$ rpki-client -vvf repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231362e302f32342d3234203d3e20313337333636.roa File: 3130332e3131362e3231362e302f32342d3234203d3e20313337333636.roa (raw, json) Hash identifier: iDwSin9srOGKT5atOmt0iLuShHzndQDwuU2x/RU2cYM= Subject key identifier: A5:37:43:77:FC:5F:E9:F3:D4:D3:72:6D:F5:2D:28:FD:B9:4E:B5:24 Certificate issuer: /CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Certificate serial: 69AC820F68AFDC7F26A75E518CFE2B2EDB060B02 Authority key identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231362e302f32342d3234203d3e20313337333636.roa Signing time: Mon 02 Jun 2025 02:03:20 +0000 ROA not before: Mon 02 Jun 2025 01:58:20 +0000 ROA not after: Mon 01 Jun 2026 02:03:20 +0000 asID: 137366 IP address blocks: 103.116.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ac:82:0f:68:af:dc:7f:26:a7:5e:51:8c:fe:2b:2e:db:06:0b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Validity Not Before: Jun 2 01:58:20 2025 GMT Not After : Jun 1 02:03:20 2026 GMT Subject: CN=A5374377FC5FE9F3D4D3726DF52D28FDB94EB524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3a:cd:6a:8c:b2:1c:a0:88:9f:70:9e:08:a8: 47:89:30:50:91:f9:66:dd:d1:aa:c6:3e:9c:bb:59: ca:76:5e:45:0c:e5:62:be:9d:7b:96:03:87:b1:5d: f6:0c:ea:1f:21:3d:bf:4b:a6:6b:0b:1d:23:be:4a: b5:ee:a3:72:28:2a:cc:f8:a3:2f:cb:f0:78:27:2a: 7a:60:e7:f3:64:77:07:30:b8:f5:e9:3b:56:62:59: 82:64:48:1f:96:e9:ed:a1:d1:4a:f9:eb:a2:b0:42: d3:57:9b:5a:5e:b5:0f:cb:81:ec:57:35:31:73:22: 2e:df:f3:a9:ef:52:4f:09:e4:9d:c0:76:fd:8c:fb: bd:db:87:53:68:97:0f:59:93:fa:f1:c9:11:22:52: b9:70:45:e7:f5:6c:38:12:1b:a7:15:db:6b:1d:ab: 6a:90:dd:13:f9:f2:e4:5f:18:70:f5:bc:b4:87:66: 2c:e0:d9:ea:53:45:1c:8d:15:14:c1:64:54:88:06: 5e:53:61:e9:4f:d9:6b:f0:04:69:ac:e3:fd:9b:2c: aa:7a:a5:42:a7:58:82:64:14:12:ca:13:84:cc:6b: 86:37:a3:81:18:5c:63:d1:82:9e:df:75:ef:a4:10: fb:f8:3c:3a:96:80:aa:19:d2:16:39:e3:2e:e1:5f: ff:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:37:43:77:FC:5F:E9:F3:D4:D3:72:6D:F5:2D:28:FD:B9:4E:B5:24 X509v3 Authority Key Identifier: keyid:DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231362e302f32342d3234203d3e20313337333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.216.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:49:b8:0b:e2:a4:b2:52:2d:09:7e:77:fc:74:c7:fd:e0:41: 44:30:01:bf:8f:09:3a:34:1f:ae:d6:b7:f2:85:a2:01:17:ab: b6:05:ee:38:54:5e:9c:21:b9:9e:33:fb:ce:52:40:39:17:a7: 96:d1:99:48:91:4f:92:64:3f:f7:b6:4d:5b:14:f3:17:d6:f8: ed:67:55:8c:a2:24:52:e3:54:07:5c:4f:ff:3d:c0:ce:91:47: 2e:5f:c4:0f:e4:ad:eb:40:7f:0f:05:59:ce:21:09:0e:9b:45: 20:92:5b:72:f0:1d:73:66:1d:b1:8c:c4:6b:73:c2:9c:c6:48: 4b:26:00:7f:9f:cd:2a:db:ad:68:a7:df:eb:de:e8:0b:c9:9a: be:11:95:23:68:bc:63:d4:d6:ed:fe:e0:17:19:b4:fd:80:76: bf:8e:4a:e9:d2:f2:ac:fb:ea:02:df:72:1c:1d:8a:81:3b:81: 6f:58:6b:80:cb:0d:89:9a:db:22:eb:55:7e:a0:b4:0d:20:52: 4f:69:49:c7:62:42:28:95:de:d0:58:d7:9a:98:34:42:1c:66: ee:28:51:70:ff:c1:83:84:55:1c:a1:65:5d:18:31:a9:ad:a8: de:ae:7c:d3:98:a3:62:33:cf:66:d6:a5:9b:8d:0a:ea:1c:a5: 55:d3:e5:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaayCD2iv3H8mp15RjP4rLtsGCwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQy REMyRDdGMzAeFw0yNTA2MDIwMTU4MjBaFw0yNjA2MDEwMjAzMjBaMDMxMTAvBgNV BAMTKEE1Mzc0Mzc3RkM1RkU5RjNENEQzNzI2REY1MkQyOEZEQjk0RUI1MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Os1qjLIcoIifcJ4IqEeJMFCR +Wbd0arGPpy7Wcp2XkUM5WK+nXuWA4exXfYM6h8hPb9LpmsLHSO+SrXuo3IoKsz4 oy/L8HgnKnpg5/NkdwcwuPXpO1ZiWYJkSB+W6e2h0Ur566KwQtNXm1petQ/LgexX NTFzIi7f86nvUk8J5J3Adv2M+73bh1Nolw9Zk/rxyREiUrlwRef1bDgSG6cV22sd q2qQ3RP58uRfGHD1vLSHZizg2epTRRyNFRTBZFSIBl5TYelP2WvwBGms4/2bLKp6 pUKnWIJkFBLKE4TMa4Y3o4EYXGPRgp7fde+kEPv4PDqWgKoZ0hY54y7hX/+DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpTdDd/xf6fPU03Jt9S0o/blOtSQwHwYDVR0j BBgwFoAU22urlWFPaYEfKum0g3PnnS3C1/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmQ3MjBkNS1iN2Q0LTQzOTUtYTA2Yi0xOTkwNGE2M2Y5NDgvMC9EQjZCQUI5NTYx NEY2OTgxMUYyQUU5QjQ4MzczRTc5RDJEQzJEN0YzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQyREMy RDdGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZDcyMGQ1LWI3ZDQtNDM5NS1h MDZiLTE5OTA0YTYzZjk0OC8wLzMxMzAzMzJlMzEzMTM2MmUzMjMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndNgwDQYJ KoZIhvcNAQELBQADggEBAE9JuAvipLJSLQl+d/x0x/3gQUQwAb+PCTo0H67Wt/KF ogEXq7YF7jhUXpwhuZ4z+85SQDkXp5bRmUiRT5JkP/e2TVsU8xfW+O1nVYyiJFLj VAdcT/89wM6RRy5fxA/kretAfw8FWc4hCQ6bRSCSW3LwHXNmHbGMxGtzwpzGSEsm AH+fzSrbrWin3+ve6AvJmr4RlSNovGPU1u3+4BcZtP2Adr+OSunS8qz76gLfchwd ioE7gW9Ya4DLDYma2yLrVX6gtA0gUk9pScdiQiiV3tBY15qYNEIcZu4oUXD/wYOE VRyhZV0YMamtqN6ufNOYo2Izz2bWpZuNCuocpVXT5Uo= -----END CERTIFICATE-----Generated at Fri Jun 6 16:49:55 2025 by rpki-client