$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: KtOcU5Wtu0RgMFwLLe8+HQpb9qmgCEJU0addBJecuIc= Subject key identifier: 0E:78:B4:85:E4:5D:42:62:35:9B:AC:9D:9E:EE:00:E2:97:B0:3E:54 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 27B5A67F5AB0F7CD0F1672A9D500AB3FC7B73F2A Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa Signing time: Fri 13 Jun 2025 15:02:31 +0000 ROA not before: Fri 13 Jun 2025 14:57:31 +0000 ROA not after: Fri 12 Jun 2026 15:02:31 +0000 asID: 141947 IP address blocks: 103.166.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 20:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b5:a6:7f:5a:b0:f7:cd:0f:16:72:a9:d5:00:ab:3f:c7:b7:3f:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Jun 13 14:57:31 2025 GMT Not After : Jun 12 15:02:31 2026 GMT Subject: CN=0E78B485E45D4262359BAC9D9EEE00E297B03E54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:50:70:e9:f4:16:3d:d6:43:34:7d:d8:2e:a8: 7b:7b:3f:a8:26:b7:34:dc:04:4e:d2:7a:b1:3e:08: 91:1a:53:da:e9:86:b6:47:ba:5d:22:cf:e5:47:ba: 65:93:85:e3:c5:fb:4c:b1:aa:a1:ed:a8:e2:f1:b4: e4:71:b6:ba:82:78:a9:47:87:8a:da:07:25:ec:c4: ec:2c:20:ab:2a:04:aa:26:86:62:73:1d:f8:71:b8: 9e:6a:ca:29:6d:b1:f6:7c:e8:46:4f:a5:7a:e0:cc: a7:5a:b4:b6:10:9a:51:8a:a6:d1:6c:e3:39:90:45: 6e:c9:aa:43:9c:25:45:80:23:f0:bf:3f:2f:7e:15: b3:c9:88:93:62:30:a7:59:21:c8:ee:ef:67:8a:67: 56:0f:ed:61:07:92:45:9e:76:77:af:c9:8c:29:f8: c1:8f:6a:d6:0d:aa:f7:7a:e4:b9:24:e3:bf:28:8f: 1a:d6:df:09:85:0b:6e:f0:e1:d3:a2:15:15:3b:7f: 4d:30:4e:53:3c:64:cd:b0:e2:77:fc:18:d2:a8:e8: f1:da:a8:55:f5:5d:15:df:e6:1b:c6:9f:06:01:22: f7:8a:6c:68:82:ff:06:1e:96:33:be:09:83:69:cc: d0:dc:fc:8c:53:d9:c5:74:b2:5c:a9:fe:ba:45:4e: 6e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:78:B4:85:E4:5D:42:62:35:9B:AC:9D:9E:EE:00:E2:97:B0:3E:54 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.125.0/24 Signature Algorithm: sha256WithRSAEncryption 18:e5:e6:de:9a:fb:b0:1c:f9:91:67:81:42:4f:91:90:b0:31: 2f:fe:f3:44:ff:72:eb:e3:ea:06:50:c1:5b:5d:33:bf:cc:2b: 60:75:d1:25:a6:64:94:e0:f0:29:65:81:a7:39:f1:9c:38:f7: 93:07:51:dc:f1:4d:54:2f:87:ad:e6:ef:9d:16:96:d5:c9:90: bf:6a:7b:88:99:db:45:d8:76:94:dc:78:11:1b:8a:ec:43:36: 64:63:9a:a5:a4:74:1e:46:7a:50:5f:3a:fd:a5:94:13:98:2d: 6c:f3:c0:6d:bb:f8:ec:58:6a:60:1b:e8:5d:27:73:14:91:69: ab:60:69:f1:2b:b1:91:33:1b:5a:93:98:f0:d0:35:10:32:1b: 06:e3:8e:44:f3:ed:ec:a8:37:61:58:d0:2e:65:ef:49:65:13: 31:64:53:c2:a2:8b:8a:31:df:f7:26:91:0b:f9:52:17:15:d9: b0:a1:c0:1c:20:79:a0:01:ec:dc:02:0e:54:f7:13:20:21:19: be:f9:41:26:ee:7f:71:64:47:d0:22:a7:19:4a:2c:f9:f7:ac: cd:3d:69:e1:a0:ba:1f:05:97:40:e4:9b:b0:af:dc:cb:64:6b: 75:5d:5d:b5:00:9e:94:fd:98:44:01:2a:ee:3a:99:47:25:df: b6:97:e4:13 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ7Wmf1qw980PFnKp1QCrP8e3PyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yNTA2MTMxNDU3MzFaFw0yNjA2MTIxNTAyMzFaMDMxMTAvBgNV BAMTKDBFNzhCNDg1RTQ1RDQyNjIzNTlCQUM5RDlFRUUwMEUyOTdCMDNFNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUHDp9BY91kM0fdguqHt7P6gm tzTcBE7SerE+CJEaU9rphrZHul0iz+VHumWThePF+0yxqqHtqOLxtORxtrqCeKlH h4raByXsxOwsIKsqBKomhmJzHfhxuJ5qyiltsfZ86EZPpXrgzKdatLYQmlGKptFs 4zmQRW7JqkOcJUWAI/C/Py9+FbPJiJNiMKdZIcju72eKZ1YP7WEHkkWednevyYwp +MGPatYNqvd65Lkk478ojxrW3wmFC27w4dOiFRU7f00wTlM8ZM2w4nf8GNKo6PHa qFX1XRXf5hvGnwYBIveKbGiC/wYeljO+CYNpzNDc/IxT2cV0slyp/rpFTm5BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDni0heRdQmI1m6ydnu4A4pewPlQwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpn0wDQYJ KoZIhvcNAQELBQADggEBABjl5t6a+7Ac+ZFngUJPkZCwMS/+80T/cuvj6gZQwVtd M7/MK2B10SWmZJTg8Cllgac58Zw495MHUdzxTVQvh63m750WltXJkL9qe4iZ20XY dpTceBEbiuxDNmRjmqWkdB5GelBfOv2llBOYLWzzwG27+OxYamAb6F0ncxSRaatg afErsZEzG1qTmPDQNRAyGwbjjkTz7eyoN2FY0C5l70llEzFkU8Kii4ox3/cmkQv5 UhcV2bChwBwgeaAB7NwCDlT3EyAhGb75QSbuf3FkR9AipxlKLPn3rM09aeGguh8F l0Dkm7Cv3Mtka3VdXbUAnpT9mEQBKu46mUcl37aX5BM= -----END CERTIFICATE-----Generated at Tue Jun 17 20:49:31 2025 by rpki-client