$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: Gie+V/qqRH9iPBwHDwRPMdTeAqtNMn5puCXKH9q6nKw= Subject key identifier: 43:D7:A9:5E:37:6E:80:92:15:64:22:60:77:20:02:C3:5F:BF:39:2E Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 13C23C657BFBB1F4742CAD3D9CC276FA5777B61E Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa Signing time: Fri 16 May 2025 12:00:01 +0000 ROA not before: Fri 16 May 2025 11:55:01 +0000 ROA not after: Fri 15 May 2026 12:00:01 +0000 asID: 17440 IP address blocks: 103.209.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c2:3c:65:7b:fb:b1:f4:74:2c:ad:3d:9c:c2:76:fa:57:77:b6:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: May 16 11:55:01 2025 GMT Not After : May 15 12:00:01 2026 GMT Subject: CN=43D7A95E376E809215642260772002C35FBF392E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:39:1d:2d:f6:f7:34:c4:cb:cb:65:15:59:3a: ec:5a:94:b3:c8:fc:8d:c5:27:05:7d:76:00:71:01: bf:c0:2c:d9:d1:d0:70:68:73:de:bc:21:52:80:ea: 36:68:a4:97:91:37:a7:e6:50:56:57:cb:eb:16:b0: 89:b6:86:79:f7:88:8c:ed:81:49:38:e6:c5:dc:1f: 8a:f6:c4:84:e1:b3:d7:b6:5a:52:db:96:b9:df:08: 49:15:5e:4b:37:bc:3b:73:4b:67:c4:e4:94:7d:51: bd:1f:80:52:1d:58:71:51:d9:08:90:7d:80:c1:6b: 87:9a:b6:a9:30:25:bd:b8:13:53:a0:75:c9:0d:59: da:56:fd:07:ca:d0:e7:1f:f1:aa:2b:a0:65:20:80: 4e:dc:c4:11:07:c6:83:78:c3:9b:98:89:fb:c3:bb: bf:b3:35:0d:7b:57:20:26:75:74:6f:2e:e4:b3:1f: 25:a9:f0:fd:e4:e9:f0:e7:0c:48:ef:21:aa:b2:da: dc:dd:89:12:d8:47:34:80:3c:10:5f:61:55:e3:dd: 5f:15:5a:0e:4a:e0:15:8a:4b:05:d1:33:b1:c7:c6: 99:65:1c:96:c6:b3:b4:17:60:29:88:d2:7a:57:ae: 94:e6:24:29:a4:34:53:88:d0:5c:a6:ee:6b:42:ee: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D7:A9:5E:37:6E:80:92:15:64:22:60:77:20:02:C3:5F:BF:39:2E X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.251.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a6:06:05:b4:21:e6:d9:a5:a2:3d:89:54:5d:69:92:ad:cd: af:82:0a:c1:e5:11:c5:48:1e:ea:74:f8:a7:54:10:01:79:1d: 40:2a:95:30:50:4c:14:4b:a9:a0:61:97:92:23:e1:a0:de:86: 71:aa:82:59:aa:4c:b3:ba:74:df:6d:fd:43:c5:2f:89:ec:59: d5:c8:c0:cc:ea:dd:70:3c:6b:7c:23:c9:fb:fe:f4:7c:54:10: 3c:d0:15:b3:21:00:d2:53:ea:7d:c9:61:73:f5:81:c8:db:c0: 76:92:47:14:dd:66:ac:53:37:9b:fc:0d:51:4f:58:f5:96:c8: 06:ed:85:58:59:a8:25:c6:f0:75:38:74:44:44:a8:47:8c:78: 59:71:34:95:ec:44:73:b3:be:e0:8b:c7:71:fd:10:41:ad:d2: 5c:fa:4e:0f:6a:36:6c:f7:9d:ae:a1:1b:69:74:38:a8:b9:d1: 8a:43:c0:4c:72:90:56:c1:7f:ac:55:f7:eb:27:5c:8c:3a:76: 04:1b:f2:65:28:47:c2:a2:07:e3:28:27:3a:ef:00:0e:33:c3: 4e:d5:36:1d:de:8e:e6:20:ff:70:2e:17:82:0c:2e:a2:c0:ce: c8:60:8f:fb:52:c8:d5:d1:e6:6a:ae:63:60:23:a7:64:3b:7f: 1d:29:7d:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE8I8ZXv7sfR0LK09nMJ2+ld3th4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNTA1MTYxMTU1MDFaFw0yNjA1MTUxMjAwMDFaMDMxMTAvBgNV BAMTKDQzRDdBOTVFMzc2RTgwOTIxNTY0MjI2MDc3MjAwMkMzNUZCRjM5MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOR0t9vc0xMvLZRVZOuxalLPI /I3FJwV9dgBxAb/ALNnR0HBoc968IVKA6jZopJeRN6fmUFZXy+sWsIm2hnn3iIzt gUk45sXcH4r2xIThs9e2WlLblrnfCEkVXks3vDtzS2fE5JR9Ub0fgFIdWHFR2QiQ fYDBa4eatqkwJb24E1OgdckNWdpW/QfK0Ocf8aoroGUggE7cxBEHxoN4w5uYifvD u7+zNQ17VyAmdXRvLuSzHyWp8P3k6fDnDEjvIaqy2tzdiRLYRzSAPBBfYVXj3V8V Wg5K4BWKSwXRM7HHxpllHJbGs7QXYCmI0npXrpTmJCmkNFOI0Fym7mtC7mVlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ9epXjdugJIVZCJgdyACw1+/OS4wHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H7MA0GCSqG SIb3DQEBCwUAA4IBAQADpgYFtCHm2aWiPYlUXWmSrc2vggrB5RHFSB7qdPinVBAB eR1AKpUwUEwUS6mgYZeSI+Gg3oZxqoJZqkyzunTfbf1DxS+J7FnVyMDM6t1wPGt8 I8n7/vR8VBA80BWzIQDSU+p9yWFz9YHI28B2kkcU3WasUzeb/A1RT1j1lsgG7YVY WaglxvB1OHRERKhHjHhZcTSV7ERzs77gi8dx/RBBrdJc+k4PajZs952uoRtpdDio udGKQ8BMcpBWwX+sVffrJ1yMOnYEG/JlKEfCogfjKCc67wAOM8NO1TYd3o7mIP9w LheCDC6iwM7IYI/7UsjV0eZqrmNgI6dkO38dKX0S -----END CERTIFICATE-----Generated at Sun Jun 8 23:26:28 2025 by rpki-client