$ rpki-client -vvf repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3130332e3132332e3233362e302f32342d3234203d3e20313338303738.roa File: 3130332e3132332e3233362e302f32342d3234203d3e20313338303738.roa (raw, json) Hash identifier: RmlnKYQXWGOfP+UEgb2aQ4Zckhx5L2Ib8Jbz3UBAKro= Subject key identifier: BF:EB:A1:DA:62:BC:C7:12:AF:7B:62:5F:F1:79:14:36:D9:66:C1:C2 Certificate issuer: /CN=B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC Certificate serial: 1645843F431DD8D9DEC41AB4DA751BB6CC1BEEA8 Authority key identifier: B4:15:3D:CE:E8:7E:15:F9:2A:AB:AC:0D:F6:72:9C:9A:5D:E5:CF:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3130332e3132332e3233362e302f32342d3234203d3e20313338303738.roa Signing time: Mon 02 Jun 2025 02:04:59 +0000 ROA not before: Mon 02 Jun 2025 01:59:59 +0000 ROA not after: Mon 01 Jun 2026 02:04:59 +0000 asID: 138078 IP address blocks: 103.123.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.crl rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 10:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:45:84:3f:43:1d:d8:d9:de:c4:1a:b4:da:75:1b:b6:cc:1b:ee:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC Validity Not Before: Jun 2 01:59:59 2025 GMT Not After : Jun 1 02:04:59 2026 GMT Subject: CN=BFEBA1DA62BCC712AF7B625FF1791436D966C1C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:6d:9a:44:24:23:38:e3:c8:96:96:1e:4f:7e: 3c:b3:0c:98:0e:9c:93:f6:4d:c4:ef:89:c8:9c:4e: b7:12:8f:4f:41:cf:5c:7f:85:e7:87:9b:4d:f6:02: c1:4e:19:f4:55:05:ae:17:54:60:1d:4d:7b:8d:b2: 10:00:2c:dd:06:ea:aa:c8:d4:73:e8:dd:7f:ec:30: de:de:48:01:bd:8d:0a:d2:d3:9f:dd:ef:87:80:d4: 6a:c0:ff:99:29:e7:6d:2b:9d:ec:ed:0e:61:bc:68: 1c:54:7a:1f:4c:6f:d4:94:a1:e5:ca:25:06:7a:df: 12:20:fc:f1:95:79:cc:3a:a8:bd:02:01:48:01:fe: 54:1f:d7:f3:2b:39:8d:fc:7d:01:33:6b:eb:7a:ba: c5:79:31:9c:e1:1c:8a:02:5a:26:73:b2:83:49:dd: b7:4e:9c:ce:4d:5d:04:d7:a3:36:0b:00:f5:02:dd: c6:cc:42:f0:ad:c9:38:cf:ff:2c:39:6d:12:c5:32: 40:ba:f3:96:a8:72:97:40:81:fc:ec:b5:e4:dc:32: c8:93:43:d4:a8:6a:25:69:2e:dc:09:f7:10:37:88: b0:6c:0e:a1:6f:72:8f:43:ef:72:8f:41:a4:2a:78: b0:cd:29:fa:4a:4c:b0:27:dc:1e:f7:36:87:a3:03: e4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EB:A1:DA:62:BC:C7:12:AF:7B:62:5F:F1:79:14:36:D9:66:C1:C2 X509v3 Authority Key Identifier: keyid:B4:15:3D:CE:E8:7E:15:F9:2A:AB:AC:0D:F6:72:9C:9A:5D:E5:CF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4153DCEE87E15F92AABAC0DF6729C9A5DE5CFCC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3130332e3132332e3233362e302f32342d3234203d3e20313338303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.236.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:ae:9a:46:62:20:bc:ae:f4:67:c2:63:41:59:ae:72:b6:97: df:77:7c:8a:b8:ae:06:38:e0:ba:bc:9f:b1:7d:be:44:5f:7f: 10:61:24:8a:62:a3:81:f3:58:7b:8c:9d:73:0a:72:8b:b6:29: 0e:25:c3:08:96:94:03:12:4f:0b:54:38:5d:b8:f7:9e:92:4d: 8a:4d:54:86:3f:59:66:18:a7:95:b1:56:29:22:c4:de:bb:36: 8e:3c:ff:de:b0:ca:18:3d:9d:cf:c2:8e:bd:39:91:52:5a:e9: d6:36:f1:99:8b:7d:5c:5d:89:73:48:89:d1:ef:8d:a0:d1:a2: a2:22:72:1b:ab:ce:75:75:c8:66:66:f4:97:d5:ba:f2:12:ee: 59:5d:99:4b:34:52:25:0f:ec:0b:a2:cd:b4:85:64:10:f9:d6: 63:ca:8e:55:b5:71:47:98:bd:11:8b:13:db:35:41:03:52:6e: a1:e2:d8:5a:d0:1a:ec:04:94:fd:15:54:d2:f2:6a:f6:ee:c5: 9e:73:de:84:0f:3c:ad:97:39:4d:bd:76:6c:a0:0d:46:f0:9b: 9d:83:a7:ab:43:d6:d5:47:47:2a:3b:95:dc:b8:ed:b3:22:75: a6:be:bc:6d:d4:08:5a:2e:1d:ae:5b:4b:d0:cb:89:b8:68:f5: f1:d2:2c:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFkWEP0Md2NnexBq02nUbtswb7qgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQxNTNEQ0VFODdFMTVGOTJBQUJBQzBERjY3MjlDOUE1 REU1Q0ZDQzAeFw0yNTA2MDIwMTU5NTlaFw0yNjA2MDEwMjA0NTlaMDMxMTAvBgNV BAMTKEJGRUJBMURBNjJCQ0M3MTJBRjdCNjI1RkYxNzkxNDM2RDk2NkMxQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzbZpEJCM448iWlh5PfjyzDJgO nJP2TcTvicicTrcSj09Bz1x/heeHm032AsFOGfRVBa4XVGAdTXuNshAALN0G6qrI 1HPo3X/sMN7eSAG9jQrS05/d74eA1GrA/5kp520rneztDmG8aBxUeh9Mb9SUoeXK JQZ63xIg/PGVecw6qL0CAUgB/lQf1/MrOY38fQEza+t6usV5MZzhHIoCWiZzsoNJ 3bdOnM5NXQTXozYLAPUC3cbMQvCtyTjP/yw5bRLFMkC685aocpdAgfzsteTcMsiT Q9SoaiVpLtwJ9xA3iLBsDqFvco9D73KPQaQqeLDNKfpKTLAn3B73NoejA+T9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv+uh2mK8xxKve2Jf8XkUNtlmwcIwHwYDVR0j BBgwFoAUtBU9zuh+Ffkqq6wN9nKcml3lz8wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NWM5YzM5NC1mY2QwLTRiNGItYmIxYS04MjQ3NzBmNDAzNDIvMC9CNDE1M0RDRUU4 N0UxNUY5MkFBQkFDMERGNjcyOUM5QTVERTVDRkNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQxNTNEQ0VFODdFMTVGOTJBQUJBQzBERjY3MjlDOUE1REU1 Q0ZDQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1YzljMzk0LWZjZDAtNGI0Yi1i YjFhLTgyNDc3MGY0MDM0Mi8wLzMxMzAzMzJlMzEzMjMzMmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne+wwDQYJ KoZIhvcNAQELBQADggEBAF2umkZiILyu9GfCY0FZrnK2l993fIq4rgY44Lq8n7F9 vkRffxBhJIpio4HzWHuMnXMKcou2KQ4lwwiWlAMSTwtUOF24956STYpNVIY/WWYY p5WxVikixN67No48/96wyhg9nc/Cjr05kVJa6dY28ZmLfVxdiXNIidHvjaDRoqIi churznV1yGZm9JfVuvIS7lldmUs0UiUP7AuizbSFZBD51mPKjlW1cUeYvRGLE9s1 QQNSbqHi2FrQGuwElP0VVNLyavbuxZ5z3oQPPK2XOU29dmygDUbwm52Dp6tD1tVH Ryo7ldy47bMidaa+vG3UCFouHa5bS9DLibho9fHSLOc= -----END CERTIFICATE-----Generated at Tue Jun 17 04:37:02 2025 by rpki-client