$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32342d3234203d3e203538353532.roa File: 3130332e31312e32382e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: /mTdXyT+gOWNZmrakR3kOB6mMiFGpwMK0/fhJ9R5pM0= Subject key identifier: D1:58:78:BE:C9:2D:AB:AB:C7:6E:BF:C5:77:C4:E7:E8:D8:2A:7B:6F Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0125C9D833E4B8677E34C587B6F2BEFCDA8FC2F1 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 01:03:09 +0000 ROA not before: Mon 02 Jun 2025 00:58:09 +0000 ROA not after: Mon 01 Jun 2026 01:03:09 +0000 asID: 58552 IP address blocks: 103.11.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:25:c9:d8:33:e4:b8:67:7e:34:c5:87:b6:f2:be:fc:da:8f:c2:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:09 2025 GMT Not After : Jun 1 01:03:09 2026 GMT Subject: CN=D15878BEC92DABABC76EBFC577C4E7E8D82A7B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e4:aa:5c:46:d4:ad:75:8f:d7:84:33:ca:42: 2a:25:94:7d:ad:7e:06:c4:b5:84:62:95:f8:42:ab: 3e:db:16:a2:fe:c8:bc:3b:32:e4:c4:14:f3:8d:f5: 8d:b9:4d:93:41:8f:80:03:44:01:d3:11:76:05:f5: 0f:4e:8a:2b:11:71:14:09:f8:b9:36:f8:70:2a:94: 87:0e:bc:c7:62:8c:61:9e:f1:7b:58:99:03:11:57: 0f:a6:80:d0:b7:2c:d8:3e:80:79:22:d6:ea:43:0b: aa:ec:a3:18:2f:9d:f0:52:82:9e:15:4e:28:15:f1: 22:ec:67:bb:a1:50:a7:e2:37:bb:62:29:85:27:7c: f9:2d:93:7e:fb:e0:69:a6:08:70:5a:3c:9f:2b:c8: 84:92:27:08:cd:0d:e3:40:b8:73:f3:b2:59:a8:61: 74:d4:79:63:50:cd:92:83:29:e5:9a:a8:a5:3c:57: b8:b5:51:50:a7:54:49:2e:d8:47:ba:0c:db:b5:60: 7f:d1:ed:34:64:9c:6e:06:22:53:cb:19:ad:3f:48: 98:e0:fc:cc:2b:f5:1d:d1:14:4b:35:52:54:f0:98: e7:81:43:25:6e:f3:d1:82:7a:a7:2f:8f:1f:e7:a1: 5a:59:a3:a8:16:af:a6:48:9d:53:d1:85:26:cb:fd: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:58:78:BE:C9:2D:AB:AB:C7:6E:BF:C5:77:C4:E7:E8:D8:2A:7B:6F X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.28.0/24 Signature Algorithm: sha256WithRSAEncryption 67:19:8e:4b:f3:ec:9c:7e:46:3f:cf:4b:d0:2d:a8:1f:e9:9c: bd:7c:7b:9e:e2:44:dd:11:8d:48:86:0e:9d:5e:36:ad:55:b9: 42:40:54:3e:22:a9:05:26:39:fb:37:76:00:b6:c2:70:7f:a2: 8d:2c:d9:be:1e:13:fc:d8:bf:70:06:73:28:fb:38:45:64:e2: f3:d4:fd:10:94:39:e2:4c:ca:4a:05:53:ee:f4:22:01:c7:dd: 3a:56:ee:6a:af:9d:71:3a:81:12:82:da:be:ef:0a:e7:f6:8c: 3d:5a:c4:6e:e5:02:25:d9:1c:f0:d2:11:68:2e:f2:64:79:0f: 5f:f5:33:22:e2:11:91:75:75:6f:6b:62:54:6f:23:17:9c:ba: e6:c2:04:df:34:e8:8a:7f:d6:55:64:fd:ab:93:3b:47:85:4c: 14:f4:5c:77:df:db:83:cb:5b:7f:0d:1b:77:fe:3e:33:4b:1e: 66:32:06:87:01:8b:59:f0:91:0a:1e:6c:90:4a:b8:80:00:42: 12:bb:87:83:44:bb:a9:51:8b:fb:1c:f8:e3:69:45:73:b8:80: 10:89:bd:a9:f1:99:0f:b3:95:f1:28:c0:22:f4:71:32:fa:6e: 12:33:14:7f:06:52:95:2e:c4:b1:b1:40:9e:bb:65:4e:61:7f: 07:64:0b:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUASXJ2DPkuGd+NMWHtvK+/NqPwvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MDlaFw0yNjA2MDEwMTAzMDlaMDMxMTAvBgNV BAMTKEQxNTg3OEJFQzkyREFCQUJDNzZFQkZDNTc3QzRFN0U4RDgyQTdCNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm5KpcRtStdY/XhDPKQiollH2t fgbEtYRilfhCqz7bFqL+yLw7MuTEFPON9Y25TZNBj4ADRAHTEXYF9Q9OiisRcRQJ +Lk2+HAqlIcOvMdijGGe8XtYmQMRVw+mgNC3LNg+gHki1upDC6rsoxgvnfBSgp4V TigV8SLsZ7uhUKfiN7tiKYUnfPktk3774GmmCHBaPJ8ryISSJwjNDeNAuHPzslmo YXTUeWNQzZKDKeWaqKU8V7i1UVCnVEku2Ee6DNu1YH/R7TRknG4GIlPLGa0/SJjg /Mwr9R3RFEs1UlTwmOeBQyVu89GCeqcvjx/noVpZo6gWr6ZInVPRhSbL/YJdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0Vh4vsktq6vHbr/Fd8Tn6Ngqe28wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnCxwwDQYJKoZIhvcN AQELBQADggEBAGcZjkvz7Jx+Rj/PS9AtqB/pnL18e57iRN0RjUiGDp1eNq1VuUJA VD4iqQUmOfs3dgC2wnB/oo0s2b4eE/zYv3AGcyj7OEVk4vPU/RCUOeJMykoFU+70 IgHH3TpW7mqvnXE6gRKC2r7vCuf2jD1axG7lAiXZHPDSEWgu8mR5D1/1MyLiEZF1 dW9rYlRvIxecuubCBN806Ip/1lVk/auTO0eFTBT0XHff24PLW38NG3f+PjNLHmYy BocBi1nwkQoebJBKuIAAQhK7h4NEu6lRi/sc+ONpRXO4gBCJvanxmQ+zlfEowCL0 cTL6bhIzFH8GUpUuxLGxQJ67ZU5hfwdkC7k= -----END CERTIFICATE-----Generated at Tue Nov 4 09:27:28 2025 by rpki-client