$ rpki-client -vvf repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa File: 3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa (raw, json) Hash identifier: 18AbUsVhIGEQ6HCFJXdnQ22A4WQNqI+V6DxuOgi205k= Subject key identifier: 5F:DD:85:09:B8:F6:B9:AA:5B:64:37:2D:B3:63:FE:22:A6:C8:34:0A Certificate issuer: /CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Certificate serial: 5022B969BABEB4C5809F7A6F9144E00E87B094FC Authority key identifier: 7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa Signing time: Sat 31 May 2025 13:02:22 +0000 ROA not before: Sat 31 May 2025 12:57:22 +0000 ROA not after: Sat 30 May 2026 13:02:22 +0000 asID: 142401 IP address blocks: 103.172.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 10:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:22:b9:69:ba:be:b4:c5:80:9f:7a:6f:91:44:e0:0e:87:b0:94:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Validity Not Before: May 31 12:57:22 2025 GMT Not After : May 30 13:02:22 2026 GMT Subject: CN=5FDD8509B8F6B9AA5B64372DB363FE22A6C8340A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3b:36:13:bd:7f:bc:33:3d:e2:83:b1:d5:33: 4c:13:af:e2:33:0d:d9:63:37:43:d1:04:50:52:34: 73:ae:dd:bb:25:c0:31:6b:40:6a:3b:91:73:0c:98: 56:52:20:31:33:2d:15:22:c5:49:dd:98:92:64:38: 5d:7d:05:cc:c8:ca:0b:de:f3:4f:bf:71:54:16:25: 9e:c8:72:e7:5e:ab:01:fa:97:17:43:b7:48:d6:22: e3:a3:b6:8f:24:4d:43:97:c9:14:08:bc:46:a9:e1: 52:da:01:6c:a7:7c:38:5d:4c:18:c4:a5:ff:36:0a: f2:32:c5:d7:02:4f:6b:4c:a8:50:92:b5:b9:9e:a2: 56:5c:9a:a8:52:e6:e4:87:6f:2b:c6:f0:ba:a5:15: 87:6a:a5:fa:e5:42:97:3c:a4:61:30:1f:80:99:95: 70:f2:b9:58:f2:93:5e:f8:a9:8d:19:1a:55:00:3e: e2:96:3c:ee:e2:64:5c:a9:47:93:15:dc:29:ce:90: a6:a4:d1:ef:44:8c:12:2b:81:c4:e9:fc:80:d7:c3: 4e:89:0b:69:aa:27:c7:6b:29:b1:cc:ea:47:37:e0: 28:73:81:e3:f4:70:6f:b3:42:16:72:81:a5:f2:7b: 94:d7:20:4e:ca:22:d9:c8:04:df:e2:1c:60:7b:c1: 9f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DD:85:09:B8:F6:B9:AA:5B:64:37:2D:B3:63:FE:22:A6:C8:34:0A X509v3 Authority Key Identifier: keyid:7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.240.0/24 Signature Algorithm: sha256WithRSAEncryption 39:b4:0f:4c:45:96:8c:13:e0:c5:a1:82:8d:89:0b:85:ce:01: 82:2c:34:c1:d0:b2:87:3a:64:bb:8c:69:25:c8:ed:12:fc:7f: 1b:3c:1c:8c:b6:a5:91:0f:66:38:d0:8d:21:b4:0d:b6:ac:c0: 2f:3d:df:8d:bf:96:06:02:17:d6:e0:2c:eb:42:15:c8:ef:de: 57:2c:ca:33:43:8a:d9:7d:ad:39:3b:13:87:29:11:43:58:7a: 54:e6:f0:b9:c9:f7:a9:1a:e2:df:ac:af:b7:92:d0:24:48:10: 84:03:d9:b9:17:75:4b:d5:2a:82:66:1b:98:43:42:42:e9:38: 7d:a4:1b:ed:e4:e7:0f:93:b4:c9:b6:72:be:4d:89:50:b4:fb: 9b:d2:78:e6:aa:63:84:ff:a3:8f:d1:0f:ea:7e:64:a7:cf:a7: fd:00:74:cd:88:06:32:e5:7d:5d:fa:6e:51:74:3e:93:f0:42: e1:3b:bc:df:58:38:b0:b8:97:44:7d:66:c5:75:dd:46:8b:27: 73:15:9c:c9:26:fc:28:3a:2b:da:a0:f1:c1:58:71:bb:2f:b0: e7:f8:5e:de:34:be:25:d0:a6:01:e3:d3:d7:6e:6a:07:e2:58: f5:55:c6:b5:32:3b:c7:32:30:7d:0b:a3:66:5b:51:87:1f:d2: 2e:bc:ed:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUCK5abq+tMWAn3pvkUTgDoewlPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJE Qzk1RkFGNTAeFw0yNTA1MzExMjU3MjJaFw0yNjA1MzAxMzAyMjJaMDMxMTAvBgNV BAMTKDVGREQ4NTA5QjhGNkI5QUE1QjY0MzcyREIzNjNGRTIyQTZDODM0MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROzYTvX+8Mz3ig7HVM0wTr+Iz DdljN0PRBFBSNHOu3bslwDFrQGo7kXMMmFZSIDEzLRUixUndmJJkOF19BczIygve 80+/cVQWJZ7IcudeqwH6lxdDt0jWIuOjto8kTUOXyRQIvEap4VLaAWynfDhdTBjE pf82CvIyxdcCT2tMqFCStbmeolZcmqhS5uSHbyvG8LqlFYdqpfrlQpc8pGEwH4CZ lXDyuVjyk174qY0ZGlUAPuKWPO7iZFypR5MV3CnOkKak0e9EjBIrgcTp/IDXw06J C2mqJ8drKbHM6kc34ChzgeP0cG+zQhZygaXye5TXIE7KItnIBN/iHGB7wZ/tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUX92FCbj2uapbZDcts2P+IqbINAowHwYDVR0j BBgwFoAUem5/45FS0cwXT2kiFD+q69yV+vUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTJjMTM4Yy0yZTI0LTQ5ZjUtOGFkYS0wMDI3Y2JhN2YxNzgvMC83QTZFN0ZFMzkx NTJEMUNDMTc0RjY5MjIxNDNGQUFFQkRDOTVGQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJEQzk1 RkFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMmMxMzhjLTJlMjQtNDlmNS04 YWRhLTAwMjdjYmE3ZjE3OC8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPAwDQYJ KoZIhvcNAQELBQADggEBADm0D0xFlowT4MWhgo2JC4XOAYIsNMHQsoc6ZLuMaSXI 7RL8fxs8HIy2pZEPZjjQjSG0DbaswC89342/lgYCF9bgLOtCFcjv3lcsyjNDitl9 rTk7E4cpEUNYelTm8LnJ96ka4t+sr7eS0CRIEIQD2bkXdUvVKoJmG5hDQkLpOH2k G+3k5w+TtMm2cr5NiVC0+5vSeOaqY4T/o4/RD+p+ZKfPp/0AdM2IBjLlfV36blF0 PpPwQuE7vN9YOLC4l0R9ZsV13UaLJ3MVnMkm/Cg6K9qg8cFYcbsvsOf4Xt40viXQ pgHj09duagfiWPVVxrUyO8cyMH0Lo2ZbUYcf0i687Z4= -----END CERTIFICATE-----Generated at Sat Jun 7 05:24:05 2025 by rpki-client