$ rpki-client -vvf repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa File: 3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa (raw, json) Hash identifier: TJhHkKwr35GRF8gqIxcj9n16SqAaRRuK8PF46Ie+LXg= Subject key identifier: 7E:0B:3A:82:CE:0F:C1:17:6F:FF:73:41:29:B2:DA:F9:90:1F:5D:73 Certificate issuer: /CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Certificate serial: 1B2F9878C5E8875F2C8908AF12CFBE55F8AF537E Authority key identifier: C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa Signing time: Mon 02 Jun 2025 02:03:46 +0000 ROA not before: Mon 02 Jun 2025 01:58:46 +0000 ROA not after: Mon 01 Jun 2026 02:03:46 +0000 asID: 139378 IP address blocks: 103.142.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 02:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2f:98:78:c5:e8:87:5f:2c:89:08:af:12:cf:be:55:f8:af:53:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5CA2999FE7612F56CCCB7441743B05181458ED0 Validity Not Before: Jun 2 01:58:46 2025 GMT Not After : Jun 1 02:03:46 2026 GMT Subject: CN=7E0B3A82CE0FC1176FFF734129B2DAF9901F5D73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1b:d6:8d:c4:a9:c6:0f:ab:fa:d0:00:52:53: d5:15:ca:38:e6:ef:1b:50:b8:0a:4f:75:c1:59:18: 2f:d9:70:2e:1d:86:5d:5c:72:82:92:32:1c:79:bd: 05:68:c3:5f:ec:af:a5:7e:e5:9f:44:7b:ed:a2:fe: ef:a6:78:2d:0a:0e:10:34:e5:47:da:07:14:93:c3: 8d:ea:a6:bb:21:a8:9a:80:6c:d3:3c:0d:da:d1:be: a6:c9:0f:5f:07:85:e5:4d:3a:f4:ae:ce:49:c7:54: fc:fd:37:04:b0:67:cd:47:e4:31:d9:f3:d1:ce:40: f7:96:01:b3:94:b0:06:4e:17:aa:bb:5e:7d:82:34: c6:27:30:ea:8c:50:e9:c1:eb:27:02:3b:69:9d:49: 55:2d:25:86:e7:a7:ae:c5:a8:92:6a:1b:c1:f5:db: 0e:96:0d:18:95:fa:f2:f8:d3:f9:4d:31:a9:1b:f2: 10:19:2a:e1:a8:42:64:d1:90:3f:81:da:58:5e:f6: e7:eb:a9:09:13:c3:3d:9a:bc:8b:6a:90:a6:83:c2: 3b:9e:5a:35:7e:a7:72:8c:29:e9:9a:d6:7b:51:24: d6:ac:94:4b:b1:96:8b:84:cf:65:9e:49:fc:0a:5d: ab:d0:c8:b1:0a:34:92:dd:5f:bf:c9:25:5b:6f:42: c5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0B:3A:82:CE:0F:C1:17:6F:FF:73:41:29:B2:DA:F9:90:1F:5D:73 X509v3 Authority Key Identifier: keyid:C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.203.0/24 Signature Algorithm: sha256WithRSAEncryption 71:c1:95:50:63:d7:c4:64:13:0f:18:c6:77:d1:d6:53:f9:ae: f6:0e:85:0b:7f:ba:b2:47:d4:ed:84:5b:39:6d:6a:1e:e2:d8: e3:18:f3:15:7c:cd:df:8d:99:88:1d:88:fc:8f:68:b5:d3:16: 5e:d6:d0:0a:e0:3f:0a:67:38:f2:ec:c4:4a:13:1d:a0:5f:db: f5:c2:ad:0d:6e:3b:44:b3:0d:71:5c:a6:73:53:9a:af:e9:8e: 00:ef:19:28:14:b3:d2:b7:a1:2e:85:10:ae:74:95:a1:6b:d4: 75:f6:3d:5c:1b:c9:cc:17:23:78:99:76:e6:1f:26:13:8c:b5: e5:03:68:ef:15:e9:4c:af:de:aa:a2:be:f3:1e:0e:7a:06:4d: 77:54:d5:05:14:58:18:c8:a6:f4:31:40:bc:3a:19:d2:63:0c: 57:cf:69:f3:e4:dd:17:8f:82:74:09:4d:08:e4:8f:a1:4a:5d: 59:90:8c:c9:e6:7e:e1:c3:08:f0:c0:8c:02:48:04:15:09:bf: 47:3a:71:ad:26:4a:25:56:0a:aa:af:aa:b2:b4:03:20:c4:35: d6:d0:f2:47:3e:2d:3f:8f:de:a8:80:0b:42:ff:09:53:51:3c: 6a:a1:83:4e:4d:5b:dd:3f:58:dc:ea:3d:27:96:8d:74:fd:c6: ba:42:9a:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGy+YeMXoh18siQivEs++VfivU34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4 MTQ1OEVEMDAeFw0yNTA2MDIwMTU4NDZaFw0yNjA2MDEwMjAzNDZaMDMxMTAvBgNV BAMTKDdFMEIzQTgyQ0UwRkMxMTc2RkZGNzM0MTI5QjJEQUY5OTAxRjVENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjG9aNxKnGD6v60ABSU9UVyjjm 7xtQuApPdcFZGC/ZcC4dhl1ccoKSMhx5vQVow1/sr6V+5Z9Ee+2i/u+meC0KDhA0 5UfaBxSTw43qprshqJqAbNM8DdrRvqbJD18HheVNOvSuzknHVPz9NwSwZ81H5DHZ 89HOQPeWAbOUsAZOF6q7Xn2CNMYnMOqMUOnB6ycCO2mdSVUtJYbnp67FqJJqG8H1 2w6WDRiV+vL40/lNMakb8hAZKuGoQmTRkD+B2lhe9ufrqQkTwz2avItqkKaDwjue WjV+p3KMKema1ntRJNaslEuxlouEz2WeSfwKXavQyLEKNJLdX7/JJVtvQsXrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfgs6gs4PwRdv/3NBKbLa+ZAfXXMwHwYDVR0j BBgwFoAUxcopmf52EvVszLdEF0OwUYFFjtAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjdmYjgzNy0xYjJmLTRjNGUtYjk5OS02ZTk5MGRkYzE0OTkvMC9DNUNBMjk5OUZF NzYxMkY1NkNDQ0I3NDQxNzQzQjA1MTgxNDU4RUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzVDQTI5OTlGRTc2MTJGNTZDQ0NCNzQ0MTc0M0IwNTE4MTQ1 OEVEMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2N2ZiODM3LTFiMmYtNGM0ZS1i OTk5LTZlOTkwZGRjMTQ5OS8wLzMxMzAzMzJlMzEzNDMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjsswDQYJ KoZIhvcNAQELBQADggEBAHHBlVBj18RkEw8YxnfR1lP5rvYOhQt/urJH1O2EWzlt ah7i2OMY8xV8zd+NmYgdiPyPaLXTFl7W0ArgPwpnOPLsxEoTHaBf2/XCrQ1uO0Sz DXFcpnNTmq/pjgDvGSgUs9K3oS6FEK50laFr1HX2PVwbycwXI3iZduYfJhOMteUD aO8V6Uyv3qqivvMeDnoGTXdU1QUUWBjIpvQxQLw6GdJjDFfPafPk3RePgnQJTQjk j6FKXVmQjMnmfuHDCPDAjAJIBBUJv0c6ca0mSiVWCqqvqrK0AyDENdbQ8kc+LT+P 3qiAC0L/CVNRPGqhg05NW90/WNzqPSeWjXT9xrpCmp8= -----END CERTIFICATE-----Generated at Wed Jun 18 10:34:53 2025 by rpki-client