$ rpki-client -vvf repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa File: 3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa (raw, json) Hash identifier: K+l/g4p9y6cTiWHXp9qbhWcap/gI8HD7/DZcp0av7uY= Subject key identifier: 88:2C:D4:46:E5:D0:BC:0D:BD:21:37:B3:9B:B6:DE:9F:03:87:B0:45 Certificate issuer: /CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Certificate serial: 3BF9ECDA5E6C706EFDC8ADF48E44E310FA6A8031 Authority key identifier: 00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa Signing time: Thu 19 Jun 2025 04:00:01 +0000 ROA not before: Thu 19 Jun 2025 03:55:01 +0000 ROA not after: Thu 18 Jun 2026 04:00:01 +0000 asID: 142333 IP address blocks: 103.169.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 12:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f9:ec:da:5e:6c:70:6e:fd:c8:ad:f4:8e:44:e3:10:fa:6a:80:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4 Validity Not Before: Jun 19 03:55:01 2025 GMT Not After : Jun 18 04:00:01 2026 GMT Subject: CN=882CD446E5D0BC0DBD2137B39BB6DE9F0387B045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:00:5e:1d:98:bb:9b:89:d8:5d:ef:88:8f:51: a1:c1:72:79:ac:bd:d7:a1:94:27:00:0f:90:a5:4c: 92:53:ed:90:eb:02:30:24:d5:0b:41:09:76:4d:b1: c2:1c:a1:fe:54:6d:5b:91:e5:db:70:18:fb:b6:b6: 9a:1b:ae:cd:c9:f7:8e:29:84:56:7d:5c:9d:17:b2: 86:bd:3c:61:e2:2d:8f:45:45:c7:79:74:dc:80:8d: 4e:f4:6b:23:1c:8b:81:24:14:b0:4e:f8:98:ac:fb: 26:44:f3:b5:3c:74:06:6b:88:50:4f:2b:45:22:bd: 8a:c9:9a:11:a2:f9:91:f9:ed:69:1e:a0:65:84:56: e3:d0:92:c1:88:8e:f1:21:a2:75:86:df:23:2c:f7: d3:03:c0:d9:47:bc:76:ec:a6:bd:75:d4:33:07:17: 0f:27:e1:78:3c:c3:2d:d0:52:ec:35:f3:6d:b7:7a: a7:44:27:0b:30:3f:3e:77:2c:2d:41:91:7b:75:a4: 2f:41:bc:79:42:a5:80:c6:71:dd:6a:35:09:a8:d9: 43:7e:4a:31:33:ef:42:68:1e:a0:0b:ef:af:b0:2f: d8:85:86:b5:ac:c7:19:db:37:82:ac:63:f5:ce:0a: e8:8b:ab:e8:a0:d4:90:27:20:af:56:ec:26:49:49: 5c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2C:D4:46:E5:D0:BC:0D:BD:21:37:B3:9B:B6:DE:9F:03:87:B0:45 X509v3 Authority Key Identifier: keyid:00:B4:EC:FC:CA:E9:0A:94:63:FD:71:82:2A:3C:EE:4C:8C:14:5A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00B4ECFCCAE90A9463FD71822A3CEE4C8C145AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/570c1bab-13f4-4ce6-85f7-c388737f6d19/0/3130332e3136392e33322e302f32332d3234203d3e20313432333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.32.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:8a:cd:e9:f7:32:14:3f:7b:f9:56:9a:c7:e9:1f:a0:1f:43: 42:ef:fe:e7:e8:27:13:85:0f:b6:b9:b8:04:0f:60:80:6f:64: 99:d8:f0:37:a7:75:a1:1f:81:c0:15:fd:b8:5b:3f:f7:06:b3: ae:a7:54:df:34:b2:4f:ea:40:72:4a:0b:c9:b8:66:a2:ad:34: 20:42:bb:53:b1:d0:6f:50:a6:b6:d2:d5:8d:71:41:6a:96:04: 32:a9:c4:1f:f3:b3:31:54:7b:cb:1a:19:25:e0:ff:38:47:fa: be:78:54:5a:34:c9:5c:59:9d:47:ad:05:fe:07:57:5c:ff:1e: c0:47:7e:76:60:55:3d:cf:91:f6:75:da:49:aa:d2:9c:af:c2: e0:c6:80:3c:59:1a:5e:53:93:34:e2:91:13:a7:b7:1c:56:c5: d9:74:db:93:87:be:36:f5:80:25:e5:f7:3a:e4:be:76:82:72: 2f:45:f9:08:36:ea:7a:7d:3d:b4:4d:ad:08:0d:21:1f:a7:b7: a2:80:78:e9:7a:d4:62:e8:8a:52:46:f2:ab:db:96:f7:2e:58: 5d:7c:23:59:ab:c3:63:a1:04:d5:a0:21:0d:b9:20:a3:be:da: 83:99:f8:6d:7c:be:70:63:c0:e1:ca:83:79:42:e3:9d:8a:0d: 0b:c2:d5:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO/ns2l5scG79yK30jkTjEPpqgDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4 QzE0NUFENDAeFw0yNTA2MTkwMzU1MDFaFw0yNjA2MTgwNDAwMDFaMDMxMTAvBgNV BAMTKDg4MkNENDQ2RTVEMEJDMERCRDIxMzdCMzlCQjZERTlGMDM4N0IwNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAAF4dmLubidhd74iPUaHBcnms vdehlCcAD5ClTJJT7ZDrAjAk1QtBCXZNscIcof5UbVuR5dtwGPu2tpobrs3J944p hFZ9XJ0Xsoa9PGHiLY9FRcd5dNyAjU70ayMci4EkFLBO+Jis+yZE87U8dAZriFBP K0UivYrJmhGi+ZH57WkeoGWEVuPQksGIjvEhonWG3yMs99MDwNlHvHbspr111DMH Fw8n4Xg8wy3QUuw18223eqdEJwswPz53LC1BkXt1pC9BvHlCpYDGcd1qNQmo2UN+ SjEz70JoHqAL76+wL9iFhrWsxxnbN4KsY/XOCuiLq+ig1JAnIK9W7CZJSVwnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiCzURuXQvA29ITezm7benwOHsEUwHwYDVR0j BBgwFoAUALTs/MrpCpRj/XGCKjzuTIwUWtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzBjMWJhYi0xM2Y0LTRjZTYtODVmNy1jMzg4NzM3ZjZkMTkvMC8wMEI0RUNGQ0NB RTkwQTk0NjNGRDcxODIyQTNDRUU0QzhDMTQ1QUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBCNEVDRkNDQUU5MEE5NDYzRkQ3MTgyMkEzQ0VFNEM4QzE0 NUFENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MGMxYmFiLTEzZjQtNGNlNi04 NWY3LWMzODg3MzdmNmQxOS8wLzMxMzAzMzJlMzEzNjM5MmUzMzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kgMA0GCSqG SIb3DQEBCwUAA4IBAQA6is3p9zIUP3v5VprH6R+gH0NC7/7n6CcThQ+2ubgED2CA b2SZ2PA3p3WhH4HAFf24Wz/3BrOup1TfNLJP6kBySgvJuGairTQgQrtTsdBvUKa2 0tWNcUFqlgQyqcQf87MxVHvLGhkl4P84R/q+eFRaNMlcWZ1HrQX+B1dc/x7AR352 YFU9z5H2ddpJqtKcr8LgxoA8WRpeU5M04pETp7ccVsXZdNuTh7429YAl5fc65L52 gnIvRfkINup6fT20Ta0IDSEfp7eigHjpetRi6IpSRvKr25b3LlhdfCNZq8NjoQTV oCENuSCjvtqDmfhtfL5wY8DhyoN5QuOdig0LwtUB -----END CERTIFICATE-----Generated at Mon Jun 30 04:54:34 2025 by rpki-client