$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: SHObZCSyQ759rOoQJ/JZR3beQgRHBAmiHG/b7NwBiWM= Subject key identifier: FC:4C:48:8E:B9:FC:72:08:20:31:9C:BA:2C:8B:27:87:74:98:CA:8A Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 42C7BD8D786C5A4C564CAAEF791DDB3F96B495C6 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa Signing time: Tue 22 Jul 2025 06:00:00 +0000 ROA not before: Tue 22 Jul 2025 05:55:00 +0000 ROA not after: Tue 21 Jul 2026 06:00:00 +0000 asID: 58500 IP address blocks: 103.101.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c7:bd:8d:78:6c:5a:4c:56:4c:aa:ef:79:1d:db:3f:96:b4:95:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 05:55:00 2025 GMT Not After : Jul 21 06:00:00 2026 GMT Subject: CN=FC4C488EB9FC720820319CBA2C8B27877498CA8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:e6:d1:9a:8a:ed:38:0e:b6:17:79:68:ab: 1c:17:01:09:c9:b6:73:f4:60:c4:24:83:c3:04:72: 5e:8f:59:e8:c7:84:c2:a1:9b:f5:24:52:fb:82:25: 6f:85:88:c6:8e:be:e0:b0:a6:8c:5a:ba:db:92:8a: 41:30:72:b9:b1:ea:c0:a4:dd:aa:11:e0:3d:46:48: f6:1e:b0:a5:4c:2d:70:4c:b9:75:b4:c9:35:96:fb: 02:00:4c:f2:ba:30:2a:45:54:d9:b8:38:6b:29:75: d0:16:da:fa:7f:8b:29:38:1f:53:ff:97:ee:7a:68: 0e:1c:3d:dd:5a:5f:dd:73:d9:7e:12:fe:01:73:aa: 15:c6:0d:f6:c8:02:23:f3:f3:7b:80:e3:29:be:d8: 17:a6:d5:8d:b2:fc:db:78:1c:03:dc:81:bf:8a:12: 9d:3e:90:42:f1:4a:6a:f7:89:89:ed:d2:75:18:62: 7e:23:29:e4:6c:ea:b6:26:ed:c1:ae:df:12:4d:2e: 58:34:d1:b0:23:05:ef:12:1b:65:c9:64:42:ed:7d: 6f:6f:59:8c:aa:22:64:d6:4d:e7:4e:5a:a9:a3:0e: 00:db:56:f6:5f:b7:ca:dc:1a:8d:06:54:37:a2:b8: 2f:7d:86:cc:d0:a1:e4:15:95:f5:72:e8:00:1c:59: 0b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4C:48:8E:B9:FC:72:08:20:31:9C:BA:2C:8B:27:87:74:98:CA:8A X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.137.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:a1:be:8a:42:6d:b3:1f:7e:d1:9b:64:89:e6:ba:8d:2c:a6: de:d9:9b:8e:3e:f0:6c:e7:68:49:15:12:18:ec:00:8f:51:fd: 0b:68:d3:3e:26:cd:7b:84:83:7b:ba:62:ad:16:26:60:25:3f: c6:7b:f5:4d:b7:02:45:fe:25:22:75:f7:69:44:e3:e0:06:53: d2:7a:a5:87:6d:a1:df:82:5d:dd:0d:b6:65:02:25:b2:30:84: 7e:13:37:68:c2:ce:57:31:c7:81:0a:c5:0b:27:2d:8d:94:33: e3:5d:f4:da:a9:ab:4b:79:97:20:3e:80:c5:27:2e:28:a0:d3: b1:d9:af:1f:f5:67:3a:99:11:3e:00:ea:b3:1c:e8:d4:50:e2: 91:a5:1c:82:2e:63:62:69:03:d7:d4:40:24:ff:c5:fc:57:8c: 99:9d:55:d0:ae:49:69:ea:ce:24:84:a6:48:72:76:40:b0:06: 26:97:9e:8c:3d:8f:95:ea:af:d3:7f:12:e6:ed:82:45:c0:08: 26:43:66:e5:e3:c8:73:59:f3:43:66:24:61:79:ae:45:bb:86: e8:d3:2f:0e:e1:6b:67:44:2b:c4:9a:57:21:ee:9b:02:82:0e: dd:b6:5f:b4:07:b2:3c:23:95:4c:06:b7:4f:6a:4e:4a:cd:f1: a5:b5:bf:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQse9jXhsWkxWTKrveR3bP5a0lcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNTU1MDBaFw0yNjA3MjEwNjAwMDBaMDMxMTAvBgNV BAMTKEZDNEM0ODhFQjlGQzcyMDgyMDMxOUNCQTJDOEIyNzg3NzQ5OENBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/iubRmortOA62F3loqxwXAQnJ tnP0YMQkg8MEcl6PWejHhMKhm/UkUvuCJW+FiMaOvuCwpoxautuSikEwcrmx6sCk 3aoR4D1GSPYesKVMLXBMuXW0yTWW+wIATPK6MCpFVNm4OGspddAW2vp/iyk4H1P/ l+56aA4cPd1aX91z2X4S/gFzqhXGDfbIAiPz83uA4ym+2Bem1Y2y/Nt4HAPcgb+K Ep0+kELxSmr3iYnt0nUYYn4jKeRs6rYm7cGu3xJNLlg00bAjBe8SG2XJZELtfW9v WYyqImTWTedOWqmjDgDbVvZft8rcGo0GVDeiuC99hszQoeQVlfVy6AAcWQvpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/ExIjrn8cgggMZy6LIsnh3SYyoowHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WJMA0GCSqG SIb3DQEBCwUAA4IBAQB7ob6KQm2zH37Rm2SJ5rqNLKbe2ZuOPvBs52hJFRIY7ACP Uf0LaNM+Js17hIN7umKtFiZgJT/Ge/VNtwJF/iUidfdpROPgBlPSeqWHbaHfgl3d DbZlAiWyMIR+Ezdows5XMceBCsULJy2NlDPjXfTaqatLeZcgPoDFJy4ooNOx2a8f 9Wc6mRE+AOqzHOjUUOKRpRyCLmNiaQPX1EAk/8X8V4yZnVXQrklp6s4khKZIcnZA sAYml56MPY+V6q/TfxLm7YJFwAgmQ2bl48hzWfNDZiRhea5Fu4bo0y8O4WtnRCvE mlch7psCgg7dtl+0B7I8I5VMBrdPak5KzfGltb+E -----END CERTIFICATE-----Generated at Thu Aug 7 23:55:43 2025 by rpki-client