$ rpki-client -vvf repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/3130332e3136362e362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: c8ZBxIkYu4lQhPh7KOJpCZXHyG4WojlA9cssQRO5Q3k= Subject key identifier: AB:91:E6:B0:EA:85:DC:75:A6:32:3B:EB:31:68:FE:55:96:D4:F9:AE Certificate issuer: /CN=AAE029EAD3C6E5CB19BC9CE141DB7679A423D318 Certificate serial: 5C15DF8F3D6A21B17E53374202B744D2FA007261 Authority key identifier: AA:E0:29:EA:D3:C6:E5:CB:19:BC:9C:E1:41:DB:76:79:A4:23:D3:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/3130332e3136362e362e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 11:02:25 +0000 ROA not before: Fri 04 Jul 2025 10:57:25 +0000 ROA not after: Fri 03 Jul 2026 11:02:25 +0000 asID: 17995 IP address blocks: 103.166.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.crl rsync://repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 21:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:15:df:8f:3d:6a:21:b1:7e:53:37:42:02:b7:44:d2:fa:00:72:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AAE029EAD3C6E5CB19BC9CE141DB7679A423D318 Validity Not Before: Jul 4 10:57:25 2025 GMT Not After : Jul 3 11:02:25 2026 GMT Subject: CN=AB91E6B0EA85DC75A6323BEB3168FE5596D4F9AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bf:5f:67:83:77:3c:59:df:eb:fd:86:68:33: 47:00:a5:6a:4a:7e:37:6b:23:85:ed:49:a4:3e:15: 0f:d3:89:f9:88:d0:18:36:b8:41:14:d2:6d:b2:d4: f6:cf:9b:3d:5d:b4:56:52:b5:86:6a:12:f6:e3:36: f2:8a:61:66:46:3d:a3:e5:ff:14:14:4f:be:3d:67: 36:35:bd:98:47:d4:c9:6e:b0:0b:07:b5:97:53:4d: 84:f8:98:1f:9a:8f:29:80:68:99:72:08:b7:f8:64: 92:7b:d1:e0:01:41:ad:4f:c3:c3:03:4f:6a:ab:9e: a6:ea:bd:dc:21:7f:fc:9a:25:40:12:c1:f2:be:06: 18:ca:e2:35:17:cb:82:f4:21:34:62:ba:14:34:b9: e8:ea:38:aa:aa:20:49:cb:54:5c:1e:64:8d:d2:95: 35:19:f3:bd:10:f9:7b:c6:f4:46:ea:b6:01:38:f0: 62:e5:7d:3e:95:46:92:c8:5e:c2:29:3e:41:76:5a: 8b:31:28:75:24:da:40:45:84:d7:f1:22:f8:64:fd: 3d:30:06:bb:d5:c9:48:56:c9:d2:68:d8:00:9d:a5: 48:d8:27:a3:3a:3a:4a:72:15:15:27:0a:1c:e2:28: 97:a4:1f:95:ff:5d:3a:e1:45:19:76:3b:73:eb:89: a1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:91:E6:B0:EA:85:DC:75:A6:32:3B:EB:31:68:FE:55:96:D4:F9:AE X509v3 Authority Key Identifier: keyid:AA:E0:29:EA:D3:C6:E5:CB:19:BC:9C:E1:41:DB:76:79:A4:23:D3:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AAE029EAD3C6E5CB19BC9CE141DB7679A423D318.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddb92e89-92d5-4064-9511-067e353679ce/0/3130332e3136362e362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.6.0/23 Signature Algorithm: sha256WithRSAEncryption a1:20:a6:07:b5:22:91:9f:4b:90:f4:55:21:42:e5:7d:5e:75: 68:13:34:8d:5d:ff:10:cc:a4:ee:a2:92:21:30:17:37:25:ba: 38:c7:b8:62:48:f2:9c:15:12:ec:5c:dd:e1:7e:fa:5a:10:4a: 32:3e:3f:f1:95:54:4c:bf:62:6d:27:10:aa:20:8d:91:58:c0: af:71:ef:68:3a:11:31:14:7b:5c:23:dc:65:2b:c6:fe:2f:9b: bc:7d:c1:87:0c:92:c7:bf:e4:05:b8:d0:e0:1a:a9:7a:0d:5f: 46:14:55:d8:25:dc:73:a2:04:bc:4d:8c:95:30:aa:d2:40:5d: 9a:dc:0d:dc:bb:cd:af:b1:4e:8e:c0:c9:42:40:e7:ea:b3:60: 44:a4:bf:b3:e8:74:1a:04:4a:dc:3a:e9:90:3c:8a:8c:5a:c6: 4b:45:a6:4b:33:85:d1:22:29:93:e9:7f:d2:79:4b:50:04:bf: b4:e1:97:e1:c0:d7:71:df:3b:cc:a6:c6:a5:60:61:1e:d3:2e: 33:00:d1:58:14:d8:af:44:cb:08:08:ea:bd:9e:44:64:b4:94: 63:d9:4c:88:95:37:e2:48:47:50:17:a5:36:9b:6a:d3:e5:27: c7:e2:38:cd:b6:96:b7:93:44:b6:42:a7:bb:89:4f:6b:32:97: 3b:93:58:99 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXBXfjz1qIbF+UzdCArdE0voAcmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUFFMDI5RUFEM0M2RTVDQjE5QkM5Q0UxNDFEQjc2NzlB NDIzRDMxODAeFw0yNTA3MDQxMDU3MjVaFw0yNjA3MDMxMTAyMjVaMDMxMTAvBgNV BAMTKEFCOTFFNkIwRUE4NURDNzVBNjMyM0JFQjMxNjhGRTU1OTZENEY5QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwv19ng3c8Wd/r/YZoM0cApWpK fjdrI4XtSaQ+FQ/TifmI0Bg2uEEU0m2y1PbPmz1dtFZStYZqEvbjNvKKYWZGPaPl /xQUT749ZzY1vZhH1MlusAsHtZdTTYT4mB+ajymAaJlyCLf4ZJJ70eABQa1Pw8MD T2qrnqbqvdwhf/yaJUASwfK+BhjK4jUXy4L0ITRiuhQ0uejqOKqqIEnLVFweZI3S lTUZ870Q+XvG9EbqtgE48GLlfT6VRpLIXsIpPkF2WosxKHUk2kBFhNfxIvhk/T0w BrvVyUhWydJo2ACdpUjYJ6M6OkpyFRUnChziKJekH5X/XTrhRRl2O3PriaHRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUq5HmsOqF3HWmMjvrMWj+VZbU+a4wHwYDVR0j BBgwFoAUquAp6tPG5csZvJzhQdt2eaQj0xgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGI5MmU4OS05MmQ1LTQwNjQtOTUxMS0wNjdlMzUzNjc5Y2UvMC9BQUUwMjlFQUQz QzZFNUNCMTlCQzlDRTE0MURCNzY3OUE0MjNEMzE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUFFMDI5RUFEM0M2RTVDQjE5QkM5Q0UxNDFEQjc2NzlBNDIz RDMxOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkYjkyZTg5LTkyZDUtNDA2NC05 NTExLTA2N2UzNTM2NzljZS8wLzMxMzAzMzJlMzEzNjM2MmUzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpgYwDQYJKoZIhvcN AQELBQADggEBAKEgpge1IpGfS5D0VSFC5X1edWgTNI1d/xDMpO6ikiEwFzclujjH uGJI8pwVEuxc3eF++loQSjI+P/GVVEy/Ym0nEKogjZFYwK9x72g6ETEUe1wj3GUr xv4vm7x9wYcMkse/5AW40OAaqXoNX0YUVdgl3HOiBLxNjJUwqtJAXZrcDdy7za+x To7AyUJA5+qzYESkv7PodBoEStw66ZA8ioxaxktFpkszhdEiKZPpf9J5S1AEv7Th l+HA13HfO8ymxqVgYR7TLjMA0VgU2K9EywgI6r2eRGS0lGPZTIiVN+JIR1AXpTab atPlJ8fiOM22lreTRLZCp7uJT2sylzuTWJk= -----END CERTIFICATE-----Generated at Mon Jul 21 12:22:39 2025 by rpki-client