$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa File: 3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: KhAy9i7rNh+YO2rkl451EFCJ0ALmEvE00mvytErQzRA= Subject key identifier: 47:5E:CD:60:7A:59:3C:A7:58:EB:30:93:13:7E:EE:32:EB:D0:4E:7C Certificate issuer: /CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Certificate serial: 6B6A5608469C2939B0A749B1BB9BE6AE0667639D Authority key identifier: D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa Signing time: Sat 14 Jun 2025 13:02:23 +0000 ROA not before: Sat 14 Jun 2025 12:57:23 +0000 ROA not after: Sat 13 Jun 2026 13:02:23 +0000 asID: 138131 IP address blocks: 103.164.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:56:08:46:9c:29:39:b0:a7:49:b1:bb:9b:e6:ae:06:67:63:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Validity Not Before: Jun 14 12:57:23 2025 GMT Not After : Jun 13 13:02:23 2026 GMT Subject: CN=475ECD607A593CA758EB3093137EEE32EBD04E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f5:92:6a:70:54:27:74:fe:f0:61:8a:b9:94: b2:aa:35:48:e2:3a:02:b0:63:14:6a:a1:7d:9d:e6: 4e:ef:ae:1b:5d:f0:09:ab:99:ba:27:be:1b:5e:48: 59:31:86:5f:81:a2:d4:e8:de:87:1f:fc:65:87:59: 52:a2:eb:3d:9b:8a:ca:92:e2:10:70:ec:60:32:0b: 82:c2:6e:4b:36:b1:77:ae:98:8a:f9:18:cf:7a:e2: 25:33:6b:5a:7f:8b:6d:dd:d4:19:fd:01:a6:ed:bf: c9:de:a9:cd:15:39:86:e8:e1:c9:b8:3c:a4:92:ba: 20:5d:b3:d7:ee:4e:51:ee:a2:2b:bb:aa:b0:12:03: 68:50:83:b7:67:c5:ed:7b:fe:be:87:85:0f:ab:c9: 5a:95:1e:94:f7:b4:97:3d:25:65:7b:14:62:c6:ee: 41:e6:0e:57:01:d5:3d:3a:9a:66:96:5a:6d:47:cd: 9a:a3:2f:47:c6:6e:7f:5e:6d:57:db:62:5d:b3:df: d9:73:14:c0:ea:96:74:fe:6f:18:59:67:b5:cb:53: 55:1b:8f:53:81:e2:1f:00:36:d1:6d:53:d0:73:ec: 5c:cd:b6:6a:79:e9:df:fc:2b:7c:9f:a3:a9:7c:f9: 72:b3:b1:13:7a:06:20:6a:31:09:6f:05:e4:e1:ed: 58:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5E:CD:60:7A:59:3C:A7:58:EB:30:93:13:7E:EE:32:EB:D0:4E:7C X509v3 Authority Key Identifier: keyid:D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.173.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:66:c4:7b:2a:7f:0b:94:d5:26:1a:69:bc:a8:ee:89:a7:f3: 07:4d:ba:d2:cc:82:34:7e:85:2e:3d:a2:5c:b7:92:7f:ad:78: e0:49:a2:9c:e1:36:7b:8d:b1:ad:4a:90:4c:11:2c:7c:eb:de: bf:ad:61:04:9d:3b:bd:7a:44:c9:12:ab:d9:3d:d5:ee:5f:8a: 3d:31:9f:bc:ab:1e:de:71:7e:bb:03:7e:32:92:19:4e:82:22: 38:b4:85:e2:35:29:96:97:b0:81:36:a6:45:d2:77:98:19:e3: ee:10:e7:fa:46:34:bb:c4:a6:2e:07:06:04:c1:29:e6:9a:f2: ce:b4:2e:61:3c:6d:af:fb:d0:0d:cf:5c:fb:4a:a4:f2:5e:52: e0:63:0a:32:bf:0e:2b:f5:46:02:5c:83:41:70:a1:82:ba:5c: 4d:53:45:d9:db:3c:4d:d9:14:68:a3:41:a7:19:d8:fd:0b:05: 2b:79:4d:61:87:7a:b4:9a:4c:27:5f:b6:19:70:b9:9d:03:fb: 67:27:75:eb:6f:bd:9e:70:a0:34:21:f0:4e:24:d5:a3:2b:c1: 79:07:07:b1:69:13:09:3f:38:e7:9d:a8:74:f4:83:ca:51:a1: 95:a7:e5:2c:45:be:fe:7e:89:4a:8b:b4:fe:3d:ad:f5:cc:b5: a8:73:ab:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa2pWCEacKTmwp0mxu5vmrgZnY50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUEx OUMyRUYyQzAeFw0yNTA2MTQxMjU3MjNaFw0yNjA2MTMxMzAyMjNaMDMxMTAvBgNV BAMTKDQ3NUVDRDYwN0E1OTNDQTc1OEVCMzA5MzEzN0VFRTMyRUJEMDRFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl9ZJqcFQndP7wYYq5lLKqNUji OgKwYxRqoX2d5k7vrhtd8AmrmbonvhteSFkxhl+BotTo3ocf/GWHWVKi6z2bisqS 4hBw7GAyC4LCbks2sXeumIr5GM964iUza1p/i23d1Bn9Aabtv8neqc0VOYbo4cm4 PKSSuiBds9fuTlHuoiu7qrASA2hQg7dnxe17/r6HhQ+ryVqVHpT3tJc9JWV7FGLG 7kHmDlcB1T06mmaWWm1HzZqjL0fGbn9ebVfbYl2z39lzFMDqlnT+bxhZZ7XLU1Ub j1OB4h8ANtFtU9Bz7FzNtmp56d/8K3yfo6l8+XKzsRN6BiBqMQlvBeTh7VhTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUR17NYHpZPKdY6zCTE37uMuvQTnwwHwYDVR0j BBgwFoAU14Uq8F37uXrNRqNzmfIN6hnC7ywwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZjFiNC1lZjYzLTQ1MzktODQ1NS05OGM2NzE5OTVjY2YvMC9ENzg1MkFGMDVE RkJCOTdBQ0Q0NkEzNzM5OUYyMERFQTE5QzJFRjJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUExOUMy RUYyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODlmMWI0LWVmNjMtNDUzOS04 NDU1LTk4YzY3MTk5NWNjZi8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpK0wDQYJ KoZIhvcNAQELBQADggEBADxmxHsqfwuU1SYaabyo7omn8wdNutLMgjR+hS49oly3 kn+teOBJopzhNnuNsa1KkEwRLHzr3r+tYQSdO716RMkSq9k91e5fij0xn7yrHt5x frsDfjKSGU6CIji0heI1KZaXsIE2pkXSd5gZ4+4Q5/pGNLvEpi4HBgTBKeaa8s60 LmE8ba/70A3PXPtKpPJeUuBjCjK/Div1RgJcg0FwoYK6XE1TRdnbPE3ZFGijQacZ 2P0LBSt5TWGHerSaTCdfthlwuZ0D+2cndetvvZ5woDQh8E4k1aMrwXkHB7FpEwk/ OOedqHT0g8pRoZWn5SxFvv5+iUqLtP49rfXMtahzqyE= -----END CERTIFICATE-----Generated at Mon Jun 16 22:12:26 2025 by rpki-client