$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203535363730.roa File: 3130332e31322e32382e302f32322d3234203d3e203535363730.roa (raw, json) Hash identifier: 56/u0yMrkC94FdPOEf+mn1+2joJi+oVC5l6/K3alTgQ= Subject key identifier: F9:84:B5:E0:27:3F:ED:E4:75:21:97:AA:94:83:86:7D:AE:4A:C1:2F Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Certificate serial: 7FF3B760E35BC56B9FF68C3B08E18BBF8F021C05 Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203535363730.roa Signing time: Tue 20 May 2025 02:00:01 +0000 ROA not before: Tue 20 May 2025 01:55:01 +0000 ROA not after: Tue 19 May 2026 02:00:01 +0000 asID: 55670 IP address blocks: 103.12.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f3:b7:60:e3:5b:c5:6b:9f:f6:8c:3b:08:e1:8b:bf:8f:02:1c:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Validity Not Before: May 20 01:55:01 2025 GMT Not After : May 19 02:00:01 2026 GMT Subject: CN=F984B5E0273FEDE4752197AA9483867DAE4AC12F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e8:0d:27:6b:26:1d:0c:c7:40:c8:f9:95:20: df:80:86:65:d0:55:1b:75:63:75:92:51:96:8e:d1: 25:ab:5f:d5:e6:d0:2e:71:0e:fe:11:7b:d1:09:5a: 6e:0c:5c:60:de:6b:bb:75:11:95:f3:89:2c:3c:fe: ed:aa:71:af:83:b1:63:94:01:8f:4a:82:84:32:63: 4a:1d:f3:5c:17:5d:51:80:18:32:8f:b3:30:d9:b8: 2f:55:7c:df:67:a4:61:eb:2b:77:9f:72:1a:bd:9f: d9:ef:91:84:eb:4f:6a:c3:5b:9a:98:ce:c8:3a:55: e2:7c:5c:9c:35:97:f6:e4:38:bc:ba:7d:54:c0:68: 39:97:fe:cd:46:6b:37:4d:0a:3b:9e:81:91:a4:99: 1f:bb:3b:a0:30:69:65:d6:af:a4:ab:7f:ad:ce:57: 7f:b0:ed:e3:ed:05:32:ff:d2:76:70:df:7f:86:d3: f9:34:3e:76:da:9b:b2:e4:28:2b:cf:b3:c6:31:a4: 0f:49:6b:41:96:fd:2d:22:cc:8a:ae:f3:5d:ed:6b: a7:38:32:1d:8f:30:7d:e7:f5:cd:f9:c2:d2:80:0b: 0a:fd:7a:6d:66:fb:73:0f:c8:38:2f:ad:61:b8:16: 71:c6:58:78:0f:d5:ad:21:a2:28:a7:d5:5a:7e:f8: d7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:84:B5:E0:27:3F:ED:E4:75:21:97:AA:94:83:86:7D:AE:4A:C1:2F X509v3 Authority Key Identifier: keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203535363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.28.0/22 Signature Algorithm: sha256WithRSAEncryption 05:1b:51:66:d1:53:51:f1:3c:a2:36:2f:21:80:1e:12:93:48: 61:84:ec:48:75:39:69:52:d9:2e:bc:29:fc:09:ca:cb:91:12: 42:8e:64:1a:5b:76:95:1a:07:2c:29:7d:ed:cf:98:8b:ad:c7: 36:d5:02:b3:1b:98:cc:7f:22:fe:44:f1:3d:e1:74:1d:f1:d5: aa:3c:16:b3:8f:0b:e3:ea:78:e5:85:61:97:a1:0f:a9:ca:57: 73:5e:cc:71:22:3e:d6:e9:cb:0f:59:a3:6d:90:fc:30:eb:13: 7c:9b:9f:71:f8:9b:50:0b:b4:bf:84:37:55:57:05:b0:54:a0: 73:82:ca:b6:22:4d:6b:3e:7a:20:3c:76:bb:38:30:41:2f:e2: e6:fc:95:da:e5:b8:42:f8:92:14:4c:9e:54:67:05:e7:9f:3b: ee:48:db:3f:21:f7:8a:81:77:95:e0:8a:22:70:50:31:df:90: 9c:c4:35:8a:8f:8d:bb:f0:d3:f8:73:27:32:19:11:4c:bd:8d: d0:0c:14:c8:1d:67:6e:96:ea:97:60:30:be:24:4f:3d:dc:ea: 38:44:d4:5d:68:53:c5:d4:95:17:d5:e3:98:4e:83:0a:41:6e: 54:fb:01:21:ee:72:ff:2e:75:01:bf:9e:62:5a:f1:4c:6a:3c: 31:e0:b4:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUf/O3YONbxWuf9ow7COGLv48CHAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVG RTNFN0MzRTAeFw0yNTA1MjAwMTU1MDFaFw0yNjA1MTkwMjAwMDFaMDMxMTAvBgNV BAMTKEY5ODRCNUUwMjczRkVERTQ3NTIxOTdBQTk0ODM4NjdEQUU0QUMxMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK6A0nayYdDMdAyPmVIN+AhmXQ VRt1Y3WSUZaO0SWrX9Xm0C5xDv4Re9EJWm4MXGDea7t1EZXziSw8/u2qca+DsWOU AY9KgoQyY0od81wXXVGAGDKPszDZuC9VfN9npGHrK3efchq9n9nvkYTrT2rDW5qY zsg6VeJ8XJw1l/bkOLy6fVTAaDmX/s1GazdNCjuegZGkmR+7O6AwaWXWr6Srf63O V3+w7ePtBTL/0nZw33+G0/k0Pnbam7LkKCvPs8YxpA9Ja0GW/S0izIqu813ta6c4 Mh2PMH3n9c35wtKACwr9em1m+3MPyDgvrWG4FnHGWHgP1a0hoiin1Vp++Nd5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+YS14Cc/7eR1IZeqlIOGfa5KwS8wHwYDVR0j BBgwFoAUaWcBLvykNpjo4bckuR38Xv4+fD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDZlYTdmYS05NGQyLTRkZGMtYThlNi01ZGM2MjZjMjkxZDQvMC82OTY3MDEyRUZD QTQzNjk4RThFMUI3MjRCOTFERkM1RUZFM0U3QzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVGRTNF N0MzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNmVhN2ZhLTk0ZDItNGRkYy1h OGU2LTVkYzYyNmMyOTFkNC8wLzMxMzAzMzJlMzEzMjJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnDBwwDQYJKoZIhvcN AQELBQADggEBAAUbUWbRU1HxPKI2LyGAHhKTSGGE7Eh1OWlS2S68KfwJysuREkKO ZBpbdpUaBywpfe3PmIutxzbVArMbmMx/Iv5E8T3hdB3x1ao8FrOPC+PqeOWFYZeh D6nKV3NezHEiPtbpyw9Zo22Q/DDrE3ybn3H4m1ALtL+EN1VXBbBUoHOCyrYiTWs+ eiA8drs4MEEv4ub8ldrluEL4khRMnlRnBeefO+5I2z8h94qBd5XgiiJwUDHfkJzE NYqPjbvw0/hzJzIZEUy9jdAMFMgdZ26W6pdgML4kTz3c6jhE1F1oU8XUlRfV45hO gwpBblT7ASHucv8udQG/nmJa8UxqPDHgtBc= -----END CERTIFICATE-----Generated at Sat Jun 7 03:59:04 2025 by rpki-client