$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa File: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (raw, json) Hash identifier: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE= Subject key identifier: 33:5B:7B:69:EC:22:3F:71:07:15:97:1A:6B:44:15:02:28:C0:EE:6D Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 5D429AC5734940933E7C012E1E991F060D944EB1 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa Signing time: Mon 02 Jun 2025 18:00:00 +0000 ROA not before: Mon 02 Jun 2025 17:55:00 +0000 ROA not after: Mon 01 Jun 2026 18:00:00 +0000 asID: 142341 IP address blocks: 103.169.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:42:9a:c5:73:49:40:93:3e:7c:01:2e:1e:99:1f:06:0d:94:4e:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jun 2 17:55:00 2025 GMT Not After : Jun 1 18:00:00 2026 GMT Subject: CN=335B7B69EC223F710715971A6B44150228C0EE6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:c2:c0:5a:35:29:94:df:63:ae:8f:c1:a2: ef:53:2c:ed:c9:f2:00:44:2c:17:48:64:eb:c9:c8: 0d:b3:6f:56:71:6e:af:f2:9d:dc:f1:f8:76:97:05: 63:53:06:20:7f:93:f9:be:6c:91:76:78:da:1e:d5: 41:79:da:a1:85:c6:b0:50:8b:12:ac:13:68:18:2b: e7:d4:a7:28:0e:28:42:36:7e:3e:64:0f:65:ef:84: dd:1f:a0:4d:31:64:62:b3:52:d1:87:cc:56:3e:03: be:73:2d:0e:91:cb:13:e5:39:56:3b:5a:d8:f1:c7: 0c:88:a6:c6:1f:34:70:d3:09:96:b6:70:18:9e:b5: 08:10:a1:3f:cf:74:0f:c9:0f:92:11:ec:fa:77:4b: cd:20:0f:53:ae:02:89:28:52:87:d8:14:4a:fd:55: 58:cb:99:6a:41:28:53:94:6b:83:21:1d:9c:99:f5: 73:2b:d6:02:19:50:42:91:a5:a1:86:55:30:02:fe: 33:96:e7:65:03:b3:ba:ca:b0:62:1f:f6:9b:55:2c: 10:50:ba:4f:25:9d:36:d3:a2:d3:f4:38:c5:65:97: 29:e1:09:55:5e:23:59:39:ba:e8:de:40:d7:ae:d4: 6e:e1:da:b6:4a:4a:dd:aa:e2:90:dc:c1:47:64:a1: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5B:7B:69:EC:22:3F:71:07:15:97:1A:6B:44:15:02:28:C0:EE:6D X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.132.0/24 Signature Algorithm: sha256WithRSAEncryption a2:d9:7f:46:53:74:f1:0c:e2:e7:c1:2a:00:c2:51:fa:cc:69: 64:81:3d:d1:57:71:74:ba:fb:13:da:1e:38:f5:0e:e6:d9:57: 9c:a5:4e:97:17:d5:37:f7:3b:1c:3d:27:17:c6:7f:18:b7:7d: 71:31:f4:17:d2:2c:10:5c:5e:11:6d:ad:40:69:0f:3a:ae:38: e7:05:78:07:98:dc:e2:18:b6:16:20:94:76:53:b2:ce:d1:c6: 19:4b:c5:30:69:17:a3:32:28:6e:df:aa:48:d7:2a:db:be:1b: 4e:06:35:bf:aa:fe:a6:af:27:ae:37:7a:51:55:c9:5d:0d:21: fc:2d:dc:9f:13:a0:f1:e2:d7:70:95:71:63:7f:db:0f:4d:00: 8f:89:5b:d9:49:3d:bd:5e:62:17:49:22:0b:48:b7:9e:01:75: 8a:ab:b9:76:1e:45:f5:c3:27:04:70:0b:49:64:33:29:9a:f4: 2a:e3:2a:02:4c:a7:3f:99:1c:47:d1:e2:5f:d7:6e:c5:fc:b6: cb:2e:15:5d:fd:a7:75:5b:82:a5:a5:6d:cf:81:4e:2a:dd:cd: ba:29:31:50:6b:a6:58:46:7d:74:75:4d:93:d4:8f:70:88:bb: 7a:ce:7c:31:27:01:a7:0d:d5:5c:75:c7:b3:5e:63:76:09:8f: 6f:74:53:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXUKaxXNJQJM+fAEuHpkfBg2UTrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA2MDIxNzU1MDBaFw0yNjA2MDExODAwMDBaMDMxMTAvBgNV BAMTKDMzNUI3QjY5RUMyMjNGNzEwNzE1OTcxQTZCNDQxNTAyMjhDMEVFNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRFsLAWjUplN9jro/Bou9TLO3J 8gBELBdIZOvJyA2zb1Zxbq/yndzx+HaXBWNTBiB/k/m+bJF2eNoe1UF52qGFxrBQ ixKsE2gYK+fUpygOKEI2fj5kD2XvhN0foE0xZGKzUtGHzFY+A75zLQ6RyxPlOVY7 WtjxxwyIpsYfNHDTCZa2cBietQgQoT/PdA/JD5IR7Pp3S80gD1OuAokoUofYFEr9 VVjLmWpBKFOUa4MhHZyZ9XMr1gIZUEKRpaGGVTAC/jOW52UDs7rKsGIf9ptVLBBQ uk8lnTbTotP0OMVllynhCVVeI1k5uujeQNeu1G7h2rZKSt2q4pDcwUdkodapAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUM1t7aewiP3EHFZcaa0QVAijA7m0wHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFiLTI3NjEtNGMzNi1i NjkwLTViNjlkMTU2OWJhZS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYQwDQYJ KoZIhvcNAQELBQADggEBAKLZf0ZTdPEM4ufBKgDCUfrMaWSBPdFXcXS6+xPaHjj1 DubZV5ylTpcX1Tf3Oxw9JxfGfxi3fXEx9BfSLBBcXhFtrUBpDzquOOcFeAeY3OIY thYglHZTss7RxhlLxTBpF6MyKG7fqkjXKtu+G04GNb+q/qavJ643elFVyV0NIfwt 3J8ToPHi13CVcWN/2w9NAI+JW9lJPb1eYhdJIgtIt54BdYqruXYeRfXDJwRwC0lk Myma9CrjKgJMpz+ZHEfR4l/XbsX8tssuFV39p3VbgqWlbc+BTirdzbopMVBrplhG fXR1TZPUj3CIu3rOfDEnAacN1Vx1x7NeY3YJj290U5E= -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:51 2025 by rpki-client