$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20313439393533.roa File: 3130332e3131382e3137342e302f32342d3234203d3e20313439393533.roa (raw, json) Hash identifier: 1GWI9DsalLLnVqal8oinWe9NrHYqZtqJkFvL9lNkK+c= Subject key identifier: B2:9E:C5:36:A9:77:E2:EE:09:58:A7:60:7F:2C:32:01:61:3F:5B:A1 Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Certificate serial: 174A7B3E09D563B7714A231D6CEB2D3DB6C5C10F Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20313439393533.roa Signing time: Fri 16 May 2025 11:00:00 +0000 ROA not before: Fri 16 May 2025 10:55:00 +0000 ROA not after: Fri 15 May 2026 11:00:00 +0000 asID: 149953 IP address blocks: 103.118.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:4a:7b:3e:09:d5:63:b7:71:4a:23:1d:6c:eb:2d:3d:b6:c5:c1:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Validity Not Before: May 16 10:55:00 2025 GMT Not After : May 15 11:00:00 2026 GMT Subject: CN=B29EC536A977E2EE0958A7607F2C3201613F5BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6a:78:00:e5:58:7c:78:b5:e9:dc:13:c4:b8: 85:35:9f:b9:55:50:29:34:f9:48:45:23:92:04:9c: 10:a9:b1:24:8a:b0:3f:bd:e1:b2:58:51:7d:73:5a: d3:58:b4:51:cd:3c:16:83:0e:0d:fd:8d:99:6c:e2: 01:ed:a9:0e:cf:66:cc:ac:29:ee:e4:ce:63:6c:08: a1:3d:b6:11:46:19:24:19:72:b5:6a:05:1b:62:03: 69:fa:b0:db:13:ca:06:b7:0f:8a:fd:e0:57:71:37: f2:a3:45:2c:b0:fa:69:d4:d2:e5:68:0d:13:07:cb: 8c:b9:60:08:2d:e3:38:98:9b:b9:ab:03:80:5a:4e: 4d:b6:c7:7f:45:88:b5:e2:48:03:ae:78:f3:75:48: 0b:7e:91:7a:7f:30:23:80:f8:ec:86:4c:5d:d0:9b: 2b:0b:f5:5e:38:de:fd:02:7b:d8:8c:ce:71:96:29: 7a:ab:df:76:d9:aa:15:9c:25:30:fb:e4:60:88:72: 9b:6d:eb:27:c2:1c:7f:c4:cd:0d:04:08:44:c8:b6: e6:e8:df:1f:00:83:47:ad:e9:7b:20:1c:71:8e:0a: 42:31:07:27:3c:d2:0e:8f:78:a5:26:fa:3a:a1:15: 57:02:9e:51:4f:1a:d3:1b:e5:c5:fc:bd:9e:50:c5: 90:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9E:C5:36:A9:77:E2:EE:09:58:A7:60:7F:2C:32:01:61:3F:5B:A1 X509v3 Authority Key Identifier: keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137342e302f32342d3234203d3e20313439393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.174.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:87:34:01:2d:f1:2d:64:3f:5e:ce:28:36:e1:9e:c1:b9:0f: 2a:de:51:97:87:a5:79:c7:70:a2:94:65:a8:5a:c7:7d:82:20: 9c:9f:3b:78:03:6b:51:2c:1b:d4:3c:a7:4f:a3:87:58:10:1b: 18:1d:ea:f8:db:a9:d9:c1:a2:5e:27:17:05:cb:eb:a3:1b:a2: 5a:f7:ea:88:d6:88:4d:61:24:9a:28:cb:69:40:2e:eb:73:67: 3b:fa:75:77:9d:f7:18:66:9a:02:92:e6:0d:e4:52:f9:46:3c: 8a:1e:ef:c1:fc:44:44:7f:68:f2:75:82:10:9a:90:90:8d:f6: 63:1c:9e:d8:15:51:e3:87:90:d1:32:c4:33:2d:5f:60:66:0c: 84:b4:23:05:08:4c:40:01:e7:da:fd:8f:92:85:af:b4:8e:ac: 1c:1e:0b:63:2f:a1:cb:54:68:d4:a3:00:f5:79:8e:9b:04:ff: b1:f2:c1:b9:4c:e2:9d:de:e9:8a:eb:1a:81:93:60:df:b0:a3: a1:bb:c6:7b:77:71:c4:a1:f1:b6:6b:ab:b5:46:58:e3:4a:7b: c0:ad:ff:80:2d:e5:2b:55:42:d3:8a:c0:1c:fe:24:ef:07:31: 3d:7d:91:2a:ce:9c:a9:dd:09:c7:d1:ad:67:33:5d:5c:62:92: 04:f0:9b:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF0p7PgnVY7dxSiMdbOstPbbFwQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZC MDhFRkJGMzAeFw0yNTA1MTYxMDU1MDBaFw0yNjA1MTUxMTAwMDBaMDMxMTAvBgNV BAMTKEIyOUVDNTM2QTk3N0UyRUUwOTU4QTc2MDdGMkMzMjAxNjEzRjVCQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlangA5Vh8eLXp3BPEuIU1n7lV UCk0+UhFI5IEnBCpsSSKsD+94bJYUX1zWtNYtFHNPBaDDg39jZls4gHtqQ7PZsys Ke7kzmNsCKE9thFGGSQZcrVqBRtiA2n6sNsTyga3D4r94FdxN/KjRSyw+mnU0uVo DRMHy4y5YAgt4ziYm7mrA4BaTk22x39FiLXiSAOuePN1SAt+kXp/MCOA+OyGTF3Q mysL9V443v0Ce9iMznGWKXqr33bZqhWcJTD75GCIcptt6yfCHH/EzQ0ECETItubo 3x8Ag0et6XsgHHGOCkIxByc80g6PeKUm+jqhFVcCnlFPGtMb5cX8vZ5QxZB9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsp7FNql34u4JWKdgfywyAWE/W6EwHwYDVR0j BBgwFoAU27GMz1iRRSSvsRP+EzWcxrCO+/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMC9EQkIxOENDRjU4 OTE0NTI0QUZCMTEzRkUxMzM1OUNDNkIwOEVGQkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZCMDhF RkJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMxMzAzMzJlMzEzMTM4MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndq4wDQYJ KoZIhvcNAQELBQADggEBACyHNAEt8S1kP17OKDbhnsG5DyreUZeHpXnHcKKUZaha x32CIJyfO3gDa1EsG9Q8p0+jh1gQGxgd6vjbqdnBol4nFwXL66Mbolr36ojWiE1h JJooy2lALutzZzv6dXed9xhmmgKS5g3kUvlGPIoe78H8RER/aPJ1ghCakJCN9mMc ntgVUeOHkNEyxDMtX2BmDIS0IwUITEAB59r9j5KFr7SOrBweC2MvoctUaNSjAPV5 jpsE/7HywblM4p3e6YrrGoGTYN+wo6G7xnt3ccSh8bZrq7VGWONKe8Ct/4At5StV QtOKwBz+JO8HMT19kSrOnKndCcfRrWczXVxikgTwmx8= -----END CERTIFICATE-----Generated at Sat Jun 7 05:56:55 2025 by rpki-client