$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa File: 3130332e36362e36392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: x+jv4TuSSXN4C68g+x8B9A51ZwulAwMClt9iXTwzSmY= Subject key identifier: F8:A0:FD:46:67:FE:AE:BF:E8:24:75:F7:38:FB:09:1B:62:E7:A8:0B Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 3CF4C554311C9C3DD8CC64E49A05E163EF4B16FC Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:03:11 +0000 ROA not before: Mon 02 Jun 2025 01:58:11 +0000 ROA not after: Mon 01 Jun 2026 02:03:11 +0000 asID: 55685 IP address blocks: 103.66.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f4:c5:54:31:1c:9c:3d:d8:cc:64:e4:9a:05:e1:63:ef:4b:16:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Jun 2 01:58:11 2025 GMT Not After : Jun 1 02:03:11 2026 GMT Subject: CN=F8A0FD4667FEAEBFE82475F738FB091B62E7A80B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:7a:cc:60:00:82:5a:8b:59:1a:a4:4e:ed: 21:85:2e:e1:56:9c:81:a5:7e:cd:82:08:a6:a9:86: 06:1f:ef:f3:d2:27:19:dc:fd:8b:ae:80:41:8e:c0: 85:cf:f9:85:bb:5f:a5:7a:4c:3d:b0:ee:eb:fe:67: e7:43:73:68:df:2e:fd:96:67:8d:dd:5c:b9:2c:18: b0:0c:04:be:52:6b:07:d4:ed:a8:18:86:af:32:2e: 53:84:92:4b:f3:08:6a:4d:e5:8e:77:17:1b:62:c8: 2b:21:86:b0:f6:2b:25:ab:54:ea:33:22:37:13:a2: 2e:83:c5:e0:8f:fb:ff:0d:75:a8:b5:d1:8d:cc:45: 5b:8d:72:61:b2:2f:8b:4c:ac:59:b8:1c:9e:40:0f: a8:d7:a6:bf:8d:36:19:48:20:bf:7f:eb:e0:54:7d: 01:9d:35:66:54:04:66:c6:28:92:a2:6b:20:a2:5e: 45:54:e3:71:21:db:19:bc:47:a6:b5:2f:96:08:34: 54:32:83:ca:89:20:46:f2:b0:17:be:77:15:09:36: f7:ae:fc:07:90:9f:46:20:f0:62:ad:26:a8:c2:5e: 25:ba:15:3f:41:15:d7:06:6f:7f:34:11:58:24:30: 5d:5e:30:b5:07:82:3b:8a:22:a4:25:03:4d:f1:b7: 84:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A0:FD:46:67:FE:AE:BF:E8:24:75:F7:38:FB:09:1B:62:E7:A8:0B X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.69.0/24 Signature Algorithm: sha256WithRSAEncryption e1:58:3b:96:84:c6:72:b1:2b:55:1b:fc:ca:89:af:62:e1:0d: 2c:05:8f:80:70:67:39:88:7d:19:59:15:f6:94:35:fd:9d:2e: c3:19:cb:dd:72:18:2c:38:2c:34:e6:3a:f4:c3:8e:6f:51:46: 61:ea:71:f6:18:88:40:c7:a8:ae:27:ca:75:35:a3:e2:a1:9e: 90:a7:73:dc:9e:d6:6b:f2:3e:0e:f3:c7:b2:82:fd:fc:9d:bf: f1:a4:d0:12:98:1f:04:46:5c:d2:ac:d0:10:ec:f8:20:c0:98: 62:4e:8a:d1:e7:4f:f6:87:2f:e9:0b:d2:4b:83:41:54:d5:67: 6b:bb:b5:d4:6b:ab:f3:03:19:78:36:b8:cf:1f:02:a1:ed:cf: 46:d7:55:0c:e2:d2:de:81:76:62:b0:53:c7:fd:7b:27:e6:5b: c3:5f:34:85:c3:52:22:6c:28:88:c5:27:d5:d7:e6:fd:19:19: 1d:9c:be:f8:10:22:bc:e5:fa:8f:4a:ee:ea:14:29:ce:82:50: 21:34:e6:ed:e1:85:91:66:73:3d:11:73:28:13:91:9a:e2:54: c7:bc:1d:fd:91:53:23:d8:94:84:54:01:53:75:95:7a:ea:09: fe:63:2a:61:cc:c7:17:47:71:4c:52:6e:2b:15:f1:a6:0b:49: 5f:1f:89:eb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPPTFVDEcnD3YzGTkmgXhY+9LFvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNTA2MDIwMTU4MTFaFw0yNjA2MDEwMjAzMTFaMDMxMTAvBgNV BAMTKEY4QTBGRDQ2NjdGRUFFQkZFODI0NzVGNzM4RkIwOTFCNjJFN0E4MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC50HrMYACCWotZGqRO7SGFLuFW nIGlfs2CCKaphgYf7/PSJxnc/YuugEGOwIXP+YW7X6V6TD2w7uv+Z+dDc2jfLv2W Z43dXLksGLAMBL5SawfU7agYhq8yLlOEkkvzCGpN5Y53FxtiyCshhrD2KyWrVOoz IjcToi6DxeCP+/8Ndai10Y3MRVuNcmGyL4tMrFm4HJ5AD6jXpr+NNhlIIL9/6+BU fQGdNWZUBGbGKJKiayCiXkVU43Eh2xm8R6a1L5YINFQyg8qJIEbysBe+dxUJNveu /AeQn0Yg8GKtJqjCXiW6FT9BFdcGb380EVgkMF1eMLUHgjuKIqQlA03xt4SJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+KD9Rmf+rr/oJHX3OPsJG2LnqAswHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQkUwDQYJKoZIhvcN AQELBQADggEBAOFYO5aExnKxK1Ub/MqJr2LhDSwFj4BwZzmIfRlZFfaUNf2dLsMZ y91yGCw4LDTmOvTDjm9RRmHqcfYYiEDHqK4nynU1o+KhnpCnc9ye1mvyPg7zx7KC /fydv/Gk0BKYHwRGXNKs0BDs+CDAmGJOitHnT/aHL+kL0kuDQVTVZ2u7tdRrq/MD GXg2uM8fAqHtz0bXVQzi0t6BdmKwU8f9eyfmW8NfNIXDUiJsKIjFJ9XX5v0ZGR2c vvgQIrzl+o9K7uoUKc6CUCE05u3hhZFmcz0RcygTkZriVMe8Hf2RUyPYlIRUAVN1 lXrqCf5jKmHMxxdHcUxSbisV8aYLSV8fies= -----END CERTIFICATE-----Generated at Sat Jun 7 15:01:38 2025 by rpki-client