$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: vWQKx1TT5Vb7zbmKfpDwSS1ZiebEmEmR3LksZYKeYp8= Subject key identifier: 69:4E:1D:FE:54:15:DE:EA:24:03:3C:95:E8:45:F4:9C:FC:79:30:3C Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Certificate serial: 42F47767BD36166C10C7729BEA8E42337F4D5491 Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa Signing time: Mon 16 Jun 2025 04:02:21 +0000 ROA not before: Mon 16 Jun 2025 03:57:21 +0000 ROA not after: Mon 15 Jun 2026 04:02:21 +0000 asID: 38768 IP address blocks: 103.234.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f4:77:67:bd:36:16:6c:10:c7:72:9b:ea:8e:42:33:7f:4d:54:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Validity Not Before: Jun 16 03:57:21 2025 GMT Not After : Jun 15 04:02:21 2026 GMT Subject: CN=694E1DFE5415DEEA24033C95E845F49CFC79303C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:41:b0:d5:4e:6f:59:ff:57:95:35:05:8c:8f: 4c:e2:2d:95:dc:e7:c5:89:8b:1b:ab:99:cd:e0:16: bc:55:a0:42:5a:6c:c8:f1:11:21:5a:a3:ac:ca:cc: fb:08:07:b4:65:82:e1:7d:7a:00:77:ac:97:cd:dc: 01:d0:49:10:89:ad:13:5c:4c:42:7d:69:71:eb:44: 0a:28:3e:c9:91:34:cb:c5:45:e5:33:8d:97:42:82: e4:68:fd:fd:b9:3c:86:67:b3:54:ba:73:87:09:ea: c5:ea:9b:f0:b7:98:6a:17:e5:df:0f:bd:30:c5:98: 43:bb:a2:82:14:e2:90:cc:2a:de:0d:90:08:2f:e7: 69:21:4f:00:0d:ef:7b:4b:91:87:e6:52:20:4a:e0: ac:a1:a7:7b:3b:4e:80:a7:5a:7e:90:2e:b6:d6:19: 53:8a:e8:39:b0:29:47:67:e5:e4:07:00:f8:96:dd: cd:07:43:2f:f5:b7:82:a7:46:56:db:86:23:6b:d6: d2:df:7a:70:49:0c:23:b2:1a:73:c3:14:74:30:ac: a8:68:8e:0d:e4:8e:13:b6:56:0e:70:96:60:83:f8: 54:a3:1b:a4:e0:e0:77:a6:7a:8b:23:4e:8c:6c:50: 8c:17:8b:00:65:75:a1:fa:fe:5e:72:e6:ba:91:1f: cf:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4E:1D:FE:54:15:DE:EA:24:03:3C:95:E8:45:F4:9C:FC:79:30:3C X509v3 Authority Key Identifier: keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.218.0/24 Signature Algorithm: sha256WithRSAEncryption b1:65:ce:9d:98:2d:fa:be:ba:63:d9:a8:a7:32:a4:4a:c2:18: 6c:d7:6a:ef:65:79:61:dc:9d:98:f2:83:ff:50:36:06:a3:72: 5b:79:65:73:0c:12:11:d5:24:da:77:d1:65:1e:af:c9:28:5e: 87:e0:eb:77:d3:8e:9b:83:ba:70:a4:ec:00:0e:10:1f:0f:ab: d8:a8:e6:7e:93:55:99:0f:f4:66:ba:c8:e5:a7:bc:22:83:32: ec:f1:7b:fb:20:37:7d:cb:0c:d8:f2:f4:f0:81:c4:27:b6:eb: 27:ec:fe:a8:db:1c:ae:61:0b:85:d0:98:52:35:e1:c5:46:e5: a0:59:63:56:a8:29:12:fd:a0:88:a0:77:24:31:1c:f4:05:eb: 3f:17:e4:fd:26:98:2c:26:06:a3:7c:84:d7:d8:9a:78:cd:f0: 67:48:3c:b3:04:6e:6f:a3:5d:8c:5e:24:02:57:25:3f:e2:9a: a5:10:ec:f1:af:f8:c6:25:58:b0:fd:82:b5:58:2b:4b:66:ad: 99:04:fb:0d:c5:cc:6b:45:ba:2a:55:dc:a5:d0:a0:40:88:a5: 42:79:dd:41:3d:1b:72:50:4f:4c:94:9f:93:ce:e9:f5:09:14: 86:cc:1b:b3:65:6a:e7:36:c0:d6:8c:96:ed:81:32:50:e0:39: de:c4:ee:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQvR3Z702FmwQx3Kb6o5CM39NVJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJC OEM1QjdGMDAeFw0yNTA2MTYwMzU3MjFaFw0yNjA2MTUwNDAyMjFaMDMxMTAvBgNV BAMTKDY5NEUxREZFNTQxNURFRUEyNDAzM0M5NUU4NDVGNDlDRkM3OTMwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdQbDVTm9Z/1eVNQWMj0ziLZXc 58WJixurmc3gFrxVoEJabMjxESFao6zKzPsIB7RlguF9egB3rJfN3AHQSRCJrRNc TEJ9aXHrRAooPsmRNMvFReUzjZdCguRo/f25PIZns1S6c4cJ6sXqm/C3mGoX5d8P vTDFmEO7ooIU4pDMKt4NkAgv52khTwAN73tLkYfmUiBK4Kyhp3s7ToCnWn6QLrbW GVOK6DmwKUdn5eQHAPiW3c0HQy/1t4KnRlbbhiNr1tLfenBJDCOyGnPDFHQwrKho jg3kjhO2Vg5wlmCD+FSjG6Tg4HemeosjToxsUIwXiwBldaH6/l5y5rqRH8/NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaU4d/lQV3uokAzyV6EX0nPx5MDwwHwYDVR0j BBgwFoAU+6z8Y2WEJbNjmcS50DImIrjFt/AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWU5NDI0My04N2YwLTQyNmYtYTljYS00YzE5ZWRiMDZiNDIvMC9GQkFDRkM2MzY1 ODQyNUIzNjM5OUM0QjlEMDMyMjYyMkI4QzVCN0YwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJCOEM1 QjdGMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTk0MjQzLTg3ZjAtNDI2Zi1h OWNhLTRjMTllZGIwNmI0Mi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+raMA0GCSqG SIb3DQEBCwUAA4IBAQCxZc6dmC36vrpj2ainMqRKwhhs12rvZXlh3J2Y8oP/UDYG o3JbeWVzDBIR1STad9FlHq/JKF6H4Ot3046bg7pwpOwADhAfD6vYqOZ+k1WZD/Rm usjlp7wigzLs8Xv7IDd9ywzY8vTwgcQntusn7P6o2xyuYQuF0JhSNeHFRuWgWWNW qCkS/aCIoHckMRz0Bes/F+T9JpgsJgajfITX2Jp4zfBnSDyzBG5vo12MXiQCVyU/ 4pqlEOzxr/jGJViw/YK1WCtLZq2ZBPsNxcxrRboqVdyl0KBAiKVCed1BPRtyUE9M lJ+Tzun1CRSGzBuzZWrnNsDWjJbtgTJQ4DnexO57 -----END CERTIFICATE-----Generated at Sun Jul 27 10:16:26 2025 by rpki-client