$ rpki-client -vvf repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e203438343635.roa File: 3130332e3138332e35362e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: 9/+sbuomRYkbpuZkgeXYn2wYKrH6jZB0uQ6CyyEN0fI= Subject key identifier: 3A:A4:22:AD:20:2C:19:FD:A0:12:3B:17:15:C8:46:5C:B7:D2:C8:0E Certificate issuer: /CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Certificate serial: 343801F724D08B965412DCDEEDBDCCC5D3A76BB2 Authority key identifier: 28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 03:02:53 +0000 ROA not before: Mon 16 Jun 2025 02:57:53 +0000 ROA not after: Mon 15 Jun 2026 03:02:53 +0000 asID: 48465 IP address blocks: 103.183.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:38:01:f7:24:d0:8b:96:54:12:dc:de:ed:bd:cc:c5:d3:a7:6b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Validity Not Before: Jun 16 02:57:53 2025 GMT Not After : Jun 15 03:02:53 2026 GMT Subject: CN=3AA422AD202C19FDA0123B1715C8465CB7D2C80E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c1:fc:58:f0:ec:47:2a:26:c6:30:d5:ae:1a: d7:79:7e:e6:09:35:b9:6d:a4:1d:b3:48:95:12:27: a5:22:78:f6:e4:ea:ef:4e:6b:bc:17:ff:07:9e:90: 2e:8d:fa:40:dd:6a:c5:0c:33:39:01:b5:99:1e:62: e8:ee:16:c3:99:d7:8f:f5:fe:c9:6d:2c:28:8c:f9: 27:4b:a8:f4:c9:cf:b3:c6:de:48:93:58:2c:28:3a: e6:67:2e:60:ae:bb:bf:b8:09:5c:73:99:20:36:d5: 3c:8f:86:b9:58:be:88:f4:b7:ec:be:b4:90:5e:ea: ba:a6:6c:89:f3:fb:e5:a1:16:0a:b4:8b:0e:60:4f: c5:50:a1:a7:5b:75:c1:f6:8f:da:a9:99:07:b4:2d: 7b:fd:48:a7:4b:04:d3:14:05:a4:2d:96:d7:c3:98: 4f:ec:71:78:f3:ae:05:53:ad:3a:e8:17:b7:b4:a7: 6b:36:0e:20:65:f3:1c:c2:f4:84:1e:7e:63:7a:41: 53:ae:eb:03:99:9f:f6:cc:ed:46:ea:fe:cd:ff:75: 9e:ba:16:3a:2f:15:0c:e4:ab:ae:ca:78:6a:3e:73: 4a:04:7b:98:89:a5:4e:84:b0:fb:3a:83:85:76:67: 95:8a:c4:9c:93:b3:31:ad:44:ec:25:b7:3a:ba:fc: 86:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A4:22:AD:20:2C:19:FD:A0:12:3B:17:15:C8:46:5C:B7:D2:C8:0E X509v3 Authority Key Identifier: keyid:28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.56.0/24 Signature Algorithm: sha256WithRSAEncryption 38:d6:3f:2a:6c:12:c0:69:6b:ca:b2:99:bd:23:84:cf:de:bd: 8e:06:7e:01:8e:f4:5c:f2:7a:57:60:81:2b:48:d2:e9:5c:9d: 81:78:31:cc:b8:de:18:51:c3:3a:78:95:a5:42:b6:b2:c1:89: 00:a3:85:84:fb:7b:70:a0:5f:00:73:06:ca:60:e2:b3:f5:29: ad:23:d8:8d:aa:d4:67:33:11:49:fd:7e:85:dc:46:ea:eb:18: 6e:8b:af:e4:8d:2e:37:91:2b:fe:44:92:47:bb:31:2c:6c:83: 2b:a1:1b:45:79:0d:f0:d8:8f:91:44:ad:9a:68:12:f5:25:cf: eb:1c:57:49:e3:d2:d1:e2:38:16:f5:62:e8:1b:79:2c:19:0c: 04:4b:d2:de:dc:f3:00:b9:65:f7:23:44:92:d9:02:86:95:00: 01:39:e7:f0:66:2a:d8:20:e0:bf:93:78:ca:76:51:73:3f:e7: 38:f2:9c:e4:53:c9:e3:e0:f5:85:10:4c:5d:ea:ad:bf:99:ac: 89:72:cb:f1:bd:3a:48:85:1c:cb:ff:cf:28:82:06:91:6d:ee: 0e:e8:9a:9a:8b:31:b9:09:33:2c:51:a5:eb:35:f9:1d:36:42: d8:ac:16:24:1f:85:ad:e0:24:1e:ad:43:a9:f0:70:16:a9:70: f2:d9:ab:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNDgB9yTQi5ZUEtze7b3MxdOna7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgx MUIxNjY2QzAeFw0yNTA2MTYwMjU3NTNaFw0yNjA2MTUwMzAyNTNaMDMxMTAvBgNV BAMTKDNBQTQyMkFEMjAyQzE5RkRBMDEyM0IxNzE1Qzg0NjVDQjdEMkM4MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiwfxY8OxHKibGMNWuGtd5fuYJ NbltpB2zSJUSJ6UiePbk6u9Oa7wX/weekC6N+kDdasUMMzkBtZkeYujuFsOZ14/1 /sltLCiM+SdLqPTJz7PG3kiTWCwoOuZnLmCuu7+4CVxzmSA21TyPhrlYvoj0t+y+ tJBe6rqmbInz++WhFgq0iw5gT8VQoadbdcH2j9qpmQe0LXv9SKdLBNMUBaQtltfD mE/scXjzrgVTrTroF7e0p2s2DiBl8xzC9IQefmN6QVOu6wOZn/bM7Ubq/s3/dZ66 FjovFQzkq67KeGo+c0oEe5iJpU6EsPs6g4V2Z5WKxJyTszGtROwltzq6/IY9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOqQirSAsGf2gEjsXFchGXLfSyA4wHwYDVR0j BBgwFoAUKGPA9Q4O5Q2ozfsu8S1LWBGxZmwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NTRkZGM2NS02MWMxLTQ5ZTEtYTg5NS0zYzAzZjU4N2EyN2IvMC8yODYzQzBGNTBF MEVFNTBEQThDREZCMkVGMTJENEI1ODExQjE2NjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgxMUIx NjY2Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1NGRkYzY1LTYxYzEtNDllMS1h ODk1LTNjMDNmNTg3YTI3Yi8wLzMxMzAzMzJlMzEzODMzMmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe3ODANBgkqhkiG 9w0BAQsFAAOCAQEAONY/KmwSwGlryrKZvSOEz969jgZ+AY70XPJ6V2CBK0jS6Vyd gXgxzLjeGFHDOniVpUK2ssGJAKOFhPt7cKBfAHMGymDis/UprSPYjarUZzMRSf1+ hdxG6usYbouv5I0uN5Er/kSSR7sxLGyDK6EbRXkN8NiPkUStmmgS9SXP6xxXSePS 0eI4FvVi6Bt5LBkMBEvS3tzzALll9yNEktkChpUAATnn8GYq2CDgv5N4ynZRcz/n OPKc5FPJ4+D1hRBMXeqtv5msiXLL8b06SIUcy//PKIIGkW3uDuiamosxuQkzLFGl 6zX5HTZC2KwWJB+FreAkHq1DqfBwFqlw8tmr8Q== -----END CERTIFICATE-----Generated at Mon Jun 16 15:39:54 2025 by rpki-client