$ rpki-client -vvf repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/3130332e3130352e35382e302f32332d3234203d3e20313530393533.roa File: 3130332e3130352e35382e302f32332d3234203d3e20313530393533.roa (raw, json) Hash identifier: hBmchGMN/fVNaE6sdiETaj0MX0seDIVkXhvDCN24afc= Subject key identifier: 96:74:70:D5:39:35:8E:E4:D2:74:72:5B:01:9A:9C:3C:1A:4B:FA:C8 Certificate issuer: /CN=17A6007EC6373EC9501F9956E12B6D5CBE0FDC21 Certificate serial: 7F9A03351552F4D90F8029E4113A5B7CE6059F9B Authority key identifier: 17:A6:00:7E:C6:37:3E:C9:50:1F:99:56:E1:2B:6D:5C:BE:0F:DC:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/3130332e3130352e35382e302f32332d3234203d3e20313530393533.roa Signing time: Thu 22 May 2025 04:48:47 +0000 ROA not before: Thu 22 May 2025 04:43:47 +0000 ROA not after: Thu 21 May 2026 04:48:47 +0000 asID: 150953 IP address blocks: 103.105.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.crl rsync://repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:9a:03:35:15:52:f4:d9:0f:80:29:e4:11:3a:5b:7c:e6:05:9f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17A6007EC6373EC9501F9956E12B6D5CBE0FDC21 Validity Not Before: May 22 04:43:47 2025 GMT Not After : May 21 04:48:47 2026 GMT Subject: CN=967470D539358EE4D274725B019A9C3C1A4BFAC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3e:84:40:75:e0:be:c3:f2:5f:87:3c:d9:09: 0a:b8:24:92:fe:2e:d1:ca:8b:3c:22:e1:2d:2a:78: 72:ae:f9:10:59:d1:66:bd:aa:3f:91:f3:eb:36:81: f0:7a:78:11:3a:bd:5e:63:b9:56:21:59:ef:60:7f: e2:c3:f0:02:1d:7c:7b:4a:c2:31:82:35:53:ea:bd: 31:20:1a:cc:50:05:46:2f:58:62:51:bc:66:9b:41: 94:41:69:f3:15:b5:eb:9b:bc:50:b8:fe:85:0a:0f: 6a:32:a5:3b:f3:6d:74:86:5d:fa:d9:c4:1d:a7:6f: b3:2f:0b:5a:5d:e0:f0:5b:4c:22:c7:9d:8e:d0:c9: 35:34:28:76:bd:12:ec:6f:57:d7:72:7b:d9:aa:ac: 6b:da:31:93:9d:15:17:2a:ce:cc:5a:28:ff:0b:13: 17:61:1e:9d:a4:d9:1e:b4:ef:3c:46:fd:32:d0:44: 13:8e:f4:4a:5f:f3:44:fe:8d:d6:ac:8f:ae:45:b0: d4:99:1a:03:4e:05:57:3b:bc:fb:dc:2b:01:ce:12: 6c:1e:d4:7c:06:cd:b1:9a:b1:b2:7c:4b:ca:30:05: 52:09:b3:45:a7:cc:3e:35:ed:1e:9d:ac:0e:c5:7d: 94:a1:b3:b7:69:5b:fe:e1:eb:87:ac:6a:fa:dd:8e: 3f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:74:70:D5:39:35:8E:E4:D2:74:72:5B:01:9A:9C:3C:1A:4B:FA:C8 X509v3 Authority Key Identifier: keyid:17:A6:00:7E:C6:37:3E:C9:50:1F:99:56:E1:2B:6D:5C:BE:0F:DC:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17A6007EC6373EC9501F9956E12B6D5CBE0FDC21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8de4af7-bf48-4cb8-8f63-81cae17364de/0/3130332e3130352e35382e302f32332d3234203d3e20313530393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.58.0/23 Signature Algorithm: sha256WithRSAEncryption 91:f5:f0:4f:75:69:39:4d:92:45:0f:2f:fe:e7:53:96:8c:b9: 36:7a:ce:21:83:eb:73:6f:7f:16:a9:8e:ed:d7:4e:4f:48:10: 0a:d8:b3:12:70:9a:28:05:0c:20:b2:ad:d9:8b:dd:58:49:89: 85:18:6f:57:4e:9a:85:15:d3:b5:c9:b6:a2:5e:3b:b7:98:bc: c7:a5:2e:cb:de:37:f8:a2:1b:b9:73:f0:59:0c:63:cf:7a:d9: bf:a6:7a:1c:cc:18:a8:8b:7f:85:25:ca:1b:f3:4b:d7:c2:11: b6:4d:4b:50:5c:97:ee:fd:4b:71:34:9e:b8:10:9a:a5:1e:6e: 94:77:41:61:ba:bd:1a:e2:be:62:a9:df:3e:d1:2b:5f:b5:09: f6:b8:21:c2:d4:56:23:48:5a:ad:1e:10:bb:17:a8:fa:b6:e8: 13:b7:47:e7:67:04:5e:10:11:56:c6:c2:05:1c:42:84:9d:d7: 4a:f0:0a:49:9a:bb:7b:a9:47:dd:21:9e:54:21:1b:24:a3:df: 79:78:0a:56:fa:46:e2:cc:d6:3b:63:f0:1d:3c:c2:93:73:d6: 99:7f:27:59:58:63:9d:b7:03:90:36:a4:59:98:26:3d:05:26: 3b:e1:7d:f0:36:9e:06:a2:6e:35:fa:49:e0:21:d2:49:cd:85: 48:38:27:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf5oDNRVS9NkPgCnkETpbfOYFn5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdBNjAwN0VDNjM3M0VDOTUwMUY5OTU2RTEyQjZENUNC RTBGREMyMTAeFw0yNTA1MjIwNDQzNDdaFw0yNjA1MjEwNDQ4NDdaMDMxMTAvBgNV BAMTKDk2NzQ3MEQ1MzkzNThFRTREMjc0NzI1QjAxOUE5QzNDMUE0QkZBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0PoRAdeC+w/JfhzzZCQq4JJL+ LtHKizwi4S0qeHKu+RBZ0Wa9qj+R8+s2gfB6eBE6vV5juVYhWe9gf+LD8AIdfHtK wjGCNVPqvTEgGsxQBUYvWGJRvGabQZRBafMVteubvFC4/oUKD2oypTvzbXSGXfrZ xB2nb7MvC1pd4PBbTCLHnY7QyTU0KHa9EuxvV9dye9mqrGvaMZOdFRcqzsxaKP8L ExdhHp2k2R607zxG/TLQRBOO9Epf80T+jdasj65FsNSZGgNOBVc7vPvcKwHOEmwe 1HwGzbGasbJ8S8owBVIJs0WnzD417R6drA7FfZShs7dpW/7h64esavrdjj8fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlnRw1Tk1juTSdHJbAZqcPBpL+sgwHwYDVR0j BBgwFoAUF6YAfsY3PslQH5lW4SttXL4P3CEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OGRlNGFmNy1iZjQ4LTRjYjgtOGY2My04MWNhZTE3MzY0ZGUvMC8xN0E2MDA3RUM2 MzczRUM5NTAxRjk5NTZFMTJCNkQ1Q0JFMEZEQzIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdBNjAwN0VDNjM3M0VDOTUwMUY5OTU2RTEyQjZENUNCRTBG REMyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4ZGU0YWY3LWJmNDgtNGNiOC04 ZjYzLTgxY2FlMTczNjRkZS8wLzMxMzAzMzJlMzEzMDM1MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2k6MA0GCSqG SIb3DQEBCwUAA4IBAQCR9fBPdWk5TZJFDy/+51OWjLk2es4hg+tzb38WqY7t105P SBAK2LMScJooBQwgsq3Zi91YSYmFGG9XTpqFFdO1ybaiXju3mLzHpS7L3jf4ohu5 c/BZDGPPetm/pnoczBioi3+FJcob80vXwhG2TUtQXJfu/UtxNJ64EJqlHm6Ud0Fh ur0a4r5iqd8+0StftQn2uCHC1FYjSFqtHhC7F6j6tugTt0fnZwReEBFWxsIFHEKE nddK8ApJmrt7qUfdIZ5UIRsko995eApW+kbizNY7Y/AdPMKTc9aZfydZWGOdtwOQ NqRZmCY9BSY74X3wNp4Gom41+kngIdJJzYVIOCcC -----END CERTIFICATE-----Generated at Sun Jun 8 12:47:18 2025 by rpki-client