$ rpki-client -vvf repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa File: 3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa (raw, json) Hash identifier: /6Bl69u1CgUC488n3C0LoD1UwiEDNUgl9lr41NkrxCQ= Subject key identifier: EC:64:EF:18:B6:BE:7F:4C:80:E7:03:4C:2F:DA:DE:E2:92:35:2B:A0 Certificate issuer: /CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Certificate serial: 6B4D886A280FAFEBFD751B7844AED2317FAE7CC9 Authority key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa Signing time: Tue 17 Jun 2025 04:00:02 +0000 ROA not before: Tue 17 Jun 2025 03:55:02 +0000 ROA not after: Tue 16 Jun 2026 04:00:02 +0000 asID: 141985 IP address blocks: 103.167.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4d:88:6a:28:0f:af:eb:fd:75:1b:78:44:ae:d2:31:7f:ae:7c:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Validity Not Before: Jun 17 03:55:02 2025 GMT Not After : Jun 16 04:00:02 2026 GMT Subject: CN=EC64EF18B6BE7F4C80E7034C2FDADEE292352BA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:83:83:2c:ce:ab:d5:a8:f3:d7:c9:f9:75:57: 08:21:0f:26:dc:45:a1:b8:4a:c7:ed:2a:48:b5:ca: 7f:03:7d:cb:e2:f2:e5:e8:ae:89:ac:af:ca:6c:ce: 63:10:ab:e5:09:27:aa:7a:84:c9:73:e3:bb:e5:31: db:66:e4:3f:c5:d0:34:dd:e7:1b:23:26:5c:6c:a7: 45:98:46:48:1c:0c:19:66:c0:69:51:04:31:3d:45: 67:00:66:dd:35:61:45:0c:9d:6d:d7:16:2d:cf:b5: 7b:4d:98:1f:b3:ec:5d:d0:ce:f8:ba:97:8c:6b:b5: 9e:54:aa:90:47:94:f8:c2:65:76:1d:f1:d8:ad:f6: 99:00:7f:bd:5c:c6:44:85:33:08:74:ba:9b:29:d2: 89:61:85:cf:f7:54:f8:91:ab:60:62:49:44:96:84: 35:34:f6:8f:33:06:93:69:12:14:e2:33:5c:d1:e7: 47:d6:c6:94:87:fe:94:e7:50:a0:2d:2d:83:2c:83: 00:42:b6:9a:1b:f6:9f:19:36:73:ac:6d:23:58:47: c5:2d:b4:e2:4e:9f:e4:be:62:c9:e8:61:76:03:81: 3c:80:40:98:91:63:76:2e:c4:e8:db:4e:95:4d:ec: e4:95:76:a0:4f:81:bd:fd:aa:55:bc:98:31:6d:22: 6f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:64:EF:18:B6:BE:7F:4C:80:E7:03:4C:2F:DA:DE:E2:92:35:2B:A0 X509v3 Authority Key Identifier: keyid:35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.168.0/23 Signature Algorithm: sha256WithRSAEncryption 49:58:ad:a9:72:fb:77:b3:96:a2:5e:17:93:10:d1:e5:38:33: 1e:e4:b0:14:47:79:d2:a7:c2:0a:20:ab:77:eb:76:e1:c7:c9: af:5e:96:2a:cd:8d:d6:38:2c:5e:c0:10:fd:77:9c:42:b1:17: c6:50:77:8f:01:05:f8:ba:4b:19:44:61:39:09:ac:79:b5:1e: 4a:e6:cb:04:80:ee:18:aa:3f:7b:68:d7:81:50:37:d3:bc:97: a6:06:db:fd:9e:06:b9:89:97:65:0e:42:10:59:8a:b3:31:a8: c8:bc:b9:94:9f:13:a3:d4:8d:bb:5a:76:77:18:00:34:4d:8b: b6:98:e9:3a:27:6b:37:76:c2:f4:be:fd:81:8b:91:dc:fa:e9: b3:b6:9f:30:01:04:18:52:c0:0f:76:a2:96:8c:c0:21:b4:db: b9:0b:e4:3d:c4:0b:dd:12:27:e1:16:36:24:db:59:68:de:3b: be:1f:92:77:3a:05:f6:fd:93:b5:63:54:7f:44:90:e8:06:02: 73:6d:48:6e:9c:1e:5a:d6:c6:5f:3c:37:28:b5:2f:4d:46:9b: 7d:f5:b8:10:62:fb:eb:a4:49:f4:78:f6:df:ba:ae:b2:15:72: 4c:49:6b:02:df:60:0b:0f:d7:0b:33:63:c6:72:c3:03:79:16: dd:4a:a8:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa02IaigPr+v9dRt4RK7SMX+ufMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1 RUE0M0UyQjAeFw0yNTA2MTcwMzU1MDJaFw0yNjA2MTYwNDAwMDJaMDMxMTAvBgNV BAMTKEVDNjRFRjE4QjZCRTdGNEM4MEU3MDM0QzJGREFERUUyOTIzNTJCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcg4MszqvVqPPXyfl1VwghDybc RaG4SsftKki1yn8Dfcvi8uXoromsr8pszmMQq+UJJ6p6hMlz47vlMdtm5D/F0DTd 5xsjJlxsp0WYRkgcDBlmwGlRBDE9RWcAZt01YUUMnW3XFi3PtXtNmB+z7F3Qzvi6 l4xrtZ5UqpBHlPjCZXYd8dit9pkAf71cxkSFMwh0upsp0olhhc/3VPiRq2BiSUSW hDU09o8zBpNpEhTiM1zR50fWxpSH/pTnUKAtLYMsgwBCtpob9p8ZNnOsbSNYR8Ut tOJOn+S+YsnoYXYDgTyAQJiRY3YuxOjbTpVN7OSVdqBPgb39qlW8mDFtIm+hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7GTvGLa+f0yA5wNML9re4pI1K6AwHwYDVR0j BBgwFoAUNX3qxebBGzw+FS1aJPjYMV6kPiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMC8zNTdERUFDNUU2 QzExQjNDM0UxNTJENUEyNEY4RDgzMTVFQTQzRTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1RUE0 M0UyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJmLWY5MjQtNGVjMi1i MWYxLWExMzA1ZDIzZDUzYS8wLzMxMzAzMzJlMzEzNjM3MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp6gwDQYJ KoZIhvcNAQELBQADggEBAElYraly+3ezlqJeF5MQ0eU4Mx7ksBRHedKnwgogq3fr duHHya9elirNjdY4LF7AEP13nEKxF8ZQd48BBfi6SxlEYTkJrHm1HkrmywSA7hiq P3to14FQN9O8l6YG2/2eBrmJl2UOQhBZirMxqMi8uZSfE6PUjbtadncYADRNi7aY 6Tonazd2wvS+/YGLkdz66bO2nzABBBhSwA92opaMwCG027kL5D3EC90SJ+EWNiTb WWjeO74fknc6Bfb9k7VjVH9EkOgGAnNtSG6cHlrWxl88Nyi1L01Gm331uBBi++uk SfR49t+6rrIVckxJawLfYAsP1wszY8ZywwN5Ft1KqMk= -----END CERTIFICATE-----Generated at Mon Jun 30 00:47:56 2025 by rpki-client