$ rpki-client -vvf repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa File: 3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa (raw, json) Hash identifier: lKFSHdHF3wWJIcTGvyjieSUWfDWF+TAqKVs638owOUk= Subject key identifier: 55:38:51:A8:DC:63:44:6D:39:00:AC:01:5A:B6:83:E6:23:D7:A7:19 Certificate issuer: /CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Certificate serial: 0AB85AE38B73792D6C48CC80529F84003EC9D0CE Authority key identifier: 85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa Signing time: Wed 18 Jun 2025 03:43:41 +0000 ROA not before: Wed 18 Jun 2025 03:38:41 +0000 ROA not after: Wed 17 Jun 2026 03:43:41 +0000 asID: 131699 IP address blocks: 103.174.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 12:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b8:5a:e3:8b:73:79:2d:6c:48:cc:80:52:9f:84:00:3e:c9:d0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Validity Not Before: Jun 18 03:38:41 2025 GMT Not After : Jun 17 03:43:41 2026 GMT Subject: CN=553851A8DC63446D3900AC015AB683E623D7A719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:61:f0:dc:c9:33:4b:39:63:c4:f1:a1:2a:b2: d6:b3:4d:21:4e:0c:c7:45:1e:54:57:eb:71:a7:92: 84:94:f3:58:a5:d7:3d:29:cd:cb:71:ae:84:f6:b0: b5:89:d5:70:46:8b:b6:f3:c5:a2:ca:5d:99:b0:de: 99:ef:ac:ce:fa:f5:4d:84:63:05:35:e0:45:02:18: e5:cb:fd:5f:e1:bb:bf:11:33:6e:15:e2:5e:fb:e0: 4d:18:e7:c4:9c:33:14:78:6c:eb:5d:56:9d:c2:b1: 17:f6:62:26:6d:30:60:21:4a:5a:ad:f8:4e:8e:cf: 73:b8:dc:a5:0a:62:f3:45:dc:0e:6a:db:a9:e6:02: 17:e4:41:61:d2:cb:16:b5:40:0a:db:ed:cc:81:c0: cf:59:15:70:ea:2a:d1:32:31:4b:3c:1c:f1:5a:84: 52:2d:5e:4f:11:fb:3c:7a:bb:db:ce:1c:d9:88:ec: 12:da:92:dd:fc:b0:31:1e:b1:ab:6d:ac:45:ab:5f: 30:1c:46:59:f6:b9:c0:7d:c7:d3:5c:62:a2:9c:11: 5e:c2:c2:7f:9b:47:e7:f9:4a:59:d4:43:d2:5c:ad: 85:83:71:68:0c:fc:f7:a1:b0:7c:1d:af:a3:c0:d9: cd:d6:5d:22:06:10:5f:cc:66:78:59:9f:1f:f8:b3: 2d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:38:51:A8:DC:63:44:6D:39:00:AC:01:5A:B6:83:E6:23:D7:A7:19 X509v3 Authority Key Identifier: keyid:85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.78.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:31:cf:5e:84:51:0b:64:ba:08:40:ec:cd:27:22:1b:9b:1e: 2b:2d:38:54:07:26:1c:e8:cd:b8:43:78:7c:10:33:d6:d3:36: 74:33:30:b4:4a:15:6b:aa:c5:28:af:ea:1e:aa:82:5a:08:52: 6a:79:e5:da:f4:7b:8a:cb:75:85:2f:dd:3d:4d:b0:2e:f9:08: dc:59:2b:2c:18:06:ff:4c:3a:38:d0:12:95:73:58:c4:c3:42: 74:8e:6f:80:a6:ef:d1:c6:64:a9:aa:1e:8a:09:68:f9:3d:60: 7d:5c:0a:11:d7:e5:21:ac:2d:17:fb:59:ea:f2:5c:37:23:0a: 6e:b4:2f:d0:3a:05:c0:25:4f:f0:03:d0:a9:23:ad:a3:eb:83: 1b:c8:89:4c:4c:c6:ab:98:46:9a:5e:7a:44:8f:97:71:fe:af: 4e:27:cd:3d:9f:f8:a9:7f:01:46:d2:a2:77:56:8f:ec:96:42: b4:ac:e6:6d:36:ba:5b:8b:b7:94:98:ab:6f:df:00:4b:ce:9c: 82:96:27:f4:ef:7e:72:3c:b1:9d:9f:fb:3f:b1:2b:0a:ab:5b: 69:c2:f4:98:27:2e:c1:ec:e7:25:ba:93:c2:28:30:4b:df:47: 46:ba:c4:7d:76:76:d4:80:ca:c6:b1:f8:a7:d5:07:a8:76:76: 98:b1:e0:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCrha44tzeS1sSMyAUp+EAD7J0M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4 MTZBQ0RCOTAeFw0yNTA2MTgwMzM4NDFaFw0yNjA2MTcwMzQzNDFaMDMxMTAvBgNV BAMTKDU1Mzg1MUE4REM2MzQ0NkQzOTAwQUMwMTVBQjY4M0U2MjNEN0E3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzYfDcyTNLOWPE8aEqstazTSFO DMdFHlRX63GnkoSU81il1z0pzctxroT2sLWJ1XBGi7bzxaLKXZmw3pnvrM769U2E YwU14EUCGOXL/V/hu78RM24V4l774E0Y58ScMxR4bOtdVp3CsRf2YiZtMGAhSlqt +E6Oz3O43KUKYvNF3A5q26nmAhfkQWHSyxa1QArb7cyBwM9ZFXDqKtEyMUs8HPFa hFItXk8R+zx6u9vOHNmI7BLakt38sDEesattrEWrXzAcRln2ucB9x9NcYqKcEV7C wn+bR+f5SlnUQ9JcrYWDcWgM/PehsHwdr6PA2c3WXSIGEF/MZnhZnx/4sy3LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVThRqNxjRG05AKwBWraD5iPXpxkwHwYDVR0j BBgwFoAUheqGdWNxuom7GuhGtcMN24FqzbkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmM2ZGExOS04NGJlLTRhNTAtYjQ2Ni0xZTg2ZGRiY2MzNWYvMC84NUVBODY3NTYz NzFCQTg5QkIxQUU4NDZCNUMzMEREQjgxNkFDREI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4MTZB Q0RCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiYzZkYTE5LTg0YmUtNGE1MC1i NDY2LTFlODZkZGJjYzM1Zi8wLzMxMzAzMzJlMzEzNzM0MmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ65OMA0GCSqG SIb3DQEBCwUAA4IBAQBsMc9ehFELZLoIQOzNJyIbmx4rLThUByYc6M24Q3h8EDPW 0zZ0MzC0ShVrqsUor+oeqoJaCFJqeeXa9HuKy3WFL909TbAu+QjcWSssGAb/TDo4 0BKVc1jEw0J0jm+Apu/RxmSpqh6KCWj5PWB9XAoR1+UhrC0X+1nq8lw3IwputC/Q OgXAJU/wA9CpI62j64MbyIlMTMarmEaaXnpEj5dx/q9OJ809n/ipfwFG0qJ3Vo/s lkK0rOZtNrpbi7eUmKtv3wBLzpyClif0735yPLGdn/s/sSsKq1tpwvSYJy7B7Ocl upPCKDBL30dGusR9dnbUgMrGsfin1QeodnaYseBT -----END CERTIFICATE-----Generated at Mon Jun 30 07:19:56 2025 by rpki-client