$ rpki-client -vvf repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/3130332e3233392e3231342e302f32332d3234203d3e2034383030.roa File: 3130332e3233392e3231342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: X2QeWvWwuvgIs5+TAK0HDLr7Wz+zJj0bCxQNhzyEI7g= Subject key identifier: 8B:64:70:E3:E8:60:7F:C2:09:A8:93:CF:0C:16:DC:A4:0E:0D:25:AC Certificate issuer: /CN=C85C49978E8023F2D58521524D4EC616244CDC14 Certificate serial: 4CEBD7721F0636FB12225F92551AA5060ECE69E2 Authority key identifier: C8:5C:49:97:8E:80:23:F2:D5:85:21:52:4D:4E:C6:16:24:4C:DC:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C85C49978E8023F2D58521524D4EC616244CDC14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/3130332e3233392e3231342e302f32332d3234203d3e2034383030.roa Signing time: Mon 30 Jun 2025 05:00:00 +0000 ROA not before: Mon 30 Jun 2025 04:55:00 +0000 ROA not after: Mon 29 Jun 2026 05:00:00 +0000 asID: 4800 IP address blocks: 103.239.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/C85C49978E8023F2D58521524D4EC616244CDC14.crl rsync://repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/C85C49978E8023F2D58521524D4EC616244CDC14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C85C49978E8023F2D58521524D4EC616244CDC14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 09:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:eb:d7:72:1f:06:36:fb:12:22:5f:92:55:1a:a5:06:0e:ce:69:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C85C49978E8023F2D58521524D4EC616244CDC14 Validity Not Before: Jun 30 04:55:00 2025 GMT Not After : Jun 29 05:00:00 2026 GMT Subject: CN=8B6470E3E8607FC209A893CF0C16DCA40E0D25AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:e0:0b:5b:d3:65:33:7d:ae:3f:c3:d9:95: d6:e9:24:d9:d6:b5:8a:6a:df:dc:7e:e3:e4:09:c7: 3d:7b:d0:75:f8:fc:51:95:c2:c3:e7:78:05:5c:b1: 4a:c1:2d:3c:27:b1:15:97:4e:b2:7c:98:48:f5:37: e7:70:d6:ac:fd:aa:f6:56:54:74:27:69:ef:a0:86: 79:02:19:9e:bc:33:63:7d:30:7a:f3:62:a5:65:de: 95:cb:07:98:de:3c:01:2f:fd:84:6c:64:d9:a7:00: c8:23:67:2b:84:eb:49:39:30:4a:be:64:10:03:e5: 07:27:00:7f:dc:cc:73:0d:12:93:31:5a:dd:b8:50: 4f:10:d6:21:db:5b:e5:21:8c:57:87:84:9c:8b:67: bd:6a:93:69:1d:f5:ba:2d:0e:80:e2:66:62:17:5f: f6:9c:e7:6d:e1:8c:01:f2:8c:06:80:0e:94:2b:dc: af:95:b8:ea:7c:c5:12:85:93:51:da:9a:fc:be:4c: d0:4d:62:62:8a:af:4c:87:1d:e9:9e:cd:aa:50:9c: 5f:94:94:e3:2b:9e:81:07:af:a5:40:d5:22:02:73: ae:49:6c:8a:e2:bb:69:bf:cc:c6:17:52:e1:1d:42: 22:9b:6c:04:95:26:16:2c:2e:c7:68:8b:2a:f9:0f: 15:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:64:70:E3:E8:60:7F:C2:09:A8:93:CF:0C:16:DC:A4:0E:0D:25:AC X509v3 Authority Key Identifier: keyid:C8:5C:49:97:8E:80:23:F2:D5:85:21:52:4D:4E:C6:16:24:4C:DC:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/C85C49978E8023F2D58521524D4EC616244CDC14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C85C49978E8023F2D58521524D4EC616244CDC14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e516e6e-c679-4e50-b7ab-1e40679125cd/0/3130332e3233392e3231342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.214.0/23 Signature Algorithm: sha256WithRSAEncryption 91:3e:94:86:29:6c:ab:1f:c7:a5:b2:c2:e8:7a:05:01:5b:69: 03:33:29:f3:ab:1e:2e:76:fd:09:7c:9c:f7:3d:03:d5:bb:29: 25:83:bb:5f:32:f7:3b:44:65:06:6b:2b:29:ee:de:c7:ff:cf: 94:a2:e5:96:56:6a:d9:31:41:e7:96:1e:21:20:59:95:f0:ef: 7b:28:bc:0d:18:cc:16:45:95:08:5e:0b:5b:07:b9:9e:03:7d: bb:d8:c4:b7:d7:29:49:21:be:37:55:87:9e:14:61:54:ed:3f: 7e:c8:c4:53:0b:56:cc:81:ea:d0:06:fe:fb:16:cf:bd:33:39: 94:de:a5:67:fc:7e:c5:6f:38:a2:02:19:50:38:a8:29:e8:52: a5:5b:e5:f3:12:ec:0f:4f:22:2f:07:ee:c1:19:04:82:b2:72: 8d:8f:91:5b:96:a9:1b:47:7d:d0:b3:43:e9:6f:a7:61:d8:48: 9a:9c:d3:68:9a:88:94:a0:9f:0c:41:e8:5e:3a:9e:65:4e:5c: 8c:dd:17:b0:e1:c4:aa:f4:05:52:8e:3c:66:71:de:e0:41:a3: d1:14:a5:83:6a:f7:f6:5e:07:e2:ef:d2:58:f7:d8:90:29:6f: ca:a8:58:85:ff:60:bd:a7:24:96:ca:ea:be:d3:c8:fa:ab:fd: 98:7d:7a:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTOvXch8GNvsSIl+SVRqlBg7OaeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg1QzQ5OTc4RTgwMjNGMkQ1ODUyMTUyNEQ0RUM2MTYy NDRDREMxNDAeFw0yNTA2MzAwNDU1MDBaFw0yNjA2MjkwNTAwMDBaMDMxMTAvBgNV BAMTKDhCNjQ3MEUzRTg2MDdGQzIwOUE4OTNDRjBDMTZEQ0E0MEUwRDI1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDExOALW9NlM32uP8PZldbpJNnW tYpq39x+4+QJxz170HX4/FGVwsPneAVcsUrBLTwnsRWXTrJ8mEj1N+dw1qz9qvZW VHQnae+ghnkCGZ68M2N9MHrzYqVl3pXLB5jePAEv/YRsZNmnAMgjZyuE60k5MEq+ ZBAD5QcnAH/czHMNEpMxWt24UE8Q1iHbW+UhjFeHhJyLZ71qk2kd9botDoDiZmIX X/ac523hjAHyjAaADpQr3K+VuOp8xRKFk1Hamvy+TNBNYmKKr0yHHemezapQnF+U lOMrnoEHr6VA1SICc65JbIriu2m/zMYXUuEdQiKbbASVJhYsLsdoiyr5DxWbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi2Rw4+hgf8IJqJPPDBbcpA4NJawwHwYDVR0j BBgwFoAUyFxJl46AI/LVhSFSTU7GFiRM3BQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTUxNmU2ZS1jNjc5LTRlNTAtYjdhYi0xZTQwNjc5MTI1Y2QvMC9DODVDNDk5NzhF ODAyM0YyRDU4NTIxNTI0RDRFQzYxNjI0NENEQzE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzg1QzQ5OTc4RTgwMjNGMkQ1ODUyMTUyNEQ0RUM2MTYyNDRD REMxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlNTE2ZTZlLWM2NzktNGU1MC1i N2FiLTFlNDA2NzkxMjVjZC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMxMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfv1jANBgkqhkiG 9w0BAQsFAAOCAQEAkT6Uhilsqx/HpbLC6HoFAVtpAzMp86seLnb9CXyc9z0D1bsp JYO7XzL3O0RlBmsrKe7ex//PlKLlllZq2TFB55YeISBZlfDveyi8DRjMFkWVCF4L Wwe5ngN9u9jEt9cpSSG+N1WHnhRhVO0/fsjEUwtWzIHq0Ab++xbPvTM5lN6lZ/x+ xW84ogIZUDioKehSpVvl8xLsD08iLwfuwRkEgrJyjY+RW5apG0d90LND6W+nYdhI mpzTaJqIlKCfDEHoXjqeZU5cjN0XsOHEqvQFUo48ZnHe4EGj0RSlg2r39l4H4u/S WPfYkClvyqhYhf9gvacklsrqvtPI+qv9mH166w== -----END CERTIFICATE-----Generated at Mon Jun 30 15:05:37 2025 by rpki-client