$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3138392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: fQ5TBxL/EOoo+4MOgFr0eSosnRxWSN91MKrmnOWKNWo= Subject key identifier: C4:E9:CF:24:90:D8:DD:39:83:9A:11:3F:1D:08:87:FF:CC:44:9A:77 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 07BD28999825FAF66B0E641819EC1F2901AEF6E9 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:46 +0000 ROA not before: Mon 02 Jun 2025 01:59:46 +0000 ROA not after: Mon 01 Jun 2026 02:04:46 +0000 asID: 55685 IP address blocks: 103.20.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bd:28:99:98:25:fa:f6:6b:0e:64:18:19:ec:1f:29:01:ae:f6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:46 2025 GMT Not After : Jun 1 02:04:46 2026 GMT Subject: CN=C4E9CF2490D8DD39839A113F1D0887FFCC449A77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:76:dd:42:ee:dc:8b:79:a4:b1:a6:16:44: 01:c2:d8:22:2f:18:4f:60:f6:90:24:01:ee:e1:d3: 52:6a:df:28:71:e7:a2:48:11:79:a4:9b:ee:ab:af: e1:44:bc:34:b1:3e:2e:7a:62:2f:8f:9e:09:08:76: 3a:35:a8:72:9c:59:a5:ed:67:a4:de:5d:1d:d9:5f: d0:cc:ae:a1:63:25:08:0a:c1:71:db:32:d7:d9:4c: f2:ca:09:b8:1e:d5:33:d1:32:0d:bd:43:a6:3b:74: 55:8c:96:39:71:18:75:4b:fb:27:6b:54:4b:71:f9: a7:88:f8:26:b0:e9:13:28:41:07:88:a8:1f:0c:61: d2:39:d5:f0:b5:70:a9:bb:28:c3:df:c1:69:77:b3: fb:f6:96:77:d4:4c:b1:f6:11:7a:3f:f1:b9:54:6f: a7:47:2f:dd:be:40:aa:19:d4:22:22:4f:b3:29:3f: b2:98:ff:f4:17:97:8d:bc:8e:92:25:8b:9b:de:03: 19:cc:0c:a4:4b:1c:61:1a:1e:58:ed:e3:c9:9f:87: d4:c7:b9:e5:56:0e:89:9b:c3:99:11:87:71:6e:bd: 40:ca:ff:a3:58:af:96:85:17:ed:3e:2c:e4:42:65: 58:c4:9e:8e:50:86:f1:33:b9:e4:f8:8f:85:98:7b: a3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E9:CF:24:90:D8:DD:39:83:9A:11:3F:1D:08:87:FF:CC:44:9A:77 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.189.0/24 Signature Algorithm: sha256WithRSAEncryption 54:8b:16:4a:96:4b:45:93:65:62:2e:34:e2:0c:a9:73:56:63: ae:11:ee:83:84:2c:a9:6b:48:a2:bd:18:38:2c:70:ac:02:64: 9a:fb:c6:d9:8a:3f:d4:83:ce:32:bf:04:e8:6c:2d:f2:c9:15: af:ce:c7:96:f9:8b:ce:c8:80:bb:5d:6a:9d:38:c8:a2:12:52: 09:a5:e8:73:83:fc:99:c3:b2:1a:c5:53:b3:f1:30:5a:de:1a: 16:44:a1:b9:22:cc:1a:b4:ee:44:a5:10:d4:65:0f:27:7d:96: d5:38:98:5a:06:43:ed:da:7e:09:58:af:32:c1:91:55:3b:f5: e6:ca:f4:4d:8c:6e:92:7c:e2:c2:22:f8:7a:d3:25:a9:4b:bb: 44:fe:78:72:23:b3:c2:e0:21:69:60:82:6e:ef:db:d2:ac:ef: c2:83:3c:1d:ee:3f:5d:22:88:ca:af:b9:bb:13:be:b0:65:96: cd:30:eb:93:a8:ee:1e:2f:30:29:30:73:b5:9e:ff:c3:53:24: 4b:0b:3f:f0:05:2e:65:cf:c1:76:df:16:92:d4:6b:12:82:28: 63:f7:57:56:2c:16:45:f8:43:bb:09:1a:6a:d1:73:a6:7f:7a: 54:22:59:72:36:9f:dd:7b:ea:51:ab:95:c6:d5:81:7d:01:df: 56:b9:85:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB70omZgl+vZrDmQYGewfKQGu9ukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDZaFw0yNjA2MDEwMjA0NDZaMDMxMTAvBgNV BAMTKEM0RTlDRjI0OTBEOEREMzk4MzlBMTEzRjFEMDg4N0ZGQ0M0NDlBNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5QHbdQu7ci3mksaYWRAHC2CIv GE9g9pAkAe7h01Jq3yhx56JIEXmkm+6rr+FEvDSxPi56Yi+PngkIdjo1qHKcWaXt Z6TeXR3ZX9DMrqFjJQgKwXHbMtfZTPLKCbge1TPRMg29Q6Y7dFWMljlxGHVL+ydr VEtx+aeI+Caw6RMoQQeIqB8MYdI51fC1cKm7KMPfwWl3s/v2lnfUTLH2EXo/8blU b6dHL92+QKoZ1CIiT7MpP7KY//QXl428jpIli5veAxnMDKRLHGEaHljt48mfh9TH ueVWDombw5kRh3FuvUDK/6NYr5aFF+0+LORCZVjEno5QhvEzueT4j4WYe6MRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxOnPJJDY3TmDmhE/HQiH/8xEmncwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvTANBgkqhkiG 9w0BAQsFAAOCAQEAVIsWSpZLRZNlYi404gypc1ZjrhHug4QsqWtIor0YOCxwrAJk mvvG2Yo/1IPOMr8E6Gwt8skVr87HlvmLzsiAu11qnTjIohJSCaXoc4P8mcOyGsVT s/EwWt4aFkShuSLMGrTuRKUQ1GUPJ32W1TiYWgZD7dp+CVivMsGRVTv15sr0TYxu knziwiL4etMlqUu7RP54ciOzwuAhaWCCbu/b0qzvwoM8He4/XSKIyq+5uxO+sGWW zTDrk6juHi8wKTBztZ7/w1MkSws/8AUuZc/Bdt8WktRrEoIoY/dXViwWRfhDuwka atFzpn96VCJZcjaf3XvqUauVxtWBfQHfVrmFJw== -----END CERTIFICATE-----Generated at Sun Jun 8 14:35:05 2025 by rpki-client