$ rpki-client -vvf repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: IcV/PuSEjSNsy6cbDUeXZVgPYs8xhMimlvvll5vTiXU= Subject key identifier: 86:4F:C7:8A:1B:22:A1:98:CB:8D:E6:33:22:2B:51:72:9A:AC:63:30 Certificate issuer: /CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Certificate serial: 5B62526B779E6CD56F6C4FE043314E7B8C32E08E Authority key identifier: 13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa Signing time: Sat 21 Jun 2025 05:02:21 +0000 ROA not before: Sat 21 Jun 2025 04:57:21 +0000 ROA not after: Sat 20 Jun 2026 05:02:21 +0000 asID: 131111 IP address blocks: 103.174.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 21:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:62:52:6b:77:9e:6c:d5:6f:6c:4f:e0:43:31:4e:7b:8c:32:e0:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Validity Not Before: Jun 21 04:57:21 2025 GMT Not After : Jun 20 05:02:21 2026 GMT Subject: CN=864FC78A1B22A198CB8DE633222B51729AAC6330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:94:17:19:1a:26:11:f1:3e:3b:5d:d5:f7: 37:61:e7:c1:47:af:8b:35:a0:a9:e0:f4:54:a5:9e: 59:d8:8a:64:b9:32:89:48:da:ad:40:a2:e4:55:fa: e9:3d:96:b8:33:56:ee:ab:d6:a2:ed:9e:f3:e3:3a: 9c:45:7b:ab:c2:07:76:43:19:a5:ed:6c:74:01:27: 3b:3d:ab:fd:55:d6:0b:cc:8c:03:43:6f:b8:86:c5: a4:13:e9:1d:39:9d:a7:16:58:72:17:b7:e3:a8:2b: d9:54:b1:cb:f7:e8:bd:9a:ce:42:6e:9a:87:c3:88: 20:d7:fd:7a:a5:8e:d4:4c:bd:a6:a3:31:9e:b5:93: 9a:4e:3a:a4:9a:6a:e1:01:ae:34:58:01:ed:48:e5: 15:e9:c7:bf:8e:14:d3:49:a5:85:13:77:b9:8b:93: 0d:07:be:5f:99:db:32:44:26:82:e2:ce:af:aa:88: 2d:8b:ce:69:27:6c:96:2e:8a:28:7d:3a:49:60:f6: 00:51:0f:36:4a:c5:1b:fe:aa:35:fc:ac:21:60:39: 6f:c5:bc:f2:59:ff:cc:1d:47:34:5d:09:0a:cb:e2: d9:6b:ff:b5:c7:4d:15:9e:6e:07:2a:12:08:99:82: ca:69:9a:4c:53:4f:bb:95:cf:f8:76:df:56:bf:0e: 54:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4F:C7:8A:1B:22:A1:98:CB:8D:E6:33:22:2B:51:72:9A:AC:63:30 X509v3 Authority Key Identifier: keyid:13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.24.0/23 Signature Algorithm: sha256WithRSAEncryption 20:66:73:ab:a5:ae:3d:71:ba:83:d8:19:ef:a6:57:b7:0d:41: be:02:a8:93:7b:93:d2:67:94:d3:e7:03:13:ab:1b:1f:5b:c3: 1e:e6:fb:72:f7:97:bd:0a:cb:07:0d:d4:ec:f8:a9:8c:e0:46: f7:d5:f5:fe:59:db:eb:50:8b:f2:c5:43:b2:1e:d7:57:a7:92: 74:7f:30:80:05:ee:b6:55:09:09:64:22:8a:5e:51:4f:c0:73: 05:cf:52:2c:d5:bd:73:7a:92:c1:96:b1:cf:68:ed:fc:fc:b6: 73:5b:86:ec:57:c6:ec:d9:54:27:30:bd:f2:39:fe:64:83:c5: 09:6a:57:12:d5:d1:d5:cf:97:a2:1a:7d:0a:53:96:92:60:8c: 53:36:9e:2c:ce:ac:fa:e3:e3:24:d3:cf:4d:47:2c:83:bb:04: 35:3b:94:33:ee:89:6a:80:84:e9:37:39:d7:29:ec:90:3f:78: 99:d2:43:b7:82:74:ec:fa:2c:c3:fd:df:82:79:99:11:27:cb: f1:dc:df:bf:f7:5d:fb:f8:3b:9a:8b:62:17:55:87:7a:f9:18: 17:1c:67:a4:ce:95:66:4e:20:6c:67:5a:95:37:72:67:fc:19: 87:24:af:7d:49:1f:f1:9f:56:0b:d9:9f:35:40:6a:7e:e0:c7: 72:c6:ff:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW2JSa3eebNVvbE/gQzFOe4wy4I4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNC MDRGRENCRTAeFw0yNTA2MjEwNDU3MjFaFw0yNjA2MjAwNTAyMjFaMDMxMTAvBgNV BAMTKDg2NEZDNzhBMUIyMkExOThDQjhERTYzMzIyMkI1MTcyOUFBQzYzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5TpQXGRomEfE+O13V9zdh58FH r4s1oKng9FSlnlnYimS5MolI2q1AouRV+uk9lrgzVu6r1qLtnvPjOpxFe6vCB3ZD GaXtbHQBJzs9q/1V1gvMjANDb7iGxaQT6R05nacWWHIXt+OoK9lUscv36L2azkJu mofDiCDX/XqljtRMvaajMZ61k5pOOqSaauEBrjRYAe1I5RXpx7+OFNNJpYUTd7mL kw0Hvl+Z2zJEJoLizq+qiC2LzmknbJYuiih9Oklg9gBRDzZKxRv+qjX8rCFgOW/F vPJZ/8wdRzRdCQrL4tlr/7XHTRWebgcqEgiZgsppmkxTT7uVz/h231a/DlQlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhk/HihsioZjLjeYzIitRcpqsYzAwHwYDVR0j BBgwFoAUExgHvdqvl+1yIU37xcU5rLBP3L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjI1Yjk2OC0wOTI3LTQ1OTQtODg3ZS02N2Y1M2Y5NjdiMTIvMC8xMzE4MDdCRERB QUY5N0VENzIyMTRERkJDNUM1MzlBQ0IwNEZEQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNCMDRG RENCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMjViOTY4LTA5MjctNDU5NC04 ODdlLTY3ZjUzZjk2N2IxMi8wLzMxMzAzMzJlMzEzNzM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64YMA0GCSqG SIb3DQEBCwUAA4IBAQAgZnOrpa49cbqD2Bnvple3DUG+AqiTe5PSZ5TT5wMTqxsf W8Me5vty95e9CssHDdTs+KmM4Eb31fX+WdvrUIvyxUOyHtdXp5J0fzCABe62VQkJ ZCKKXlFPwHMFz1Is1b1zepLBlrHPaO38/LZzW4bsV8bs2VQnML3yOf5kg8UJalcS 1dHVz5eiGn0KU5aSYIxTNp4szqz64+Mk089NRyyDuwQ1O5Qz7olqgITpNznXKeyQ P3iZ0kO3gnTs+izD/d+CeZkRJ8vx3N+/9137+Duai2IXVYd6+RgXHGekzpVmTiBs Z1qVN3Jn/BmHJK99SR/xn1YL2Z81QGp+4Mdyxv9W -----END CERTIFICATE-----Generated at Tue Jul 1 18:32:43 2025 by rpki-client