$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131342e302f32342d3234203d3e20313336383536.roa File: 3130332e3130322e3131342e302f32342d3234203d3e20313336383536.roa (raw, json) Hash identifier: SyaesZ8nYMgrpLoLtfvyAhCoVIqjKlqg+giBaGYZdJ8= Subject key identifier: 84:DB:52:A6:D6:1B:62:DB:B1:D3:50:6A:41:18:A2:52:F1:6F:C8:18 Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 461F6E85C763FE206929FD61D74E944FD633C4B8 Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131342e302f32342d3234203d3e20313336383536.roa Signing time: Sat 14 Jun 2025 13:02:23 +0000 ROA not before: Sat 14 Jun 2025 12:57:23 +0000 ROA not after: Sat 13 Jun 2026 13:02:23 +0000 asID: 136856 IP address blocks: 103.102.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:1f:6e:85:c7:63:fe:20:69:29:fd:61:d7:4e:94:4f:d6:33:c4:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jun 14 12:57:23 2025 GMT Not After : Jun 13 13:02:23 2026 GMT Subject: CN=84DB52A6D61B62DBB1D3506A4118A252F16FC818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:df:59:87:b8:70:79:cc:78:b4:c8:20:32:d3: 4a:50:75:1e:d7:8e:99:f4:7b:42:90:c0:80:bd:4b: a9:a3:f7:73:cb:15:01:32:67:80:ec:68:4e:ea:9a: 7d:57:c7:6d:d1:2e:00:42:1d:1f:e7:56:e1:86:10: 8a:17:80:b1:0e:3f:08:96:19:aa:87:98:d5:59:49: c7:80:41:87:c7:f8:bd:9a:72:85:03:c5:f0:59:ca: a2:ea:39:f9:0a:23:c6:20:60:d1:17:a9:64:2c:46: 2d:fa:7e:86:7c:b7:a8:ff:cd:df:d7:69:24:39:2f: 8f:16:1a:59:50:39:99:27:eb:f2:8f:c4:ef:87:63: b8:ca:b8:7a:b1:84:2f:48:eb:22:d8:07:df:b1:05: 6b:55:a9:2b:2e:b7:6b:ec:a4:7c:bb:43:d6:99:d8: 23:c0:35:1b:13:09:4e:f4:91:f6:6d:73:57:13:1b: f6:59:59:79:cb:52:d9:24:62:c7:f2:f5:8b:fa:79: 62:46:af:23:fd:54:e4:3b:ee:0e:10:fe:01:7e:c9: 44:d5:52:0c:b3:79:f7:89:4c:45:0a:39:0e:d1:ce: db:6b:77:db:35:c6:ed:bd:79:29:73:13:3d:f1:1c: 67:f1:7b:41:51:ef:58:3b:2a:d1:e2:5e:23:63:80: 82:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DB:52:A6:D6:1B:62:DB:B1:D3:50:6A:41:18:A2:52:F1:6F:C8:18 X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131342e302f32342d3234203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.114.0/24 Signature Algorithm: sha256WithRSAEncryption 20:9c:55:e3:4d:22:c7:91:27:1d:ea:60:96:94:41:a3:50:92: dc:f6:d9:f1:8b:81:60:8d:79:40:da:3e:a5:af:50:09:3a:45: b8:03:b3:1c:20:7d:0f:86:1b:96:6a:49:68:91:20:76:71:d3: d3:54:e9:93:5a:73:91:05:93:e8:5e:24:6a:44:88:fe:97:93: 09:1c:33:15:f2:15:31:2a:04:d0:2e:bc:fa:c6:e4:1b:8b:30: d9:4f:83:32:f4:56:11:b6:48:78:15:a9:73:a5:6f:a3:1c:8b: 28:da:d3:b1:00:10:b7:55:0c:89:06:ef:c1:b2:cf:b9:bc:25: ab:20:13:42:1e:73:11:f5:dd:9c:38:5e:44:45:2f:56:bf:f0: 36:d2:40:d9:fa:4d:a3:6d:6f:10:88:fd:b7:55:73:05:5b:1f: 6d:ae:cd:91:b8:d0:51:f3:a7:c3:dc:2a:e1:eb:e3:ec:83:1c: 4b:3a:e4:97:55:ff:60:41:05:00:a5:6a:26:f5:f8:7e:97:f6: 5a:1c:8d:8f:ff:01:73:2c:1e:0a:0b:e9:4d:db:4f:cf:c5:5b: d6:a5:b7:fe:0c:34:77:d0:06:9a:be:7e:df:31:a4:68:66:cc: 16:57:c3:2b:9e:d9:6f:30:70:da:2d:fd:4b:49:6f:18:03:b9: e0:d0:22:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURh9uhcdj/iBpKf1h106UT9YzxLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yNTA2MTQxMjU3MjNaFw0yNjA2MTMxMzAyMjNaMDMxMTAvBgNV BAMTKDg0REI1MkE2RDYxQjYyREJCMUQzNTA2QTQxMThBMjUyRjE2RkM4MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh31mHuHB5zHi0yCAy00pQdR7X jpn0e0KQwIC9S6mj93PLFQEyZ4DsaE7qmn1Xx23RLgBCHR/nVuGGEIoXgLEOPwiW GaqHmNVZSceAQYfH+L2acoUDxfBZyqLqOfkKI8YgYNEXqWQsRi36foZ8t6j/zd/X aSQ5L48WGllQOZkn6/KPxO+HY7jKuHqxhC9I6yLYB9+xBWtVqSsut2vspHy7Q9aZ 2CPANRsTCU70kfZtc1cTG/ZZWXnLUtkkYsfy9Yv6eWJGryP9VOQ77g4Q/gF+yUTV UgyzefeJTEUKOQ7Rzttrd9s1xu29eSlzEz3xHGfxe0FR71g7KtHiXiNjgIIBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhNtSptYbYtux01BqQRiiUvFvyBgwHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZnIwDQYJ KoZIhvcNAQELBQADggEBACCcVeNNIseRJx3qYJaUQaNQktz22fGLgWCNeUDaPqWv UAk6RbgDsxwgfQ+GG5ZqSWiRIHZx09NU6ZNac5EFk+heJGpEiP6XkwkcMxXyFTEq BNAuvPrG5BuLMNlPgzL0VhG2SHgVqXOlb6Mciyja07EAELdVDIkG78Gyz7m8Jasg E0IecxH13Zw4XkRFL1a/8DbSQNn6TaNtbxCI/bdVcwVbH22uzZG40FHzp8PcKuHr 4+yDHEs65JdV/2BBBQClaib1+H6X9locjY//AXMsHgoL6U3bT8/FW9alt/4MNHfQ Bpq+ft8xpGhmzBZXwyue2W8wcNot/UtJbxgDueDQIsA= -----END CERTIFICATE-----Generated at Tue Jun 17 16:14:40 2025 by rpki-client