$ rpki-client -vvf repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa File: 3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa (raw, json) Hash identifier: NsTk3LwG0u5kc3QUM4C41dpciSHuC8BHPLSvS5qOqNA= Subject key identifier: 92:CC:32:49:F6:39:7C:B5:81:05:EC:79:7B:BC:C3:15:C3:E5:16:4B Certificate issuer: /CN=F39BE26D48730B565C23C6A842B313B08B39B1C6 Certificate serial: 2139F253AB1651D9667C7246D3B7A607C89293B6 Authority key identifier: F3:9B:E2:6D:48:73:0B:56:5C:23:C6:A8:42:B3:13:B0:8B:39:B1:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39BE26D48730B565C23C6A842B313B08B39B1C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa Signing time: Fri 20 Jun 2025 09:00:00 +0000 ROA not before: Fri 20 Jun 2025 08:55:00 +0000 ROA not after: Fri 19 Jun 2026 09:00:00 +0000 asID: 141671 IP address blocks: 103.162.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/F39BE26D48730B565C23C6A842B313B08B39B1C6.crl rsync://repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/F39BE26D48730B565C23C6A842B313B08B39B1C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39BE26D48730B565C23C6A842B313B08B39B1C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 13:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:39:f2:53:ab:16:51:d9:66:7c:72:46:d3:b7:a6:07:c8:92:93:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F39BE26D48730B565C23C6A842B313B08B39B1C6 Validity Not Before: Jun 20 08:55:00 2025 GMT Not After : Jun 19 09:00:00 2026 GMT Subject: CN=92CC3249F6397CB58105EC797BBCC315C3E5164B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:c9:0a:a7:c8:a8:75:8c:74:ca:00:81:8b: 33:8d:af:b0:b8:db:41:10:96:7c:8e:2d:fb:a0:62: a6:38:94:e6:63:a1:87:55:0a:ee:b3:ff:24:8e:13: 42:68:e1:13:34:52:21:63:5d:56:13:f0:52:65:49: 20:46:a0:3e:37:e0:67:5c:dc:03:5b:00:e5:60:f5: 48:38:f6:70:af:dc:9b:20:eb:d2:71:21:7b:f2:e4: da:cb:3c:4f:31:3b:98:d0:e3:21:99:58:51:86:da: 22:90:cb:0f:e7:da:75:0a:85:4d:95:df:10:71:9f: bb:f8:90:f5:e3:f5:39:c5:54:68:af:4d:d9:41:e2: 6c:ba:5e:97:4b:5d:09:b2:3f:85:af:d4:d6:80:81: 05:32:6f:4b:cb:61:7c:54:8e:2f:47:84:92:58:d4: 97:9e:3a:39:73:fe:f9:67:8a:ac:e6:94:f6:5a:a4: 00:f5:0e:16:55:35:05:6e:8a:90:d4:ff:93:53:e1: 0b:62:34:cd:62:d0:76:19:d9:08:69:78:48:17:ee: d5:3d:af:06:1f:f8:b5:eb:a2:14:5c:94:de:3a:e1: 24:ac:7c:19:6c:d8:3c:98:a1:35:56:ff:79:f3:04: e2:53:55:7b:f3:43:3a:67:93:b2:2c:0b:39:09:bf: 54:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CC:32:49:F6:39:7C:B5:81:05:EC:79:7B:BC:C3:15:C3:E5:16:4B X509v3 Authority Key Identifier: keyid:F3:9B:E2:6D:48:73:0B:56:5C:23:C6:A8:42:B3:13:B0:8B:39:B1:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/F39BE26D48730B565C23C6A842B313B08B39B1C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F39BE26D48730B565C23C6A842B313B08B39B1C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/23024d24-9faa-4ab0-8fa4-0ce608c6d0a3/0/3130332e3136322e3234302e302f32332d3234203d3e20313431363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.240.0/23 Signature Algorithm: sha256WithRSAEncryption 37:e1:dc:40:cc:70:1d:e8:e6:95:72:9e:7f:c1:a9:c6:10:97: e5:93:4d:ca:c1:e3:15:ac:40:1c:aa:d6:1e:fe:85:06:38:36: 09:a8:80:c7:d5:89:85:5a:8d:63:9b:51:bf:39:1d:4a:33:ef: bb:93:a9:53:01:b3:28:21:bf:4f:25:47:04:33:d9:0a:c4:3f: 2b:99:f4:be:48:6b:c8:01:e6:95:9b:18:09:8d:a8:bb:56:71: cf:fa:d7:9e:f8:02:96:45:08:9f:17:19:cb:b3:fe:89:43:91: 73:38:12:7d:53:b7:3c:c1:08:aa:71:5f:66:b6:79:29:65:8b: 80:81:96:b8:4c:be:e2:82:05:b8:a6:b5:63:8d:db:4e:1a:c2: f6:e5:2a:64:8f:a5:ab:c4:9a:24:30:5d:d5:68:41:79:91:80: 2b:bd:3a:aa:61:88:df:58:39:93:f5:24:f2:f0:27:88:aa:fb: 27:0a:1e:90:9b:d3:db:35:29:ed:43:40:d3:56:93:06:a7:af: 3f:93:0b:55:2b:d4:f3:13:87:df:dd:82:0a:37:b9:5c:98:b8: a5:05:ab:5a:81:e7:9f:a1:9f:65:f7:de:96:7f:d0:59:e0:12: 42:b2:a4:c4:57:f4:be:3f:d6:8e:48:2b:f4:0c:04:bf:38:6a: af:33:87:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUITnyU6sWUdlmfHJG07emB8iSk7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5QkUyNkQ0ODczMEI1NjVDMjNDNkE4NDJCMzEzQjA4 QjM5QjFDNjAeFw0yNTA2MjAwODU1MDBaFw0yNjA2MTkwOTAwMDBaMDMxMTAvBgNV BAMTKDkyQ0MzMjQ5RjYzOTdDQjU4MTA1RUM3OTdCQkNDMzE1QzNFNTE2NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoZckKp8iodYx0ygCBizONr7C4 20EQlnyOLfugYqY4lOZjoYdVCu6z/ySOE0Jo4RM0UiFjXVYT8FJlSSBGoD434Gdc 3ANbAOVg9Ug49nCv3Jsg69JxIXvy5NrLPE8xO5jQ4yGZWFGG2iKQyw/n2nUKhU2V 3xBxn7v4kPXj9TnFVGivTdlB4my6XpdLXQmyP4Wv1NaAgQUyb0vLYXxUji9HhJJY 1JeeOjlz/vlniqzmlPZapAD1DhZVNQVuipDU/5NT4QtiNM1i0HYZ2QhpeEgX7tU9 rwYf+LXrohRclN464SSsfBls2DyYoTVW/3nzBOJTVXvzQzpnk7IsCzkJv1R1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkswySfY5fLWBBex5e7zDFcPlFkswHwYDVR0j BBgwFoAU85vibUhzC1ZcI8aoQrMTsIs5scYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MzAyNGQyNC05ZmFhLTRhYjAtOGZhNC0wY2U2MDhjNmQwYTMvMC9GMzlCRTI2RDQ4 NzMwQjU2NUMyM0M2QTg0MkIzMTNCMDhCMzlCMUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5QkUyNkQ0ODczMEI1NjVDMjNDNkE4NDJCMzEzQjA4QjM5 QjFDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzMDI0ZDI0LTlmYWEtNGFiMC04 ZmE0LTBjZTYwOGM2ZDBhMy8wLzMxMzAzMzJlMzEzNjMyMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnovAwDQYJ KoZIhvcNAQELBQADggEBADfh3EDMcB3o5pVynn/BqcYQl+WTTcrB4xWsQByq1h7+ hQY4NgmogMfViYVajWObUb85HUoz77uTqVMBsyghv08lRwQz2QrEPyuZ9L5Ia8gB 5pWbGAmNqLtWcc/61574ApZFCJ8XGcuz/olDkXM4En1TtzzBCKpxX2a2eSlli4CB lrhMvuKCBbimtWON204awvblKmSPpavEmiQwXdVoQXmRgCu9OqphiN9YOZP1JPLw J4iq+ycKHpCb09s1Ke1DQNNWkwanrz+TC1Ur1PMTh9/dggo3uVyYuKUFq1qB55+h n2X33pZ/0FngEkKypMRX9L4/1o5IK/QMBL84aq8zh8c= -----END CERTIFICATE-----Generated at Mon Jun 30 05:30:33 2025 by rpki-client