$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa File: 3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa (raw, json) Hash identifier: eQ2W59Sl25b9+tbhRBYK+eiWkdxaKDr4YfWFXlk9jXI= Subject key identifier: D8:5F:0D:19:16:74:0E:D2:FC:04:64:E9:A9:29:96:77:63:20:22:A4 Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Certificate serial: 17F25C89620F2E29BFB6C8E1ED90B102DEE7BE2C Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa Signing time: Fri 23 May 2025 17:00:01 +0000 ROA not before: Fri 23 May 2025 16:55:01 +0000 ROA not after: Fri 22 May 2026 17:00:01 +0000 asID: 147124 IP address blocks: 103.175.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 11:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f2:5c:89:62:0f:2e:29:bf:b6:c8:e1:ed:90:b1:02:de:e7:be:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Validity Not Before: May 23 16:55:01 2025 GMT Not After : May 22 17:00:01 2026 GMT Subject: CN=D85F0D1916740ED2FC0464E9A9299677632022A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:1a:21:7b:f9:17:ff:2a:8d:d2:2c:57:3e: dd:92:8f:2b:f2:80:ba:24:b8:70:66:c2:8e:dd:ac: ae:f4:cb:1e:18:17:23:f0:8f:8e:e1:e6:98:78:9c: d6:fe:27:0d:bf:bb:99:59:36:e7:07:29:7a:ab:96: 1b:82:42:7b:42:cf:42:af:5a:4d:b4:64:6c:04:c1: 75:65:52:51:70:df:e6:19:8d:b6:f2:bd:f3:ca:11: 17:90:b9:bf:e9:39:2f:17:18:38:8e:41:ce:58:38: 50:35:78:86:71:a7:1c:61:a8:a8:f0:05:fe:fb:2d: ff:b9:a9:d9:30:48:89:01:33:e6:76:d9:f6:0b:6d: 1f:6e:3b:03:8d:15:3f:e0:46:33:fa:ea:fd:ce:31: 0f:06:4e:3e:b3:ac:52:9c:d3:c7:07:88:41:0f:75: 72:e8:95:8c:ab:31:00:b3:aa:9c:d2:ba:e3:ff:5d: b6:56:21:10:ed:36:be:6e:2b:aa:b3:b2:70:d5:6b: 06:c6:46:df:59:83:9a:b3:a0:26:db:59:2d:e7:5e: 3f:06:35:fa:8f:73:53:54:ee:c1:08:4c:1d:d8:d1: b3:85:df:e1:01:9d:ba:fd:a4:d6:ca:52:3f:be:ae: 23:95:49:ee:a7:25:52:17:ef:51:0c:97:bf:3c:bc: 73:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5F:0D:19:16:74:0E:D2:FC:04:64:E9:A9:29:96:77:63:20:22:A4 X509v3 Authority Key Identifier: keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.206.0/24 Signature Algorithm: sha256WithRSAEncryption 23:ae:34:28:61:13:4e:34:14:ae:05:0a:5d:97:3d:b9:d6:91: 43:ce:72:95:c9:9d:29:c7:dd:3f:65:76:18:df:e9:d4:42:53: c7:f5:bb:c7:32:7d:61:2e:3f:b4:87:3e:c0:a6:b9:b7:7d:fb: 51:fa:db:1c:41:2d:d0:7a:6c:f8:7c:0f:6f:e2:3c:bf:34:9d: 12:87:d6:7d:87:2f:80:e7:47:6c:ce:1a:c7:df:63:66:37:c4: 74:c1:0d:fe:b5:4e:59:56:35:35:c4:54:75:63:fd:62:68:f4: 6d:aa:2e:dd:49:d9:7b:70:e1:62:6d:62:44:27:ae:4f:a3:16: 06:3f:cb:6b:d0:18:3d:d8:86:65:2c:11:1e:83:30:c1:95:f8: 15:76:9f:20:f1:76:3c:61:1d:61:35:e9:cb:f3:72:60:97:68: a2:7d:29:7e:37:41:9d:34:a1:08:a9:ab:91:5f:5a:79:fe:12: 5a:b9:c5:a0:a3:f2:da:89:c8:19:cc:74:bc:21:5c:e4:9d:32: a8:e0:4e:fc:ac:2b:66:b4:3a:ee:2b:a6:fe:f7:f5:0c:89:50: 5b:fd:41:61:9a:a1:0b:d5:cc:d6:6e:a0:b3:88:ea:b5:f9:a8: e2:28:51:85:c2:b6:91:27:29:c1:fd:1f:89:de:ba:a7:2b:61: 49:84:19:1a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF/JciWIPLim/tsjh7ZCxAt7nviwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4 MzFDNUZBODAeFw0yNTA1MjMxNjU1MDFaFw0yNjA1MjIxNzAwMDFaMDMxMTAvBgNV BAMTKEQ4NUYwRDE5MTY3NDBFRDJGQzA0NjRFOUE5Mjk5Njc3NjMyMDIyQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd/Bohe/kX/yqN0ixXPt2Sjyvy gLokuHBmwo7drK70yx4YFyPwj47h5ph4nNb+Jw2/u5lZNucHKXqrlhuCQntCz0Kv Wk20ZGwEwXVlUlFw3+YZjbbyvfPKEReQub/pOS8XGDiOQc5YOFA1eIZxpxxhqKjw Bf77Lf+5qdkwSIkBM+Z22fYLbR9uOwONFT/gRjP66v3OMQ8GTj6zrFKc08cHiEEP dXLolYyrMQCzqpzSuuP/XbZWIRDtNr5uK6qzsnDVawbGRt9Zg5qzoCbbWS3nXj8G NfqPc1NU7sEITB3Y0bOF3+EBnbr9pNbKUj++riOVSe6nJVIX71EMl788vHP7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2F8NGRZ0DtL8BGTpqSmWd2MgIqQwHwYDVR0j BBgwFoAUSmiLcqgEpCapCW7KYBBaTYMcX6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWE2YTY3ZC1jYmEzLTQyN2ItOTA1NS01ZjUyOGYyZDIzMmYvMC80QTY4OEI3MkE4 MDRBNDI2QTkwOTZFQ0E2MDEwNUE0RDgzMUM1RkE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4MzFD NUZBOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhYTZhNjdkLWNiYTMtNDI3Yi05 MDU1LTVmNTI4ZjJkMjMyZi8wLzMxMzAzMzJlMzEzNzM1MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnr84wDQYJ KoZIhvcNAQELBQADggEBACOuNChhE040FK4FCl2XPbnWkUPOcpXJnSnH3T9ldhjf 6dRCU8f1u8cyfWEuP7SHPsCmubd9+1H62xxBLdB6bPh8D2/iPL80nRKH1n2HL4Dn R2zOGsffY2Y3xHTBDf61TllWNTXEVHVj/WJo9G2qLt1J2Xtw4WJtYkQnrk+jFgY/ y2vQGD3YhmUsER6DMMGV+BV2nyDxdjxhHWE16cvzcmCXaKJ9KX43QZ00oQipq5Ff Wnn+Elq5xaCj8tqJyBnMdLwhXOSdMqjgTvysK2a0Ou4rpv739QyJUFv9QWGaoQvV zNZuoLOI6rX5qOIoUYXCtpEnKcH9H4neuqcrYUmEGRo= -----END CERTIFICATE-----Generated at Sun Jun 8 02:41:09 2025 by rpki-client