$ rpki-client -vvf repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/3130332e3137312e33302e302f32332d3234203d3e20313331313131.roa File: 3130332e3137312e33302e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: 0IdcwPtxZArM5JrmLtgkLYtthS0u5GSXZS6q7IiPcxg= Subject key identifier: ED:E6:BE:92:04:DF:2A:57:66:2C:37:4C:08:A6:7B:FE:82:4E:2E:37 Certificate issuer: /CN=8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86 Certificate serial: 75AEACD240FF272E68F636DC253234ECEB57B511 Authority key identifier: 8A:4F:F8:36:58:8B:BD:C5:E5:CC:52:6B:BB:EB:66:D5:14:0D:1B:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/3130332e3137312e33302e302f32332d3234203d3e20313331313131.roa Signing time: Wed 21 May 2025 04:02:07 +0000 ROA not before: Wed 21 May 2025 03:57:07 +0000 ROA not after: Wed 20 May 2026 04:02:07 +0000 asID: 131111 IP address blocks: 103.171.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.crl rsync://repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ae:ac:d2:40:ff:27:2e:68:f6:36:dc:25:32:34:ec:eb:57:b5:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86 Validity Not Before: May 21 03:57:07 2025 GMT Not After : May 20 04:02:07 2026 GMT Subject: CN=EDE6BE9204DF2A57662C374C08A67BFE824E2E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d6:8c:4e:37:30:02:92:81:73:4e:45:d7:60: f9:b7:32:77:bf:47:97:1a:73:38:34:62:b9:93:22: 9f:86:20:19:c1:20:0d:39:83:28:4d:95:9b:22:a7: 7b:88:69:1c:21:8e:48:fd:66:e6:89:01:a1:25:cd: 09:bc:a9:8b:42:d0:fe:5b:f3:88:2a:b7:91:01:5a: 30:5a:6c:ee:c2:dc:b6:fa:fe:25:ef:b9:cc:c8:9b: 0e:62:dd:32:46:1b:be:77:99:86:0e:6f:b5:5c:79: b3:d0:61:9d:a6:3e:97:e7:8b:68:e6:fa:84:f2:16: cd:4b:fe:b0:ed:67:c9:04:5e:6c:f9:44:7c:76:96: 70:95:4f:29:09:cb:77:c0:17:02:5f:a6:35:a4:ef: 80:02:d7:57:7b:8a:22:83:3e:cd:ea:76:ac:e0:a6: d9:e6:49:ee:10:9b:f4:9d:56:10:a9:95:0f:fe:39: 38:48:2b:da:1e:1d:32:aa:bc:87:07:92:e6:f4:1a: 98:0c:8b:b2:d4:90:54:24:34:01:d0:d0:5d:dc:df: 80:ac:ee:30:ed:b0:d0:af:2a:e9:60:70:94:a8:0e: 8c:74:ef:e9:1d:3a:00:43:49:ea:4c:a3:06:d5:31: d9:7a:fa:6f:ff:73:4f:b8:17:3b:f1:c0:0e:af:37: d2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E6:BE:92:04:DF:2A:57:66:2C:37:4C:08:A6:7B:FE:82:4E:2E:37 X509v3 Authority Key Identifier: keyid:8A:4F:F8:36:58:8B:BD:C5:E5:CC:52:6B:BB:EB:66:D5:14:0D:1B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A4FF836588BBDC5E5CC526BBBEB66D5140D1B86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9e7a28a-62f0-4d14-8702-403a5190eae1/0/3130332e3137312e33302e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.30.0/23 Signature Algorithm: sha256WithRSAEncryption 84:c0:74:85:4b:4f:cf:17:7a:15:37:be:a6:06:32:2e:1d:28: 77:64:fd:08:aa:36:b7:5e:7c:8f:8a:05:c6:e6:d8:c7:1a:32: 57:6e:9d:2b:d5:2b:f1:62:dd:75:be:aa:76:b3:90:e2:c0:09: c7:89:ca:ca:53:cc:08:1d:61:6b:3d:9e:1c:8c:92:ba:41:c7: f7:d3:4c:cf:fe:54:ed:3e:db:cd:d3:5c:02:d4:16:7e:2a:32: 8f:52:98:1c:e3:38:5d:c6:06:fa:6b:3d:64:d2:96:20:03:89: d7:04:66:11:4e:6a:4b:8c:94:6c:b8:34:d7:bc:59:4f:26:b9: fa:1e:37:97:f8:e7:bc:67:cc:14:3e:26:c1:66:67:65:7d:2a: 78:ea:2f:b9:cc:32:ea:a3:0b:95:49:90:23:57:8a:db:99:32: 8e:8e:db:dd:ea:c2:94:37:e9:56:48:bc:cc:66:e9:6d:94:1a: b3:6e:92:13:dc:6d:85:9e:8d:d7:5e:ec:b8:fa:15:6a:9e:27: 77:a7:55:1e:1a:e8:1f:a7:b7:1f:79:22:41:61:9a:61:d0:a0: 03:6a:f7:8a:0e:1d:e3:f2:6c:1e:57:20:e4:9b:d6:cc:7d:a8: 53:cd:ae:e5:71:05:66:34:4b:59:83:83:3a:ca:cf:c6:98:54: 26:45:87:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUda6s0kD/Jy5o9jbcJTI07OtXtREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE0RkY4MzY1ODhCQkRDNUU1Q0M1MjZCQkJFQjY2RDUx NDBEMUI4NjAeFw0yNTA1MjEwMzU3MDdaFw0yNjA1MjAwNDAyMDdaMDMxMTAvBgNV BAMTKEVERTZCRTkyMDRERjJBNTc2NjJDMzc0QzA4QTY3QkZFODI0RTJFMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01oxONzACkoFzTkXXYPm3Mne/ R5caczg0YrmTIp+GIBnBIA05gyhNlZsip3uIaRwhjkj9ZuaJAaElzQm8qYtC0P5b 84gqt5EBWjBabO7C3Lb6/iXvuczImw5i3TJGG753mYYOb7VcebPQYZ2mPpfni2jm +oTyFs1L/rDtZ8kEXmz5RHx2lnCVTykJy3fAFwJfpjWk74AC11d7iiKDPs3qdqzg ptnmSe4Qm/SdVhCplQ/+OThIK9oeHTKqvIcHkub0GpgMi7LUkFQkNAHQ0F3c34Cs 7jDtsNCvKulgcJSoDox07+kdOgBDSepMowbVMdl6+m//c0+4FzvxwA6vN9IjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7ea+kgTfKldmLDdMCKZ7/oJOLjcwHwYDVR0j BBgwFoAUik/4NliLvcXlzFJru+tm1RQNG4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWU3YTI4YS02MmYwLTRkMTQtODcwMi00MDNhNTE5MGVhZTEvMC84QTRGRjgzNjU4 OEJCREM1RTVDQzUyNkJCQkVCNjZENTE0MEQxQjg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE0RkY4MzY1ODhCQkRDNUU1Q0M1MjZCQkJFQjY2RDUxNDBE MUI4Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZTdhMjhhLTYyZjAtNGQxNC04 NzAyLTQwM2E1MTkwZWFlMS8wLzMxMzAzMzJlMzEzNzMxMmUzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6seMA0GCSqG SIb3DQEBCwUAA4IBAQCEwHSFS0/PF3oVN76mBjIuHSh3ZP0Iqja3XnyPigXG5tjH GjJXbp0r1SvxYt11vqp2s5DiwAnHicrKU8wIHWFrPZ4cjJK6Qcf300zP/lTtPtvN 01wC1BZ+KjKPUpgc4zhdxgb6az1k0pYgA4nXBGYRTmpLjJRsuDTXvFlPJrn6HjeX +Oe8Z8wUPibBZmdlfSp46i+5zDLqowuVSZAjV4rbmTKOjtvd6sKUN+lWSLzMZult lBqzbpIT3G2Fno3XXuy4+hVqnid3p1UeGugfp7cfeSJBYZph0KADaveKDh3j8mwe VyDkm9bMfahTza7lcQVmNEtZg4M6ys/GmFQmRYdH -----END CERTIFICATE-----Generated at Thu Jun 5 18:52:38 2025 by rpki-client