$ rpki-client -vvf repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32332d3234203d3e20313439343035.roa File: 3130332e3138332e35362e302f32332d3234203d3e20313439343035.roa (raw, json) Hash identifier: /nEcTC5QsPT94UNynHuxNo5heYOYhbTbt0590F0PjQ8= Subject key identifier: A3:B6:2C:11:DC:D4:BB:0A:8A:2C:BF:10:92:68:50:79:E8:44:99:64 Certificate issuer: /CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Certificate serial: 67F139C09ACA4078B50D6EFDEF2CA645144A52F6 Authority key identifier: 28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32332d3234203d3e20313439343035.roa Signing time: Tue 10 Jun 2025 06:02:49 +0000 ROA not before: Tue 10 Jun 2025 05:57:49 +0000 ROA not after: Tue 09 Jun 2026 06:02:49 +0000 asID: 149405 IP address blocks: 103.183.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:f1:39:c0:9a:ca:40:78:b5:0d:6e:fd:ef:2c:a6:45:14:4a:52:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Validity Not Before: Jun 10 05:57:49 2025 GMT Not After : Jun 9 06:02:49 2026 GMT Subject: CN=A3B62C11DCD4BB0A8A2CBF1092685079E8449964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c5:fc:b9:3a:7d:89:09:17:59:28:76:a7:ea: 47:c7:44:95:b0:71:32:fd:cd:5e:fb:a0:1f:c2:65: 72:24:62:15:8c:1c:a0:63:e8:6e:88:c5:ec:0f:e8: 96:af:34:80:e9:1e:a0:e6:f3:fe:c3:17:25:77:ef: 9f:55:3d:79:80:45:71:65:e2:6c:cd:db:e5:ea:88: ed:b6:00:69:0e:bd:ec:93:4b:da:af:4b:97:79:00: 7a:20:21:9f:0a:d3:d6:7e:cb:79:18:e5:5c:3b:b3: e4:07:ce:18:f6:e1:8f:61:78:af:d2:a8:16:90:68: fd:c9:3d:f4:2d:72:1d:77:bb:dc:32:53:47:4c:af: 16:42:1c:cc:76:82:d1:80:3e:70:c0:bf:d6:9e:99: ab:d5:03:27:a6:d0:fd:c7:9c:20:e4:b9:7f:f0:5b: 2c:3c:06:a8:f0:6a:df:ad:c4:d9:3f:79:76:41:ba: 49:18:b5:98:3b:c2:cf:f6:7e:b4:65:2f:f1:5d:9b: c0:fd:74:70:94:f7:78:33:35:41:63:6e:dc:23:4c: 2b:a9:bf:da:9e:02:42:30:32:d5:db:5a:1c:35:c7: 6f:2c:56:36:46:f3:b1:3d:93:2c:b1:68:69:7d:2e: 8e:f0:cf:00:0d:ce:64:bf:0c:8c:69:c8:65:02:6b: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B6:2C:11:DC:D4:BB:0A:8A:2C:BF:10:92:68:50:79:E8:44:99:64 X509v3 Authority Key Identifier: keyid:28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32332d3234203d3e20313439343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.56.0/23 Signature Algorithm: sha256WithRSAEncryption 68:0c:16:8e:f3:67:f2:67:aa:92:ef:2b:f0:37:84:e3:99:42: d2:cb:5b:29:7e:5b:f9:30:18:3d:d4:c3:c2:9d:c8:18:42:71: 40:3a:1d:47:8a:6e:f9:3d:32:27:01:86:1f:d3:65:4b:23:69: ec:a1:52:bc:15:d2:9b:f7:4d:1a:fc:e1:02:f4:51:02:69:98: 3e:4b:37:e9:e8:48:25:11:2a:08:91:57:40:4d:68:11:27:37: f0:f6:e2:49:57:70:11:1d:ee:60:3f:03:03:50:cb:36:e3:1b: 0f:3c:90:16:66:1d:04:02:6a:5b:f6:73:c6:80:59:ba:c0:c6: bf:92:0b:41:76:d2:c5:fe:8e:02:85:46:59:e3:ed:15:ea:2d: ff:42:98:38:be:40:86:d9:76:ef:f2:86:dc:da:5e:f0:c0:b1: 8a:9f:59:56:56:39:5c:d7:12:39:9e:0c:fd:a2:d3:66:cb:fb: cf:27:5e:67:7b:00:36:1f:8d:6e:7a:de:2d:44:30:ba:c3:93: 02:14:03:ef:a3:51:17:d8:f1:d0:47:b8:fb:e5:ff:6a:f5:e4: b3:95:3b:ac:ae:fb:cc:29:0b:f8:3e:31:eb:93:29:a1:22:86: 5a:28:be:78:25:75:c7:db:2f:bc:33:a2:b5:24:ff:a5:f4:14: 86:d8:d9:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ/E5wJrKQHi1DW797yymRRRKUvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgx MUIxNjY2QzAeFw0yNTA2MTAwNTU3NDlaFw0yNjA2MDkwNjAyNDlaMDMxMTAvBgNV BAMTKEEzQjYyQzExRENENEJCMEE4QTJDQkYxMDkyNjg1MDc5RTg0NDk5NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXxfy5On2JCRdZKHan6kfHRJWw cTL9zV77oB/CZXIkYhWMHKBj6G6IxewP6JavNIDpHqDm8/7DFyV3759VPXmARXFl 4mzN2+XqiO22AGkOveyTS9qvS5d5AHogIZ8K09Z+y3kY5Vw7s+QHzhj24Y9heK/S qBaQaP3JPfQtch13u9wyU0dMrxZCHMx2gtGAPnDAv9aemavVAyem0P3HnCDkuX/w Wyw8Bqjwat+txNk/eXZBukkYtZg7ws/2frRlL/Fdm8D9dHCU93gzNUFjbtwjTCup v9qeAkIwMtXbWhw1x28sVjZG87E9kyyxaGl9Lo7wzwANzmS/DIxpyGUCa5upAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUo7YsEdzUuwqKLL8QkmhQeehEmWQwHwYDVR0j BBgwFoAUKGPA9Q4O5Q2ozfsu8S1LWBGxZmwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NTRkZGM2NS02MWMxLTQ5ZTEtYTg5NS0zYzAzZjU4N2EyN2IvMC8yODYzQzBGNTBF MEVFNTBEQThDREZCMkVGMTJENEI1ODExQjE2NjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgxMUIx NjY2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1NGRkYzY1LTYxYzEtNDllMS1h ODk1LTNjMDNmNTg3YTI3Yi8wLzMxMzAzMzJlMzEzODMzMmUzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7c4MA0GCSqG SIb3DQEBCwUAA4IBAQBoDBaO82fyZ6qS7yvwN4TjmULSy1spflv5MBg91MPCncgY QnFAOh1Him75PTInAYYf02VLI2nsoVK8FdKb900a/OEC9FECaZg+Szfp6EglESoI kVdATWgRJzfw9uJJV3ARHe5gPwMDUMs24xsPPJAWZh0EAmpb9nPGgFm6wMa/kgtB dtLF/o4ChUZZ4+0V6i3/Qpg4vkCG2Xbv8obc2l7wwLGKn1lWVjlc1xI5ngz9otNm y/vPJ15newA2H41uet4tRDC6w5MCFAPvo1EX2PHQR7j75f9q9eSzlTusrvvMKQv4 PjHrkymhIoZaKL54JXXH2y+8M6K1JP+l9BSG2NmP -----END CERTIFICATE-----Generated at Mon Jun 16 17:45:34 2025 by rpki-client