$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa File: 3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: DmcCHOdkx3USZG6nT+Rc5blkIExAEZyaMmWiGcolYxw= Subject key identifier: CF:BB:B2:77:E8:86:42:41:CB:D6:26:6C:2C:8A:94:15:7D:EE:D6:A3 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 028B8A5996269C30DCBB9ACE9C14EE9B1D6A490B Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa Signing time: Fri 13 Jun 2025 09:02:07 +0000 ROA not before: Fri 13 Jun 2025 08:57:07 +0000 ROA not after: Fri 12 Jun 2026 09:02:07 +0000 asID: 140407 IP address blocks: 103.151.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 12:24:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:8b:8a:59:96:26:9c:30:dc:bb:9a:ce:9c:14:ee:9b:1d:6a:49:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Jun 13 08:57:07 2025 GMT Not After : Jun 12 09:02:07 2026 GMT Subject: CN=CFBBB277E8864241CBD6266C2C8A94157DEED6A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e5:1c:e5:ce:6f:c3:45:6e:08:29:8a:ac:8b: af:95:02:e9:71:72:d8:65:27:75:da:38:9f:fe:f2: cf:11:0a:68:82:10:f9:53:87:5d:9b:b2:36:c1:93: 99:6f:56:60:cd:45:2f:49:c8:37:dd:e2:5f:3a:18: 76:a3:17:50:fa:aa:a8:41:63:d8:5d:a0:97:d5:08: 1c:ff:e1:4b:54:ed:5b:e6:95:21:3e:5c:bd:0c:72: 1e:1f:7e:e7:b0:57:8f:8b:f1:06:0d:7f:a7:e2:30: 6c:89:da:cc:c7:8f:b4:65:7a:e0:04:cc:43:6a:db: a3:d9:95:d9:2c:78:b3:13:43:fc:fe:6e:3b:ca:41: b2:e1:10:50:22:95:b7:b9:43:67:06:57:41:e4:b0: fe:4c:af:31:27:c4:ee:f1:65:84:e9:8a:cd:2f:43: 25:69:71:ad:4c:55:36:b9:ef:c8:ee:ed:4a:37:54: f5:8f:30:b1:56:49:07:0b:4c:87:a0:f9:77:13:94: 47:1f:3f:93:4e:11:bf:ef:7a:c7:bd:cf:22:83:42: 65:c5:2f:8e:62:dd:91:6e:35:30:66:3b:6a:1e:b5: ea:6d:8f:ae:1d:f8:b3:8d:80:9f:7a:20:fa:13:f6: 86:b8:7f:32:09:49:fb:f9:6b:3a:2c:37:62:f4:85: c6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BB:B2:77:E8:86:42:41:CB:D6:26:6C:2C:8A:94:15:7D:EE:D6:A3 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.33.0/24 Signature Algorithm: sha256WithRSAEncryption 70:fb:4e:f4:8d:49:e7:cb:6f:ff:6f:a9:6e:53:ae:40:e2:38: f1:67:de:bb:95:34:c7:73:83:28:71:a9:8c:13:90:4c:35:61: f0:0f:20:a5:85:5f:28:07:9c:db:52:df:55:76:dc:50:db:a6: 00:d7:0a:1c:30:87:d7:c1:5e:b6:bb:d1:59:dd:f3:59:8a:fd: 3c:13:6a:e6:f8:d1:dc:94:94:e6:98:8f:5b:55:4f:cd:8a:45: 32:32:ec:67:45:3c:e1:3a:e6:7f:f8:6c:88:e2:f5:8b:46:ac: 8c:55:24:2e:7d:a1:e3:f6:ed:87:b1:2b:dc:78:78:86:4a:fc: b9:cb:b7:8b:2e:4e:cb:df:bd:96:28:19:24:14:78:00:8b:4b: 6b:83:16:d7:66:eb:b7:54:ab:cb:53:ce:63:e4:9b:ce:57:89: 3b:30:0c:21:1b:85:34:74:1b:66:18:53:36:56:9a:6f:d6:0c: 2d:fe:c5:fe:f7:17:c4:f7:51:70:50:85:8a:32:1c:aa:6b:74: 06:a8:a8:b4:9b:b4:e7:83:87:83:57:1a:1c:68:c5:f6:66:81: d5:95:fa:fa:b4:7c:42:10:e5:f4:e6:d2:c4:fa:74:84:1a:b8: 1f:f1:66:d8:21:fc:c0:b0:62:6b:73:dc:1c:c3:73:3e:5e:22: f7:7f:97:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAouKWZYmnDDcu5rOnBTumx1qSQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNTA2MTMwODU3MDdaFw0yNjA2MTIwOTAyMDdaMDMxMTAvBgNV BAMTKENGQkJCMjc3RTg4NjQyNDFDQkQ2MjY2QzJDOEE5NDE1N0RFRUQ2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC05Rzlzm/DRW4IKYqsi6+VAulx cthlJ3XaOJ/+8s8RCmiCEPlTh12bsjbBk5lvVmDNRS9JyDfd4l86GHajF1D6qqhB Y9hdoJfVCBz/4UtU7VvmlSE+XL0Mch4ffuewV4+L8QYNf6fiMGyJ2szHj7RleuAE zENq26PZldkseLMTQ/z+bjvKQbLhEFAilbe5Q2cGV0HksP5MrzEnxO7xZYTpis0v QyVpca1MVTa578ju7Uo3VPWPMLFWSQcLTIeg+XcTlEcfP5NOEb/vese9zyKDQmXF L45i3ZFuNTBmO2oeteptj64d+LONgJ96IPoT9oa4fzIJSfv5azosN2L0hcbtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz7uyd+iGQkHL1iZsLIqUFX3u1qMwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5chMA0GCSqG SIb3DQEBCwUAA4IBAQBw+070jUnny2//b6luU65A4jjxZ967lTTHc4MocamME5BM NWHwDyClhV8oB5zbUt9VdtxQ26YA1wocMIfXwV62u9FZ3fNZiv08E2rm+NHclJTm mI9bVU/NikUyMuxnRTzhOuZ/+GyI4vWLRqyMVSQufaHj9u2HsSvceHiGSvy5y7eL Lk7L372WKBkkFHgAi0trgxbXZuu3VKvLU85j5JvOV4k7MAwhG4U0dBtmGFM2Vppv 1gwt/sX+9xfE91FwUIWKMhyqa3QGqKi0m7Tng4eDVxocaMX2ZoHVlfr6tHxCEOX0 5tLE+nSEGrgf8WbYIfzAsGJrc9wcw3M+XiL3f5c1 -----END CERTIFICATE-----Generated at Tue Jun 17 12:57:44 2025 by rpki-client