$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa File: 3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa (raw, json) Hash identifier: zXQVHsRu+F6s1MVNzrtFO+eU8maZ8ipfm8/30hkR/TA= Subject key identifier: D9:8E:67:22:36:CA:6B:AF:F9:9A:4E:B2:3C:6D:99:7F:E7:74:CF:4A Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Certificate serial: 4F86EBCCACC16A60D17DEB10B24509BA47360696 Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa Signing time: Sat 03 May 2025 03:00:00 +0000 ROA not before: Sat 03 May 2025 02:55:00 +0000 ROA not after: Sat 02 May 2026 03:00:00 +0000 asID: 142370 IP address blocks: 103.169.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 00:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:86:eb:cc:ac:c1:6a:60:d1:7d:eb:10:b2:45:09:ba:47:36:06:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Validity Not Before: May 3 02:55:00 2025 GMT Not After : May 2 03:00:00 2026 GMT Subject: CN=D98E672236CA6BAFF99A4EB23C6D997FE774CF4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:76:45:e7:aa:c3:08:11:d7:1c:e9:dd:21: 62:ce:46:67:73:de:fc:8b:20:70:0a:d0:d1:4c:c1: 7b:60:19:f7:b3:f0:16:89:e8:5c:0a:43:64:24:07: 73:61:a5:6d:63:c5:f4:5b:64:39:dc:0d:75:7c:bc: fa:fa:02:ab:e7:d6:4e:ff:97:07:2b:f1:61:64:31: 52:68:15:da:c6:06:82:b5:83:dd:22:c7:26:f6:c2: f4:18:f2:fd:1f:9b:88:fa:ff:77:77:4d:56:f0:c8: 0f:89:1e:ed:61:b9:70:2c:bf:ae:10:68:4e:71:1c: cf:b1:6c:95:60:af:30:c1:60:51:73:d6:be:3b:1b: bf:34:50:26:34:f1:53:b5:03:6d:87:d0:4f:8a:01: b1:d2:0e:7f:f6:46:a8:ca:eb:4e:28:6c:88:b2:e5: 83:eb:b4:5a:07:35:f5:41:4e:4d:74:c6:91:57:c3: f3:7c:29:47:63:f9:f3:2d:6b:c8:cc:9a:04:c4:9a: 47:04:2f:bb:5f:10:12:4b:da:df:0a:ac:de:ed:82: fc:93:23:64:9e:93:9e:c5:2c:da:e8:10:88:2c:30: ce:f9:40:fc:e0:37:74:b6:42:fe:32:a3:c5:3c:51: 3f:fc:7f:31:04:a0:a8:14:df:3c:c2:96:30:f1:c2: 05:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8E:67:22:36:CA:6B:AF:F9:9A:4E:B2:3C:6D:99:7F:E7:74:CF:4A X509v3 Authority Key Identifier: keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.255.0/24 Signature Algorithm: sha256WithRSAEncryption 49:2e:3e:3a:53:d9:3a:4e:0d:20:18:63:c7:e0:6a:bc:fe:ea: 78:32:10:1c:2d:f6:df:e1:a4:d1:dd:ca:d7:bd:3d:80:3b:77: 66:3c:07:a8:cc:72:74:29:f4:b2:7c:3e:6a:1c:d6:89:5e:95: 0a:df:d2:7c:35:31:ee:d7:99:73:d5:ce:a5:d0:26:d6:98:03: 5e:58:81:dc:fc:cc:ff:e9:6c:6c:f5:15:ff:cc:5e:66:ed:a0: e7:d6:64:02:3a:3e:08:7c:2d:7d:e9:90:47:60:3f:73:fa:2c: 15:06:ac:7f:67:9d:cb:07:f3:e4:2a:c4:5d:33:48:20:98:d9: de:98:2e:ce:d0:e7:88:84:08:28:01:9e:4d:64:da:99:73:a5: 35:35:43:d4:c6:7e:af:f1:93:4f:dc:17:56:44:94:ac:0d:48: 22:2c:9a:0a:cb:b5:fc:7d:5d:e9:a4:b2:c2:d7:ff:c1:c0:aa: e7:4b:c4:56:88:cc:b4:66:d1:cb:bd:4b:3e:7a:09:2f:87:fa: 8b:c6:92:fc:7a:84:3a:70:94:5d:cd:96:09:2f:a5:10:86:47: 46:48:c2:f1:30:23:26:ad:41:83:46:40:89:24:21:55:54:1c: 75:2f:20:7e:e0:0a:60:38:62:75:86:b3:61:f7:67:80:a0:39: 25:25:4f:65 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT4brzKzBamDRfesQskUJukc2BpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJC ODBFNDVEMTAeFw0yNTA1MDMwMjU1MDBaFw0yNjA1MDIwMzAwMDBaMDMxMTAvBgNV BAMTKEQ5OEU2NzIyMzZDQTZCQUZGOTlBNEVCMjNDNkQ5OTdGRTc3NENGNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLzHZF56rDCBHXHOndIWLORmdz 3vyLIHAK0NFMwXtgGfez8BaJ6FwKQ2QkB3NhpW1jxfRbZDncDXV8vPr6Aqvn1k7/ lwcr8WFkMVJoFdrGBoK1g90ixyb2wvQY8v0fm4j6/3d3TVbwyA+JHu1huXAsv64Q aE5xHM+xbJVgrzDBYFFz1r47G780UCY08VO1A22H0E+KAbHSDn/2RqjK604obIiy 5YPrtFoHNfVBTk10xpFXw/N8KUdj+fMta8jMmgTEmkcEL7tfEBJL2t8KrN7tgvyT I2Sek57FLNroEIgsMM75QPzgN3S2Qv4yo8U8UT/8fzEEoKgU3zzCljDxwgUdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2Y5nIjbKa6/5mk6yPG2Zf+d0z0owHwYDVR0j BBgwFoAU32hVltr502VKLi8hzhGqC7gORdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzUyYjNjMi0zZjMwLTQwNDAtOGIwNS04MzgyMTc3NzA0OGYvMC9ERjY4NTU5NkRB RjlEMzY1NEEyRTJGMjFDRTExQUEwQkI4MEU0NUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJCODBF NDVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3NTJiM2MyLTNmMzAtNDA0MC04 YjA1LTgzODIxNzc3MDQ4Zi8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqf8wDQYJ KoZIhvcNAQELBQADggEBAEkuPjpT2TpODSAYY8fgarz+6ngyEBwt9t/hpNHdyte9 PYA7d2Y8B6jMcnQp9LJ8Pmoc1olelQrf0nw1Me7XmXPVzqXQJtaYA15Ygdz8zP/p bGz1Ff/MXmbtoOfWZAI6Pgh8LX3pkEdgP3P6LBUGrH9nncsH8+QqxF0zSCCY2d6Y Ls7Q54iECCgBnk1k2plzpTU1Q9TGfq/xk0/cF1ZElKwNSCIsmgrLtfx9XemkssLX /8HAqudLxFaIzLRm0cu9Sz56CS+H+ovGkvx6hDpwlF3NlgkvpRCGR0ZIwvEwIyat QYNGQIkkIVVUHHUvIH7gCmA4YnWGs2H3Z4CgOSUlT2U= -----END CERTIFICATE-----Generated at Sun May 11 12:39:29 2025 by rpki-client