:96:17: 27:c2:47:2c:aa:e1:03:c1:f8:e7:c1:42:00:d7:65: 96:07:b4:50:b3:26:af:34:2f:be:57:5c:51:29:09: 2b:1e:90:01:88:02:4a:1a:5b:a7:f4:ed:85:bd:41: a3:3f:83:cf:37:92:3a:c3:cd:61:d5:ad:ec:b5:82: d5:f8:78:01:ae:ff:de:39:27:d1:86:10:60:38:30: ec:8d:bc:ea:ab:6b:b6:dc:32:2c:01:a2:4c:c1:63: d9:4f:8b:63:a8:ae:ba:b9:cc:3d:0c:95:e0:12:f2: 57:e5:a6:84:2d:5a:a8:54:41:f0:b1:19:d9:d3:e6: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3C:56:9A:BD:DC:EC:6F:18:80:85:5D:C0:C4:35:F0:E9:E7:FA:D0 X509v3 Authority Key Identifier: keyid:EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32342d3234203d3e20313530353535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.85.52.0/24 Signature Algorithm: sha256WithRSAEncryption 33:f4:df:a5:c6:6b:01:42:da:90:df:a8:ac:63:27:44:55:59: 9d:77:2a:be:97:77:6f:67:cb:b3:1f:cd:36:ac:d3:3d:58:4f: df:96:ba:f0:10:5e:43:d8:d7:c9:99:f4:9a:d1:d7:11:a6:55: 99:fe:18:32:3e:c6:6b:fa:5c:d7:34:25:f6:8e:ff:53:72:ba: de:63:46:cc:08:ec:a7:29:59:95:a5:bc:81:6b:b7:3f:17:fc: d5:11:58:2b:9c:04:7d:5b:c7:d1:3b:2c:f1:22:21:7a:f7:a1: 58:33:2d:31:93:3d:8e:fa:5b:00:2d:ba:ab:ce:a7:99:9d:23: cd:c7:26:a7:6b:e5:0b:51:87:14:f0:4d:72:4f:89:01:45:83: 8e:75:0d:a7:7e:d1:d7:61:29:3c:f5:e2:70:8f:92:74:a3:c6: 2d:e8:1e:30:b4:38:ee:c8:5b:c6:cc:3c:1e:24:30:86:e6:32: 71:3b:f8:27:7f:61:54:1c:b7:2c:b7:29:20:3f:36:55:c5:bb: be:93:10:5c:01:67:6a:06:06:29:6d:57:35:e2:cb:ec:cb:02: 12:2b:73:a8:95:9c:9d:24:45:a6:f0:2f:95:a4:94:62:3c:be: 25:da:10:66:7b:67:1d:12:52:46:56:89:45:ef:b2:dc:17:96: 36:f1:de:3c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN9ethYKn3vHRWgb8L5mcrBKW4ZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUxMkYxNzlBNUQxRjUyRUMwMzM2NzcyODJBRTdFMkU3 MkUwRjJDMzAeFw0yNTA2MTIwMzU1MDBaFw0yNjA2MTEwNDAwMDBaMDMxMTAvBgNV BAMTKEVBM0M1NjlBQkREQ0VDNkYxODgwODU1REMwQzQzNUYwRTlFN0ZBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQBxVwtNnI9j46kl+iPDpqiTSE QXjeTgoXgHd/CEbTckdgsRavVYlC/7JlWrPKzs3uGimoPHtld455QTAOumU/+nLH uCJsbYqvQV3wWJZ0SYf32XfwVA1y6K/3dQXfwAQrA5thqIPzCaq2MdoSm0GOwovr f7NQE8ngfpL5XOO3IaeYVWqWFyfCRyyq4QPB+OfBQgDXZZYHtFCzJq80L75XXFEp CSsekAGIAkoaW6f07YW9QaM/g883kjrDzWHVrey1gtX4eAGu/945J9GGEGA4MOyN vOqra7bcMiwBokzBY9lPi2Oorrq5zD0MleAS8lflpoQtWqhUQfCxGdnT5nVnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6jxWmr3c7G8YgIVdwMQ18Onn+tAwHwYDVR0j BBgwFoAU7hLxeaXR9S7AM2dygq5+LnLg8sMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGQxZjRjZS0xNjliLTQzMWEtODI4Ni1jNWYzYTA3YmJiZTMvMC9FRTEyRjE3OUE1 RDFGNTJFQzAzMzY3NzI4MkFFN0UyRTcyRTBGMkMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUxMkYxNzlBNUQxRjUyRUMwMzM2NzcyODJBRTdFMkU3MkUw RjJDMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwZDFmNGNlLTE2OWItNDMxYS04 Mjg2LWM1ZjNhMDdiYmJlMy8wLzMxMzAzMzJlMzgzNTJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdVNDANBgkqhkiG 9w0BAQsFAAOCAQEAM/TfpcZrAULakN+orGMnRFVZnXcqvpd3b2fLsx/NNqzTPVhP 35a68BBeQ9jXyZn0mtHXEaZVmf4YMj7Ga/pc1zQl9o7/U3K63mNGzAjspylZlaW8 gWu3Pxf81RFYK5wEfVvH0Tss8SIhevehWDMtMZM9jvpbAC26q86nmZ0jzccmp2vl C1GHFPBNck+JAUWDjnUNp37R12EpPPXicI+SdKPGLegeMLQ47shbxsw8HiQwhuYy cTv4J39hVBy3LLcpID82VcW7vpMQXAFnagYGKW1XNeLL7MsCEitzqJWcnSRFpvAv laSUYjy+JdoQZntnHRJSRlaJRe+y3BeWNvHePA== -----END CERTIFICATE-----Generated at Tue Jun 17 12:54:14 2025 by rpki-client