$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa File: 3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa (raw, json) Hash identifier: egRehn4LjgjKySUKQkpl6SKgh3Imbo4d57t3tIaiJf4= Subject key identifier: 91:E1:D3:ED:86:5D:36:9A:DD:E0:7A:98:CF:8D:25:CA:97:0C:A6:35 Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 26D0D6BA3A751A1DEAB4278BB8698A0C7293D4F6 Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa Signing time: Fri 16 May 2025 10:00:02 +0000 ROA not before: Fri 16 May 2025 09:55:02 +0000 ROA not after: Fri 15 May 2026 10:00:02 +0000 asID: 17440 IP address blocks: 103.209.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d0:d6:ba:3a:75:1a:1d:ea:b4:27:8b:b8:69:8a:0c:72:93:d4:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: May 16 09:55:02 2025 GMT Not After : May 15 10:00:02 2026 GMT Subject: CN=91E1D3ED865D369ADDE07A98CF8D25CA970CA635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e6:d4:a4:d4:03:b1:8f:44:f1:f7:41:3a:7a: 0e:1f:61:52:b5:cf:80:d4:bd:99:2d:b5:6c:54:05: 99:8a:dd:22:5e:2d:66:5f:a8:ba:99:a3:1a:12:a3: ec:15:9a:9d:b4:93:6b:3d:6d:38:75:23:66:bc:b0: ad:3a:0c:7a:32:08:b7:b4:cf:f7:2e:d3:aa:a6:26: 7e:61:cc:35:a1:90:19:bd:55:29:82:8b:85:39:37: ee:dc:ef:a7:ca:b8:6d:83:9a:6d:5b:85:de:ed:6f: 99:55:88:0a:2d:14:5a:d8:8f:4c:6c:03:22:ba:09: d8:0d:ac:df:7b:da:40:9c:29:b2:56:6d:d3:fc:38: 0c:27:21:b8:8a:14:81:8b:7e:ec:4e:50:48:3e:1f: 39:9c:03:6f:4b:f6:dd:2c:5e:26:dd:bb:8c:9b:80: 55:59:2d:a1:6f:58:29:69:97:58:3e:39:89:cb:c6: 07:f0:e5:49:47:a7:f5:68:30:68:de:02:9b:93:0e: 88:0b:79:71:d4:dc:d2:a2:83:52:75:7c:5a:cb:05: da:1f:1d:59:6c:73:b0:96:90:cc:b6:e4:af:2f:71: aa:2a:35:e9:31:c8:e5:af:6e:14:0c:71:1b:eb:7d: be:38:6b:6f:29:3b:31:98:16:41:0e:a2:e5:32:56: f2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E1:D3:ED:86:5D:36:9A:DD:E0:7A:98:CF:8D:25:CA:97:0C:A6:35 X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.248.0/23 Signature Algorithm: sha256WithRSAEncryption 80:4d:93:34:f6:a6:28:80:4c:7a:b7:25:73:f5:9e:e6:3e:cc: 54:11:bb:04:d4:31:68:40:e5:56:2b:66:33:8f:b7:c8:4f:c8: 20:6c:12:6b:18:fc:22:ed:ef:4b:6f:82:45:a9:bb:74:46:58: 4e:23:b8:0e:8f:53:cb:84:9f:10:07:30:5f:f1:59:08:cd:ef: dd:aa:77:ad:d2:0a:30:f7:3d:35:d2:ab:f8:e8:e7:cc:67:a5: 97:63:25:fd:9d:96:0c:85:c5:eb:0f:53:39:28:22:8a:c7:c9: d9:af:00:4d:27:ce:59:f2:33:08:d3:f7:94:af:c3:c1:37:c5: b4:6d:ba:3a:af:5c:7a:10:1a:8a:b6:c7:e9:b1:4f:35:7a:a0: dc:dd:8d:fb:de:c3:8f:b3:77:6c:62:73:1a:33:ad:82:83:53: 59:85:66:52:3c:6b:2b:24:e5:b2:55:85:93:22:ad:dd:d4:35: 22:2f:bb:4d:8f:53:a8:71:81:87:a1:d9:2a:78:a4:f2:10:db: 82:99:fe:da:a0:93:8b:a4:ca:df:76:40:b4:47:fb:f4:75:1f: e1:23:97:94:7a:86:39:a1:6c:b8:8f:e4:e6:22:0e:5f:18:0d: c3:d4:fb:e4:9b:33:90:11:51:25:cc:4f:10:fa:87:d3:d1:29: a9:4a:86:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJtDWujp1Gh3qtCeLuGmKDHKT1PYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNTA1MTYwOTU1MDJaFw0yNjA1MTUxMDAwMDJaMDMxMTAvBgNV BAMTKDkxRTFEM0VEODY1RDM2OUFEREUwN0E5OENGOEQyNUNBOTcwQ0E2MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh5tSk1AOxj0Tx90E6eg4fYVK1 z4DUvZkttWxUBZmK3SJeLWZfqLqZoxoSo+wVmp20k2s9bTh1I2a8sK06DHoyCLe0 z/cu06qmJn5hzDWhkBm9VSmCi4U5N+7c76fKuG2Dmm1bhd7tb5lViAotFFrYj0xs AyK6CdgNrN972kCcKbJWbdP8OAwnIbiKFIGLfuxOUEg+HzmcA29L9t0sXibdu4yb gFVZLaFvWClpl1g+OYnLxgfw5UlHp/VoMGjeApuTDogLeXHU3NKig1J1fFrLBdof HVlsc7CWkMy25K8vcaoqNekxyOWvbhQMcRvrfb44a28pOzGYFkEOouUyVvLNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkeHT7YZdNprd4HqYz40lypcMpjUwHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9H4MA0GCSqG SIb3DQEBCwUAA4IBAQCATZM09qYogEx6tyVz9Z7mPsxUEbsE1DFoQOVWK2Yzj7fI T8ggbBJrGPwi7e9Lb4JFqbt0RlhOI7gOj1PLhJ8QBzBf8VkIze/dqnet0gow9z01 0qv46OfMZ6WXYyX9nZYMhcXrD1M5KCKKx8nZrwBNJ85Z8jMI0/eUr8PBN8W0bbo6 r1x6EBqKtsfpsU81eqDc3Y373sOPs3dsYnMaM62Cg1NZhWZSPGsrJOWyVYWTIq3d 1DUiL7tNj1OocYGHodkqeKTyENuCmf7aoJOLpMrfdkC0R/v0dR/hI5eUeoY5oWy4 j+TmIg5fGA3D1PvkmzOQEVElzE8Q+ofT0SmpSoab -----END CERTIFICATE-----Generated at Sun Jun 8 16:00:58 2025 by rpki-client