$ rpki-client -vvf repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/3130332e3137382e38342e302f32332d3233203d3e20313439333138.roa File: 3130332e3137382e38342e302f32332d3233203d3e20313439333138.roa (raw, json) Hash identifier: wfLjY3p90gmlaNyyJgSUiHlnW1A0eYIofnmRcN5XLWg= Subject key identifier: 06:E5:49:3D:8B:A9:E3:8E:98:8D:25:BF:A7:99:D7:DE:AB:8B:48:6A Certificate issuer: /CN=1DD4F8984667E142BB9C6F1133AA56899352286C Certificate serial: 4CDA19154DB38ACB978709F0E04AB55DF0ED7B52 Authority key identifier: 1D:D4:F8:98:46:67:E1:42:BB:9C:6F:11:33:AA:56:89:93:52:28:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1DD4F8984667E142BB9C6F1133AA56899352286C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/3130332e3137382e38342e302f32332d3233203d3e20313439333138.roa Signing time: Fri 16 May 2025 13:00:02 +0000 ROA not before: Fri 16 May 2025 12:55:02 +0000 ROA not after: Fri 15 May 2026 13:00:02 +0000 asID: 149318 IP address blocks: 103.178.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/1DD4F8984667E142BB9C6F1133AA56899352286C.crl rsync://repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/1DD4F8984667E142BB9C6F1133AA56899352286C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1DD4F8984667E142BB9C6F1133AA56899352286C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 04:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:da:19:15:4d:b3:8a:cb:97:87:09:f0:e0:4a:b5:5d:f0:ed:7b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DD4F8984667E142BB9C6F1133AA56899352286C Validity Not Before: May 16 12:55:02 2025 GMT Not After : May 15 13:00:02 2026 GMT Subject: CN=06E5493D8BA9E38E988D25BFA799D7DEAB8B486A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1e:d9:72:4f:c2:b4:09:84:23:10:d4:20:e1: cc:00:41:98:4b:dc:25:53:b4:33:f8:b6:08:14:9b: 4d:df:1f:a3:79:99:2b:bd:42:d8:70:79:29:62:b5: a1:ff:01:a5:10:6b:aa:66:41:68:8f:5e:90:c2:e9: a3:23:d4:8b:e6:3d:f3:ea:6d:eb:66:bf:7b:96:5c: 67:88:54:2c:c2:aa:05:ff:01:22:74:e8:27:cf:96: b5:01:cc:70:d0:25:d1:62:16:98:3d:8b:06:d1:a6: 1e:80:73:f8:30:71:44:c8:74:55:55:30:81:42:25: c6:55:fa:99:c7:0f:89:18:21:d8:e9:79:ee:3c:bb: f7:2f:ab:cf:d7:40:61:47:9f:e1:89:af:52:d5:c3: 90:26:02:98:a6:05:b7:19:8b:cd:aa:c6:0f:00:f1: bc:5a:54:8b:44:6b:74:39:d2:70:7e:19:eb:dc:a3: 06:57:48:8e:0b:ed:10:77:2b:77:ac:9e:49:24:14: 24:d6:17:74:12:8a:1e:71:3e:50:d6:fb:9a:37:80: 3c:13:d5:18:e4:68:1c:4f:31:56:1a:04:9b:0b:f0: 11:68:d5:da:47:63:ff:47:7b:d5:a5:26:94:f2:6e: 47:93:f2:82:a6:1b:d1:cd:b1:24:3f:a7:dd:7f:fd: a1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E5:49:3D:8B:A9:E3:8E:98:8D:25:BF:A7:99:D7:DE:AB:8B:48:6A X509v3 Authority Key Identifier: keyid:1D:D4:F8:98:46:67:E1:42:BB:9C:6F:11:33:AA:56:89:93:52:28:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/1DD4F8984667E142BB9C6F1133AA56899352286C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1DD4F8984667E142BB9C6F1133AA56899352286C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/3130332e3137382e38342e302f32332d3233203d3e20313439333138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.84.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:0f:be:ba:3f:8b:d7:98:a6:ce:5c:85:3c:75:e8:b2:dd:7d: c9:ff:ba:a4:08:6d:68:ae:bb:56:76:c6:ed:b7:f2:94:f7:d0: 18:55:0a:21:e5:9b:eb:45:e0:be:a7:9f:93:99:ae:14:50:c1: 1c:6b:f9:c2:86:6e:94:4c:f8:bf:84:43:79:9a:ce:ca:cf:10: 81:28:4e:5a:74:1c:db:ba:b8:94:91:8e:be:48:a7:31:c6:d0: 84:c7:02:8d:c1:c6:90:4e:73:c0:ef:3f:13:90:fe:0e:cc:05: 69:76:b6:40:25:c2:44:bf:66:19:10:de:70:34:1a:9d:36:2f: 16:0a:e4:59:eb:78:7a:9e:66:d2:01:b6:ad:91:33:02:c3:6e: be:d3:df:07:e9:b4:b4:82:40:21:f0:25:d4:aa:84:7f:d7:ea: d2:d9:a0:98:ca:40:2d:ea:2b:54:fe:23:2a:54:90:d9:5b:6f: 30:a7:cb:73:b2:ee:09:f4:37:52:9f:8f:8a:eb:94:d8:16:15: e3:1c:30:0e:40:8d:eb:8b:03:11:c0:5e:18:51:08:38:2d:dd: 30:87:96:1a:67:24:1e:84:1a:e1:59:9a:82:a3:c8:67:5e:de: 7f:bf:59:33:13:31:7f:67:af:59:ca:2d:bb:49:af:15:bd:f2: 12:40:e0:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTNoZFU2zisuXhwnw4Eq1XfDte1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURENEY4OTg0NjY3RTE0MkJCOUM2RjExMzNBQTU2ODk5 MzUyMjg2QzAeFw0yNTA1MTYxMjU1MDJaFw0yNjA1MTUxMzAwMDJaMDMxMTAvBgNV BAMTKDA2RTU0OTNEOEJBOUUzOEU5ODhEMjVCRkE3OTlEN0RFQUI4QjQ4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOHtlyT8K0CYQjENQg4cwAQZhL 3CVTtDP4tggUm03fH6N5mSu9QthweSlitaH/AaUQa6pmQWiPXpDC6aMj1IvmPfPq betmv3uWXGeIVCzCqgX/ASJ06CfPlrUBzHDQJdFiFpg9iwbRph6Ac/gwcUTIdFVV MIFCJcZV+pnHD4kYIdjpee48u/cvq8/XQGFHn+GJr1LVw5AmApimBbcZi82qxg8A 8bxaVItEa3Q50nB+GevcowZXSI4L7RB3K3esnkkkFCTWF3QSih5xPlDW+5o3gDwT 1RjkaBxPMVYaBJsL8BFo1dpHY/9He9WlJpTybkeT8oKmG9HNsSQ/p91//aF/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBuVJPYup446YjSW/p5nX3quLSGowHwYDVR0j BBgwFoAUHdT4mEZn4UK7nG8RM6pWiZNSKGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzA3NWVmNi1hMjUxLTQ3ZGQtOGRkYS1jYWRmZjQ5N2E3ZTUvMC8xREQ0Rjg5ODQ2 NjdFMTQyQkI5QzZGMTEzM0FBNTY4OTkzNTIyODZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMURENEY4OTg0NjY3RTE0MkJCOUM2RjExMzNBQTU2ODk5MzUy Mjg2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjMDc1ZWY2LWEyNTEtNDdkZC04 ZGRhLWNhZGZmNDk3YTdlNS8wLzMxMzAzMzJlMzEzNzM4MmUzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzMzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7JUMA0GCSqG SIb3DQEBCwUAA4IBAQBPD766P4vXmKbOXIU8deiy3X3J/7qkCG1orrtWdsbtt/KU 99AYVQoh5ZvrReC+p5+Tma4UUMEca/nChm6UTPi/hEN5ms7KzxCBKE5adBzburiU kY6+SKcxxtCExwKNwcaQTnPA7z8TkP4OzAVpdrZAJcJEv2YZEN5wNBqdNi8WCuRZ 63h6nmbSAbatkTMCw26+098H6bS0gkAh8CXUqoR/1+rS2aCYykAt6itU/iMqVJDZ W28wp8tzsu4J9DdSn4+K65TYFhXjHDAOQI3riwMRwF4YUQg4Ld0wh5YaZyQehBrh WZqCo8hnXt5/v1kzEzF/Z69Zyi27Sa8VvfISQOAs -----END CERTIFICATE-----Generated at Sat Jun 7 13:40:29 2025 by rpki-client