$ rpki-client -vvf repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa File: 3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa (raw, json) Hash identifier: OjZssXYKrVMWzUnHRz7s+7gvCsjaEtAJXH0INXsIRL8= Subject key identifier: 02:38:2F:97:DC:17:5B:37:36:2A:10:1B:00:BB:38:E1:71:F7:CE:17 Certificate issuer: /CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3 Certificate serial: 68995F8CF49BC9168120B426C76A22D41B5027 Authority key identifier: AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa Signing time: Fri 27 Jun 2025 10:00:02 +0000 ROA not before: Fri 27 Jun 2025 09:55:02 +0000 ROA not after: Fri 26 Jun 2026 10:00:02 +0000 asID: 149943 IP address blocks: 103.191.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.crl rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 19:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:99:5f:8c:f4:9b:c9:16:81:20:b4:26:c7:6a:22:d4:1b:50:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3 Validity Not Before: Jun 27 09:55:02 2025 GMT Not After : Jun 26 10:00:02 2026 GMT Subject: CN=02382F97DC175B37362A101B00BB38E171F7CE17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d9:e4:cf:5f:90:dc:2c:cc:d1:2e:27:86:56: 94:f3:e5:45:d1:1c:71:e2:d5:cc:cb:af:ac:a2:eb: 1a:9e:81:43:16:16:6d:3b:8b:10:7f:01:3c:5d:d6: 9c:0c:0c:4c:9f:de:2a:43:c6:cd:41:47:c0:ac:06: c0:e2:a3:35:3e:75:56:7a:de:38:6b:99:84:97:8b: a5:43:ce:73:4f:76:85:81:90:cd:34:26:aa:ed:ab: 3b:08:cf:28:40:65:42:a7:04:c1:d4:1a:35:4b:a9: 85:de:3f:37:e5:f2:0b:7f:2f:72:20:68:65:b5:9e: ea:64:c0:91:68:91:1f:28:b4:1b:51:16:04:79:e3: 4d:79:47:06:00:3f:b9:d8:74:3c:db:02:a2:02:74: e7:a2:b1:ec:f1:2d:91:f9:63:78:87:28:2c:14:8b: 5e:a0:66:38:3a:8e:ee:c6:22:0a:29:0e:05:10:fe: 05:53:74:39:d3:a0:ac:52:b7:b9:e1:34:2f:97:c7: b8:01:b1:cd:e3:c1:a2:57:e5:27:c6:69:4d:bc:c5: 76:56:94:ea:28:ea:f9:72:26:bf:0f:4a:d9:86:79: 37:85:4a:01:85:9c:47:6e:dc:ff:ad:56:4c:a8:b0: 74:e9:ca:13:3e:4c:31:66:ed:c2:aa:e1:d4:2f:8f: dd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:38:2F:97:DC:17:5B:37:36:2A:10:1B:00:BB:38:E1:71:F7:CE:17 X509v3 Authority Key Identifier: keyid:AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235342e302f32342d3234203d3e20313439393433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.254.0/24 Signature Algorithm: sha256WithRSAEncryption 48:4d:7b:8e:fb:d1:83:5d:96:5d:cb:62:0e:2f:84:95:a0:04: 0d:2c:65:65:a6:ca:24:d0:31:75:61:ed:00:ef:43:96:1d:d9: 26:a9:44:64:80:eb:a1:87:33:2e:bb:94:51:32:e3:8c:9b:5c: 16:43:6f:f7:4f:8a:3c:a6:b0:8e:d7:9f:76:53:56:2c:82:12: 4f:9b:65:54:f2:a0:5c:a6:66:48:7a:83:d8:53:94:e7:30:b0: df:0b:99:44:94:1b:75:76:0b:a0:8d:9f:6c:a2:6b:ec:ff:aa: d6:b4:d9:d8:b9:a2:ce:8b:27:f9:d8:21:be:26:73:d6:20:00: c9:3b:f5:f9:a2:0f:88:c4:c0:4a:40:54:8f:5e:90:7b:c0:72: e0:6c:b3:08:a7:97:d4:2f:4d:a0:5f:37:82:80:d7:e8:24:c7: 8e:f0:13:21:af:7e:c4:4c:4d:99:30:6c:1c:0f:e9:1d:fd:bf: 65:c5:8f:8f:98:50:55:b3:7f:7c:34:0c:9e:51:05:21:9a:7e: 04:08:29:52:07:c4:7a:06:9b:0a:ed:f1:bb:d5:e7:15:97:ab: 5c:d0:4d:69:37:3d:ba:21:51:18:ab:b1:97:b8:7a:29:68:f6: 58:91:91:5a:9f:3f:c8:21:67:60:b1:b2:e3:21:ec:21:da:19: cd:df:09:04 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITaJlfjPSbyRaBILQmx2oi1BtQJzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhBREUwRDQ2MjQ4NTlBNEQ2NDJEOEMwN0ZEMDA3QjRFRUUw NjZFRkYzMB4XDTI1MDYyNzA5NTUwMloXDTI2MDYyNjEwMDAwMlowMzExMC8GA1UE AxMoMDIzODJGOTdEQzE3NUIzNzM2MkExMDFCMDBCQjM4RTE3MUY3Q0UxNzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM/Z5M9fkNwszNEuJ4ZWlPPlRdEc ceLVzMuvrKLrGp6BQxYWbTuLEH8BPF3WnAwMTJ/eKkPGzUFHwKwGwOKjNT51Vnre OGuZhJeLpUPOc092hYGQzTQmqu2rOwjPKEBlQqcEwdQaNUuphd4/N+XyC38vciBo ZbWe6mTAkWiRHyi0G1EWBHnjTXlHBgA/udh0PNsCogJ056Kx7PEtkfljeIcoLBSL XqBmODqO7sYiCikOBRD+BVN0OdOgrFK3ueE0L5fHuAGxzePBolflJ8ZpTbzFdlaU 6ijq+XImvw9K2YZ5N4VKAYWcR27c/61WTKiwdOnKEz5MMWbtwqrh1C+P3eECAwEA AaOCAjYwggIyMB0GA1UdDgQWBBQCOC+X3BdbNzYqEBsAuzjhcffOFzAfBgNVHSME GDAWgBSt4NRiSFmk1kLYwH/QB7Tu4Gbv8zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYw OThmOTI0LTlmMmUtNDk5Yi04MTAxLTAyZjc1MDY5MzJiZi8wL0FERTBENDYyNDg1 OUE0RDY0MkQ4QzA3RkQwMDdCNEVFRTA2NkVGRjMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9BREUwRDQ2MjQ4NTlBNEQ2NDJEOEMwN0ZEMDA3QjRFRUUwNjZF RkYzLmNlcjCBpgYIKwYBBQUHAQsEgZkwgZYwgZMGCCsGAQUFBzALhoGGcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjA5OGY5MjQtOWYyZS00OTliLTgx MDEtMDJmNzUwNjkzMmJmLzAvMzEzMDMzMmUzMTM5MzEyZTMyMzUzNDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzQzOTM5MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe//jANBgkq hkiG9w0BAQsFAAOCAQEASE17jvvRg12WXctiDi+ElaAEDSxlZabKJNAxdWHtAO9D lh3ZJqlEZIDroYczLruUUTLjjJtcFkNv90+KPKawjtefdlNWLIIST5tlVPKgXKZm SHqD2FOU5zCw3wuZRJQbdXYLoI2fbKJr7P+q1rTZ2Lmizosn+dghviZz1iAAyTv1 +aIPiMTASkBUj16Qe8By4GyzCKeX1C9NoF83goDX6CTHjvATIa9+xExNmTBsHA/p Hf2/ZcWPj5hQVbN/fDQMnlEFIZp+BAgpUgfEegabCu3xu9XnFZerXNBNaTc9uiFR GKuxl7h6KWj2WJGRWp8/yCFnYLGy4yHsIdoZzd8JBA== -----END CERTIFICATE-----Generated at Tue Jul 1 18:01:22 2025 by rpki-client