$ rpki-client -vvf repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32342d3234203d3e20313437303738.roa File: 3130332e3137332e3133382e302f32342d3234203d3e20313437303738.roa (raw, json) Hash identifier: 1TF1q7w4Zi+aLzgAuBXcx7Cio1arNovo47+qmMckVGw= Subject key identifier: 93:B9:E8:FA:D4:56:63:95:A2:2B:39:96:AE:BB:3B:48:36:2C:22:3E Certificate issuer: /CN=23F26F571E3865A06A13936555D8DAA27B433933 Certificate serial: 419FB44B99B5C51E301CB304B01E8622D3882054 Authority key identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32342d3234203d3e20313437303738.roa Signing time: Fri 20 Jun 2025 17:00:00 +0000 ROA not before: Fri 20 Jun 2025 16:55:00 +0000 ROA not after: Fri 19 Jun 2026 17:00:00 +0000 asID: 147078 IP address blocks: 103.173.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.crl rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 02:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:9f:b4:4b:99:b5:c5:1e:30:1c:b3:04:b0:1e:86:22:d3:88:20:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23F26F571E3865A06A13936555D8DAA27B433933 Validity Not Before: Jun 20 16:55:00 2025 GMT Not After : Jun 19 17:00:00 2026 GMT Subject: CN=93B9E8FAD4566395A22B3996AEBB3B48362C223E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ef:4c:39:7a:b5:40:09:d3:ff:49:33:d1:e8: b8:32:70:4f:0e:90:97:f6:38:a9:f5:68:19:d1:77: 99:05:04:a3:0b:73:1d:da:5e:ad:a7:9e:a1:f3:e8: a0:54:58:1f:5c:81:79:86:89:04:2e:66:5c:9f:48: 92:b1:6c:24:0f:f1:03:7d:34:53:63:8a:c1:01:7e: d8:bf:c2:27:3a:f7:67:8d:87:26:7a:23:5c:f8:28: b7:ab:1a:1a:2b:4b:1b:8c:d5:87:b1:d5:a5:44:27: a3:80:57:83:b1:59:56:19:de:c9:82:e9:31:1d:0c: 59:2c:5a:4e:e4:37:9d:60:28:8e:b6:43:58:87:b4: 38:89:c6:4b:ed:d5:b0:25:5d:b9:70:29:de:00:56: f2:42:d1:ba:3a:7c:0c:d6:f8:a4:ce:41:1e:c5:08: 4c:4a:0e:47:cc:aa:5c:ef:1f:a6:68:1d:b3:e9:d3: fc:7f:99:ce:06:92:dd:1d:30:75:28:7d:73:6e:5a: 81:9f:dd:9f:c7:ac:fb:50:94:6e:67:96:92:6d:73: 2c:46:e2:c9:c2:dc:8e:22:52:12:57:f8:e0:3a:f6: 20:57:90:39:e3:80:67:98:4d:be:e9:0c:25:6e:cc: cd:0f:fa:46:0b:32:ed:cb:af:b3:f0:73:ae:5d:5b: fe:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B9:E8:FA:D4:56:63:95:A2:2B:39:96:AE:BB:3B:48:36:2C:22:3E X509v3 Authority Key Identifier: keyid:23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32342d3234203d3e20313437303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.138.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ed:58:57:85:b1:a2:71:73:3e:98:e5:42:d1:9a:84:dd:67: f9:c0:52:d7:d2:a4:d1:31:aa:75:33:7d:17:1d:64:95:1d:26: 15:c9:eb:24:55:50:96:79:0d:ab:79:b1:3a:3a:4f:28:3d:0f: a4:7e:01:e7:cf:b3:90:3d:32:ba:41:e1:fb:c5:a0:71:9f:6f: 72:0d:95:dd:26:b5:b6:00:c4:43:b4:1a:55:24:e1:82:a8:a0: e7:25:3d:77:d3:87:61:86:4b:b3:2b:8f:a9:3e:2f:12:7c:bd: 62:39:fe:7b:68:9e:79:4d:a5:70:58:e5:a3:dc:56:9b:61:f6: 4a:00:05:e4:1f:4f:a3:5a:33:04:89:17:3c:d7:72:fc:e8:93: 27:30:20:14:50:88:15:f7:8c:d7:c2:b6:87:66:29:33:d4:e1: bb:1c:3b:aa:72:72:b3:52:b7:f6:fb:ac:10:e3:32:4f:17:af: 20:34:db:07:87:88:03:b8:a7:33:32:fa:55:7e:59:2f:db:5f: 20:09:5c:76:9f:19:2d:b6:f9:c1:7e:56:50:43:36:01:b4:ae: bc:2c:6d:8a:51:99:44:c7:e3:40:e5:26:93:2c:17:a5:d8:68: f4:ea:c6:f2:18:67:ec:e8:c5:8d:31:eb:32:31:e7:07:8d:dc: ed:c9:bf:f1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQZ+0S5m1xR4wHLMEsB6GItOIIFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNGMjZGNTcxRTM4NjVBMDZBMTM5MzY1NTVEOERBQTI3 QjQzMzkzMzAeFw0yNTA2MjAxNjU1MDBaFw0yNjA2MTkxNzAwMDBaMDMxMTAvBgNV BAMTKDkzQjlFOEZBRDQ1NjYzOTVBMjJCMzk5NkFFQkIzQjQ4MzYyQzIyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK70w5erVACdP/STPR6LgycE8O kJf2OKn1aBnRd5kFBKMLcx3aXq2nnqHz6KBUWB9cgXmGiQQuZlyfSJKxbCQP8QN9 NFNjisEBfti/wic692eNhyZ6I1z4KLerGhorSxuM1Yex1aVEJ6OAV4OxWVYZ3smC 6TEdDFksWk7kN51gKI62Q1iHtDiJxkvt1bAlXblwKd4AVvJC0bo6fAzW+KTOQR7F CExKDkfMqlzvH6ZoHbPp0/x/mc4Gkt0dMHUofXNuWoGf3Z/HrPtQlG5nlpJtcyxG 4snC3I4iUhJX+OA69iBXkDnjgGeYTb7pDCVuzM0P+kYLMu3Lr7Pwc65dW/6tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUk7no+tRWY5WiKzmWrrs7SDYsIj4wHwYDVR0j BBgwFoAUI/JvVx44ZaBqE5NlVdjaontDOTMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWVmY2JmMC02NmVjLTQ4ZDMtYjIyMS0wZjA5Njg2ZDU4MTgvMC8yM0YyNkY1NzFF Mzg2NUEwNkExMzkzNjU1NUQ4REFBMjdCNDMzOTMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjNGMjZGNTcxRTM4NjVBMDZBMTM5MzY1NTVEOERBQTI3QjQz MzkzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWZjYmYwLTY2ZWMtNDhkMy1i MjIxLTBmMDk2ODZkNTgxOC8wLzMxMzAzMzJlMzEzNzMzMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrYowDQYJ KoZIhvcNAQELBQADggEBAI3tWFeFsaJxcz6Y5ULRmoTdZ/nAUtfSpNExqnUzfRcd ZJUdJhXJ6yRVUJZ5Dat5sTo6Tyg9D6R+AefPs5A9MrpB4fvFoHGfb3INld0mtbYA xEO0GlUk4YKooOclPXfTh2GGS7Mrj6k+LxJ8vWI5/ntonnlNpXBY5aPcVpth9koA BeQfT6NaMwSJFzzXcvzokycwIBRQiBX3jNfCtodmKTPU4bscO6pycrNSt/b7rBDj Mk8XryA02weHiAO4pzMy+lV+WS/bXyAJXHafGS22+cF+VlBDNgG0rrwsbYpRmUTH 40DlJpMsF6XYaPTqxvIYZ+zoxY0x6zIx5weN3O3Jv/E= -----END CERTIFICATE-----Generated at Tue Jul 1 21:13:33 2025 by rpki-client