$ rpki-client -vvf repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/3130332e3130332e3138302e302f32332d3234203d3e20313336383437.roa File: 3130332e3130332e3138302e302f32332d3234203d3e20313336383437.roa (raw, json) Hash identifier: Ub40BPe4KMOTxitaoAUpxbpNc0bfpI5fDNOKKNlDeX8= Subject key identifier: 2E:BF:FF:AC:D4:DE:A9:C6:58:EE:07:91:B3:A0:DA:76:1D:D6:F5:68 Certificate issuer: /CN=6A200D6FC5434DAD6106CEE5439CA1270DDCBC92 Certificate serial: 494BBB20E2113AD126ADA609751E17B7A033D9A8 Authority key identifier: 6A:20:0D:6F:C5:43:4D:AD:61:06:CE:E5:43:9C:A1:27:0D:DC:BC:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/3130332e3130332e3138302e302f32332d3234203d3e20313336383437.roa Signing time: Fri 01 Aug 2025 01:00:01 +0000 ROA not before: Fri 01 Aug 2025 00:55:01 +0000 ROA not after: Fri 31 Jul 2026 01:00:01 +0000 asID: 136847 IP address blocks: 103.103.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.crl rsync://repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 02:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4b:bb:20:e2:11:3a:d1:26:ad:a6:09:75:1e:17:b7:a0:33:d9:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A200D6FC5434DAD6106CEE5439CA1270DDCBC92 Validity Not Before: Aug 1 00:55:01 2025 GMT Not After : Jul 31 01:00:01 2026 GMT Subject: CN=2EBFFFACD4DEA9C658EE0791B3A0DA761DD6F568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:60:a4:71:8f:8e:a0:2b:79:4d:bb:05:d1:d2: ed:3b:0c:5d:af:d2:48:4a:9f:4a:a7:b6:94:47:b7: 8e:e3:80:ba:2e:e4:44:50:e5:d5:1a:0c:e3:ec:51: ab:3c:be:81:c0:53:e9:54:3c:48:75:4d:91:e3:02: 2d:4a:95:30:cc:c4:b6:92:36:76:21:37:33:79:26: a2:70:94:ad:c9:a7:83:24:99:05:f7:07:67:bb:0c: d0:6a:5b:f2:98:2d:af:0d:fe:4d:17:5f:24:c4:a5: 7d:65:2c:2b:39:7c:fb:ac:e1:c7:4b:96:58:b1:cc: 9b:5a:cf:44:89:e3:6a:91:6e:3f:56:91:8a:91:26: c9:87:97:e6:99:93:2a:99:1d:c2:7c:c8:9a:02:45: 1e:b0:9a:33:d5:2e:64:2c:b4:44:f2:d2:6b:0d:9e: 6f:9d:8d:1a:20:71:6d:e5:4b:df:22:10:37:d7:e8: 23:cc:48:08:9f:be:c5:87:f5:f9:ed:aa:71:fd:33: a5:ce:66:6d:2c:44:62:f6:30:9b:a8:6a:cb:de:fb: 5e:d4:f1:f2:d4:12:37:89:58:33:b8:60:92:35:8d: c9:e3:a8:33:98:26:0e:ad:3d:31:4f:0e:bd:7a:61: 93:da:71:d6:3f:88:b3:37:79:5e:b5:a3:c4:bf:b5: 08:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BF:FF:AC:D4:DE:A9:C6:58:EE:07:91:B3:A0:DA:76:1D:D6:F5:68 X509v3 Authority Key Identifier: keyid:6A:20:0D:6F:C5:43:4D:AD:61:06:CE:E5:43:9C:A1:27:0D:DC:BC:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A200D6FC5434DAD6106CEE5439CA1270DDCBC92.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/3130332e3130332e3138302e302f32332d3234203d3e20313336383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.180.0/23 Signature Algorithm: sha256WithRSAEncryption c1:c9:dd:02:e5:3d:a9:2d:58:a0:d1:54:4b:ce:a9:9e:19:00: d5:14:8e:25:c5:81:eb:2e:8a:e9:da:74:bf:09:b2:d4:a5:7b: 83:01:b4:a1:cf:f2:4a:1f:ba:ba:27:7c:ef:8f:d9:2e:84:f3: ba:e4:cb:81:d5:bd:85:73:17:fc:cc:c5:00:e3:b1:69:ac:e9: df:6a:13:1d:fb:89:40:2d:8f:1d:6b:cf:c7:1f:fa:20:48:9c: 95:8a:81:ef:7a:1a:09:91:18:cc:d3:e6:f8:95:a6:80:80:30: 21:5c:a0:46:93:3d:4a:08:4f:c6:5f:05:b2:f4:3f:5c:f3:56: 6f:56:2d:0e:58:2c:11:74:22:40:8e:cb:52:49:36:f8:12:ae: 84:f1:5e:94:e8:13:14:91:67:ce:12:95:e5:c1:a8:3a:db:bb: 3c:20:e0:e5:43:bc:89:f9:35:db:b1:e2:f5:d1:4b:12:d4:7a: e9:e1:5c:83:71:af:bf:3c:3d:ca:35:e8:47:95:c7:30:d7:3c: 3a:6b:22:ba:4b:ec:9d:c0:bc:52:71:ca:8b:62:3c:bf:7a:a4: 27:cb:8d:4b:60:29:ef:5a:d4:c3:0c:0e:f8:f6:ca:95:6c:ef: 84:b4:e2:b8:d9:42:7c:04:6a:16:78:0f:f5:81:6a:2c:8d:ad: fc:83:3d:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSUu7IOIROtEmraYJdR4Xt6Az2agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEyMDBENkZDNTQzNERBRDYxMDZDRUU1NDM5Q0ExMjcw RERDQkM5MjAeFw0yNTA4MDEwMDU1MDFaFw0yNjA3MzEwMTAwMDFaMDMxMTAvBgNV BAMTKDJFQkZGRkFDRDRERUE5QzY1OEVFMDc5MUIzQTBEQTc2MURENkY1NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgYKRxj46gK3lNuwXR0u07DF2v 0khKn0qntpRHt47jgLou5ERQ5dUaDOPsUas8voHAU+lUPEh1TZHjAi1KlTDMxLaS NnYhNzN5JqJwlK3Jp4MkmQX3B2e7DNBqW/KYLa8N/k0XXyTEpX1lLCs5fPus4cdL llixzJtaz0SJ42qRbj9WkYqRJsmHl+aZkyqZHcJ8yJoCRR6wmjPVLmQstETy0msN nm+djRogcW3lS98iEDfX6CPMSAifvsWH9fntqnH9M6XOZm0sRGL2MJuoasve+17U 8fLUEjeJWDO4YJI1jcnjqDOYJg6tPTFPDr16YZPacdY/iLM3eV61o8S/tQgNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULr//rNTeqcZY7geRs6Dadh3W9WgwHwYDVR0j BBgwFoAUaiANb8VDTa1hBs7lQ5yhJw3cvJIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGQwZmNhOC01YzJkLTRlMzUtYmQ3ZC1iNDQ4YWE3NWYyYmUvMC82QTIwMEQ2RkM1 NDM0REFENjEwNkNFRTU0MzlDQTEyNzBERENCQzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEyMDBENkZDNTQzNERBRDYxMDZDRUU1NDM5Q0ExMjcwRERD QkM5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4ZDBmY2E4LTVjMmQtNGUzNS1i ZDdkLWI0NDhhYTc1ZjJiZS8wLzMxMzAzMzJlMzEzMDMzMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnZ7QwDQYJ KoZIhvcNAQELBQADggEBAMHJ3QLlPaktWKDRVEvOqZ4ZANUUjiXFgesuiunadL8J stSle4MBtKHP8kofuronfO+P2S6E87rky4HVvYVzF/zMxQDjsWms6d9qEx37iUAt jx1rz8cf+iBInJWKge96GgmRGMzT5viVpoCAMCFcoEaTPUoIT8ZfBbL0P1zzVm9W LQ5YLBF0IkCOy1JJNvgSroTxXpToExSRZ84SleXBqDrbuzwg4OVDvIn5Ndux4vXR SxLUeunhXINxr788Pco16EeVxzDXPDprIrpL7J3AvFJxyotiPL96pCfLjUtgKe9a 1MMMDvj2ypVs74S04rjZQnwEahZ4D/WBaiyNrfyDPcE= -----END CERTIFICATE-----Generated at Thu Aug 7 14:36:46 2025 by rpki-client