$ rpki-client -vvf repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa File: 3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa (raw, json) Hash identifier: nIcaXDvKx2+XVxNFuL8CckiCEV48hFgqOSdn9qzzkF4= Subject key identifier: 29:74:5E:6C:12:2E:60:14:E4:DA:A3:86:2F:FC:C9:5D:92:89:82:60 Certificate issuer: /CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Certificate serial: 717CC27706BAFDFDAB30C118F2D6B9CCD97982F4 Authority key identifier: E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa Signing time: Mon 02 Jun 2025 02:04:32 +0000 ROA not before: Mon 02 Jun 2025 01:59:32 +0000 ROA not after: Mon 01 Jun 2026 02:04:32 +0000 asID: 63885 IP address blocks: 103.194.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7c:c2:77:06:ba:fd:fd:ab:30:c1:18:f2:d6:b9:cc:d9:79:82:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Validity Not Before: Jun 2 01:59:32 2025 GMT Not After : Jun 1 02:04:32 2026 GMT Subject: CN=29745E6C122E6014E4DAA3862FFCC95D92898260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:11:ef:12:84:93:03:74:e2:b4:b7:8a:ac:39: cf:09:de:52:48:02:63:22:9a:cd:6c:a6:e0:81:22: 14:bf:8f:ef:ab:5f:48:9f:49:5a:76:34:51:ee:61: b8:9d:c2:8b:2c:1c:18:20:b6:fb:47:c7:66:cd:65: 78:43:1a:02:98:00:5e:24:ab:5c:9e:bc:b4:41:1d: cf:05:1d:35:fa:09:32:d1:fc:10:d5:72:a9:33:1a: 89:fc:fc:71:77:a4:ac:41:39:46:ae:98:fd:2a:79: 98:48:5c:9f:10:7c:2d:f0:13:42:af:e6:8f:9e:9f: a8:83:81:f7:cd:86:f0:52:49:57:1b:f7:ed:f9:be: 01:08:5c:ad:95:3d:52:0c:43:10:e9:24:ae:3e:f6: 86:0c:2c:73:e2:66:57:4e:bb:93:f3:c0:48:dc:9e: 98:9a:2a:f1:13:c0:c2:d6:af:21:3d:b4:b4:15:e6: 90:c3:64:9d:13:7b:5f:9a:8f:4d:6f:8a:79:7f:43: 5b:f7:48:fb:f7:31:1c:90:09:68:3b:bb:a3:9e:91: 2f:ce:0c:86:14:94:81:98:fd:58:50:7c:de:a7:af: da:48:28:5b:b3:52:7c:c8:b5:10:3d:32:f0:9b:91: 56:c0:8c:8a:ab:84:e7:f2:36:85:cb:a0:70:3b:ad: 04:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:74:5E:6C:12:2E:60:14:E4:DA:A3:86:2F:FC:C9:5D:92:89:82:60 X509v3 Authority Key Identifier: keyid:E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.194.172.0/22 Signature Algorithm: sha256WithRSAEncryption a4:f1:62:1c:45:4b:32:29:d7:8c:e3:ae:3d:e4:77:8e:94:86: df:9d:52:3f:68:40:f3:17:9e:5b:32:56:a2:82:ab:9c:00:9d: bb:90:83:9c:ce:0e:7a:9e:6c:6f:b5:91:aa:85:2b:ce:db:cc: 38:96:df:c5:71:b8:c7:af:2f:5b:ce:df:35:b3:28:69:da:51: 50:9f:41:f2:9c:a0:0a:55:68:2a:fc:0f:2d:9c:8a:8b:c1:ec: 75:21:63:37:4d:80:69:8b:1c:21:2f:5a:f8:da:c4:ef:d4:aa: e3:4d:6c:cd:1a:e9:a1:93:cd:d8:e3:52:64:b9:20:75:f6:b1: 42:c6:ec:21:50:03:68:a6:d8:8e:19:19:fc:b5:f7:32:1c:2c: 46:55:97:33:ce:93:5f:1c:e2:3d:19:3d:3e:02:fa:8c:e3:e7: ff:57:d4:f5:02:39:7f:00:74:b8:82:b7:25:3a:6c:1c:ba:9f: 3b:24:d0:d0:8f:a9:4f:c8:37:95:d6:18:4b:c7:89:3b:37:25: de:59:6c:7b:c3:14:a9:06:13:b6:36:24:b5:2b:f5:80:1a:f1: 60:14:82:da:ae:13:48:63:a4:8e:b0:9c:61:52:c9:28:c1:f3: 29:37:ff:31:6e:e1:9e:d3:0c:e0:de:fc:3e:fb:15:00:15:a4: 93:af:3c:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcXzCdwa6/f2rMMEY8ta5zNl5gvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2 QzUwQzE4ODAeFw0yNTA2MDIwMTU5MzJaFw0yNjA2MDEwMjA0MzJaMDMxMTAvBgNV BAMTKDI5NzQ1RTZDMTIyRTYwMTRFNERBQTM4NjJGRkNDOTVEOTI4OTgyNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Ee8ShJMDdOK0t4qsOc8J3lJI AmMims1spuCBIhS/j++rX0ifSVp2NFHuYbidwossHBggtvtHx2bNZXhDGgKYAF4k q1yevLRBHc8FHTX6CTLR/BDVcqkzGon8/HF3pKxBOUaumP0qeZhIXJ8QfC3wE0Kv 5o+en6iDgffNhvBSSVcb9+35vgEIXK2VPVIMQxDpJK4+9oYMLHPiZldOu5PzwEjc npiaKvETwMLWryE9tLQV5pDDZJ0Te1+aj01vinl/Q1v3SPv3MRyQCWg7u6OekS/O DIYUlIGY/VhQfN6nr9pIKFuzUnzItRA9MvCbkVbAjIqrhOfyNoXLoHA7rQRjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKXRebBIuYBTk2qOGL/zJXZKJgmAwHwYDVR0j BBgwFoAU5CDxNPoaa6cFiEJL1Ohi7mxQwYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZmUzNWZhYS1lZDJiLTQyNzEtYjQ4Yy00ZWEyMWMzMDkzNTIvMC9FNDIwRjEzNEZB MUE2QkE3MDU4ODQyNEJENEU4NjJFRTZDNTBDMTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2QzUw QzE4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmZTM1ZmFhLWVkMmItNDI3MS1i NDhjLTRlYTIxYzMwOTM1Mi8wLzMxMzAzMzJlMzEzOTM0MmUzMTM3MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNjMzMzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ8KsMA0GCSqG SIb3DQEBCwUAA4IBAQCk8WIcRUsyKdeM46495HeOlIbfnVI/aEDzF55bMlaigquc AJ27kIOczg56nmxvtZGqhSvO28w4lt/FcbjHry9bzt81syhp2lFQn0HynKAKVWgq /A8tnIqLwex1IWM3TYBpixwhL1r42sTv1KrjTWzNGumhk83Y41JkuSB19rFCxuwh UANoptiOGRn8tfcyHCxGVZczzpNfHOI9GT0+AvqM4+f/V9T1Ajl/AHS4grclOmwc up87JNDQj6lPyDeV1hhLx4k7NyXeWWx7wxSpBhO2NiS1K/WAGvFgFILarhNIY6SO sJxhUskowfMpN/8xbuGe0wzg3vw++xUAFaSTrzwc -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:33 2025 by rpki-client