$ rpki-client -vvf repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa File: 3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: exnV2in0lMY4Abx7/bcqLUFJk6DG/znMQfleVx5p9FM= Subject key identifier: FA:7B:20:9B:01:96:9F:33:58:43:B5:E3:7A:D3:A6:29:6D:0B:54:C4 Certificate issuer: /CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Certificate serial: 64BC546EE9B3D777EC8240D193259DD03350ACE2 Authority key identifier: 39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa Signing time: Fri 30 May 2025 08:00:01 +0000 ROA not before: Fri 30 May 2025 07:55:01 +0000 ROA not after: Fri 29 May 2026 08:00:01 +0000 asID: 9341 IP address blocks: 103.137.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bc:54:6e:e9:b3:d7:77:ec:82:40:d1:93:25:9d:d0:33:50:ac:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Validity Not Before: May 30 07:55:01 2025 GMT Not After : May 29 08:00:01 2026 GMT Subject: CN=FA7B209B01969F335843B5E37AD3A6296D0B54C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bb:48:70:02:a5:37:e3:59:eb:96:82:6e:8d: 0e:14:05:1f:f1:8e:91:8b:65:54:fc:c8:3c:91:90: dd:0a:e2:fd:94:da:a7:f3:04:6b:b4:e4:d9:56:8f: be:b4:77:25:3e:92:87:2d:70:c7:aa:ff:17:cc:de: d4:f4:7e:81:33:2e:77:99:e5:01:99:72:c6:88:0e: e4:4b:f9:d0:40:64:73:68:5d:36:e6:19:2c:b0:5a: b6:fd:1e:61:c8:f0:49:28:be:b1:b6:4b:9c:06:bb: b8:14:6a:c5:4c:26:1c:85:43:14:fa:e0:e9:ff:b7: 51:dc:b1:92:1e:10:dd:01:cf:ee:41:ec:3b:c6:52: 10:d0:65:57:1a:4c:a4:f3:10:cb:81:7f:c8:00:4a: a4:f3:95:11:5a:9b:a7:bd:73:56:15:c9:4e:b7:ef: 28:34:56:12:3e:e7:77:a8:78:f7:43:5e:85:2f:d8: 1c:1d:42:91:e9:55:8c:25:24:6b:be:8c:a6:d3:df: 27:a9:e1:25:29:60:6a:a7:ab:ac:34:89:46:02:9e: 36:90:a8:3e:b5:4f:9e:f9:0f:f4:71:cc:72:5f:70: b0:51:1a:40:f5:e4:0a:ac:f6:46:98:d4:cf:f9:82: 0d:11:14:03:db:6d:4a:49:8b:81:24:ae:da:4d:dd: 18:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7B:20:9B:01:96:9F:33:58:43:B5:E3:7A:D3:A6:29:6D:0B:54:C4 X509v3 Authority Key Identifier: keyid:39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.188.0/23 Signature Algorithm: sha256WithRSAEncryption 27:b4:4c:7f:90:52:23:a3:94:ba:ed:f5:c0:85:79:92:77:a8: e7:81:66:36:a1:a4:a9:ff:a7:9b:4b:2b:0b:33:19:77:9e:93: 4d:49:92:9f:f7:42:7a:b3:77:74:2b:a1:b2:0c:52:40:6e:b3: 4a:dc:d5:0d:04:8c:dc:c1:84:fd:b3:e3:cd:f9:2c:2f:c9:f1: 7e:f6:85:9f:09:b6:24:b3:51:b9:9f:8a:df:7f:24:5f:57:b3: 4c:82:5a:ba:a2:3f:3f:ba:f2:6f:dd:52:7c:17:d8:9f:15:2a: 9f:79:7a:fd:b6:71:42:b8:ae:99:8f:9f:76:a0:8e:5f:a3:72: 2b:66:9a:fb:3e:06:a9:ab:f9:e4:30:c0:62:a2:90:af:97:ee: 7c:65:f8:fd:02:71:72:0a:a4:eb:da:11:ff:11:e3:90:b6:f5: 55:20:31:87:a3:a8:55:0c:f2:6d:0a:43:86:a5:3d:3d:ff:6e: bc:00:a4:b8:73:74:f2:12:72:0e:16:3a:27:dd:36:6c:2b:00: d9:25:ed:74:71:60:49:5b:4c:a5:dc:d4:f9:f7:0b:38:a1:e1: 35:87:ce:d4:bf:5a:c8:7c:83:0e:a0:f8:44:f6:08:e5:5d:57: d2:5c:74:7b:2e:22:ea:2e:49:17:98:6a:4d:a8:0e:a2:9b:aa: ea:26:c0:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZLxUbumz13fsgkDRkyWd0DNQrOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1 NTA1RUQzMDAeFw0yNTA1MzAwNzU1MDFaFw0yNjA1MjkwODAwMDFaMDMxMTAvBgNV BAMTKEZBN0IyMDlCMDE5NjlGMzM1ODQzQjVFMzdBRDNBNjI5NkQwQjU0QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChu0hwAqU341nrloJujQ4UBR/x jpGLZVT8yDyRkN0K4v2U2qfzBGu05NlWj760dyU+koctcMeq/xfM3tT0foEzLneZ 5QGZcsaIDuRL+dBAZHNoXTbmGSywWrb9HmHI8EkovrG2S5wGu7gUasVMJhyFQxT6 4On/t1HcsZIeEN0Bz+5B7DvGUhDQZVcaTKTzEMuBf8gASqTzlRFam6e9c1YVyU63 7yg0VhI+53eoePdDXoUv2BwdQpHpVYwlJGu+jKbT3yep4SUpYGqnq6w0iUYCnjaQ qD61T575D/RxzHJfcLBRGkD15Aqs9kaY1M/5gg0RFAPbbUpJi4EkrtpN3RhLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+nsgmwGWnzNYQ7XjetOmKW0LVMQwHwYDVR0j BBgwFoAUOZ+EEY7e+q1d2TZzv9Ybn1UF7TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmMxMjcwMy1mMWY3LTQzYzktYTIyMC05MmVkZDg2ZWZlNWUvMC8zOTlGODQxMThF REVGQUFENUREOTM2NzNCRkQ2MUI5RjU1MDVFRDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1NTA1 RUQzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YzEyNzAzLWYxZjctNDNjOS1h MjIwLTkyZWRkODZlZmU1ZS8wLzMxMzAzMzJlMzEzMzM3MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeJvDANBgkqhkiG 9w0BAQsFAAOCAQEAJ7RMf5BSI6OUuu31wIV5kneo54FmNqGkqf+nm0srCzMZd56T TUmSn/dCerN3dCuhsgxSQG6zStzVDQSM3MGE/bPjzfksL8nxfvaFnwm2JLNRuZ+K 338kX1ezTIJauqI/P7ryb91SfBfYnxUqn3l6/bZxQriumY+fdqCOX6NyK2aa+z4G qav55DDAYqKQr5fufGX4/QJxcgqk69oR/xHjkLb1VSAxh6OoVQzybQpDhqU9Pf9u vACkuHN08hJyDhY6J902bCsA2SXtdHFgSVtMpdzU+fcLOKHhNYfO1L9ayHyDDqD4 RPYI5V1X0lx0ey4i6i5JF5hqTagOopuq6ibABA== -----END CERTIFICATE-----Generated at Mon Jun 16 03:55:31 2025 by rpki-client