$ rpki-client -vvf repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa File: 3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa (raw, json) Hash identifier: dQbf3sVA4jaVic2L+O9XI1H3j7ymjWLOW6r+meQnacg= Subject key identifier: 87:12:E2:71:A0:C0:14:40:9F:17:45:FB:8D:45:BD:B8:F8:31:88:08 Certificate issuer: /CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Certificate serial: 1E33BB1365441126A5F4C808EC3599940D02D2B5 Authority key identifier: 7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa Signing time: Sat 31 May 2025 13:02:22 +0000 ROA not before: Sat 31 May 2025 12:57:22 +0000 ROA not after: Sat 30 May 2026 13:02:22 +0000 asID: 142401 IP address blocks: 103.172.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 18:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:33:bb:13:65:44:11:26:a5:f4:c8:08:ec:35:99:94:0d:02:d2:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Validity Not Before: May 31 12:57:22 2025 GMT Not After : May 30 13:02:22 2026 GMT Subject: CN=8712E271A0C014409F1745FB8D45BDB8F8318808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3e:58:d2:43:5c:36:1d:29:ef:29:fe:7b:c1: 6c:12:7f:d7:ac:52:d9:20:3d:47:43:dd:26:3a:c1: 41:f8:c3:a5:ee:7d:6c:33:2a:c8:8a:88:4c:e9:90: 08:2a:d8:b4:37:e7:96:b3:3c:7a:07:a4:c2:2e:f9: 79:09:47:7d:92:7d:58:99:ff:fc:af:f7:94:fd:e0: 6f:f9:55:7d:77:2c:f4:36:c4:50:f9:a1:a1:dd:74: a0:64:0e:5e:36:fb:9c:cc:17:99:f5:9b:aa:09:5b: 0b:33:5d:d6:bd:00:13:06:b4:5c:e1:25:70:8c:5e: 55:25:57:53:93:6e:10:a5:a8:c4:35:a2:ef:f0:4f: e1:77:03:0b:ca:14:22:00:d9:c3:c0:a8:56:b4:cc: 47:a0:da:df:19:b5:ec:91:3b:47:d4:9b:84:8a:be: 9f:8d:5e:ac:19:d4:54:7e:6a:8a:72:c6:9d:57:db: 96:07:60:d2:52:d2:aa:af:b4:cd:50:46:9d:b5:ee: 03:e2:e9:52:f8:08:08:75:a0:4d:a1:e6:fd:4b:99: e2:ac:51:88:91:06:c2:33:fa:ea:e9:a3:60:00:df: 72:b2:21:03:a1:bd:93:fd:c4:c0:73:9a:ba:ad:71: 14:8c:2f:00:f4:56:38:a2:ca:78:86:61:24:4c:fe: 54:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:12:E2:71:A0:C0:14:40:9F:17:45:FB:8D:45:BD:B8:F8:31:88:08 X509v3 Authority Key Identifier: keyid:7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.240.0/23 Signature Algorithm: sha256WithRSAEncryption 33:36:a9:26:cd:8a:36:6d:23:17:ab:4c:a6:37:00:bb:56:51: a0:c8:be:d9:c4:f2:4c:90:67:f3:c7:87:8d:2b:cc:8d:7d:17: 76:06:25:f3:2a:3a:1d:36:92:80:d5:52:b9:8a:aa:f6:b5:07: 78:f6:a3:15:b7:69:95:66:86:2f:cc:7f:bf:6f:c5:ab:29:cc: 82:32:dc:e7:8c:c1:21:09:02:bb:97:41:13:d8:18:2b:78:5b: 37:90:8b:cc:5f:34:29:2b:12:a0:92:37:cf:26:8f:20:65:d7: 8f:da:4c:31:34:03:bc:07:21:68:99:1b:6e:4b:cc:8a:70:78: b4:57:d4:64:36:89:76:fd:e0:9d:bf:84:9a:6e:9d:da:21:bd: 49:ba:29:70:dd:8a:7b:b7:56:47:1a:9e:e4:8c:85:15:15:bf: 95:35:68:1e:48:5f:76:4f:a1:d7:df:c1:17:21:0b:59:0f:14: fc:8b:8e:40:12:6f:f6:08:61:3d:0d:79:ee:44:a7:9d:51:15: 25:52:cd:89:a3:f3:55:8a:58:f0:11:a2:c3:94:15:aa:d3:49: cb:6a:fb:d5:f6:b2:18:41:30:0e:cc:da:37:ce:bf:7d:c3:d6: 49:af:34:26:56:5d:0b:36:98:63:c6:8d:1f:71:66:84:4c:c4: 8b:b4:7f:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHjO7E2VEESal9MgI7DWZlA0C0rUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJE Qzk1RkFGNTAeFw0yNTA1MzExMjU3MjJaFw0yNjA1MzAxMzAyMjJaMDMxMTAvBgNV BAMTKDg3MTJFMjcxQTBDMDE0NDA5RjE3NDVGQjhENDVCREI4RjgzMTg4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPPljSQ1w2HSnvKf57wWwSf9es UtkgPUdD3SY6wUH4w6XufWwzKsiKiEzpkAgq2LQ355azPHoHpMIu+XkJR32SfViZ //yv95T94G/5VX13LPQ2xFD5oaHddKBkDl42+5zMF5n1m6oJWwszXda9ABMGtFzh JXCMXlUlV1OTbhClqMQ1ou/wT+F3AwvKFCIA2cPAqFa0zEeg2t8ZteyRO0fUm4SK vp+NXqwZ1FR+aopyxp1X25YHYNJS0qqvtM1QRp217gPi6VL4CAh1oE2h5v1LmeKs UYiRBsIz+urpo2AA33KyIQOhvZP9xMBzmrqtcRSMLwD0VjiiyniGYSRM/lTtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhxLicaDAFECfF0X7jUW9uPgxiAgwHwYDVR0j BBgwFoAUem5/45FS0cwXT2kiFD+q69yV+vUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTJjMTM4Yy0yZTI0LTQ5ZjUtOGFkYS0wMDI3Y2JhN2YxNzgvMC83QTZFN0ZFMzkx NTJEMUNDMTc0RjY5MjIxNDNGQUFFQkRDOTVGQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJEQzk1 RkFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMmMxMzhjLTJlMjQtNDlmNS04 YWRhLTAwMjdjYmE3ZjE3OC8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrPAwDQYJ KoZIhvcNAQELBQADggEBADM2qSbNijZtIxerTKY3ALtWUaDIvtnE8kyQZ/PHh40r zI19F3YGJfMqOh02koDVUrmKqva1B3j2oxW3aZVmhi/Mf79vxaspzIIy3OeMwSEJ AruXQRPYGCt4WzeQi8xfNCkrEqCSN88mjyBl14/aTDE0A7wHIWiZG25LzIpweLRX 1GQ2iXb94J2/hJpundohvUm6KXDdinu3VkcanuSMhRUVv5U1aB5IX3ZPodffwRch C1kPFPyLjkASb/YIYT0Nee5Ep51RFSVSzYmj81WKWPARosOUFarTSctq+9X2shhB MA7M2jfOv33D1kmvNCZWXQs2mGPGjR9xZoRMxIu0f54= -----END CERTIFICATE-----Generated at Sat Jun 7 19:53:46 2025 by rpki-client