$ rpki-client -vvf repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39392e302f32342d3234203d3e20313336383638.roa File: 3130332e3130352e39392e302f32342d3234203d3e20313336383638.roa (raw, json) Hash identifier: RarippCnWnMmEjTgkPvYhkG55G9O0lUfwe2+0FeUYpg= Subject key identifier: F1:3B:48:DD:0F:D1:35:8F:C3:8B:6D:80:3A:42:72:DB:49:32:DF:D8 Certificate issuer: /CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Certificate serial: 7DF690BBDAA205BEAD0533D96C08506BD69EE5B2 Authority key identifier: 4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39392e302f32342d3234203d3e20313336383638.roa Signing time: Mon 02 Jun 2025 01:02:37 +0000 ROA not before: Mon 02 Jun 2025 00:57:37 +0000 ROA not after: Mon 01 Jun 2026 01:02:37 +0000 asID: 136868 IP address blocks: 103.105.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f6:90:bb:da:a2:05:be:ad:05:33:d9:6c:08:50:6b:d6:9e:e5:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Validity Not Before: Jun 2 00:57:37 2025 GMT Not After : Jun 1 01:02:37 2026 GMT Subject: CN=F13B48DD0FD1358FC38B6D803A4272DB4932DFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:44:04:1b:8a:7d:58:b1:16:ce:b7:20:2c:eb: bc:1e:35:eb:fb:13:31:5e:a0:bd:68:79:35:58:ca: 1d:e4:d2:ae:f7:da:ba:cb:2b:6d:01:87:f3:a1:49: 59:a3:27:11:8d:15:87:cf:59:75:69:18:1c:ef:fc: 28:18:f4:c2:9b:93:7e:c1:0e:71:02:79:06:ab:dc: eb:3c:6f:bf:58:12:d9:62:b8:2c:75:e0:d1:d7:24: be:62:91:f1:32:84:96:e8:45:e8:ca:84:5d:8e:fe: 9c:90:d3:56:1e:ef:99:fc:25:f2:e4:8b:b2:c0:16: 20:e5:ca:14:7c:3b:61:f9:44:16:84:eb:63:cc:04: e3:65:b5:4b:8e:ee:7e:0c:78:9c:da:6a:5a:0d:bf: 4d:48:45:06:cc:8f:5a:6c:2d:c4:37:a2:84:15:91: a2:c3:d0:b3:09:88:ea:1f:11:2d:e6:2f:87:b2:a2: a1:19:50:f3:4a:1c:3a:ad:12:75:24:60:73:0e:81: 91:c3:64:68:08:71:21:f9:fd:8a:de:3e:f4:05:35: 07:ca:f1:19:ca:89:30:16:37:1d:24:a0:25:95:61: 3c:c5:a9:89:90:51:f5:5e:56:af:77:90:02:44:33: 76:86:ea:1c:96:93:82:3a:9f:81:cf:28:60:01:04: 38:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3B:48:DD:0F:D1:35:8F:C3:8B:6D:80:3A:42:72:DB:49:32:DF:D8 X509v3 Authority Key Identifier: keyid:4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3130352e39392e302f32342d3234203d3e20313336383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.99.0/24 Signature Algorithm: sha256WithRSAEncryption 82:49:81:27:88:ba:1e:0c:dc:7e:26:4b:6a:f8:be:de:60:37: a9:57:52:13:ec:cb:a3:13:50:9b:57:34:a1:e8:72:a5:b8:92: 7c:70:c4:d8:4c:6e:d7:a0:8e:e7:07:6c:50:a7:f6:38:6f:97: 1d:48:9e:04:74:a2:1d:03:96:39:da:d9:92:59:ed:46:8a:39: d1:59:ec:a1:e9:21:de:45:43:f6:4c:61:84:53:b9:53:f7:4f: 11:b7:21:20:0a:94:37:c7:d0:f1:aa:25:8e:f8:64:ff:0d:55: 9f:c0:df:11:7a:71:e8:0b:ce:84:d7:f3:c4:1e:fe:c1:bc:be: 9b:07:49:a7:81:14:e6:89:9f:cd:bc:56:e4:c7:84:94:3d:cd: bb:d4:fa:87:05:a1:a7:3d:0b:eb:1d:f0:15:76:48:a2:d7:92: fb:3c:d0:e9:6c:31:99:f3:ef:54:56:11:e0:5b:0a:32:b2:e3: 07:f4:55:44:18:b3:6d:7a:a1:01:9c:bc:b9:6a:20:e4:82:66: fa:8a:ff:20:65:e8:4c:3c:53:fe:6d:02:3e:cd:52:6a:09:d7: 1c:06:6e:88:99:f3:49:57:00:69:2a:6a:ba:49:70:72:2b:ef: c2:7d:c1:bc:c9:69:e1:2c:b3:7b:fe:a7:d0:36:01:50:b6:7d: ff:c8:40:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUffaQu9qiBb6tBTPZbAhQa9ae5bIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQx QTc4M0UzNjAeFw0yNTA2MDIwMDU3MzdaFw0yNjA2MDEwMTAyMzdaMDMxMTAvBgNV BAMTKEYxM0I0OEREMEZEMTM1OEZDMzhCNkQ4MDNBNDI3MkRCNDkzMkRGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaRAQbin1YsRbOtyAs67weNev7 EzFeoL1oeTVYyh3k0q732rrLK20Bh/OhSVmjJxGNFYfPWXVpGBzv/CgY9MKbk37B DnECeQar3Os8b79YEtliuCx14NHXJL5ikfEyhJboRejKhF2O/pyQ01Ye75n8JfLk i7LAFiDlyhR8O2H5RBaE62PMBONltUuO7n4MeJzaaloNv01IRQbMj1psLcQ3ooQV kaLD0LMJiOofES3mL4eyoqEZUPNKHDqtEnUkYHMOgZHDZGgIcSH5/YrePvQFNQfK 8RnKiTAWNx0koCWVYTzFqYmQUfVeVq93kAJEM3aG6hyWk4I6n4HPKGABBDg5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8TtI3Q/RNY/Di22AOkJy20ky39gwHwYDVR0j BBgwFoAUTfQV0tt2DDmFWz89nPPORBp4PjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTI0YWE4Yy1kZWRjLTQzNzYtOTM4MS0wYTgxZTZiY2M1NjQvMC80REY0MTVEMkRC NzYwQzM5ODU1QjNGM0Q5Q0YzQ0U0NDFBNzgzRTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQxQTc4 M0UzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMjRhYThjLWRlZGMtNDM3Ni05 MzgxLTBhODFlNmJjYzU2NC8wLzMxMzAzMzJlMzEzMDM1MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2ljMA0GCSqG SIb3DQEBCwUAA4IBAQCCSYEniLoeDNx+Jktq+L7eYDepV1IT7MujE1CbVzSh6HKl uJJ8cMTYTG7XoI7nB2xQp/Y4b5cdSJ4EdKIdA5Y52tmSWe1GijnRWeyh6SHeRUP2 TGGEU7lT908RtyEgCpQ3x9DxqiWO+GT/DVWfwN8RenHoC86E1/PEHv7BvL6bB0mn gRTmiZ/NvFbkx4SUPc271PqHBaGnPQvrHfAVdkii15L7PNDpbDGZ8+9UVhHgWwoy suMH9FVEGLNteqEBnLy5aiDkgmb6iv8gZehMPFP+bQI+zVJqCdccBm6ImfNJVwBp Kmq6SXByK+/CfcG8yWnhLLN7/qfQNgFQtn3/yEBn -----END CERTIFICATE-----Generated at Sun Jun 8 06:08:45 2025 by rpki-client