$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa File: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (raw, json) Hash identifier: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA= Subject key identifier: 5B:BA:62:22:DD:92:7A:94:97:BD:05:95:8E:DE:9C:83:70:B9:97:BA Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 6DF0B0F1BC1031B1303895F530BC5D36033D8AF1 Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa Signing time: Wed 14 May 2025 22:00:00 +0000 ROA not before: Wed 14 May 2025 21:55:00 +0000 ROA not after: Wed 13 May 2026 22:00:00 +0000 asID: 149723 IP address blocks: 103.186.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f0:b0:f1:bc:10:31:b1:30:38:95:f5:30:bc:5d:36:03:3d:8a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: May 14 21:55:00 2025 GMT Not After : May 13 22:00:00 2026 GMT Subject: CN=5BBA6222DD927A9497BD05958EDE9C8370B997BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d0:97:e8:4d:5c:4e:78:bf:31:7e:d7:8a:42: 21:f3:d7:6b:7f:aa:09:56:c4:25:0d:f5:a6:1d:a2: dd:db:02:2e:7c:f0:01:0c:89:2d:62:6a:28:da:b0: c5:00:02:1e:1f:11:70:8b:8b:59:52:b8:2a:ea:02: 8b:72:be:28:c5:c1:77:79:64:fe:0e:27:f8:fe:39: e2:23:36:8d:fd:b7:84:d4:38:4d:1a:39:b8:ff:03: 58:a4:e0:c5:d1:d2:fe:37:6f:66:8a:af:db:84:e6: f1:36:0a:84:20:b9:ae:fa:83:bb:92:c7:99:60:01: 18:50:81:15:62:78:21:07:65:e1:1f:6a:90:64:d5: f1:72:8f:63:3b:1d:56:50:0d:01:b9:37:9e:2a:66: 2f:38:30:26:7d:0a:2c:f9:e6:f5:32:ce:b3:f0:55: 0e:77:b4:ee:80:c6:39:34:dc:2c:58:8c:15:2e:43: 0e:7b:64:09:58:af:8c:87:f6:75:f4:fd:3e:3f:80: 0e:2b:55:46:64:26:d8:94:c4:a1:59:62:dd:27:8f: 4b:c0:c4:01:ba:8e:ea:b0:ec:7f:06:9e:35:e5:6b: 03:fb:35:5e:b8:56:2e:27:6b:2d:c6:d3:e5:13:ec: 88:bd:58:a3:da:01:d8:07:42:79:18:3c:72:b1:2c: 0e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BA:62:22:DD:92:7A:94:97:BD:05:95:8E:DE:9C:83:70:B9:97:BA X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.204.0/24 Signature Algorithm: sha256WithRSAEncryption 74:3a:da:c4:15:5b:0d:23:86:73:07:c5:40:31:49:40:4d:ed: 5d:e2:7d:d1:4f:ae:6c:b1:f0:8a:89:c3:61:79:c6:29:82:b3: 86:51:0a:37:24:ab:37:14:52:ab:cf:e3:d6:95:54:34:b6:db: 31:3e:84:ad:32:3a:2b:b9:73:a5:46:f3:7e:22:e5:dd:f2:62: 8a:bc:f0:51:23:0a:e4:03:c2:70:04:bd:31:85:74:da:1b:74: b0:b5:f0:fa:14:bd:85:23:01:59:e1:e0:64:b9:2b:97:7f:c8: 8e:73:3e:62:fa:3a:be:54:4d:7a:b4:4a:06:74:ca:40:26:68: e9:92:33:09:64:ab:09:26:29:2c:0c:03:f4:25:6c:99:2e:82: fc:11:25:c1:8b:10:7e:27:b0:2a:ad:22:af:a6:a5:4d:3b:37: 6f:4a:3c:24:22:a8:4d:56:23:8c:53:60:ef:34:0f:9c:3f:1f: 7d:b4:2f:eb:91:3c:00:36:f1:d5:eb:b6:8b:6c:18:a9:c4:b9: 91:54:79:08:2f:14:24:1f:1a:a2:47:2f:3c:ae:53:7f:93:07: 0e:92:f3:89:25:14:be:a2:70:0a:0f:9f:66:ec:49:56:b9:41: 02:70:26:4b:6c:e2:eb:d8:1c:af:a1:b8:ba:b3:96:a3:aa:19: 59:cf:57:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbfCw8bwQMbEwOJX1MLxdNgM9ivEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTA1MTQyMTU1MDBaFw0yNjA1MTMyMjAwMDBaMDMxMTAvBgNV BAMTKDVCQkE2MjIyREQ5MjdBOTQ5N0JEMDU5NThFREU5QzgzNzBCOTk3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD10JfoTVxOeL8xfteKQiHz12t/ qglWxCUN9aYdot3bAi588AEMiS1iaijasMUAAh4fEXCLi1lSuCrqAotyvijFwXd5 ZP4OJ/j+OeIjNo39t4TUOE0aObj/A1ik4MXR0v43b2aKr9uE5vE2CoQgua76g7uS x5lgARhQgRVieCEHZeEfapBk1fFyj2M7HVZQDQG5N54qZi84MCZ9Ciz55vUyzrPw VQ53tO6Axjk03CxYjBUuQw57ZAlYr4yH9nX0/T4/gA4rVUZkJtiUxKFZYt0nj0vA xAG6juqw7H8GnjXlawP7NV64Vi4nay3G0+UT7Ii9WKPaAdgHQnkYPHKxLA5lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUW7piIt2SepSXvQWVjt6cg3C5l7owHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NjgwZDBkLWUyNDAtNGFhZi1i YzIzLTI4MjM1OTM3MzI4OS8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuswwDQYJ KoZIhvcNAQELBQADggEBAHQ62sQVWw0jhnMHxUAxSUBN7V3ifdFPrmyx8IqJw2F5 ximCs4ZRCjckqzcUUqvP49aVVDS22zE+hK0yOiu5c6VG834i5d3yYoq88FEjCuQD wnAEvTGFdNobdLC18PoUvYUjAVnh4GS5K5d/yI5zPmL6Or5UTXq0SgZ0ykAmaOmS MwlkqwkmKSwMA/QlbJkugvwRJcGLEH4nsCqtIq+mpU07N29KPCQiqE1WI4xTYO80 D5w/H320L+uRPAA28dXrtotsGKnEuZFUeQgvFCQfGqJHLzyuU3+TBw6S84klFL6i cAoPn2bsSVa5QQJwJkts4uvYHK+huLqzlqOqGVnPVyU= -----END CERTIFICATE-----Generated at Sun Jun 8 06:38:27 2025 by rpki-client