$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: 21L4D1hu21+7UR3Mn3cvc8Jhs/U+RaE8nhEhhkQ5YEA= Subject key identifier: 03:7D:3D:27:74:FD:CE:B5:25:7A:71:B3:81:19:04:28:D6:D9:F3:6F Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 34228524EF3F894CE6A10FE8C119E3739FCDFD42 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 18 Jun 2025 09:00:02 +0000 ROA not before: Wed 18 Jun 2025 08:55:02 +0000 ROA not after: Wed 17 Jun 2026 09:00:02 +0000 asID: 133800 IP address blocks: 103.89.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:22:85:24:ef:3f:89:4c:e6:a1:0f:e8:c1:19:e3:73:9f:cd:fd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Jun 18 08:55:02 2025 GMT Not After : Jun 17 09:00:02 2026 GMT Subject: CN=037D3D2774FDCEB5257A71B381190428D6D9F36F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:12:fe:80:d5:23:9f:2b:20:2c:b7:b4:f7: e7:c4:9f:9d:2e:f9:85:0b:4b:f9:e1:5f:b2:e4:60: 7b:ba:15:4a:36:b5:d7:90:6a:cc:45:89:a1:c6:27: 3c:08:81:af:2b:8a:a5:8f:87:31:0e:5d:d6:7c:48: 66:f6:4c:81:81:64:8e:8c:5a:a8:64:b9:27:0b:81: f0:ee:92:56:b7:ea:ae:15:30:53:f7:4c:7f:1e:6d: cd:05:85:1f:61:16:98:11:c0:f6:e9:3c:85:4a:5a: 52:c1:9b:73:34:66:ad:74:3c:96:01:22:78:85:c4: 60:33:5e:c9:26:42:9b:29:72:b5:0c:40:83:59:24: 47:fc:62:00:4d:93:ad:76:6e:5c:7e:62:7d:29:7c: ee:ce:52:34:02:b7:fd:50:42:2c:31:15:60:50:72: d5:1c:df:1a:ab:51:5c:ac:46:48:a9:58:56:95:48: e3:47:dd:75:bd:ab:43:63:53:86:15:00:a6:f7:8f: e0:88:03:a7:53:57:2a:67:bd:f8:62:f6:0b:00:8b: 96:07:4e:0f:78:94:73:05:e9:f2:0a:93:84:09:a8: 53:ac:43:e1:5c:7a:9f:1a:9e:ef:c9:a3:4d:a9:e1: 35:7a:23:e4:96:f4:f8:b2:2b:31:e3:eb:49:30:3a: 52:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7D:3D:27:74:FD:CE:B5:25:7A:71:B3:81:19:04:28:D6:D9:F3:6F X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.154.0/24 Signature Algorithm: sha256WithRSAEncryption ae:a9:59:64:12:d1:c4:e7:a8:ea:d6:23:07:15:49:70:0a:e3: 23:0e:93:c7:23:a2:46:c4:c7:18:0b:78:66:15:03:be:37:93: 59:9d:a2:6e:1a:d0:86:be:d5:cf:4f:72:59:98:07:bb:e6:c3: 5b:e2:a2:e3:f0:74:cb:52:3e:87:c2:d6:17:fa:70:4f:53:b0: 12:60:e1:67:f6:e9:2d:a4:19:94:b5:c7:2c:eb:9c:f3:2a:fc: 31:4f:3e:fc:09:c2:e0:7c:af:cb:7e:c9:cd:7e:7f:4e:c1:50: 12:b6:77:a5:99:90:90:d7:60:a4:6e:c6:17:9a:86:3d:f7:dd: c5:2f:4e:81:9f:e1:fc:65:be:c5:1a:2d:38:54:8a:88:f0:34: ea:a0:ef:60:dd:78:8b:56:83:5f:de:54:e8:43:0b:63:3f:7e: 32:c1:df:df:71:83:ce:53:c5:13:33:85:3f:e0:82:62:53:ea: 4f:83:b5:57:03:26:1c:4b:c5:69:51:ae:82:e9:22:25:73:30: bb:c6:d2:cd:45:d2:2c:0a:4a:fb:f1:83:85:da:1a:65:f0:e9: 6c:b6:f2:6a:d6:81:93:45:b6:6f:fb:12:18:5b:a1:4d:b4:ae: fa:11:37:bb:de:95:76:af:49:93:6b:85:34:28:e8:4b:47:c7: 4d:20:59:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNCKFJO8/iUzmoQ/owRnjc5/N/UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yNTA2MTgwODU1MDJaFw0yNjA2MTcwOTAwMDJaMDMxMTAvBgNV BAMTKDAzN0QzRDI3NzRGRENFQjUyNTdBNzFCMzgxMTkwNDI4RDZEOUYzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF1BL+gNUjnysgLLe09+fEn50u +YULS/nhX7LkYHu6FUo2tdeQasxFiaHGJzwIga8riqWPhzEOXdZ8SGb2TIGBZI6M WqhkuScLgfDukla36q4VMFP3TH8ebc0FhR9hFpgRwPbpPIVKWlLBm3M0Zq10PJYB IniFxGAzXskmQpspcrUMQINZJEf8YgBNk612blx+Yn0pfO7OUjQCt/1QQiwxFWBQ ctUc3xqrUVysRkipWFaVSONH3XW9q0NjU4YVAKb3j+CIA6dTVypnvfhi9gsAi5YH Tg94lHMF6fIKk4QJqFOsQ+Fcep8anu/Jo02p4TV6I+SW9PiyKzHj60kwOlJLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA309J3T9zrUlenGzgRkEKNbZ828wHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1maMA0GCSqG SIb3DQEBCwUAA4IBAQCuqVlkEtHE56jq1iMHFUlwCuMjDpPHI6JGxMcYC3hmFQO+ N5NZnaJuGtCGvtXPT3JZmAe75sNb4qLj8HTLUj6HwtYX+nBPU7ASYOFn9uktpBmU tccs65zzKvwxTz78CcLgfK/LfsnNfn9OwVAStnelmZCQ12CkbsYXmoY9993FL06B n+H8Zb7FGi04VIqI8DTqoO9g3XiLVoNf3lToQwtjP34ywd/fcYPOU8UTM4U/4IJi U+pPg7VXAyYcS8VpUa6C6SIlczC7xtLNRdIsCkr78YOF2hpl8OlstvJq1oGTRbZv +xIYW6FNtK76ETe73pV2r0mTa4U0KOhLR8dNIFl/ -----END CERTIFICATE-----Generated at Wed Jul 2 00:46:16 2025 by rpki-client