$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa File: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (raw, json) Hash identifier: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU= Subject key identifier: 6E:74:39:F9:C0:90:20:FC:30:3A:2A:FC:A3:28:97:EB:49:AC:47:CD Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 2C5DB90CAD23BEEA14C4003A04508EE274143FBA Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa Signing time: Thu 22 May 2025 13:44:42 +0000 ROA not before: Thu 22 May 2025 13:39:42 +0000 ROA not after: Thu 21 May 2026 13:44:42 +0000 asID: 147131 IP address blocks: 103.176.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5d:b9:0c:ad:23:be:ea:14:c4:00:3a:04:50:8e:e2:74:14:3f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: May 22 13:39:42 2025 GMT Not After : May 21 13:44:42 2026 GMT Subject: CN=6E7439F9C09020FC303A2AFCA32897EB49AC47CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:92:53:ed:c9:8c:18:f5:ac:f7:5f:7e:0f: 9e:8b:d6:26:34:98:33:d5:37:92:db:68:13:a5:01: 65:46:c5:ca:23:9f:95:fb:a0:d5:e3:9a:a9:6f:8c: 15:74:81:f4:16:ee:89:a1:56:00:3c:25:99:3f:78: 75:ad:8c:75:d3:b5:6b:99:f6:93:a8:6d:fb:d6:11: d1:f8:d8:4a:f2:91:cd:00:da:f1:a4:ba:b3:dc:fc: 1b:f0:3c:8e:89:8a:8f:2e:ab:99:a8:4b:6d:c8:87: bd:9e:3b:15:48:e1:76:f4:d9:3b:fc:5c:4c:c8:11: ce:6b:a3:d0:3e:ea:9a:19:75:d9:86:4e:d6:33:b8: 10:54:e3:39:b7:08:20:52:79:4d:8c:cb:53:4e:04: 59:c9:67:2e:a8:c5:52:44:a8:ed:b4:9e:9b:51:f1: 25:eb:ba:2a:13:f9:fd:ff:3c:a4:2a:87:f3:8e:da: 7e:8b:39:49:d7:e4:3d:64:b1:4a:c8:fb:1d:24:63: 0d:bc:f8:53:17:b0:a4:b0:74:21:2d:c2:29:ad:e5: be:70:16:59:8e:b4:89:be:c5:35:e6:95:30:c0:4c: 78:52:58:eb:12:08:16:68:b9:30:b1:38:b4:b6:fc: d1:a5:70:e2:bb:8a:49:d9:56:e7:66:84:39:c8:db: fb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:74:39:F9:C0:90:20:FC:30:3A:2A:FC:A3:28:97:EB:49:AC:47:CD X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.96.0/23 Signature Algorithm: sha256WithRSAEncryption 10:1a:79:b1:98:99:0a:d5:5b:ea:b2:f1:18:cc:e7:f6:82:b8: 73:19:b5:dc:bd:08:9f:b0:06:ed:d6:45:ab:52:c6:78:46:54: 4d:e3:6f:69:13:82:1b:cb:3b:a2:14:42:7a:15:8c:55:df:c4: 43:84:94:e0:b8:06:99:56:04:41:92:94:55:37:8d:9b:ae:5d: dd:9b:0f:94:f8:63:d2:38:2b:54:26:10:c2:c3:89:e0:a3:81: 76:36:1b:f2:1f:98:42:33:89:0a:dc:12:b2:bd:db:ee:5e:cb: f7:b9:54:e9:7e:9d:61:92:dc:ee:f4:a5:01:58:67:4c:73:7e: d5:77:91:cb:db:e4:76:24:3c:f6:c6:d8:0a:e6:9e:cf:67:c1: 39:2b:13:4b:3a:ab:2f:7c:6d:8e:32:2c:c1:f7:6f:74:04:a0: 73:1a:6b:fd:d8:d3:be:f9:e2:ee:c8:b3:cc:bb:b6:38:16:68: 51:16:f1:39:8e:42:d9:20:2c:5c:7e:38:d8:4d:c5:da:f1:bf: 76:9f:11:57:34:3f:1e:f1:d8:33:ea:80:4e:3a:e4:25:30:c5: c1:a2:b9:fa:6f:a5:18:5a:07:70:1a:a1:fa:1e:ba:7b:fa:9b: 80:2d:62:73:8b:37:ef:49:d8:ab:04:b7:9a:85:94:ed:97:c4: fc:95:4e:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULF25DK0jvuoUxAA6BFCO4nQUP7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNTA1MjIxMzM5NDJaFw0yNjA1MjExMzQ0NDJaMDMxMTAvBgNV BAMTKDZFNzQzOUY5QzA5MDIwRkMzMDNBMkFGQ0EzMjg5N0VCNDlBQzQ3Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsR5JT7cmMGPWs919+D56L1iY0 mDPVN5LbaBOlAWVGxcojn5X7oNXjmqlvjBV0gfQW7omhVgA8JZk/eHWtjHXTtWuZ 9pOobfvWEdH42Erykc0A2vGkurPc/BvwPI6Jio8uq5moS23Ih72eOxVI4Xb02Tv8 XEzIEc5ro9A+6poZddmGTtYzuBBU4zm3CCBSeU2My1NOBFnJZy6oxVJEqO20nptR 8SXruioT+f3/PKQqh/OO2n6LOUnX5D1ksUrI+x0kYw28+FMXsKSwdCEtwimt5b5w FlmOtIm+xTXmlTDATHhSWOsSCBZouTCxOLS2/NGlcOK7iknZVudmhDnI2/ttAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbnQ5+cCQIPwwOir8oyiX60msR80wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMzRkYzNmLTMwOGYtNGRlMS1h MzY1LTcwMWJkOWNmMTAwNC8wLzMxMzAzMzJlMzEzNzM2MmUzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7BgMA0GCSqG SIb3DQEBCwUAA4IBAQAQGnmxmJkK1VvqsvEYzOf2grhzGbXcvQifsAbt1kWrUsZ4 RlRN429pE4IbyzuiFEJ6FYxV38RDhJTguAaZVgRBkpRVN42brl3dmw+U+GPSOCtU JhDCw4ngo4F2NhvyH5hCM4kK3BKyvdvuXsv3uVTpfp1hktzu9KUBWGdMc37Vd5HL 2+R2JDz2xtgK5p7PZ8E5KxNLOqsvfG2OMizB9290BKBzGmv92NO++eLuyLPMu7Y4 FmhRFvE5jkLZICxcfjjYTcXa8b92nxFXND8e8dgz6oBOOuQlMMXBorn6b6UYWgdw GqH6Hrp7+puALWJzizfvSdirBLeahZTtl8T8lU7B -----END CERTIFICATE-----Generated at Sat Jun 7 22:58:00 2025 by rpki-client