$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31332e302f32342d3234203d3e20313331373336.roa File: 3130332e3133322e31332e302f32342d3234203d3e20313331373336.roa (raw, json) Hash identifier: 2cxxZUWkJsO3oT8bqHDC+csSkm6PFb2gUAHDSh62gR8= Subject key identifier: 58:F9:32:1F:F5:82:1F:72:EE:24:0D:83:65:39:61:2B:53:6F:76:EA Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 36EA737EFFE7BE631279965104F2527A3D203CA4 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31332e302f32342d3234203d3e20313331373336.roa Signing time: Wed 18 Jun 2025 16:16:13 +0000 ROA not before: Wed 18 Jun 2025 16:11:13 +0000 ROA not after: Wed 17 Jun 2026 16:16:13 +0000 asID: 131736 IP address blocks: 103.132.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 07:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ea:73:7e:ff:e7:be:63:12:79:96:51:04:f2:52:7a:3d:20:3c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 18 16:11:13 2025 GMT Not After : Jun 17 16:16:13 2026 GMT Subject: CN=58F9321FF5821F72EE240D836539612B536F76EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:1c:20:c7:61:b7:0a:b0:a7:63:1f:51:8b: 84:f7:26:05:b0:c2:b6:82:32:c4:2e:ce:fa:84:cc: e2:40:a7:72:99:8f:67:38:f8:a2:86:9a:a5:8e:4b: d3:79:17:48:4f:59:d3:9a:4c:78:db:98:62:39:78: 03:19:ab:1e:a8:63:d7:29:1b:de:33:f9:0f:75:19: 15:a0:2d:ae:a7:39:05:20:a5:6f:80:ca:3c:14:db: 82:fb:b6:d5:65:49:e0:0b:e5:bb:db:0a:06:80:e6: f5:68:26:14:03:36:18:7e:13:fd:15:2f:bb:39:c5: c6:ec:f3:b7:ea:36:a5:72:d9:21:94:45:41:a6:92: 49:14:9c:ef:f1:8d:c0:8e:c7:06:15:4c:69:a4:e4: 0a:88:81:85:0c:95:c6:36:41:81:9b:9f:10:ad:51: 67:55:03:99:ed:57:9a:37:4c:b7:2a:76:8b:25:79: b1:77:84:d1:09:24:e6:dc:dd:9c:fe:5a:99:29:fa: 3a:99:dc:45:9c:e0:a8:6c:43:11:51:30:40:b3:0a: 12:1e:2a:5b:1c:18:a4:16:de:f7:79:2f:71:18:20: 29:c1:62:0b:b6:ad:1b:eb:d4:39:1a:4b:a0:0f:14: 45:68:de:9c:10:17:52:52:89:f0:3d:e6:51:a1:0e: 45:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F9:32:1F:F5:82:1F:72:EE:24:0D:83:65:39:61:2B:53:6F:76:EA X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31332e302f32342d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.13.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:5f:0c:c3:72:40:d9:b7:00:b0:10:df:97:03:95:73:3c:b5: 87:fa:fc:be:31:b2:b0:eb:da:7c:b5:24:ab:b8:bb:5b:07:0b: 1a:6e:86:40:95:db:06:15:d9:08:99:25:1e:30:dc:0f:70:88: 0b:06:7b:6e:36:2a:db:c3:04:79:7f:09:6e:0e:f1:4b:ea:60: c0:d5:a9:43:7c:55:39:40:14:11:21:cc:54:08:3c:76:b4:5d: 48:e7:4e:52:b9:61:f4:3b:c5:dc:b1:1c:bf:6e:d0:64:3c:4d: ba:b6:7e:17:d8:01:8e:9b:01:81:a4:e6:89:2d:78:b8:10:74: e4:c2:f6:79:60:81:53:69:f9:7f:ea:5e:0a:ef:8d:40:e5:f9: 94:09:59:59:72:38:18:c1:e7:1d:f4:e2:f6:93:b3:42:0e:55: a7:29:64:72:23:a3:b3:11:d0:4e:c6:58:e6:7a:af:73:8b:bd: 43:71:75:0e:5f:ad:6f:79:85:de:01:77:a4:84:f2:65:cf:66: 6b:7d:69:85:00:99:a7:7d:aa:50:65:7a:ea:85:22:c4:65:a2: 5d:98:fb:1d:61:02:4d:27:06:f7:be:40:b7:86:5a:84:d0:93: 1d:4f:fc:e8:f0:c4:99:97:8c:f8:56:97:a3:7a:0c:21:69:a8: 2e:4d:34:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNupzfv/nvmMSeZZRBPJSej0gPKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA2MTgxNjExMTNaFw0yNjA2MTcxNjE2MTNaMDMxMTAvBgNV BAMTKDU4RjkzMjFGRjU4MjFGNzJFRTI0MEQ4MzY1Mzk2MTJCNTM2Rjc2RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB3xwgx2G3CrCnYx9Ri4T3JgWw wraCMsQuzvqEzOJAp3KZj2c4+KKGmqWOS9N5F0hPWdOaTHjbmGI5eAMZqx6oY9cp G94z+Q91GRWgLa6nOQUgpW+AyjwU24L7ttVlSeAL5bvbCgaA5vVoJhQDNhh+E/0V L7s5xcbs87fqNqVy2SGURUGmkkkUnO/xjcCOxwYVTGmk5AqIgYUMlcY2QYGbnxCt UWdVA5ntV5o3TLcqdoslebF3hNEJJObc3Zz+Wpkp+jqZ3EWc4KhsQxFRMECzChIe KlscGKQW3vd5L3EYICnBYgu2rRvr1DkaS6APFEVo3pwQF1JSifA95lGhDkXZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWPkyH/WCH3LuJA2DZTlhK1NvduowHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QNMA0GCSqG SIb3DQEBCwUAA4IBAQAaXwzDckDZtwCwEN+XA5VzPLWH+vy+MbKw69p8tSSruLtb BwsaboZAldsGFdkImSUeMNwPcIgLBntuNirbwwR5fwluDvFL6mDA1alDfFU5QBQR IcxUCDx2tF1I505SuWH0O8XcsRy/btBkPE26tn4X2AGOmwGBpOaJLXi4EHTkwvZ5 YIFTafl/6l4K741A5fmUCVlZcjgYwecd9OL2k7NCDlWnKWRyI6OzEdBOxljmeq9z i71DcXUOX61veYXeAXekhPJlz2ZrfWmFAJmnfapQZXrqhSLEZaJdmPsdYQJNJwb3 vkC3hlqE0JMdT/zo8MSZl4z4VpejegwhaaguTTTf -----END CERTIFICATE-----Generated at Tue Jul 1 21:21:42 2025 by rpki-client