$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: HmlGJU60qnT6VsG24BHqwMQLdMGBaxDBrgRKZDFmkxU= Subject key identifier: DA:F3:F3:E9:E9:87:2D:0C:84:F3:A5:CF:D6:1B:89:A7:9B:9E:81:47 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 72781614D55B663D8603F4E977373047FF2CB42F Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa Signing time: Mon 02 Jun 2025 02:01:44 +0000 ROA not before: Mon 02 Jun 2025 01:56:44 +0000 ROA not after: Mon 01 Jun 2026 02:01:44 +0000 asID: 137378 IP address blocks: 103.119.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 01:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:78:16:14:d5:5b:66:3d:86:03:f4:e9:77:37:30:47:ff:2c:b4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jun 2 01:56:44 2025 GMT Not After : Jun 1 02:01:44 2026 GMT Subject: CN=DAF3F3E9E9872D0C84F3A5CFD61B89A79B9E8147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b8:a2:6a:26:9b:46:db:6a:22:ea:9a:c3:72: 31:c9:0b:9c:c4:7c:d4:3e:ce:29:28:ee:21:b8:de: f9:e0:46:a9:03:0e:58:4f:2d:22:ac:27:65:c9:3f: 8d:82:a7:5b:39:fa:9a:21:a0:58:0f:e9:d1:4d:f1: 31:ac:d7:b3:7d:88:4b:3b:92:46:0e:53:3d:f1:47: 8d:03:3b:56:bb:1d:79:fd:f4:44:88:f0:3d:3a:4e: 06:6f:bb:8d:ea:54:55:21:62:8b:4e:71:ec:63:81: 69:da:40:79:db:0c:f8:03:d3:18:3f:2f:ed:a3:c1: 48:58:ef:12:e9:14:b6:62:35:f0:80:83:33:00:5c: bb:05:c0:17:49:80:17:0c:33:7c:82:d5:ae:f8:a2: d2:34:23:ee:2f:a9:64:b4:ca:1a:11:97:5e:1d:65: 68:51:82:74:af:fe:ef:4f:7f:a0:55:b9:17:31:1b: 27:44:6e:41:d7:5d:70:61:fa:2b:2c:1b:a5:10:21: 59:4e:fc:07:42:b5:29:4a:28:6e:5d:fa:e7:8d:e4: c9:f1:0a:27:fe:0d:f0:78:5e:45:26:de:fb:bc:22: f9:be:c4:ef:c0:64:65:59:f1:58:9e:5c:6a:bf:fb: b5:6d:4f:29:d4:53:ae:09:d4:e2:8f:40:eb:2f:9b: e4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F3:F3:E9:E9:87:2D:0C:84:F3:A5:CF:D6:1B:89:A7:9B:9E:81:47 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.117.0/24 Signature Algorithm: sha256WithRSAEncryption b1:30:3f:85:e2:e6:e8:d7:81:07:fb:dd:08:bd:c4:5c:2a:29: 4d:ff:67:24:8b:7a:78:aa:93:ba:4d:29:fb:49:2c:f9:9c:69: 4b:cd:3f:ca:ca:2e:be:d7:9c:34:8d:ee:c7:22:e5:02:fe:cd: 4e:4e:7b:1c:7e:b7:91:3c:12:6d:7a:17:ad:61:d3:f2:30:5c: e4:72:10:ed:5a:22:c0:1d:58:03:34:de:b5:73:f9:18:35:08: 2c:e5:ed:9e:66:b6:9a:bb:f2:ad:73:a4:b8:e0:5a:38:28:a8: a0:dd:68:4f:34:df:d3:7b:ca:02:b5:29:77:ce:f3:76:81:af: 59:1c:75:a8:04:d5:3d:68:54:97:eb:8b:81:40:14:ad:a6:25: 49:e3:b6:39:da:09:b4:2c:ac:01:3d:68:b0:1b:46:4a:2c:ec: 3b:33:b6:c9:6d:86:0c:74:75:ed:e3:16:2f:7e:30:7b:0f:83: 17:9e:88:1c:5e:65:c7:d4:14:8a:a5:7d:4b:20:df:f3:8e:89: f3:41:ba:16:3e:8b:8c:f6:f3:d0:f9:c9:c7:9a:23:6b:f2:73: ec:4b:42:07:22:0a:48:2e:78:e9:49:48:b1:1e:e9:2f:7c:8c: a6:3f:d4:c4:0c:fa:fc:ca:14:2a:c8:52:4c:e1:bc:59:f1:88: 17:63:44:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcngWFNVbZj2GA/TpdzcwR/8stC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNTA2MDIwMTU2NDRaFw0yNjA2MDEwMjAxNDRaMDMxMTAvBgNV BAMTKERBRjNGM0U5RTk4NzJEMEM4NEYzQTVDRkQ2MUI4OUE3OUI5RTgxNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbuKJqJptG22oi6prDcjHJC5zE fNQ+ziko7iG43vngRqkDDlhPLSKsJ2XJP42Cp1s5+pohoFgP6dFN8TGs17N9iEs7 kkYOUz3xR40DO1a7HXn99ESI8D06TgZvu43qVFUhYotOcexjgWnaQHnbDPgD0xg/ L+2jwUhY7xLpFLZiNfCAgzMAXLsFwBdJgBcMM3yC1a74otI0I+4vqWS0yhoRl14d ZWhRgnSv/u9Pf6BVuRcxGydEbkHXXXBh+issG6UQIVlO/AdCtSlKKG5d+ueN5Mnx Cif+DfB4XkUm3vu8Ivm+xO/AZGVZ8VieXGq/+7VtTynUU64J1OKPQOsvm+SDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2vPz6emHLQyE86XP1huJp5uegUcwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3UwDQYJ KoZIhvcNAQELBQADggEBALEwP4Xi5ujXgQf73Qi9xFwqKU3/ZySLeniqk7pNKftJ LPmcaUvNP8rKLr7XnDSN7sci5QL+zU5Oexx+t5E8Em16F61h0/IwXORyEO1aIsAd WAM03rVz+Rg1CCzl7Z5mtpq78q1zpLjgWjgoqKDdaE8039N7ygK1KXfO83aBr1kc dagE1T1oVJfri4FAFK2mJUnjtjnaCbQsrAE9aLAbRkos7Dsztslthgx0de3jFi9+ MHsPgxeeiBxeZcfUFIqlfUsg3/OOifNBuhY+i4z289D5yceaI2vyc+xLQgciCkgu eOlJSLEe6S98jKY/1MQM+vzKFCrIUkzhvFnxiBdjRPY= -----END CERTIFICATE-----Generated at Wed Nov 5 21:32:50 2025 by rpki-client