$ rpki-client -vvf repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234312e302f32342d3234203d3e20313431393639.roa File: 3130332e3136362e3234312e302f32342d3234203d3e20313431393639.roa (raw, json) Hash identifier: Tji5eLarsbsUV7OPBAVD/9yKk9GUehEwx/Ji4JAvY3U= Subject key identifier: A5:87:9B:E2:35:E9:6C:1D:D4:02:B3:FC:FC:FC:DA:35:5E:3C:AE:DD Certificate issuer: /CN=63A008B749DB87C773CA05C5DF448BCA5357BB01 Certificate serial: 2D031A729FDBB8299CB3DC630E9BCCB8AB67BC1E Authority key identifier: 63:A0:08:B7:49:DB:87:C7:73:CA:05:C5:DF:44:8B:CA:53:57:BB:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234312e302f32342d3234203d3e20313431393639.roa Signing time: Sat 14 Jun 2025 10:00:00 +0000 ROA not before: Sat 14 Jun 2025 09:55:00 +0000 ROA not after: Sat 13 Jun 2026 10:00:00 +0000 asID: 141969 IP address blocks: 103.166.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.crl rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 23:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:03:1a:72:9f:db:b8:29:9c:b3:dc:63:0e:9b:cc:b8:ab:67:bc:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63A008B749DB87C773CA05C5DF448BCA5357BB01 Validity Not Before: Jun 14 09:55:00 2025 GMT Not After : Jun 13 10:00:00 2026 GMT Subject: CN=A5879BE235E96C1DD402B3FCFCFCDA355E3CAEDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b6:8b:fa:2c:c3:07:66:ea:4f:63:fb:46:ae: 68:a1:f9:ab:26:6b:de:af:e7:00:b1:a6:77:b7:91: 89:07:2c:a3:e2:9b:04:55:b0:ab:6c:28:21:b6:e5: e3:c2:a5:9a:3b:0c:40:db:6f:96:8e:e3:27:97:58: fd:d2:50:3f:b7:f7:fd:82:86:3b:4f:17:0b:b4:2f: 1e:1a:96:d3:b7:b7:66:2f:2e:bf:65:50:5f:c1:c1: 43:bc:9b:5d:23:aa:86:1f:62:c2:74:30:8c:2b:52: 75:4e:32:87:bd:62:77:08:fd:fd:56:1a:71:31:32: 30:6e:1d:0e:cd:26:e0:21:d3:64:da:44:9a:74:c8: 6d:4a:12:48:a9:b2:4f:be:3b:91:b2:32:81:f4:17: ca:c6:31:b7:f3:a9:f2:c2:2b:73:40:92:00:18:7f: 7e:d1:60:f9:fb:16:ce:ee:f4:58:81:6e:ab:67:0b: ca:e3:5b:5c:61:15:10:74:5d:06:63:31:53:d0:ae: ff:a6:58:11:ed:95:34:f2:7d:a3:86:48:ad:68:ed: 19:99:60:e5:b0:13:6d:b2:7f:ed:11:95:32:2d:20: b7:c1:55:d9:d2:e3:24:3e:d1:d9:66:4e:d7:5a:19: 5c:48:fb:16:c0:1c:f5:9b:31:f5:26:4a:13:80:39: 45:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:87:9B:E2:35:E9:6C:1D:D4:02:B3:FC:FC:FC:DA:35:5E:3C:AE:DD X509v3 Authority Key Identifier: keyid:63:A0:08:B7:49:DB:87:C7:73:CA:05:C5:DF:44:8B:CA:53:57:BB:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234312e302f32342d3234203d3e20313431393639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.241.0/24 Signature Algorithm: sha256WithRSAEncryption a1:58:fc:60:d6:51:9b:d9:35:fb:86:d7:fb:40:1e:7d:6b:99: 2a:15:10:33:c9:54:5a:55:cc:97:ad:c9:f3:4a:2f:75:77:3a: 11:f0:39:b0:b2:18:f2:e3:80:5c:7c:37:ca:e4:7a:28:97:ae: 61:48:b6:f9:2d:7b:63:90:68:96:5b:d2:9c:1a:a6:91:c8:f0: b6:6b:ec:75:2f:2e:71:bf:3a:4a:73:e6:ee:92:ff:07:0c:85: 49:42:dd:4c:98:b0:0d:3c:0e:a0:a2:ab:79:8b:a0:e2:18:2e: ab:52:d3:c2:41:4d:db:85:a8:fe:7d:47:11:65:c1:bd:93:32: 6d:76:1b:63:1e:37:12:7b:c8:08:2b:d4:58:e3:d9:4e:b9:4d: ce:60:78:4f:1e:94:cb:b1:4f:d4:cc:c6:42:b3:cc:95:b1:60: 47:18:35:f9:c3:b3:0b:83:87:ce:24:7b:40:d4:82:a8:39:a0: c7:a7:67:e6:67:97:e6:16:aa:77:16:40:3b:66:eb:d0:66:5d: 39:a5:94:d8:17:35:f2:18:8b:68:6c:5d:fd:5e:6a:ee:a3:8c: 6b:5f:b5:a4:08:44:f9:39:47:a8:28:21:05:cc:a6:c7:ab:1c: 1e:16:5d:d9:e2:cc:e5:bf:78:84:f3:89:8d:f6:36:65:53:ae: ec:1b:ba:06 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULQMacp/buCmcs9xjDpvMuKtnvB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNBMDA4Qjc0OURCODdDNzczQ0EwNUM1REY0NDhCQ0E1 MzU3QkIwMTAeFw0yNTA2MTQwOTU1MDBaFw0yNjA2MTMxMDAwMDBaMDMxMTAvBgNV BAMTKEE1ODc5QkUyMzVFOTZDMURENDAyQjNGQ0ZDRkNEQTM1NUUzQ0FFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChtov6LMMHZupPY/tGrmih+asm a96v5wCxpne3kYkHLKPimwRVsKtsKCG25ePCpZo7DEDbb5aO4yeXWP3SUD+39/2C hjtPFwu0Lx4altO3t2YvLr9lUF/BwUO8m10jqoYfYsJ0MIwrUnVOMoe9YncI/f1W GnExMjBuHQ7NJuAh02TaRJp0yG1KEkipsk++O5GyMoH0F8rGMbfzqfLCK3NAkgAY f37RYPn7Fs7u9FiBbqtnC8rjW1xhFRB0XQZjMVPQrv+mWBHtlTTyfaOGSK1o7RmZ YOWwE22yf+0RlTItILfBVdnS4yQ+0dlmTtdaGVxI+xbAHPWbMfUmShOAOUVvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpYeb4jXpbB3UArP8/PzaNV48rt0wHwYDVR0j BBgwFoAUY6AIt0nbh8dzygXF30SLylNXuwEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWY5MDAyZC05MjY3LTRmOGItODU5YS1kZmE3ZDg5MTQzYjQvMC82M0EwMDhCNzQ5 REI4N0M3NzNDQTA1QzVERjQ0OEJDQTUzNTdCQjAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjNBMDA4Qjc0OURCODdDNzczQ0EwNUM1REY0NDhCQ0E1MzU3 QkIwMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZjkwMDJkLTkyNjctNGY4Yi04 NTlhLWRmYTdkODkxNDNiNC8wLzMxMzAzMzJlMzEzNjM2MmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpvEwDQYJ KoZIhvcNAQELBQADggEBAKFY/GDWUZvZNfuG1/tAHn1rmSoVEDPJVFpVzJetyfNK L3V3OhHwObCyGPLjgFx8N8rkeiiXrmFItvkte2OQaJZb0pwappHI8LZr7HUvLnG/ Okpz5u6S/wcMhUlC3UyYsA08DqCiq3mLoOIYLqtS08JBTduFqP59RxFlwb2TMm12 G2MeNxJ7yAgr1Fjj2U65Tc5geE8elMuxT9TMxkKzzJWxYEcYNfnDswuDh84ke0DU gqg5oMenZ+Znl+YWqncWQDtm69BmXTmllNgXNfIYi2hsXf1eau6jjGtftaQIRPk5 R6goIQXMpserHB4WXdnizOW/eITziY32NmVTruwbugY= -----END CERTIFICATE-----Generated at Tue Jul 1 05:04:08 2025 by rpki-client