$ rpki-client -vvf repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39382e302f32332d3233203d3e20313336383638.roa File: 3130332e3130352e39382e302f32332d3233203d3e20313336383638.roa (raw, json) Hash identifier: KrFiIsKebuclmAnJCp7i0qAQI2dNZ1dLN7tW2prCRMk= Subject key identifier: C8:C5:73:F6:CB:3D:EA:C8:9C:07:5E:D5:57:2A:D9:61:8F:8F:42:5E Certificate issuer: /CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Certificate serial: 142152B202EE508CE1D4AEB2654D8EC038E0D1E7 Authority key identifier: 4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39382e302f32332d3233203d3e20313336383638.roa Signing time: Mon 02 Jun 2025 01:02:37 +0000 ROA not before: Mon 02 Jun 2025 00:57:37 +0000 ROA not after: Mon 01 Jun 2026 01:02:37 +0000 asID: 136868 IP address blocks: 103.105.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 13:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:21:52:b2:02:ee:50:8c:e1:d4:ae:b2:65:4d:8e:c0:38:e0:d1:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Validity Not Before: Jun 2 00:57:37 2025 GMT Not After : Jun 1 01:02:37 2026 GMT Subject: CN=C8C573F6CB3DEAC89C075ED5572AD9618F8F425E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:51:c4:c0:96:8f:2e:bb:33:b2:af:25:6e: e7:1c:43:70:7b:5b:bf:d8:fc:f7:db:bb:10:a9:aa: 89:c7:bf:c3:e2:30:dc:f4:67:2e:8f:09:d1:31:9e: 1e:3f:c7:ca:a3:ac:e8:e8:a2:0b:b6:17:dd:04:37: c7:19:5e:9b:37:ce:61:f9:c7:93:78:cf:15:ca:ef: 26:e0:d7:07:fc:70:99:38:d7:36:8f:a4:ae:e2:a8: 1e:2e:22:23:c6:e8:39:3b:2c:03:c4:73:10:2a:b8: c3:4d:f9:fa:69:bc:3c:9e:a3:2c:b5:9c:20:6f:ae: 53:87:45:27:fe:a7:80:fd:27:07:88:8e:b4:0b:41: 6f:6e:50:59:37:85:07:63:e7:dc:db:69:f5:81:ec: 44:74:ea:1e:74:0b:d7:1c:b1:de:53:f4:70:36:cb: 86:ec:5b:af:e2:70:97:3c:1a:d9:2f:48:43:9f:2d: 50:fb:14:dd:22:7e:92:29:83:85:b1:6e:b4:82:24: bb:2f:9f:5a:80:54:c4:d9:5f:cf:58:99:dc:25:5c: 5f:81:e3:8e:1a:ad:97:66:b4:f7:d9:64:9d:3a:64: c1:17:b5:f0:2e:7d:ec:a5:22:de:f2:3f:dc:f7:3f: 0c:4d:a8:54:d9:cf:51:52:8d:5b:f9:61:73:da:8b: 11:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C5:73:F6:CB:3D:EA:C8:9C:07:5E:D5:57:2A:D9:61:8F:8F:42:5E X509v3 Authority Key Identifier: keyid:4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39382e302f32332d3233203d3e20313336383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.98.0/23 Signature Algorithm: sha256WithRSAEncryption 18:b7:d6:3a:9e:80:8b:93:9b:40:12:35:c4:b7:c4:ad:a8:30: f6:62:2d:2f:7d:6b:4f:eb:8a:8e:0a:78:9c:8b:72:ec:39:55: 1c:08:b5:67:e2:90:89:48:00:70:7a:ea:0a:3c:d1:93:27:09: b0:5b:f5:7b:64:fc:45:9b:b0:b6:51:13:c8:f3:d3:1c:84:15: c5:04:ca:fa:42:93:3b:02:79:4b:17:4d:24:46:c6:bb:9c:8f: 7f:d3:6b:e5:d6:c0:24:b9:3f:50:3c:14:38:c4:2c:27:93:88: 2c:75:e4:62:61:80:7a:d6:66:fa:b9:38:44:17:3e:d9:db:01: 41:06:15:a6:2e:db:9c:ae:0c:ec:b0:9e:0f:79:6d:b1:4b:75: 11:c8:e6:1b:0d:23:2a:e0:18:d9:59:2d:80:8e:e4:94:70:ff: 66:5d:d6:49:ea:c8:ee:4e:64:7f:be:5b:98:68:b1:f0:30:d5: 4e:67:97:a1:26:88:88:64:dd:92:0e:fa:f3:2e:0b:3f:93:25: fe:3f:c6:6d:ff:63:9b:27:9c:1d:24:e0:f3:71:4c:e0:fc:ad: db:23:e3:eb:69:fb:81:54:9a:fe:d1:a1:c5:ca:3d:97:ad:68: 96:1d:49:76:54:73:02:78:7f:20:7c:5e:d9:b8:7b:a5:33:09: 1a:93:a5:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFCFSsgLuUIzh1K6yZU2OwDjg0ecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQx QTc4M0UzNjAeFw0yNTA2MDIwMDU3MzdaFw0yNjA2MDEwMTAyMzdaMDMxMTAvBgNV BAMTKEM4QzU3M0Y2Q0IzREVBQzg5QzA3NUVENTU3MkFEOTYxOEY4RjQyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrYlHEwJaPLrszsq8lbuccQ3B7 W7/Y/PfbuxCpqonHv8PiMNz0Zy6PCdExnh4/x8qjrOjoogu2F90EN8cZXps3zmH5 x5N4zxXK7ybg1wf8cJk41zaPpK7iqB4uIiPG6Dk7LAPEcxAquMNN+fppvDyeoyy1 nCBvrlOHRSf+p4D9JweIjrQLQW9uUFk3hQdj59zbafWB7ER06h50C9ccsd5T9HA2 y4bsW6/icJc8GtkvSEOfLVD7FN0ifpIpg4WxbrSCJLsvn1qAVMTZX89YmdwlXF+B 444arZdmtPfZZJ06ZMEXtfAufeylIt7yP9z3PwxNqFTZz1FSjVv5YXPaixHPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyMVz9ss96sicB17VVyrZYY+PQl4wHwYDVR0j BBgwFoAUTfQV0tt2DDmFWz89nPPORBp4PjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTI0YWE4Yy1kZWRjLTQzNzYtOTM4MS0wYTgxZTZiY2M1NjQvMC80REY0MTVEMkRC NzYwQzM5ODU1QjNGM0Q5Q0YzQ0U0NDFBNzgzRTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQxQTc4 M0UzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMjRhYThjLWRlZGMtNDM3Ni05 MzgxLTBhODFlNmJjYzU2NC8wLzMxMzAzMzJlMzEzMDM1MmUzOTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2liMA0GCSqG SIb3DQEBCwUAA4IBAQAYt9Y6noCLk5tAEjXEt8StqDD2Yi0vfWtP64qOCnici3Ls OVUcCLVn4pCJSABweuoKPNGTJwmwW/V7ZPxFm7C2URPI89MchBXFBMr6QpM7AnlL F00kRsa7nI9/02vl1sAkuT9QPBQ4xCwnk4gsdeRiYYB61mb6uThEFz7Z2wFBBhWm LtucrgzssJ4PeW2xS3URyOYbDSMq4BjZWS2AjuSUcP9mXdZJ6sjuTmR/vluYaLHw MNVOZ5ehJoiIZN2SDvrzLgs/kyX+P8Zt/2ObJ5wdJODzcUzg/K3bI+PrafuBVJr+ 0aHFyj2XrWiWHUl2VHMCeH8gfF7ZuHulMwkak6Um -----END CERTIFICATE-----Generated at Mon Jun 16 23:03:50 2025 by rpki-client