$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa File: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (raw, json) Hash identifier: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk= Subject key identifier: 2B:09:61:30:53:84:78:59:52:A2:07:3B:08:A2:D4:AD:38:7D:FC:BC Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 6C27CD82BBB496A23A575FF30881CF75085EC782 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa Signing time: Mon 02 Jun 2025 18:00:00 +0000 ROA not before: Mon 02 Jun 2025 17:55:00 +0000 ROA not after: Mon 01 Jun 2026 18:00:00 +0000 asID: 142341 IP address blocks: 103.169.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:27:cd:82:bb:b4:96:a2:3a:57:5f:f3:08:81:cf:75:08:5e:c7:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jun 2 17:55:00 2025 GMT Not After : Jun 1 18:00:00 2026 GMT Subject: CN=2B0961305384785952A2073B08A2D4AD387DFCBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f4:05:f9:f7:1b:69:73:eb:d7:26:03:be:68: f9:08:6b:e2:5b:e1:45:32:ed:22:c0:5f:cb:bc:33: 8c:a4:43:53:89:57:b6:ba:dd:c3:ac:d6:1c:73:f7: 1a:f8:7a:83:24:32:e3:48:6e:ee:e7:38:41:ac:d8: fa:f3:33:b2:80:d0:fd:70:2b:4a:f8:e5:47:5f:26: 7b:94:52:5f:5b:df:c1:28:93:e5:c1:ed:83:05:2a: 53:61:90:ff:e5:82:b3:d3:e0:81:5e:4a:7a:5a:cf: 8a:71:51:a8:ab:4d:e2:da:3a:e7:7d:b5:6f:d9:ae: bd:0f:e8:83:53:21:f6:b6:e1:c2:2a:da:bf:62:48: 2b:20:14:2c:6b:a4:a0:b8:17:6b:4f:87:e4:ec:cb: a1:b1:1d:b5:82:58:b5:3e:57:17:59:f6:15:cf:b0: 37:54:4f:a1:58:be:aa:bb:ff:5e:f2:fe:8f:1e:4e: eb:00:39:b2:20:bf:41:7a:e5:87:7f:0e:7c:10:5a: 84:a9:43:fd:05:12:5f:69:f7:92:c5:49:90:91:86: 37:e7:e8:17:1b:42:3a:5a:17:c9:a6:bc:75:bb:a8: e7:49:6b:bc:d2:bf:ba:5b:17:3c:34:4b:d7:55:60: 36:d4:eb:88:8f:0d:e4:8d:8a:41:49:c9:6e:8c:cc: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:09:61:30:53:84:78:59:52:A2:07:3B:08:A2:D4:AD:38:7D:FC:BC X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.133.0/24 Signature Algorithm: sha256WithRSAEncryption ec:86:4d:5f:68:44:57:91:ea:be:f5:15:1a:63:32:01:cc:34: 74:76:65:7f:23:a9:6b:b5:66:47:de:1c:75:de:8c:91:b7:09: 70:ad:c6:01:37:c1:d7:ec:16:22:8f:08:95:6d:93:89:19:65: 44:d2:83:dd:f6:75:0e:d8:8c:76:cd:44:27:8e:ad:ad:46:92: e4:41:ab:d5:13:5e:a7:0d:f8:43:46:9d:c3:65:db:e7:7a:d0: bf:ff:01:67:ff:30:f3:0f:79:a8:a8:e9:d2:b2:c8:4b:2a:65: 80:1d:c0:40:ef:8a:8b:a4:d2:4d:1c:1d:b3:78:d3:2f:f7:00: ac:0e:7f:31:bc:fc:7f:64:c6:79:fc:ae:6a:36:59:64:c7:ae: 1b:73:35:66:7f:8d:cf:6f:5c:3c:d9:a1:93:d3:fd:d3:23:e5: 83:ee:06:80:a3:90:91:07:0a:ee:0d:53:b8:50:a4:76:ca:e0: 10:bc:2e:36:14:75:f8:1a:50:1d:15:9d:cd:fe:11:1c:b9:b4: 61:e7:cf:1a:9b:a7:f7:ce:79:80:93:07:65:93:fd:23:b9:27: 40:a3:a8:d5:09:30:68:dd:87:1e:56:a5:25:76:4c:03:a6:2d: 8f:3a:c4:ae:4c:0e:6c:19:9c:e6:78:b6:c7:c9:97:50:c2:67: ac:d8:3b:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbCfNgru0lqI6V1/zCIHPdQhex4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA2MDIxNzU1MDBaFw0yNjA2MDExODAwMDBaMDMxMTAvBgNV BAMTKDJCMDk2MTMwNTM4NDc4NTk1MkEyMDczQjA4QTJENEFEMzg3REZDQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9AX59xtpc+vXJgO+aPkIa+Jb 4UUy7SLAX8u8M4ykQ1OJV7a63cOs1hxz9xr4eoMkMuNIbu7nOEGs2PrzM7KA0P1w K0r45UdfJnuUUl9b38Eok+XB7YMFKlNhkP/lgrPT4IFeSnpaz4pxUairTeLaOud9 tW/Zrr0P6INTIfa24cIq2r9iSCsgFCxrpKC4F2tPh+Tsy6GxHbWCWLU+VxdZ9hXP sDdUT6FYvqq7/17y/o8eTusAObIgv0F65Yd/DnwQWoSpQ/0FEl9p95LFSZCRhjfn 6BcbQjpaF8mmvHW7qOdJa7zSv7pbFzw0S9dVYDbU64iPDeSNikFJyW6MzHhdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKwlhMFOEeFlSogc7CKLUrTh9/LwwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFiLTI3NjEtNGMzNi1i NjkwLTViNjlkMTU2OWJhZS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYUwDQYJ KoZIhvcNAQELBQADggEBAOyGTV9oRFeR6r71FRpjMgHMNHR2ZX8jqWu1ZkfeHHXe jJG3CXCtxgE3wdfsFiKPCJVtk4kZZUTSg932dQ7YjHbNRCeOra1GkuRBq9UTXqcN +ENGncNl2+d60L//AWf/MPMPeaio6dKyyEsqZYAdwEDviouk0k0cHbN40y/3AKwO fzG8/H9kxnn8rmo2WWTHrhtzNWZ/jc9vXDzZoZPT/dMj5YPuBoCjkJEHCu4NU7hQ pHbK4BC8LjYUdfgaUB0Vnc3+ERy5tGHnzxqbp/fOeYCTB2WT/SO5J0CjqNUJMGjd hx5WpSV2TAOmLY86xK5MDmwZnOZ4tsfJl1DCZ6zYO1g= -----END CERTIFICATE-----Generated at Thu Jun 5 18:37:19 2025 by rpki-client