$ rpki-client -vvf repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/3130332e3138362e39342e302f32332d3234203d3e20313439373430.roa File: 3130332e3138362e39342e302f32332d3234203d3e20313439373430.roa (raw, json) Hash identifier: 36f1oVCDIma5/edGeBmPtM2U4zeHtnBlVDsNRr5sez8= Subject key identifier: 6D:BF:D5:CD:45:C1:13:88:3B:98:48:B3:8B:23:5C:AB:C3:F4:76:FE Certificate issuer: /CN=B76CEE66CD329E4EDD33E6D3452A33FBBE00D741 Certificate serial: 336E81D1D95DF81C1DB143796190716DD180CCB3 Authority key identifier: B7:6C:EE:66:CD:32:9E:4E:DD:33:E6:D3:45:2A:33:FB:BE:00:D7:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/3130332e3138362e39342e302f32332d3234203d3e20313439373430.roa Signing time: Sat 17 May 2025 13:00:01 +0000 ROA not before: Sat 17 May 2025 12:55:01 +0000 ROA not after: Sat 16 May 2026 13:00:01 +0000 asID: 149740 IP address blocks: 103.186.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.crl rsync://repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6e:81:d1:d9:5d:f8:1c:1d:b1:43:79:61:90:71:6d:d1:80:cc:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B76CEE66CD329E4EDD33E6D3452A33FBBE00D741 Validity Not Before: May 17 12:55:01 2025 GMT Not After : May 16 13:00:01 2026 GMT Subject: CN=6DBFD5CD45C113883B9848B38B235CABC3F476FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:ed:07:73:02:b6:1d:2d:7f:1f:5b:47:90: ba:b1:33:97:12:d4:c8:23:ba:fc:76:17:7b:98:58: f6:25:04:3a:dc:d5:07:7f:d0:39:65:e3:dc:1e:f6: 3d:45:7e:a4:dc:b3:53:c7:98:f7:dd:f7:55:d6:6a: d8:c5:e8:c3:d4:fd:44:94:f5:9a:40:28:8b:f5:19: 22:aa:e8:a6:a6:5d:ea:1c:05:b0:cf:21:bd:a0:3c: 19:23:fe:a7:c7:e6:90:b0:69:8f:e0:fd:87:cf:f2: 3e:17:5b:8e:ea:9f:f0:c3:f8:f6:75:6d:30:53:94: 7d:af:34:98:0c:b2:d0:d6:80:ed:1c:eb:38:d6:7c: 74:c3:3e:9c:a8:00:6b:07:da:a6:54:86:14:23:51: 6f:25:e9:67:f0:0f:ee:f5:b2:7e:65:40:b2:1a:ce: 80:6c:f6:07:a0:c7:9c:2d:7d:83:c3:89:03:6f:9c: 49:ed:6a:4b:a4:73:d5:3c:e3:32:3f:f1:8a:3e:95: d9:5c:33:c3:16:9b:08:a7:4b:2b:2a:b9:ee:4a:4e: 9b:cc:9c:5b:74:b3:be:9a:b8:5f:8a:29:ab:f0:55: 9b:91:a1:07:79:6e:6d:c0:68:e0:31:3c:4a:9a:1e: b6:ca:70:28:d1:45:31:b6:ce:c8:86:3c:c7:1c:de: bd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:D5:CD:45:C1:13:88:3B:98:48:B3:8B:23:5C:AB:C3:F4:76:FE X509v3 Authority Key Identifier: keyid:B7:6C:EE:66:CD:32:9E:4E:DD:33:E6:D3:45:2A:33:FB:BE:00:D7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B76CEE66CD329E4EDD33E6D3452A33FBBE00D741.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf7b7677-6204-405f-8ba2-e714324c15d7/0/3130332e3138362e39342e302f32332d3234203d3e20313439373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.94.0/23 Signature Algorithm: sha256WithRSAEncryption e5:8f:d2:84:c0:5e:cf:ea:2a:b8:de:04:ab:36:d9:50:18:77: b9:8b:2d:4c:53:32:e9:43:54:ad:36:9f:1c:95:4d:ed:14:fa: af:15:1e:a0:23:88:10:e0:ab:9e:21:50:22:fe:a6:00:a4:87: 5e:f4:99:ed:49:91:b4:ff:c5:e7:9e:ca:ff:5c:ba:6d:ec:47: a6:d5:54:b5:7c:88:6e:46:6c:5e:83:8e:db:68:71:86:e9:d3: 76:a6:b7:af:9e:58:3f:b0:b0:9c:2e:a3:5e:88:cf:24:09:cb: 4e:ff:94:00:aa:15:58:96:75:33:c5:1f:48:40:00:e4:65:e8: d2:cb:b6:8d:36:38:4a:f3:36:a0:1e:c1:cb:d6:e6:a1:e9:bf: a9:cd:f3:d1:e6:52:a7:cb:93:02:75:d9:7e:e5:f8:b8:a0:4c: 8d:ba:81:47:ef:e4:66:07:34:27:bd:3a:6c:84:d6:69:6a:0e: 45:8f:af:e7:04:8d:c7:c6:4c:9a:c3:cf:b6:65:be:e0:3f:80: e7:93:12:c4:c8:bc:7f:b8:d2:1d:74:a5:03:7d:8e:5f:9c:e6: 69:f0:c2:7e:14:7a:08:e6:72:9f:e4:61:ae:7b:f8:55:2c:70: d4:77:c8:7b:a1:22:ca:cf:6b:68:55:d1:1e:8f:da:42:48:7f: ac:9c:02:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM26B0dld+BwdsUN5YZBxbdGAzLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc2Q0VFNjZDRDMyOUU0RUREMzNFNkQzNDUyQTMzRkJC RTAwRDc0MTAeFw0yNTA1MTcxMjU1MDFaFw0yNjA1MTYxMzAwMDFaMDMxMTAvBgNV BAMTKDZEQkZENUNENDVDMTEzODgzQjk4NDhCMzhCMjM1Q0FCQzNGNDc2RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ3e0HcwK2HS1/H1tHkLqxM5cS 1Mgjuvx2F3uYWPYlBDrc1Qd/0Dll49we9j1FfqTcs1PHmPfd91XWatjF6MPU/USU 9ZpAKIv1GSKq6KamXeocBbDPIb2gPBkj/qfH5pCwaY/g/YfP8j4XW47qn/DD+PZ1 bTBTlH2vNJgMstDWgO0c6zjWfHTDPpyoAGsH2qZUhhQjUW8l6WfwD+71sn5lQLIa zoBs9gegx5wtfYPDiQNvnEntakukc9U84zI/8Yo+ldlcM8MWmwinSysque5KTpvM nFt0s76auF+KKavwVZuRoQd5bm3AaOAxPEqaHrbKcCjRRTG2zsiGPMcc3r3dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbb/VzUXBE4g7mEiziyNcq8P0dv4wHwYDVR0j BBgwFoAUt2zuZs0ynk7dM+bTRSoz+74A10EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjdiNzY3Ny02MjA0LTQwNWYtOGJhMi1lNzE0MzI0YzE1ZDcvMC9CNzZDRUU2NkNE MzI5RTRFREQzM0U2RDM0NTJBMzNGQkJFMDBENzQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc2Q0VFNjZDRDMyOUU0RUREMzNFNkQzNDUyQTMzRkJCRTAw RDc0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmN2I3Njc3LTYyMDQtNDA1Zi04 YmEyLWU3MTQzMjRjMTVkNy8wLzMxMzAzMzJlMzEzODM2MmUzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7peMA0GCSqG SIb3DQEBCwUAA4IBAQDlj9KEwF7P6iq43gSrNtlQGHe5iy1MUzLpQ1StNp8clU3t FPqvFR6gI4gQ4KueIVAi/qYApIde9JntSZG0/8Xnnsr/XLpt7Eem1VS1fIhuRmxe g47baHGG6dN2prevnlg/sLCcLqNeiM8kCctO/5QAqhVYlnUzxR9IQADkZejSy7aN NjhK8zagHsHL1uah6b+pzfPR5lKny5MCddl+5fi4oEyNuoFH7+RmBzQnvTpshNZp ag5Fj6/nBI3Hxkyaw8+2Zb7gP4DnkxLEyLx/uNIddKUDfY5fnOZp8MJ+FHoI5nKf 5GGue/hVLHDUd8h7oSLKz2toVdEej9pCSH+snAIX -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:16 2025 by rpki-client