$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa File: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (raw, json) Hash identifier: 9s1ITUmg2kGqf5Jx5LPfpxTxCb9voDIi9IZi6C1ddpU= Subject key identifier: 89:05:B2:EA:BC:FD:88:1E:63:58:1B:B1:A9:34:10:CE:D6:7A:8D:F0 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 66127919E8526FF0A676CD1BFBD56F2694741E8E Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa Signing time: Wed 18 Jun 2025 06:00:02 +0000 ROA not before: Wed 18 Jun 2025 05:55:02 +0000 ROA not after: Wed 17 Jun 2026 06:00:02 +0000 asID: 142396 IP address blocks: 103.172.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 18:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:12:79:19:e8:52:6f:f0:a6:76:cd:1b:fb:d5:6f:26:94:74:1e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Jun 18 05:55:02 2025 GMT Not After : Jun 17 06:00:02 2026 GMT Subject: CN=8905B2EABCFD881E63581BB1A93410CED67A8DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3b:d0:16:b0:49:0e:57:67:76:19:01:fa:80: a2:29:5b:4b:6d:71:9b:a1:42:87:28:77:44:fe:8e: b1:a6:e5:65:cb:92:f7:bd:e2:7e:df:d1:ff:6b:cd: 4b:14:f8:21:e5:8a:e1:07:2d:88:56:9e:fe:57:37: 61:7d:bb:d6:9f:76:23:a8:dc:e4:9a:87:31:c2:ad: c3:7e:c5:55:40:bc:9e:ba:77:2e:7c:cd:7a:0a:d3: 81:14:e4:0e:08:32:0b:b9:1d:f6:c0:65:7d:36:f8: 21:24:cc:6e:d4:93:87:c2:f2:5b:27:ee:d5:dc:d9: 32:8a:35:ee:03:4d:02:cc:96:bc:df:e2:0b:0a:8f: d7:bf:11:e3:04:87:44:e6:a9:40:b6:e2:54:dd:b1: d3:93:92:c3:a8:b2:06:49:ec:ae:44:74:88:b5:5b: 9a:d8:68:54:9e:f4:c8:6e:d1:e4:e2:dc:1c:47:d5: 85:61:db:b6:f4:97:8e:99:05:fd:6e:7c:c3:4b:39: c0:16:f3:74:e4:20:63:69:42:46:36:ff:3f:12:3a: 12:60:49:48:82:a0:46:70:1a:7e:6c:69:48:71:6f: 94:81:a5:51:88:cd:9b:06:94:6c:72:dd:ed:d9:e0: 4c:54:71:57:06:b1:99:7d:cf:7a:9d:dd:eb:33:b0: eb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:05:B2:EA:BC:FD:88:1E:63:58:1B:B1:A9:34:10:CE:D6:7A:8D:F0 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.171.0/24 Signature Algorithm: sha256WithRSAEncryption 36:2d:a3:6e:df:a1:6d:f3:64:57:6d:a7:f2:22:10:71:df:43: 83:6f:76:98:bf:1b:b6:ad:9e:3f:61:30:e0:44:f9:a5:8e:64: 82:92:0d:ab:b7:36:e3:d1:2f:3b:26:1a:f2:ad:51:29:ea:b7: 75:ba:ca:4d:ce:8d:ce:d5:6b:fe:f0:82:c3:37:6a:21:49:a4: 8d:ab:0a:a9:54:55:27:7d:c0:24:13:d0:33:48:66:62:3b:93: 03:fa:86:cc:58:b9:b3:3c:3f:a3:20:ec:f0:3b:62:63:09:f6: dd:61:f6:71:db:a7:9f:19:d7:83:53:2d:77:9e:38:a6:7d:9b: 62:a4:90:ed:13:0f:df:85:5e:66:ac:a7:31:0e:a5:f2:c7:b5: 67:d8:e9:c5:32:f8:97:e6:8a:ce:48:33:20:9c:18:79:2d:f9: 1a:ce:37:c2:b1:a2:27:02:b9:ec:c8:75:a4:fd:5f:52:96:51: fe:a4:31:75:a4:09:02:2c:da:ea:d9:cd:0f:ce:e9:f9:e3:7a: 13:5e:36:b1:25:48:e6:72:b1:87:b0:c3:c3:0d:aa:3b:54:d4: c6:47:0d:05:ad:f0:83:aa:50:b8:6a:b7:ab:6f:ac:aa:40:11: 04:a4:46:ef:ef:60:0c:92:c5:3a:cb:e4:12:b4:ed:e5:aa:ea: 20:1f:79:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZhJ5GehSb/Cmds0b+9VvJpR0Ho4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTA2MTgwNTU1MDJaFw0yNjA2MTcwNjAwMDJaMDMxMTAvBgNV BAMTKDg5MDVCMkVBQkNGRDg4MUU2MzU4MUJCMUE5MzQxMENFRDY3QThERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRO9AWsEkOV2d2GQH6gKIpW0tt cZuhQocod0T+jrGm5WXLkve94n7f0f9rzUsU+CHliuEHLYhWnv5XN2F9u9afdiOo 3OSahzHCrcN+xVVAvJ66dy58zXoK04EU5A4IMgu5HfbAZX02+CEkzG7Uk4fC8lsn 7tXc2TKKNe4DTQLMlrzf4gsKj9e/EeMEh0TmqUC24lTdsdOTksOosgZJ7K5EdIi1 W5rYaFSe9Mhu0eTi3BxH1YVh27b0l46ZBf1ufMNLOcAW83TkIGNpQkY2/z8SOhJg SUiCoEZwGn5saUhxb5SBpVGIzZsGlGxy3e3Z4ExUcVcGsZl9z3qd3eszsOvPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiQWy6rz9iB5jWBuxqTQQztZ6jfAwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKswDQYJ KoZIhvcNAQELBQADggEBADYto27foW3zZFdtp/IiEHHfQ4Nvdpi/G7atnj9hMOBE +aWOZIKSDau3NuPRLzsmGvKtUSnqt3W6yk3Ojc7Va/7wgsM3aiFJpI2rCqlUVSd9 wCQT0DNIZmI7kwP6hsxYubM8P6Mg7PA7YmMJ9t1h9nHbp58Z14NTLXeeOKZ9m2Kk kO0TD9+FXmaspzEOpfLHtWfY6cUy+Jfmis5IMyCcGHkt+RrON8KxoicCuezIdaT9 X1KWUf6kMXWkCQIs2urZzQ/O6fnjehNeNrElSOZysYeww8MNqjtU1MZHDQWt8IOq ULhqt6tvrKpAEQSkRu/vYAySxTrL5BK07eWq6iAfeYY= -----END CERTIFICATE-----Generated at Mon Jun 30 08:23:11 2025 by rpki-client