$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: WbsQ68Cu40oqUa2yh2wFEKvkhfxO2KVKndxoFM4DO5k= Subject key identifier: AF:80:B4:6B:9F:80:9A:59:9D:D5:BC:AB:46:53:6F:6E:30:96:10:94 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 1FCC89439C6D8C4AB377BE63BD1B5F879E3E10BC Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa Signing time: Mon 05 May 2025 15:00:01 +0000 ROA not before: Mon 05 May 2025 14:55:01 +0000 ROA not after: Mon 04 May 2026 15:00:01 +0000 asID: 142365 IP address blocks: 103.170.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 13:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:cc:89:43:9c:6d:8c:4a:b3:77:be:63:bd:1b:5f:87:9e:3e:10:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: May 5 14:55:01 2025 GMT Not After : May 4 15:00:01 2026 GMT Subject: CN=AF80B46B9F809A599DD5BCAB46536F6E30961094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6e:dd:63:2e:78:0f:50:20:97:c1:a3:5c:cb: 7a:6f:fd:45:62:21:63:a9:fa:9a:0e:e3:fc:dc:ba: 57:fe:f7:d1:c3:5f:48:5c:2e:c0:67:47:23:11:87: 10:9c:2d:d1:8a:96:cc:37:70:1b:28:7f:c2:27:a7: b8:e2:7c:ac:b5:62:0a:f3:6c:7f:37:32:48:28:53: 7b:c4:8d:f7:c7:4a:6c:ab:68:d2:9c:66:76:e6:06: cd:3b:e2:d2:cb:34:d6:2c:7a:6f:72:48:4d:c0:50: b4:a9:69:ba:a9:e2:61:9f:8a:03:c5:61:39:cd:37: db:68:a3:ef:cc:7f:99:1c:d0:2d:93:b0:e5:d2:20: 01:bd:17:60:74:45:f5:d4:20:fe:46:ef:85:36:a6: 6b:6f:28:47:c0:40:6b:17:27:85:75:b4:70:c6:62: 27:e8:0f:bd:8a:7a:99:ba:4b:e6:09:18:d6:79:e7: 5a:61:3b:62:9f:3f:c0:81:96:a1:5c:cc:eb:a0:d2: 16:7b:a0:cb:65:32:24:6d:19:16:4c:75:36:a2:2d: c5:1d:a8:02:32:31:3e:76:54:07:c5:19:68:17:24: c1:57:46:05:d7:46:07:66:15:e5:4f:06:b2:c9:92: 93:ce:89:7e:08:2d:96:71:ac:9e:6f:55:e6:98:60: 36:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:80:B4:6B:9F:80:9A:59:9D:D5:BC:AB:46:53:6F:6E:30:96:10:94 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.187.0/24 Signature Algorithm: sha256WithRSAEncryption 64:84:75:6a:bc:63:12:74:2f:42:3e:d2:78:36:eb:b2:0e:0c: a3:1b:4d:45:e6:d1:6a:8c:ae:79:d0:5b:c6:bb:1f:73:34:57: 5f:ae:36:59:19:99:94:4e:99:34:6e:70:b0:09:fa:c2:80:95: 4f:da:21:5b:0d:a1:02:bc:2c:72:b7:37:c4:c7:ab:34:b4:ef: d8:4e:38:82:e6:73:12:8e:4d:d5:fb:31:26:5e:04:c0:9a:70: 2c:4e:03:16:49:dc:7f:ab:31:0e:70:7a:26:8b:13:a1:b3:f8: 95:c8:79:91:63:c0:79:99:8e:c0:4a:0a:86:71:d7:fd:cd:7c: 81:fa:95:85:43:3a:6d:ee:45:1d:39:db:1b:1f:01:6f:28:ad: 15:9d:e7:3a:81:19:7c:8d:e2:a9:c1:78:84:61:b2:8b:4a:33: d0:ae:c2:6a:ab:f6:81:70:fd:83:0f:f3:f3:cc:e0:48:4d:b8: 35:69:5b:6b:91:4e:5a:5a:eb:ad:cc:b8:b2:e0:09:2b:cc:e5: fd:2d:75:ee:8b:ec:a4:84:db:67:37:b3:cb:e8:3c:17:b3:b9: e3:e3:d1:3b:06:2f:e4:5b:f6:2d:f9:be:57:fa:8b:13:9f:cf: 27:43:25:05:f8:7d:7a:7d:e9:ef:5f:99:81:9c:17:a0:6b:92: 5e:28:80:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH8yJQ5xtjEqzd75jvRtfh54+ELwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNTA1MDUxNDU1MDFaFw0yNjA1MDQxNTAwMDFaMDMxMTAvBgNV BAMTKEFGODBCNDZCOUY4MDlBNTk5REQ1QkNBQjQ2NTM2RjZFMzA5NjEwOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIbt1jLngPUCCXwaNcy3pv/UVi IWOp+poO4/zculf+99HDX0hcLsBnRyMRhxCcLdGKlsw3cBsof8Inp7jifKy1Ygrz bH83MkgoU3vEjffHSmyraNKcZnbmBs074tLLNNYsem9ySE3AULSpabqp4mGfigPF YTnNN9too+/Mf5kc0C2TsOXSIAG9F2B0RfXUIP5G74U2pmtvKEfAQGsXJ4V1tHDG YifoD72Kepm6S+YJGNZ551phO2KfP8CBlqFczOug0hZ7oMtlMiRtGRZMdTaiLcUd qAIyMT52VAfFGWgXJMFXRgXXRgdmFeVPBrLJkpPOiX4ILZZxrJ5vVeaYYDbdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr4C0a5+Amlmd1byrRlNvbjCWEJQwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrswDQYJ KoZIhvcNAQELBQADggEBAGSEdWq8YxJ0L0I+0ng267IODKMbTUXm0WqMrnnQW8a7 H3M0V1+uNlkZmZROmTRucLAJ+sKAlU/aIVsNoQK8LHK3N8THqzS079hOOILmcxKO TdX7MSZeBMCacCxOAxZJ3H+rMQ5weiaLE6Gz+JXIeZFjwHmZjsBKCoZx1/3NfIH6 lYVDOm3uRR052xsfAW8orRWd5zqBGXyN4qnBeIRhsotKM9Cuwmqr9oFw/YMP8/PM 4EhNuDVpW2uRTlpa663MuLLgCSvM5f0tde6L7KSE22c3s8voPBezuePj0TsGL+Rb 9i35vlf6ixOfzydDJQX4fXp96e9fmYGcF6Brkl4ogJ4= -----END CERTIFICATE-----Generated at Sat Jun 21 02:53:19 2025 by rpki-client