$ rpki-client -vvf repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31372e302f32342d3234203d3e20313439333135.roa File: 3130332e3138342e31372e302f32342d3234203d3e20313439333135.roa (raw, json) Hash identifier: zb0DM+/iZNl/DFkGsnnNLfcL5wMKgWl+9ippNLqTYd4= Subject key identifier: D3:9F:F4:08:56:FB:63:A8:C7:C3:6E:35:03:BB:95:B6:E1:C2:00:8F Certificate issuer: /CN=C37B0700A782E6CCEE7D187B10AAF240353AB253 Certificate serial: 1595344F03617DA3C40526D3653C0A58AA3587D3 Authority key identifier: C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31372e302f32342d3234203d3e20313439333135.roa Signing time: Fri 20 Jun 2025 01:19:38 +0000 ROA not before: Fri 20 Jun 2025 01:14:38 +0000 ROA not after: Fri 19 Jun 2026 01:19:38 +0000 asID: 149315 IP address blocks: 103.184.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 13:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:95:34:4f:03:61:7d:a3:c4:05:26:d3:65:3c:0a:58:aa:35:87:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C37B0700A782E6CCEE7D187B10AAF240353AB253 Validity Not Before: Jun 20 01:14:38 2025 GMT Not After : Jun 19 01:19:38 2026 GMT Subject: CN=D39FF40856FB63A8C7C36E3503BB95B6E1C2008F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:13:12:43:4c:0d:20:93:05:a6:89:dd:ff:07: 46:15:c5:02:f7:7b:51:b5:e3:c0:a2:9b:d1:84:03: 80:3b:ce:75:b4:46:3e:b3:f9:0d:c7:f1:c7:b0:c7: 66:69:71:59:ba:de:a7:d4:2b:60:02:63:03:44:4c: 78:85:9d:43:4b:fa:f2:4f:64:03:c8:2f:5e:d2:8f: cc:2a:58:ab:71:a5:28:46:db:31:e3:72:39:87:c2: 57:ad:75:53:f0:8c:c0:6b:13:32:72:20:f7:1d:00: 17:cb:2d:f5:00:59:9d:f8:25:f6:a4:bc:c3:a3:c0: 69:97:0a:81:68:9a:44:f9:e9:eb:95:cd:b8:27:45: f7:ae:d1:e2:cb:c8:84:52:25:eb:04:dd:ab:6c:70: 5b:2c:6d:c0:38:41:0f:73:e4:3f:e3:a7:89:ff:c6: 76:a2:4f:14:87:5e:c5:84:4e:b9:04:08:6e:9d:a4: 0b:81:64:e2:fd:a8:b5:df:12:84:f2:4b:45:df:52: db:57:8a:a8:d8:ea:fa:90:57:c1:86:36:ba:56:0f: ad:54:c7:27:3a:77:65:51:9f:4f:e8:0e:cf:7f:3b: 21:09:8d:81:5f:11:81:68:3c:58:7e:b2:cc:2f:e3: b7:47:0e:1f:f3:3e:90:9b:53:f7:f3:31:cc:4d:60: 8a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9F:F4:08:56:FB:63:A8:C7:C3:6E:35:03:BB:95:B6:E1:C2:00:8F X509v3 Authority Key Identifier: keyid:C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31372e302f32342d3234203d3e20313439333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.17.0/24 Signature Algorithm: sha256WithRSAEncryption 79:04:a5:8d:74:3a:bb:a8:9c:3e:30:2a:32:d2:db:ba:58:6a: cd:31:63:11:da:ca:35:04:c5:f9:0d:92:3c:fe:53:26:2c:04: f0:ef:26:bb:ee:08:98:ce:b0:37:a0:7b:0f:df:4a:9f:99:96: eb:e3:25:71:16:cf:11:f1:2f:e0:ff:a2:19:89:38:1a:26:dd: f2:ff:23:fe:fd:6b:9f:d4:46:03:c8:9d:eb:60:70:6f:08:dd: 06:2c:bc:90:61:df:43:0e:65:ab:c4:7c:ab:1a:b6:5a:71:22: ab:21:35:7a:8d:7e:f4:7b:3c:6a:29:d9:d8:2a:4a:b1:c6:1c: 51:12:1d:38:dc:61:32:b2:1f:26:58:42:e9:ab:2b:e9:d2:7f: a8:ea:0b:6a:49:38:a3:05:05:1e:bf:1f:83:ba:1c:4c:8c:7b: ac:18:ce:ba:b3:cb:44:e5:5e:86:76:a0:9b:b3:35:44:a9:99: 4e:a1:8c:8f:23:4e:2d:39:4f:fa:26:24:6d:d2:2f:be:26:08: e0:4b:7e:ee:af:03:c8:0c:92:5d:2c:63:53:07:28:43:ea:4d: 5f:bf:63:2a:d7:7c:27:a7:fe:71:39:3a:da:c1:c5:71:99:f4: af:2c:3f:ba:a7:69:2e:ee:f6:98:ac:e3:3c:d7:3f:86:b3:e7: 34:f9:a4:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFZU0TwNhfaPEBSbTZTwKWKo1h9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAz NTNBQjI1MzAeFw0yNTA2MjAwMTE0MzhaFw0yNjA2MTkwMTE5MzhaMDMxMTAvBgNV BAMTKEQzOUZGNDA4NTZGQjYzQThDN0MzNkUzNTAzQkI5NUI2RTFDMjAwOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSExJDTA0gkwWmid3/B0YVxQL3 e1G148Cim9GEA4A7znW0Rj6z+Q3H8cewx2ZpcVm63qfUK2ACYwNETHiFnUNL+vJP ZAPIL17Sj8wqWKtxpShG2zHjcjmHwletdVPwjMBrEzJyIPcdABfLLfUAWZ34Jfak vMOjwGmXCoFomkT56euVzbgnRfeu0eLLyIRSJesE3atscFssbcA4QQ9z5D/jp4n/ xnaiTxSHXsWETrkECG6dpAuBZOL9qLXfEoTyS0XfUttXiqjY6vqQV8GGNrpWD61U xyc6d2VRn0/oDs9/OyEJjYFfEYFoPFh+sswv47dHDh/zPpCbU/fzMcxNYIrBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU05/0CFb7Y6jHw241A7uVtuHCAI8wHwYDVR0j BBgwFoAUw3sHAKeC5szufRh7EKryQDU6slMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWQzOGI0Mi1iN2MyLTQyYjYtYTJmYy02NzVkYTI1NGM3NzYvMC9DMzdCMDcwMEE3 ODJFNkNDRUU3RDE4N0IxMEFBRjI0MDM1M0FCMjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAzNTNB QjI1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1ZDM4YjQyLWI3YzItNDJiNi1h MmZjLTY3NWRhMjU0Yzc3Ni8wLzMxMzAzMzJlMzEzODM0MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gRMA0GCSqG SIb3DQEBCwUAA4IBAQB5BKWNdDq7qJw+MCoy0tu6WGrNMWMR2so1BMX5DZI8/lMm LATw7ya77giYzrA3oHsP30qfmZbr4yVxFs8R8S/g/6IZiTgaJt3y/yP+/Wuf1EYD yJ3rYHBvCN0GLLyQYd9DDmWrxHyrGrZacSKrITV6jX70ezxqKdnYKkqxxhxREh04 3GEysh8mWELpqyvp0n+o6gtqSTijBQUevx+DuhxMjHusGM66s8tE5V6GdqCbszVE qZlOoYyPI04tOU/6JiRt0i++JgjgS37urwPIDJJdLGNTByhD6k1fv2Mq13wnp/5x OTrawcVxmfSvLD+6p2ku7vaYrOM81z+Gs+c0+aTC -----END CERTIFICATE-----Generated at Mon Jun 30 02:22:50 2025 by rpki-client