$ rpki-client -vvf repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/3130332e3138352e3131312e302f32342d3234203d3e20313439383832.roa File: 3130332e3138352e3131312e302f32342d3234203d3e20313439383832.roa (raw, json) Hash identifier: k33UC/S59fL9YnbENocJ8tvAJ1sRtIu7ddJOWvA5ll8= Subject key identifier: E7:CB:CC:40:05:35:5B:3C:A6:95:67:42:C0:B4:6D:D7:25:E0:E0:68 Certificate issuer: /CN=466C942AFFDB262DABF7B65D913F3E9E92C9A0C6 Certificate serial: 508AC031CE7E890126A4FAF373DC1F680453AF37 Authority key identifier: 46:6C:94:2A:FF:DB:26:2D:AB:F7:B6:5D:91:3F:3E:9E:92:C9:A0:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/3130332e3138352e3131312e302f32342d3234203d3e20313439383832.roa Signing time: Wed 04 Jun 2025 06:01:52 +0000 ROA not before: Wed 04 Jun 2025 05:56:52 +0000 ROA not after: Wed 03 Jun 2026 06:01:52 +0000 asID: 149882 IP address blocks: 103.185.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.crl rsync://repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8a:c0:31:ce:7e:89:01:26:a4:fa:f3:73:dc:1f:68:04:53:af:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=466C942AFFDB262DABF7B65D913F3E9E92C9A0C6 Validity Not Before: Jun 4 05:56:52 2025 GMT Not After : Jun 3 06:01:52 2026 GMT Subject: CN=E7CBCC4005355B3CA6956742C0B46DD725E0E068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ce:81:66:71:1e:c0:26:bf:60:ce:18:ea:9c: 82:63:6b:ee:f3:66:09:cd:ff:d7:f8:fd:9a:96:be: 2c:8d:00:05:9c:51:9e:4e:01:d5:33:99:b9:b5:5a: 1f:7d:78:2c:b5:62:40:af:f4:b9:5f:72:bf:f2:56: cb:85:6d:55:20:12:32:85:3d:6f:53:8c:46:b8:e7: 60:1d:e0:24:27:23:ed:ae:8e:b3:2a:9d:88:4e:32: e0:3b:b3:b1:90:b7:bc:1b:b2:6d:29:de:90:c9:26: dd:89:e3:c3:42:68:6d:86:b5:77:33:91:00:28:12: 2a:de:7a:8e:da:b3:f1:d8:e5:65:b4:72:eb:19:a2: 87:38:b8:0b:4a:5c:fc:20:bd:fa:df:64:31:7f:60: 51:1c:95:d5:05:5d:c5:b8:33:f5:bc:30:25:9e:3f: 4d:83:e6:af:1d:3d:c3:ce:44:df:d7:cd:96:2a:51: 8c:7f:c2:f0:0d:a8:e0:d4:01:8a:35:fe:ca:ce:dd: c3:52:df:d2:25:8a:ac:a7:89:ea:c9:73:ff:83:e1: c3:d3:85:0d:db:d4:c4:78:fb:a1:e4:a9:32:ce:61: dd:0d:46:1e:49:0e:25:cc:8f:ec:30:d7:f9:2b:5c: 6e:55:4f:04:3e:9a:34:cf:8c:3b:4f:cb:b3:36:a7: 00:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CB:CC:40:05:35:5B:3C:A6:95:67:42:C0:B4:6D:D7:25:E0:E0:68 X509v3 Authority Key Identifier: keyid:46:6C:94:2A:FF:DB:26:2D:AB:F7:B6:5D:91:3F:3E:9E:92:C9:A0:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/466C942AFFDB262DABF7B65D913F3E9E92C9A0C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f56d0b78-7e81-4a8c-a875-95522b467938/0/3130332e3138352e3131312e302f32342d3234203d3e20313439383832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.111.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:65:88:b0:23:65:c8:14:72:8c:3d:ac:54:c0:f0:9e:dc:c0: 75:1c:7d:45:30:17:71:d5:65:c4:29:14:2d:63:b5:be:d0:26: cf:2d:1d:df:28:a5:a4:53:e4:15:20:48:f6:75:30:55:b1:a3: 71:58:3d:00:15:b9:8c:6b:da:5f:52:d4:96:5e:30:14:f4:bb: e0:52:f2:1f:94:90:8a:e0:22:09:b4:2b:88:44:67:a8:51:52: b0:91:27:77:a7:1e:ec:40:ed:f6:de:36:13:86:44:30:d4:2e: 20:51:83:bc:13:39:d9:14:43:c5:11:fd:51:90:8f:4b:ce:3b: 70:c8:d1:b5:61:c7:3f:d6:4d:ed:8d:89:80:1a:6d:5c:95:0d: 84:bb:f5:25:a9:df:5e:2f:c3:35:be:fc:df:e6:1a:99:54:d1: 0b:e4:a3:b5:4b:f3:a7:f9:62:93:10:1f:ab:f8:77:90:b5:e0: 31:7a:da:29:4e:fa:7a:6f:7e:dc:ef:80:24:bf:0b:ed:9c:79: 83:d4:c9:f8:63:3d:8b:f6:40:17:a5:a6:5c:da:12:06:35:26: f6:c0:03:ea:29:a8:36:9a:d8:3b:82:5e:d1:b9:a3:6a:be:03: de:60:5b:7d:16:e7:c5:ef:21:20:34:f5:ee:d1:a4:55:31:f2: 0a:e2:75:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUIrAMc5+iQEmpPrzc9wfaARTrzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDY2Qzk0MkFGRkRCMjYyREFCRjdCNjVEOTEzRjNFOUU5 MkM5QTBDNjAeFw0yNTA2MDQwNTU2NTJaFw0yNjA2MDMwNjAxNTJaMDMxMTAvBgNV BAMTKEU3Q0JDQzQwMDUzNTVCM0NBNjk1Njc0MkMwQjQ2REQ3MjVFMEUwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpzoFmcR7AJr9gzhjqnIJja+7z ZgnN/9f4/ZqWviyNAAWcUZ5OAdUzmbm1Wh99eCy1YkCv9Llfcr/yVsuFbVUgEjKF PW9TjEa452Ad4CQnI+2ujrMqnYhOMuA7s7GQt7wbsm0p3pDJJt2J48NCaG2GtXcz kQAoEireeo7as/HY5WW0cusZooc4uAtKXPwgvfrfZDF/YFEcldUFXcW4M/W8MCWe P02D5q8dPcPORN/XzZYqUYx/wvANqODUAYo1/srO3cNS39IliqynierJc/+D4cPT hQ3b1MR4+6HkqTLOYd0NRh5JDiXMj+ww1/krXG5VTwQ+mjTPjDtPy7M2pwATAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU58vMQAU1WzymlWdCwLRt1yXg4GgwHwYDVR0j BBgwFoAURmyUKv/bJi2r97ZdkT8+npLJoMYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NTZkMGI3OC03ZTgxLTRhOGMtYTg3NS05NTUyMmI0Njc5MzgvMC80NjZDOTQyQUZG REIyNjJEQUJGN0I2NUQ5MTNGM0U5RTkyQzlBMEM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDY2Qzk0MkFGRkRCMjYyREFCRjdCNjVEOTEzRjNFOUU5MkM5 QTBDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1NmQwYjc4LTdlODEtNGE4Yy1h ODc1LTk1NTIyYjQ2NzkzOC8wLzMxMzAzMzJlMzEzODM1MmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuW8wDQYJ KoZIhvcNAQELBQADggEBAH9liLAjZcgUcow9rFTA8J7cwHUcfUUwF3HVZcQpFC1j tb7QJs8tHd8opaRT5BUgSPZ1MFWxo3FYPQAVuYxr2l9S1JZeMBT0u+BS8h+UkIrg Igm0K4hEZ6hRUrCRJ3enHuxA7fbeNhOGRDDULiBRg7wTOdkUQ8UR/VGQj0vOO3DI 0bVhxz/WTe2NiYAabVyVDYS79SWp314vwzW+/N/mGplU0Qvko7VL86f5YpMQH6v4 d5C14DF62ilO+npvftzvgCS/C+2ceYPUyfhjPYv2QBelplzaEgY1JvbAA+opqDaa 2DuCXtG5o2q+A95gW30W58XvISA09e7RpFUx8gridX8= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:10 2025 by rpki-client