$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa (raw, json) Hash identifier: +bCsVqy0SArgIUQuX+YpDtwEL7uQUKNCIHPjc6bDHdo= Subject key identifier: 0B:7F:82:FD:1C:CF:39:6E:13:6D:2E:60:69:27:0E:06:B6:0A:B4:04 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: F13ECC21BEF71A14DC3806D144C1C39B3271D4 Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa Signing time: Fri 13 Jun 2025 15:02:31 +0000 ROA not before: Fri 13 Jun 2025 14:57:31 +0000 ROA not after: Fri 12 Jun 2026 15:02:31 +0000 asID: 141947 IP address blocks: 103.166.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 20:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f1:3e:cc:21:be:f7:1a:14:dc:38:06:d1:44:c1:c3:9b:32:71:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Jun 13 14:57:31 2025 GMT Not After : Jun 12 15:02:31 2026 GMT Subject: CN=0B7F82FD1CCF396E136D2E6069270E06B60AB404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fc:4a:9c:dd:fd:2d:9a:8b:ab:e2:d0:a5:de: b2:32:05:69:0a:4e:88:e5:50:e3:5c:d6:c9:eb:bd: 8e:3d:96:8f:25:b0:d0:09:6a:92:7d:1b:cf:83:72: d5:5c:90:d9:5b:e0:a4:11:57:2e:74:63:51:5c:e6: 5c:83:c7:8c:ae:fc:e3:d5:e3:43:47:f2:d6:52:c9: 9c:da:d7:c1:84:d0:51:1c:4d:fb:97:17:77:59:30: af:30:f4:e3:05:2c:e7:19:cc:c8:50:60:1e:01:7c: fa:46:2d:97:44:82:9e:ac:c0:d7:87:ea:41:96:a0: 31:73:fc:00:44:32:41:79:64:2d:ce:01:83:4a:f3: f2:ff:97:13:f6:d5:30:23:cd:c6:58:59:87:ca:af: aa:6f:ee:b5:d7:df:34:89:af:f5:8f:19:0f:fd:45: 81:88:70:34:b4:52:d9:11:d0:99:f7:a7:60:41:2e: 1a:f7:01:e2:11:92:cb:23:a5:d3:09:64:9a:8e:da: ef:9f:f9:d3:a2:30:13:e8:cb:21:07:93:81:1b:0d: 58:41:cb:1d:75:10:36:98:40:8f:6f:bd:aa:0c:83: 0a:e7:4e:91:d2:17:d9:84:49:ff:95:01:56:ec:93: 4c:65:2a:c7:b3:b6:0d:c7:1b:06:22:46:9b:15:9c: b3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7F:82:FD:1C:CF:39:6E:13:6D:2E:60:69:27:0E:06:B6:0A:B4:04 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/23 Signature Algorithm: sha256WithRSAEncryption 70:91:88:3f:8c:ba:19:a7:5d:e9:e9:d4:69:2e:24:dd:d2:9f: 86:ec:48:e7:ab:0b:e5:c5:97:d4:38:dd:4b:01:43:94:55:a4: a1:01:d3:fb:af:72:d1:94:c6:53:ad:32:35:39:56:fc:57:a7: 86:6f:ea:bb:69:19:f6:c1:57:8c:e7:0b:b3:d2:72:a7:c6:5e: a1:ee:60:ae:1b:42:72:4b:9b:fc:30:39:ff:f6:1b:f0:ea:97: 25:65:55:40:5a:4d:21:52:19:f4:78:93:8d:c7:89:17:37:4b: bc:79:ff:64:62:d2:a8:3e:11:03:7a:19:b8:17:47:bb:e8:00: 70:ac:bd:98:4f:70:a7:5e:5c:fd:1b:a6:ea:d6:c8:f8:e4:ca: 1b:10:fe:a9:9c:78:7b:22:63:96:08:40:27:71:6e:0f:bf:18: 31:2a:8d:a5:6a:f8:62:f1:53:58:78:da:89:0e:a4:79:09:48: 26:65:d9:35:56:f0:d3:78:b6:94:96:d5:41:c9:87:50:6f:c6: 8b:e0:de:3d:01:3a:c8:45:15:8b:b2:ac:b7:b6:7f:56:45:75: ec:9d:2d:a4:75:55:af:a3:d5:c6:52:d1:1c:7c:54:ce:62:74: 58:5d:69:eb:c2:d3:b9:ae:20:05:67:bd:cd:d8:78:89:0d:6f: 43:b1:2e:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAPE+zCG+9xoU3DgG0UTBw5sycdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yNTA2MTMxNDU3MzFaFw0yNjA2MTIxNTAyMzFaMDMxMTAvBgNV BAMTKDBCN0Y4MkZEMUNDRjM5NkUxMzZEMkU2MDY5MjcwRTA2QjYwQUI0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu/Eqc3f0tmour4tCl3rIyBWkK TojlUONc1snrvY49lo8lsNAJapJ9G8+DctVckNlb4KQRVy50Y1Fc5lyDx4yu/OPV 40NH8tZSyZza18GE0FEcTfuXF3dZMK8w9OMFLOcZzMhQYB4BfPpGLZdEgp6swNeH 6kGWoDFz/ABEMkF5ZC3OAYNK8/L/lxP21TAjzcZYWYfKr6pv7rXX3zSJr/WPGQ/9 RYGIcDS0UtkR0Jn3p2BBLhr3AeIRkssjpdMJZJqO2u+f+dOiMBPoyyEHk4EbDVhB yx11EDaYQI9vvaoMgwrnTpHSF9mESf+VAVbsk0xlKseztg3HGwYiRpsVnLNRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUC3+C/RzPOW4TbS5gaScOBrYKtAQwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpnwwDQYJ KoZIhvcNAQELBQADggEBAHCRiD+MuhmnXenp1GkuJN3Sn4bsSOerC+XFl9Q43UsB Q5RVpKEB0/uvctGUxlOtMjU5VvxXp4Zv6rtpGfbBV4znC7PScqfGXqHuYK4bQnJL m/wwOf/2G/DqlyVlVUBaTSFSGfR4k43HiRc3S7x5/2Ri0qg+EQN6GbgXR7voAHCs vZhPcKdeXP0bpurWyPjkyhsQ/qmceHsiY5YIQCdxbg+/GDEqjaVq+GLxU1h42okO pHkJSCZl2TVW8NN4tpSW1UHJh1Bvxovg3j0BOshFFYuyrLe2f1ZFdeydLaR1Va+j 1cZS0Rx8VM5idFhdaevC07muIAVnvc3YeIkNb0OxLm8= -----END CERTIFICATE-----Generated at Tue Jun 17 12:53:22 2025 by rpki-client