$ rpki-client -vvf repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/3130332e3134362e3138342e302f32332d3234203d3e20313339393637.roa File: 3130332e3134362e3138342e302f32332d3234203d3e20313339393637.roa (raw, json) Hash identifier: RvVL0eKqhvW5Nd9pF2jqsL2iAerie+UOp2Ou6UGubqQ= Subject key identifier: AB:C0:A8:73:3B:C9:43:34:B4:9E:5F:78:E0:B1:E6:E6:87:96:31:0B Certificate issuer: /CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Certificate serial: 18D24E46CE640F41F712464EBF9FD5A390DA9069 Authority key identifier: 4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/3130332e3134362e3138342e302f32332d3234203d3e20313339393637.roa Signing time: Mon 02 Jun 2025 01:02:42 +0000 ROA not before: Mon 02 Jun 2025 00:57:42 +0000 ROA not after: Mon 01 Jun 2026 01:02:42 +0000 asID: 139967 IP address blocks: 103.146.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 22:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d2:4e:46:ce:64:0f:41:f7:12:46:4e:bf:9f:d5:a3:90:da:90:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Validity Not Before: Jun 2 00:57:42 2025 GMT Not After : Jun 1 01:02:42 2026 GMT Subject: CN=ABC0A8733BC94334B49E5F78E0B1E6E68796310B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ec:95:df:87:7e:f6:72:45:56:8f:1c:be:be: 5b:39:5d:c8:ae:5d:0f:dc:ce:14:8b:3d:ad:06:5a: 9d:76:49:8f:75:35:b0:2c:c0:03:9a:4f:d5:90:cf: f9:e3:24:43:fb:73:67:4f:25:69:d2:7d:50:62:24: 9b:21:b2:9d:e2:64:ec:98:7e:a7:36:f6:e6:d2:fe: cc:f3:39:23:f5:ea:dc:bb:8b:af:4c:db:4a:ae:cf: df:08:24:30:cc:fb:89:e6:49:a6:23:71:3d:33:0f: 71:6f:ea:8e:e7:74:71:b6:d4:ae:51:67:d5:8a:5a: c3:93:06:c0:60:d1:09:ba:e8:76:05:06:47:43:b0: 48:1c:ba:4e:ef:42:e4:04:b3:06:bf:90:ce:ee:d7: 4f:c5:17:b5:d6:86:23:9b:38:94:83:92:b8:1d:4a: 2c:d8:a0:2f:2f:f4:ff:e6:de:bb:c6:cd:c3:a2:e4: f5:5d:12:4d:a1:96:5d:50:5f:c1:1e:9d:7f:de:73: 9e:49:3a:a3:31:0f:d7:5f:61:be:c0:87:77:fc:ea: 2c:5e:ae:44:c5:33:0c:e0:a3:59:a1:bc:f6:7b:77: d0:bd:75:4d:cf:fd:f0:d4:73:6e:35:0c:3e:6c:ea: d4:37:42:27:ed:88:ae:b7:82:1c:4e:b6:1a:c7:c0: 63:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C0:A8:73:3B:C9:43:34:B4:9E:5F:78:E0:B1:E6:E6:87:96:31:0B X509v3 Authority Key Identifier: keyid:4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/3130332e3134362e3138342e302f32332d3234203d3e20313339393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.184.0/23 Signature Algorithm: sha256WithRSAEncryption 69:71:9e:e1:75:09:26:aa:b3:f1:72:34:87:8d:55:16:0c:fc: ab:c6:d4:2e:37:9b:9f:fd:ac:5f:01:b3:c0:28:99:4f:93:50: 46:af:f8:34:bd:40:54:c0:91:ff:67:0d:7a:7e:31:2c:67:2c: 18:18:4e:49:d5:92:9d:a1:a3:16:09:3b:46:7b:fb:37:97:24: 64:4a:33:5d:ab:cf:ee:e9:55:f7:8c:46:7d:ea:ef:e2:80:c7: b7:5d:e1:7e:50:ea:6b:6c:99:9e:2c:e7:9a:b1:b9:6d:d8:d2: 3b:43:22:be:2a:28:d0:a2:44:2e:dc:1a:0e:7f:9c:89:ad:d7: c0:0e:6f:15:b4:16:f8:82:b9:8a:b0:8d:99:f1:37:3a:a9:b8: 38:15:63:1b:01:35:d9:be:d1:80:44:c7:bf:28:fd:6f:66:c7: ac:05:e5:00:7b:b8:39:e6:5c:5b:7f:ef:77:84:a0:13:ec:54: 33:97:d6:e4:4b:2d:f3:1f:31:42:b4:8d:d9:9a:fe:2a:4f:12: 48:3e:e1:a2:66:1d:cd:58:1e:60:51:0c:ff:09:36:74:b8:c0: 3c:cd:7a:80:39:fa:4c:67:a0:07:b1:98:4f:89:05:29:f6:22: cf:b1:07:e5:fa:58:54:1c:a2:2e:4d:a7:5a:2c:d2:58:99:ca: 2f:4a:46:40 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGNJORs5kD0H3EkZOv5/Vo5DakGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNC NDI2REY0ODAeFw0yNTA2MDIwMDU3NDJaFw0yNjA2MDEwMTAyNDJaMDMxMTAvBgNV BAMTKEFCQzBBODczM0JDOTQzMzRCNDlFNUY3OEUwQjFFNkU2ODc5NjMxMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW7JXfh372ckVWjxy+vls5Xciu XQ/czhSLPa0GWp12SY91NbAswAOaT9WQz/njJEP7c2dPJWnSfVBiJJshsp3iZOyY fqc29ubS/szzOSP16ty7i69M20quz98IJDDM+4nmSaYjcT0zD3Fv6o7ndHG21K5R Z9WKWsOTBsBg0Qm66HYFBkdDsEgcuk7vQuQEswa/kM7u10/FF7XWhiObOJSDkrgd SizYoC8v9P/m3rvGzcOi5PVdEk2hll1QX8EenX/ec55JOqMxD9dfYb7Ah3f86ixe rkTFMwzgo1mhvPZ7d9C9dU3P/fDUc241DD5s6tQ3QiftiK63ghxOthrHwGODAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUq8CoczvJQzS0nl944LHm5oeWMQswHwYDVR0j BBgwFoAUTykE6uZq3V06xTxqzLkhM7Qm30gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWM1MzI3Zi0xMGZkLTRjZjAtODUxYy0wY2ZjZDNjM2M2OTcvMC80RjI5MDRFQUU2 NkFERDVEM0FDNTNDNkFDQ0I5MjEzM0I0MjZERjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNCNDI2 REY0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YzUzMjdmLTEwZmQtNGNmMC04 NTFjLTBjZmNkM2MzYzY5Ny8wLzMxMzAzMzJlMzEzNDM2MmUzMTM4MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkrgwDQYJ KoZIhvcNAQELBQADggEBAGlxnuF1CSaqs/FyNIeNVRYM/KvG1C43m5/9rF8Bs8Ao mU+TUEav+DS9QFTAkf9nDXp+MSxnLBgYTknVkp2hoxYJO0Z7+zeXJGRKM12rz+7p VfeMRn3q7+KAx7dd4X5Q6mtsmZ4s55qxuW3Y0jtDIr4qKNCiRC7cGg5/nImt18AO bxW0FviCuYqwjZnxNzqpuDgVYxsBNdm+0YBEx78o/W9mx6wF5QB7uDnmXFt/73eE oBPsVDOX1uRLLfMfMUK0jdma/ipPEkg+4aJmHc1YHmBRDP8JNnS4wDzNeoA5+kxn oAexmE+JBSn2Is+xB+X6WFQcoi5Np1os0liZyi9KRkA= -----END CERTIFICATE-----Generated at Mon Nov 3 22:20:34 2025 by rpki-client