$ rpki-client -vvf repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa File: 3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa (raw, json) Hash identifier: AfZT+DYt+W7l5q6Eb5R0GGURTcYit/OtninY3XWSM0s= Subject key identifier: 8F:CB:FB:4B:D9:56:79:FE:70:36:81:FB:88:0C:55:02:C2:F3:B0:95 Certificate issuer: /CN=A5BB79678DB1239CD393222080CAAF085BEE737F Certificate serial: 07E80FBD368084A57FECECF4736E1FE0C22982F0 Authority key identifier: A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa Signing time: Mon 19 May 2025 06:00:00 +0000 ROA not before: Mon 19 May 2025 05:55:00 +0000 ROA not after: Mon 18 May 2026 06:00:00 +0000 asID: 150923 IP address blocks: 103.97.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e8:0f:bd:36:80:84:a5:7f:ec:ec:f4:73:6e:1f:e0:c2:29:82:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5BB79678DB1239CD393222080CAAF085BEE737F Validity Not Before: May 19 05:55:00 2025 GMT Not After : May 18 06:00:00 2026 GMT Subject: CN=8FCBFB4BD95679FE703681FB880C5502C2F3B095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:08:b1:8d:1e:f4:03:37:9c:56:63:85:b3:e7: 36:dc:1b:07:9a:64:97:e1:b2:62:74:d8:fa:85:8b: 80:64:01:38:ea:65:e3:d9:ed:12:07:28:40:4b:39: 2f:46:78:75:be:d9:d1:79:fe:8b:aa:17:5e:41:4b: 3f:3c:38:2d:f6:52:c9:dc:cb:76:87:f0:ae:00:a9: f2:80:06:87:6a:7f:2b:0d:41:8c:1b:ac:1c:a0:77: d9:ab:83:c1:c7:6c:c7:c2:60:09:db:7c:68:a2:81: b7:9d:fd:84:f5:7d:37:c4:8c:9b:31:7b:b5:bc:bf: 32:75:77:b9:86:3d:db:1a:52:7d:98:68:e7:0a:16: f6:79:35:09:62:88:63:3d:55:5f:4c:68:20:ea:69: f6:97:7b:42:49:0b:af:95:1b:3f:56:2e:cc:98:1c: c0:eb:0e:98:48:c1:ec:cd:9e:00:c1:1b:0d:12:bd: 3d:3c:5f:96:cd:1f:e8:0d:f7:32:5c:61:6e:f6:0e: 64:27:e0:9a:c1:78:4f:78:c7:f9:01:55:1f:e0:24: 32:d7:08:7f:96:9f:74:08:85:52:81:ee:7c:86:06: 3d:8e:df:38:20:3a:ee:73:38:a5:42:df:4e:ee:0d: 16:d5:ca:a6:14:e2:da:62:95:5f:67:46:2c:1e:01: d8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CB:FB:4B:D9:56:79:FE:70:36:81:FB:88:0C:55:02:C2:F3:B0:95 X509v3 Authority Key Identifier: keyid:A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.225.0/24 Signature Algorithm: sha256WithRSAEncryption 66:0a:35:01:44:8b:f7:45:61:1d:e9:d8:62:bd:19:17:6b:0c: a7:f9:66:d1:62:17:c2:1d:d7:57:d7:1c:01:4b:cc:5f:70:2f: be:a5:a5:c5:c1:2e:58:7d:a2:e1:68:18:3f:16:e0:5f:7c:19: 13:a1:1b:f5:43:4b:79:33:10:ba:b9:c0:70:e2:29:ae:34:e9: 71:a6:13:d2:7a:30:4b:63:2f:68:1c:4b:89:0a:22:ca:e1:03: 79:82:8a:72:d5:4e:e4:61:26:90:22:70:34:2c:b3:13:69:7e: fd:60:16:ad:55:01:8d:76:15:d5:4c:55:a1:4f:ff:0c:bf:c4: 59:2f:76:bf:be:e9:6b:b4:0e:1b:a1:33:34:20:35:56:ea:32: 87:17:1c:b4:48:c9:bc:03:1b:19:09:de:21:2e:57:1e:96:61: 86:e3:f3:0a:40:01:72:83:cb:62:aa:e9:b5:6c:d9:20:cb:dc: 2a:0c:8d:84:a9:b5:1f:86:f5:a8:2e:94:df:76:54:f0:db:58: 7f:ed:2c:6a:eb:93:6e:c5:7e:a4:04:2d:6a:2e:a8:4d:31:be: 1c:e5:59:84:a9:13:ac:f9:9c:14:59:6a:97:28:4e:99:bb:51: d9:4c:63:fb:0a:73:c1:75:57:92:d2:db:8f:45:93:ad:53:e4: 57:2e:00:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB+gPvTaAhKV/7Oz0c24f4MIpgvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1 QkVFNzM3RjAeFw0yNTA1MTkwNTU1MDBaFw0yNjA1MTgwNjAwMDBaMDMxMTAvBgNV BAMTKDhGQ0JGQjRCRDk1Njc5RkU3MDM2ODFGQjg4MEM1NTAyQzJGM0IwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkCLGNHvQDN5xWY4Wz5zbcGwea ZJfhsmJ02PqFi4BkATjqZePZ7RIHKEBLOS9GeHW+2dF5/ouqF15BSz88OC32Usnc y3aH8K4AqfKABodqfysNQYwbrBygd9mrg8HHbMfCYAnbfGiigbed/YT1fTfEjJsx e7W8vzJ1d7mGPdsaUn2YaOcKFvZ5NQliiGM9VV9MaCDqafaXe0JJC6+VGz9WLsyY HMDrDphIwezNngDBGw0SvT08X5bNH+gN9zJcYW72DmQn4JrBeE94x/kBVR/gJDLX CH+Wn3QIhVKB7nyGBj2O3zggOu5zOKVC307uDRbVyqYU4tpilV9nRiweAdjFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj8v7S9lWef5wNoH7iAxVAsLzsJUwHwYDVR0j BBgwFoAUpbt5Z42xI5zTkyIggMqvCFvuc38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NGFhYTJmMS02M2E5LTQyODEtODk0Mi1mYjVkODI0MTE5YTQvMC9BNUJCNzk2NzhE QjEyMzlDRDM5MzIyMjA4MENBQUYwODVCRUU3MzdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1QkVF NzM3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0YWFhMmYxLTYzYTktNDI4MS04 OTQyLWZiNWQ4MjQxMTlhNC8wLzMxMzAzMzJlMzkzNzJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2HhMA0GCSqG SIb3DQEBCwUAA4IBAQBmCjUBRIv3RWEd6dhivRkXawyn+WbRYhfCHddX1xwBS8xf cC++paXFwS5YfaLhaBg/FuBffBkToRv1Q0t5MxC6ucBw4imuNOlxphPSejBLYy9o HEuJCiLK4QN5gopy1U7kYSaQInA0LLMTaX79YBatVQGNdhXVTFWhT/8Mv8RZL3a/ vulrtA4boTM0IDVW6jKHFxy0SMm8AxsZCd4hLlcelmGG4/MKQAFyg8tiqum1bNkg y9wqDI2EqbUfhvWoLpTfdlTw21h/7Sxq65NuxX6kBC1qLqhNMb4c5VmEqROs+ZwU WWqXKE6Zu1HZTGP7CnPBdVeS0tuPRZOtU+RXLgBT -----END CERTIFICATE-----Generated at Sun Jun 8 23:26:31 2025 by rpki-client