$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: 6WhqetXB0Qru1Hk4/GxM3BsbsVKsqVduKrzOxiby6RM= Subject key identifier: 3E:EE:AD:E5:08:17:BB:7F:DA:89:49:9B:77:A1:A5:86:3B:60:43:23 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 4275B39D78C171A550E6FFCA333BC1A30E4DE39E Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa Signing time: Tue 22 Jul 2025 05:00:00 +0000 ROA not before: Tue 22 Jul 2025 04:55:00 +0000 ROA not after: Tue 21 Jul 2026 05:00:00 +0000 asID: 58500 IP address blocks: 103.101.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:75:b3:9d:78:c1:71:a5:50:e6:ff:ca:33:3b:c1:a3:0e:4d:e3:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 04:55:00 2025 GMT Not After : Jul 21 05:00:00 2026 GMT Subject: CN=3EEEADE50817BB7FDA89499B77A1A5863B604323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fc:13:61:36:e5:d5:4a:3b:a3:bc:b6:0c:a9: 72:51:28:2a:27:af:72:7b:38:a9:24:9e:bf:a4:f5: 42:35:7b:46:d0:d4:8e:31:83:0b:5a:c2:c1:60:63: 4c:eb:b5:88:f3:fe:95:c0:47:2e:14:08:a7:76:8d: 8b:92:d2:5f:a8:86:03:a9:4f:56:b3:14:fd:0d:a6: 37:2d:70:13:8a:54:7f:d9:cb:b5:18:e2:f4:2e:58: c1:06:c9:f2:09:39:d8:38:ee:7e:9c:e5:c8:d9:ac: 5a:4f:df:17:2c:d6:e9:05:46:d9:d6:ae:20:e7:42: 9b:65:13:ff:17:cd:4d:65:97:d7:a8:4e:4b:7f:bd: 43:e3:fb:8c:e6:87:ca:64:f9:6f:f9:86:a4:7d:75: 4c:82:56:56:d1:31:95:c5:d0:20:9d:e8:30:a1:95: 9a:5c:1b:d4:be:ee:82:30:01:60:a9:07:93:7f:a1: e6:04:6b:95:73:d1:57:e0:e0:42:87:4e:0a:74:95: 16:98:4c:94:fd:70:4f:60:0e:3f:f7:39:f2:2d:eb: c5:ab:0b:5d:c0:0d:76:ef:d7:26:9a:6f:6c:d6:7c: 02:db:a6:cb:95:ee:43:6c:22:ab:db:a9:ab:07:ce: cd:fb:7e:63:13:e2:18:b9:43:46:b8:ba:36:5a:4e: 17:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EE:AD:E5:08:17:BB:7F:DA:89:49:9B:77:A1:A5:86:3B:60:43:23 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/24 Signature Algorithm: sha256WithRSAEncryption ae:7d:73:ca:bf:80:d5:46:35:0e:97:2b:71:e1:49:28:7e:51: 82:10:e5:f3:01:e1:cc:d5:eb:70:53:1d:47:68:69:75:91:b5: c2:02:7c:47:5b:28:fd:38:52:2d:bb:1a:e0:91:9d:e3:79:a8: f1:d8:9b:cb:5c:4f:79:73:1f:84:b5:3f:7a:22:61:a9:87:d4: 2b:03:9c:0e:55:2e:a0:51:e6:a3:be:b8:e7:1e:3b:53:4a:48: ee:b2:22:85:e7:11:f9:70:cd:5f:c2:0d:ee:f2:a4:18:0b:35: a2:c1:ea:2a:bf:83:b0:26:2d:c2:ba:62:cb:f8:bc:67:78:93: d5:4e:2f:20:04:33:95:fc:89:a2:eb:3d:89:1d:c9:23:49:7b: 44:ce:10:34:74:bc:d7:62:24:0f:d7:fe:6f:d6:20:ef:26:60: c9:3e:0f:24:56:72:31:17:78:58:bd:55:af:86:a6:b3:12:04: a2:8b:86:3c:00:14:c1:91:4a:53:0e:4b:e7:6f:95:49:de:0f: 6e:39:03:a1:91:2c:1c:af:09:8c:75:7e:cd:a6:4f:74:a8:e2: c7:43:ff:eb:76:cc:8b:ea:c2:06:52:dd:29:49:91:a4:6c:87: 8c:ad:a4:72:e0:74:40:84:8e:f0:f5:08:79:8e:b9:75:8e:57: b7:f7:f6:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQnWznXjBcaVQ5v/KMzvBow5N454wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNDU1MDBaFw0yNjA3MjEwNTAwMDBaMDMxMTAvBgNV BAMTKDNFRUVBREU1MDgxN0JCN0ZEQTg5NDk5Qjc3QTFBNTg2M0I2MDQzMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM/BNhNuXVSjujvLYMqXJRKCon r3J7OKkknr+k9UI1e0bQ1I4xgwtawsFgY0zrtYjz/pXARy4UCKd2jYuS0l+ohgOp T1azFP0NpjctcBOKVH/Zy7UY4vQuWMEGyfIJOdg47n6c5cjZrFpP3xcs1ukFRtnW riDnQptlE/8XzU1ll9eoTkt/vUPj+4zmh8pk+W/5hqR9dUyCVlbRMZXF0CCd6DCh lZpcG9S+7oIwAWCpB5N/oeYEa5Vz0Vfg4EKHTgp0lRaYTJT9cE9gDj/3OfIt68Wr C13ADXbv1yaab2zWfALbpsuV7kNsIqvbqasHzs37fmMT4hi5Q0a4ujZaThfhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPu6t5QgXu3/aiUmbd6GlhjtgQyMwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQCufXPKv4DVRjUOlytx4UkoflGCEOXzAeHM1etwUx1HaGl1 kbXCAnxHWyj9OFItuxrgkZ3jeajx2JvLXE95cx+EtT96ImGph9QrA5wOVS6gUeaj vrjnHjtTSkjusiKF5xH5cM1fwg3u8qQYCzWiweoqv4OwJi3CumLL+LxneJPVTi8g BDOV/Imi6z2JHckjSXtEzhA0dLzXYiQP1/5v1iDvJmDJPg8kVnIxF3hYvVWvhqaz EgSii4Y8ABTBkUpTDkvnb5VJ3g9uOQOhkSwcrwmMdX7Npk90qOLHQ//rdsyL6sIG Ut0pSZGkbIeMraRy4HRAhI7w9Qh5jrl1jle39/ZK -----END CERTIFICATE-----Generated at Thu Aug 7 23:56:12 2025 by rpki-client