$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131352e302f32342d3234203d3e20313336383536.roa File: 3130332e3130322e3131352e302f32342d3234203d3e20313336383536.roa (raw, json) Hash identifier: Bt0nH3UAT/CLMsfvb2IBDFeUJ9UZn6YmMXytc9svV6w= Subject key identifier: 43:69:23:4E:88:FF:E1:03:88:6A:28:7E:BD:B7:39:55:6E:9A:C2:B6 Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 05CEF182DD952D2E02517D1E894A9AA0F367139A Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131352e302f32342d3234203d3e20313336383536.roa Signing time: Sat 14 Jun 2025 12:02:02 +0000 ROA not before: Sat 14 Jun 2025 11:57:02 +0000 ROA not after: Sat 13 Jun 2026 12:02:02 +0000 asID: 136856 IP address blocks: 103.102.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ce:f1:82:dd:95:2d:2e:02:51:7d:1e:89:4a:9a:a0:f3:67:13:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jun 14 11:57:02 2025 GMT Not After : Jun 13 12:02:02 2026 GMT Subject: CN=4369234E88FFE103886A287EBDB739556E9AC2B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d6:f1:d4:9d:64:89:5c:9c:51:eb:2e:af:ef: 6d:53:71:37:94:89:e3:fb:24:27:89:93:de:e4:6c: bd:53:23:c8:43:a6:ef:dd:9b:95:08:70:20:86:70: 20:89:fe:69:a9:6a:28:7f:1c:c4:a1:ff:6c:ca:4b: 08:93:28:25:7c:76:50:95:ff:1e:b4:44:38:35:bd: d0:f2:55:85:71:ec:7b:e6:49:87:c2:c7:d4:c5:49: 5a:f3:73:21:d6:b9:59:8a:7a:7a:53:0f:e0:bb:b7: 0f:9b:16:24:cf:c0:e1:ec:48:95:97:42:90:55:00: 25:9c:43:0b:5d:0d:d8:d5:82:87:d1:6f:f9:64:1f: 88:94:b3:15:0c:6c:3c:fb:0a:e5:e0:0a:d3:6a:80: 05:9b:7d:be:d1:68:48:4c:7e:55:a2:93:4f:77:a2: c8:68:c7:61:ed:d2:7d:b6:49:a4:bb:ee:f1:a2:09: 2a:61:d4:53:94:a0:6c:cc:04:79:83:87:05:31:8a: 6e:3c:c5:fc:ec:88:bd:89:89:54:2e:c1:37:20:2d: 24:b4:f8:85:2b:a9:3c:a2:5d:d4:cb:e0:65:db:ba: 85:e7:20:db:59:3e:fe:a7:30:b7:18:5e:b3:3b:5f: c1:6a:26:a2:80:22:49:db:91:9c:17:67:ae:be:13: 22:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:69:23:4E:88:FF:E1:03:88:6A:28:7E:BD:B7:39:55:6E:9A:C2:B6 X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131352e302f32342d3234203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.115.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:d2:8a:72:33:76:f8:45:4a:e6:b1:e7:28:7d:4f:8f:0e:06: d8:2d:9b:c3:a8:6a:79:94:d0:dd:aa:f2:b5:22:fe:b1:41:04: ad:17:5c:02:1f:02:e8:fa:68:99:45:a9:dd:99:ce:6c:16:47: 09:d5:fa:cd:79:6b:7c:d9:3a:25:a2:e3:11:7e:6a:0b:dc:8a: 4e:f7:0b:66:45:8f:e3:86:cf:9a:d1:b6:ad:36:bb:4c:42:7e: bb:d7:48:78:f9:9b:da:2e:7a:16:e2:5a:bf:9e:80:6b:5c:24: b1:f0:2c:da:a0:a0:ff:52:c6:f5:31:15:d4:c4:15:d9:bd:01: e6:cd:3b:6d:90:19:69:93:6e:5d:25:3f:77:35:2f:a3:93:47: 30:6b:1d:e2:3a:dc:d0:b3:4e:67:92:59:cc:78:fe:c3:3a:11: 48:cf:e6:05:74:da:48:61:52:4b:be:a5:c5:af:02:5d:b1:3f: 84:94:1a:29:08:f0:9a:b7:8f:0f:1e:e3:23:68:64:2a:79:9f: 7d:95:ae:0d:9d:92:9b:29:4a:39:8e:21:49:06:e6:92:12:1b: 63:df:13:d8:01:38:b9:b1:6e:8a:30:46:b4:84:aa:f8:17:48: 41:a1:70:32:c2:69:c9:dd:02:1a:a5:be:2a:27:1c:4a:e7:fe: d3:46:91:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBc7xgt2VLS4CUX0eiUqaoPNnE5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yNTA2MTQxMTU3MDJaFw0yNjA2MTMxMjAyMDJaMDMxMTAvBgNV BAMTKDQzNjkyMzRFODhGRkUxMDM4ODZBMjg3RUJEQjczOTU1NkU5QUMyQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC91vHUnWSJXJxR6y6v721TcTeU ieP7JCeJk97kbL1TI8hDpu/dm5UIcCCGcCCJ/mmpaih/HMSh/2zKSwiTKCV8dlCV /x60RDg1vdDyVYVx7HvmSYfCx9TFSVrzcyHWuVmKenpTD+C7tw+bFiTPwOHsSJWX QpBVACWcQwtdDdjVgofRb/lkH4iUsxUMbDz7CuXgCtNqgAWbfb7RaEhMflWik093 oshox2Ht0n22SaS77vGiCSph1FOUoGzMBHmDhwUxim48xfzsiL2JiVQuwTcgLSS0 +IUrqTyiXdTL4GXbuoXnINtZPv6nMLcYXrM7X8FqJqKAIknbkZwXZ66+EyJXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQ2kjToj/4QOIaih+vbc5VW6awrYwHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZnMwDQYJ KoZIhvcNAQELBQADggEBAGrSinIzdvhFSuax5yh9T48OBtgtm8OoanmU0N2q8rUi /rFBBK0XXAIfAuj6aJlFqd2ZzmwWRwnV+s15a3zZOiWi4xF+agvcik73C2ZFj+OG z5rRtq02u0xCfrvXSHj5m9ouehbiWr+egGtcJLHwLNqgoP9SxvUxFdTEFdm9AebN O22QGWmTbl0lP3c1L6OTRzBrHeI63NCzTmeSWcx4/sM6EUjP5gV02khhUku+pcWv Al2xP4SUGikI8Jq3jw8e4yNoZCp5n32Vrg2dkpspSjmOIUkG5pISG2PfE9gBOLmx boowRrSEqvgXSEGhcDLCacndAhqlvionHErn/tNGkUg= -----END CERTIFICATE-----Generated at Tue Jun 17 18:02:04 2025 by rpki-client