$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa File: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (raw, json) Hash identifier: kkQvEgsJeO+CrA3Ye9kDXGk01vieQEZNvkHA4XJOOhQ= Subject key identifier: F0:18:BB:FF:D7:D8:F0:7C:68:F9:A7:BE:2D:AC:C2:6F:2F:61:A9:74 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 2CC1B103FDCD1E243BD4FF67F242DEA9C5C43474 Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa Signing time: Wed 18 Jun 2025 06:00:02 +0000 ROA not before: Wed 18 Jun 2025 05:55:02 +0000 ROA not after: Wed 17 Jun 2026 06:00:02 +0000 asID: 142396 IP address blocks: 103.172.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 18:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c1:b1:03:fd:cd:1e:24:3b:d4:ff:67:f2:42:de:a9:c5:c4:34:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Jun 18 05:55:02 2025 GMT Not After : Jun 17 06:00:02 2026 GMT Subject: CN=F018BBFFD7D8F07C68F9A7BE2DACC26F2F61A974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:1a:f5:1f:96:a9:6f:bb:fa:7e:09:96:12: 3d:a6:d3:fc:55:be:90:1f:6c:19:cf:18:fa:6c:6b: a1:ff:c4:2f:06:c4:2e:34:11:6a:3e:a8:2d:2f:dc: 55:97:2c:30:bd:e7:a4:92:2e:86:90:44:33:08:45: 54:f4:62:7f:de:22:80:64:3d:6c:84:f5:7d:b3:e1: 84:38:b6:51:40:75:91:72:5f:2c:1a:45:ce:99:1a: f8:77:d2:f0:f8:a0:20:94:11:2a:59:e1:22:95:7c: 64:d5:f1:34:07:1b:93:59:8e:3e:c1:85:42:99:a2: 4b:0e:e0:a2:97:db:ee:e0:c2:e3:37:63:73:23:21: 7b:2d:fe:17:35:82:98:eb:b4:14:a8:ed:41:72:4a: c6:17:e6:48:ba:8f:60:33:95:9c:c1:61:09:d6:ac: d9:18:01:16:cf:7e:8f:f4:f6:e6:d6:2e:9f:a5:2d: bd:bc:f4:0c:55:af:cd:c7:3f:7f:34:eb:52:ed:b2: 2e:a6:9f:79:e1:9a:f8:e6:d9:05:8e:37:4d:a1:52: da:85:b2:61:e7:bb:fe:27:4b:e9:41:c9:c0:4f:0f: 74:27:46:cd:39:9f:d8:19:06:c7:43:50:2a:53:4b: c0:ed:17:2e:e8:cf:b2:09:5b:75:d0:91:6c:34:26: f5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:18:BB:FF:D7:D8:F0:7C:68:F9:A7:BE:2D:AC:C2:6F:2F:61:A9:74 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.170.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:84:16:f0:83:4e:16:5b:5c:2b:df:db:19:e4:9b:22:62:e7: b7:d5:87:b4:d0:bc:87:0c:ae:9e:0c:1b:5b:dc:bc:a4:86:d7: d7:d0:52:44:ae:ec:15:16:0f:a9:91:4f:e2:4a:0f:ed:91:d9: 69:1c:59:15:81:70:a1:38:be:de:51:59:83:68:38:c4:43:3d: c7:37:95:ac:cf:4f:16:f4:bf:e9:57:65:96:59:84:db:4c:1d: 19:3a:1e:aa:90:7f:ca:2f:6c:6b:ed:ef:b3:db:a1:c0:3c:7f: ae:c8:15:f3:bb:ac:e1:a4:7d:19:e6:6e:29:0d:79:c4:74:5a: 60:f8:0c:77:f8:9d:4a:3f:1a:1b:af:ce:b0:76:33:ae:b0:0a: 77:8a:e0:b3:2b:ae:2f:bf:6f:c4:42:7b:68:9a:60:40:f4:b3: 3b:cd:0b:e3:f3:75:00:e2:a7:c1:33:b4:86:2b:02:9b:92:e5: 31:7d:6c:cc:9d:4c:d7:f6:1d:5b:77:8f:8b:bc:26:8e:8f:18: e1:1a:45:9e:ba:16:04:7f:ea:5e:71:3e:5c:d8:9b:2b:82:79: 74:17:6b:85:2d:bf:03:1c:8f:ab:fa:21:6d:e8:1b:eb:a9:4d: 80:4c:c7:b4:f4:68:50:dd:e4:66:43:1c:53:fe:a5:c7:d1:f9: 7c:83:2b:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULMGxA/3NHiQ71P9n8kLeqcXENHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTA2MTgwNTU1MDJaFw0yNjA2MTcwNjAwMDJaMDMxMTAvBgNV BAMTKEYwMThCQkZGRDdEOEYwN0M2OEY5QTdCRTJEQUNDMjZGMkY2MUE5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw7hr1H5apb7v6fgmWEj2m0/xV vpAfbBnPGPpsa6H/xC8GxC40EWo+qC0v3FWXLDC956SSLoaQRDMIRVT0Yn/eIoBk PWyE9X2z4YQ4tlFAdZFyXywaRc6ZGvh30vD4oCCUESpZ4SKVfGTV8TQHG5NZjj7B hUKZoksO4KKX2+7gwuM3Y3MjIXst/hc1gpjrtBSo7UFySsYX5ki6j2AzlZzBYQnW rNkYARbPfo/09ubWLp+lLb289AxVr83HP38061Ltsi6mn3nhmvjm2QWON02hUtqF smHnu/4nS+lBycBPD3QnRs05n9gZBsdDUCpTS8DtFy7oz7IJW3XQkWw0JvXdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8Bi7/9fY8Hxo+ae+LazCby9hqXQwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrKowDQYJ KoZIhvcNAQELBQADggEBADyEFvCDThZbXCvf2xnkmyJi57fVh7TQvIcMrp4MG1vc vKSG19fQUkSu7BUWD6mRT+JKD+2R2WkcWRWBcKE4vt5RWYNoOMRDPcc3lazPTxb0 v+lXZZZZhNtMHRk6HqqQf8ovbGvt77PbocA8f67IFfO7rOGkfRnmbikNecR0WmD4 DHf4nUo/GhuvzrB2M66wCneK4LMrri+/b8RCe2iaYED0szvNC+PzdQDip8EztIYr ApuS5TF9bMydTNf2HVt3j4u8Jo6PGOEaRZ66FgR/6l5xPlzYmyuCeXQXa4UtvwMc j6v6IW3oG+upTYBMx7T0aFDd5GZDHFP+pcfR+XyDKxg= -----END CERTIFICATE-----Generated at Mon Jun 30 13:20:43 2025 by rpki-client