$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa File: 3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa (raw, json) Hash identifier: p6sOKpaHxQkCClQSyTYMdnkWbFxcKXaXdyewePl3H10= Subject key identifier: C4:A7:0C:33:16:58:D7:18:6D:E2:52:99:3A:C2:35:64:FE:8A:01:46 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 3135A7E80A46F0C37E694637AFCC95DC6F40AAEE Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa Signing time: Mon 02 Jun 2025 01:03:13 +0000 ROA not before: Mon 02 Jun 2025 00:58:13 +0000 ROA not after: Mon 01 Jun 2026 01:03:13 +0000 asID: 137363 IP address blocks: 103.116.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:35:a7:e8:0a:46:f0:c3:7e:69:46:37:af:cc:95:dc:6f:40:aa:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 2 00:58:13 2025 GMT Not After : Jun 1 01:03:13 2026 GMT Subject: CN=C4A70C331658D7186DE252993AC23564FE8A0146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:48:2a:9b:23:a5:0d:76:c8:72:f4:be:79: cb:a4:38:0c:1b:2a:04:40:8a:7b:f8:62:70:90:d7: 5d:ec:9b:e3:1a:8f:94:20:dd:74:c8:1f:09:55:67: 82:e4:8f:8f:0b:9e:90:76:db:99:bb:3f:71:d9:8b: d7:48:e7:b7:19:5e:93:09:55:a9:d2:b5:0b:ff:5d: 5e:c6:90:6c:36:09:ab:db:1b:73:a7:68:cd:c3:91: 20:42:82:57:a3:6b:82:b3:de:a4:3b:b9:12:13:a7: 01:fb:1f:79:e0:fc:41:55:82:18:61:ee:9f:38:60: 0d:42:f3:eb:20:5a:53:3c:b2:9a:2c:7f:25:41:c8: 87:1c:91:38:ed:78:08:b4:14:09:1e:f3:5b:a0:bf: 26:b0:33:85:42:bd:b5:53:3e:5c:13:17:21:d4:a0: 0d:34:ee:7c:d5:f8:73:d6:80:f4:f5:c3:ef:43:ab: 66:c3:59:46:f3:91:42:d7:41:0e:d8:84:ee:81:e7: 68:00:d2:dc:70:b2:2a:4c:11:ef:05:be:09:45:2b: d4:0c:53:35:0c:3c:d0:3a:f9:c5:80:bc:39:3c:35: eb:04:ef:f6:84:7e:e8:46:1c:94:02:73:b2:6d:2a: 87:1b:f9:c6:b0:83:2b:c2:e3:aa:4e:69:22:0c:4b: fb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A7:0C:33:16:58:D7:18:6D:E2:52:99:3A:C2:35:64:FE:8A:01:46 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.172.0/22 Signature Algorithm: sha256WithRSAEncryption 99:48:cf:72:48:2e:70:9e:e6:f9:c9:be:73:54:fc:09:6f:7c: 44:18:66:ef:d7:e2:d8:a3:ac:26:9f:c7:68:e3:3e:2b:4b:da: 2e:9c:aa:d6:c2:0f:23:d8:ad:1b:e4:bc:ef:3e:3f:f7:39:ed: e4:0f:53:f1:5c:45:f5:1f:20:d2:b1:97:e8:a2:a8:c8:72:d8: 82:8d:23:cc:43:44:54:bb:45:3c:b0:d2:1c:7d:65:06:da:22: 2e:53:78:16:2d:1b:17:44:40:64:7c:6c:79:0b:84:67:0f:58: c2:29:ff:da:06:3c:2e:05:72:8c:7e:33:38:3c:70:1e:fc:41: c2:b4:3f:c8:d2:bd:9e:f2:f9:ff:32:92:b5:f9:de:4f:ce:96: 96:6d:62:5b:00:14:b2:f8:ba:74:74:7f:13:b5:dc:5d:c8:69: c8:06:8f:d8:96:58:d4:03:2d:6b:1e:0a:b4:30:3f:97:d2:bd: 5b:59:54:6c:26:11:5a:68:9a:dd:2b:b8:66:5e:01:ac:44:33: 1e:54:65:6e:cd:de:97:ea:3b:21:73:b2:f6:05:c5:5d:6f:77: 2b:99:54:a4:66:e6:45:8c:0f:a7:db:5e:f6:78:20:09:c2:ac: 8a:93:b7:18:81:68:c4:44:0f:ea:92:81:3a:6e:6f:2b:48:5b: 1c:34:1f:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMTWn6ApG8MN+aUY3r8yV3G9Aqu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDIwMDU4MTNaFw0yNjA2MDEwMTAzMTNaMDMxMTAvBgNV BAMTKEM0QTcwQzMzMTY1OEQ3MTg2REUyNTI5OTNBQzIzNTY0RkU4QTAxNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEEgqmyOlDXbIcvS+ecukOAwb KgRAinv4YnCQ113sm+Maj5Qg3XTIHwlVZ4Lkj48LnpB225m7P3HZi9dI57cZXpMJ VanStQv/XV7GkGw2CavbG3OnaM3DkSBCgleja4Kz3qQ7uRITpwH7H3ng/EFVghhh 7p84YA1C8+sgWlM8sposfyVByIcckTjteAi0FAke81ugvyawM4VCvbVTPlwTFyHU oA007nzV+HPWgPT1w+9Dq2bDWUbzkULXQQ7YhO6B52gA0txwsipMEe8FvglFK9QM UzUMPNA6+cWAvDk8NesE7/aEfuhGHJQCc7JtKocb+cawgyvC46pOaSIMS/txAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxKcMMxZY1xht4lKZOsI1ZP6KAUYwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMxMzAzMzJlMzEzMTM2MmUzMTM3MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndKwwDQYJ KoZIhvcNAQELBQADggEBAJlIz3JILnCe5vnJvnNU/AlvfEQYZu/X4tijrCafx2jj PitL2i6cqtbCDyPYrRvkvO8+P/c57eQPU/FcRfUfINKxl+iiqMhy2IKNI8xDRFS7 RTyw0hx9ZQbaIi5TeBYtGxdEQGR8bHkLhGcPWMIp/9oGPC4Fcox+Mzg8cB78QcK0 P8jSvZ7y+f8ykrX53k/OlpZtYlsAFLL4unR0fxO13F3IacgGj9iWWNQDLWseCrQw P5fSvVtZVGwmEVpomt0ruGZeAaxEMx5UZW7N3pfqOyFzsvYFxV1vdyuZVKRm5kWM D6fbXvZ4IAnCrIqTtxiBaMRED+qSgTpubytIWxw0H38= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:21 2025 by rpki-client