$ rpki-client -vvf repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133352e302f32342d3234203d3e20313339343237.roa File: 3130332e3134342e3133352e302f32342d3234203d3e20313339343237.roa (raw, json) Hash identifier: zWJYN2XG8P0RnY9CSUVBnEgmuVsEalWKm5k5yR0nlxQ= Subject key identifier: 42:13:B1:B7:EA:A7:76:E8:98:64:91:E9:E4:6B:48:DE:F5:8C:D7:D9 Certificate issuer: /CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Certificate serial: 668D73EB2DC459933F93D4604FEF62DAC5AB263A Authority key identifier: 8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133352e302f32342d3234203d3e20313339343237.roa Signing time: Tue 17 Jun 2025 09:00:00 +0000 ROA not before: Tue 17 Jun 2025 08:55:00 +0000 ROA not after: Tue 16 Jun 2026 09:00:00 +0000 asID: 139427 IP address blocks: 103.144.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 12:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:8d:73:eb:2d:c4:59:93:3f:93:d4:60:4f:ef:62:da:c5:ab:26:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Validity Not Before: Jun 17 08:55:00 2025 GMT Not After : Jun 16 09:00:00 2026 GMT Subject: CN=4213B1B7EAA776E8986491E9E46B48DEF58CD7D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:09:d2:91:79:67:69:f8:ab:80:9b:a2:10: 9c:51:85:c2:be:ce:42:23:ec:dc:f4:6c:ef:7c:51: 20:37:42:15:22:d4:de:99:48:8b:96:a2:3a:76:65: 4e:f3:4b:48:c7:26:cf:75:c6:20:b1:25:d7:5c:df: 0a:03:9a:77:ec:14:69:21:a5:6d:be:86:16:33:4c: 29:e9:da:1a:ca:39:7e:0a:6d:1d:86:14:b7:f3:15: f7:f0:f0:95:57:9f:3f:a7:6c:65:e6:61:9c:a9:be: 41:d6:e4:79:54:71:a6:d8:fe:db:a7:00:99:78:37: ba:de:f1:e2:cf:39:63:0c:71:95:ec:4f:36:f7:9a: 0b:dd:ff:2d:35:6e:ee:d6:0c:3f:95:b0:c4:e1:49: e7:30:53:a7:08:f8:fd:09:a0:f8:b0:95:0d:60:18: a6:bb:c0:65:23:bb:86:74:05:7d:6c:07:be:e3:6f: a2:dd:7d:43:be:90:4e:f2:98:96:5b:d1:1c:df:83: 28:63:6e:a7:ea:ec:18:c5:0a:5d:1a:78:8a:3f:4e: fb:4e:44:4e:3b:d2:bd:d0:e6:7f:1c:84:a0:8c:d3: f8:57:8b:6e:e9:ae:79:97:73:0a:2d:40:57:54:ac: 20:86:17:22:e9:50:1a:f6:64:ef:da:7a:f9:cb:25: 51:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:13:B1:B7:EA:A7:76:E8:98:64:91:E9:E4:6B:48:DE:F5:8C:D7:D9 X509v3 Authority Key Identifier: keyid:8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/3130332e3134342e3133352e302f32342d3234203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.135.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:21:df:35:ea:8e:df:f2:a4:f2:7d:1e:dc:81:25:8d:5d:da: 37:09:ea:54:a3:30:3a:27:e3:6e:9f:e5:e7:91:3d:99:41:bd: aa:dc:78:72:b6:ec:5c:ea:f1:ef:fb:ce:c3:df:e2:e8:d7:44: ba:75:80:3d:10:49:27:c1:01:8c:51:a7:dd:80:fb:90:68:6b: f8:a9:db:cc:a3:72:7b:86:11:25:ea:d4:cb:53:c9:8e:97:a2: c0:54:02:d2:ba:8b:7d:01:c7:4e:87:5d:6e:dd:a6:dd:47:de: c5:62:91:44:29:a9:d5:9b:55:86:7f:a3:0e:db:80:25:f6:4c: 2a:26:3b:64:21:ea:1d:13:7e:2a:f3:78:87:83:0c:64:71:3d: 37:3e:d0:86:c9:1f:fd:3d:1e:f0:ae:8e:a7:ca:03:c5:99:d1: 3d:e4:49:e1:e2:fe:7f:37:2c:1c:2f:6f:4b:01:b7:37:2b:60: 54:67:a3:88:e8:b3:a9:24:af:f6:af:92:0f:ee:32:44:8c:31: e2:c9:ad:7c:29:a9:30:57:b8:46:99:32:bd:2d:6c:26:81:7f: 97:68:4f:d9:18:23:33:52:0c:7c:6c:54:1c:c1:95:41:62:e6: cb:59:dc:8d:ab:2b:8f:a6:98:3a:22:8c:63:dd:99:30:14:b5: a5:83:53:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZo1z6y3EWZM/k9RgT+9i2sWrJjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3 MTIwMkQyRDAeFw0yNTA2MTcwODU1MDBaFw0yNjA2MTYwOTAwMDBaMDMxMTAvBgNV BAMTKDQyMTNCMUI3RUFBNzc2RTg5ODY0OTFFOUU0NkI0OERFRjU4Q0Q3RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCBAnSkXlnafirgJuiEJxRhcK+ zkIj7Nz0bO98USA3QhUi1N6ZSIuWojp2ZU7zS0jHJs91xiCxJddc3woDmnfsFGkh pW2+hhYzTCnp2hrKOX4KbR2GFLfzFffw8JVXnz+nbGXmYZypvkHW5HlUcabY/tun AJl4N7re8eLPOWMMcZXsTzb3mgvd/y01bu7WDD+VsMThSecwU6cI+P0JoPiwlQ1g GKa7wGUju4Z0BX1sB77jb6LdfUO+kE7ymJZb0Rzfgyhjbqfq7BjFCl0aeIo/TvtO RE470r3Q5n8chKCM0/hXi27prnmXcwotQFdUrCCGFyLpUBr2ZO/aevnLJVGJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQhOxt+qnduiYZJHp5GtI3vWM19kwHwYDVR0j BBgwFoAUjj90QUA7nN8v1gPMuvE9FnEgLS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTkxNGFkYS1hOWFhLTRkN2YtOWU0Ny01OTRiY2I3YTcwYWIvMC84RTNGNzQ0MTQw M0I5Q0RGMkZENjAzQ0NCQUYxM0QxNjcxMjAyRDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3MTIw MkQyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIcwDQYJ KoZIhvcNAQELBQADggEBADwh3zXqjt/ypPJ9HtyBJY1d2jcJ6lSjMDon426f5eeR PZlBvarceHK27Fzq8e/7zsPf4ujXRLp1gD0QSSfBAYxRp92A+5Boa/ip28yjcnuG ESXq1MtTyY6XosBUAtK6i30Bx06HXW7dpt1H3sVikUQpqdWbVYZ/ow7bgCX2TCom O2Qh6h0TfirzeIeDDGRxPTc+0IbJH/09HvCujqfKA8WZ0T3kSeHi/n83LBwvb0sB tzcrYFRno4jos6kkr/avkg/uMkSMMeLJrXwpqTBXuEaZMr0tbCaBf5doT9kYIzNS DHxsVBzBlUFi5stZ3I2rK4+mmDoijGPdmTAUtaWDU0o= -----END CERTIFICATE-----Generated at Tue Jun 17 17:24:14 2025 by rpki-client