$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa File: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: RKuA2CS77/iBc1MhX2FD3Oj8MLTo/sw4r4vfbH4WpPI= Subject key identifier: 78:8A:AC:8E:44:C5:4C:C2:7D:2B:67:B0:12:DB:3D:5C:0B:51:C4:AD Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 1102B2038F5BAD8F45C626B43FD82C3E9315D84E Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa Signing time: Sun 27 Jul 2025 06:00:03 +0000 ROA not before: Sun 27 Jul 2025 05:55:03 +0000 ROA not after: Sun 26 Jul 2026 06:00:03 +0000 asID: 58474 IP address blocks: 103.28.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:02:b2:03:8f:5b:ad:8f:45:c6:26:b4:3f:d8:2c:3e:93:15:d8:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Jul 27 05:55:03 2025 GMT Not After : Jul 26 06:00:03 2026 GMT Subject: CN=788AAC8E44C54CC27D2B67B012DB3D5C0B51C4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9d:09:8a:98:e9:e0:14:8d:0f:8b:52:dd:e9: e2:f3:f7:65:47:18:4f:d2:0d:76:95:37:e3:40:56: 6a:fa:73:b6:ba:a4:09:60:f1:b3:48:1c:e4:5b:e8: 66:e3:fd:1f:e6:45:36:57:93:b8:af:96:50:b3:7f: dd:19:40:3c:57:cd:9d:02:b6:cb:e7:8d:15:01:c5: 61:3e:b2:5a:bd:bc:81:05:e0:35:eb:4a:ae:76:99: 3b:ea:de:d1:af:09:92:71:35:fb:bf:d6:24:3a:c1: d8:68:ec:e8:4d:3f:43:09:e6:25:ce:2e:2c:eb:79: 4f:50:71:fd:03:9a:fd:19:d1:08:ed:6c:8b:35:87: e7:79:40:4f:fe:e8:d5:9f:b2:70:a5:32:55:3d:e3: a8:dd:2c:e8:81:2f:d5:b6:de:33:f7:69:ac:08:e4: 0b:d6:f1:06:b2:9b:0c:e5:8e:c7:a8:35:cc:70:50: f9:04:3c:fb:43:37:5c:35:da:28:cd:c9:87:ee:f6: 05:3f:bc:8f:b0:27:4b:32:63:2f:54:96:a2:bd:54: 64:6f:a7:5d:90:5d:fc:a7:c8:42:28:af:1c:52:c6: ce:77:92:2f:c0:e6:54:6e:1a:3a:21:ca:ec:6f:8d: a7:c9:37:f2:ba:1d:99:53:92:7c:d9:42:eb:e0:10: a3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:8A:AC:8E:44:C5:4C:C2:7D:2B:67:B0:12:DB:3D:5C:0B:51:C4:AD X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.57.0/24 Signature Algorithm: sha256WithRSAEncryption ce:c6:41:a5:53:ee:8d:9f:e2:a8:6a:fb:47:8c:23:03:59:c7: db:90:79:96:e5:fc:c3:e4:49:f6:5e:66:74:17:b4:c5:f6:2e: ce:cf:99:ea:27:36:61:8d:65:76:d7:35:df:f0:1a:21:10:f1: e2:23:1d:77:3f:8c:79:5a:4e:75:0c:33:10:35:17:01:30:d8: 52:0e:16:5c:ab:99:95:dc:32:0d:c2:bc:34:72:6c:85:73:6d: 00:f5:93:d7:9d:5c:36:65:ff:14:1f:10:5b:e5:75:f7:3c:99: 8d:04:f0:e1:f0:7e:9e:03:4c:95:12:5f:3a:2e:4d:7d:cd:3f: f3:ad:3b:59:2d:41:76:00:58:86:78:7e:25:d9:6a:43:6a:0f: a6:01:f9:cb:eb:7a:d7:52:56:52:02:e6:59:e1:0e:66:af:6e: bd:b5:d4:66:bc:a7:8b:dd:f5:6e:22:4d:7f:aa:e5:83:e1:6b: e5:82:d1:71:91:66:d2:b5:d8:ee:c3:cd:6b:cf:78:86:e0:c9: fb:a3:54:98:41:fa:79:39:8c:b0:b9:9d:0b:4a:1c:41:a0:ea: 17:c2:3e:2e:70:e6:c0:82:33:ef:ab:ff:04:54:2d:df:23:1d: 6b:a3:f4:a1:45:4d:18:ef:35:d9:ac:07:bd:70:29:dd:ea:d2: 5b:a0:28:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEQKyA49brY9Fxia0P9gsPpMV2E4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA3MjcwNTU1MDNaFw0yNjA3MjYwNjAwMDNaMDMxMTAvBgNV BAMTKDc4OEFBQzhFNDRDNTRDQzI3RDJCNjdCMDEyREIzRDVDMEI1MUM0QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjnQmKmOngFI0Pi1Ld6eLz92VH GE/SDXaVN+NAVmr6c7a6pAlg8bNIHORb6Gbj/R/mRTZXk7ivllCzf90ZQDxXzZ0C tsvnjRUBxWE+slq9vIEF4DXrSq52mTvq3tGvCZJxNfu/1iQ6wdho7OhNP0MJ5iXO LizreU9Qcf0Dmv0Z0QjtbIs1h+d5QE/+6NWfsnClMlU946jdLOiBL9W23jP3aawI 5AvW8QaymwzljseoNcxwUPkEPPtDN1w12ijNyYfu9gU/vI+wJ0syYy9UlqK9VGRv p12QXfynyEIorxxSxs53ki/A5lRuGjohyuxvjafJN/K6HZlTknzZQuvgEKP3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUeIqsjkTFTMJ9K2ewEts9XAtRxK0wHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDkwDQYJKoZIhvcN AQELBQADggEBAM7GQaVT7o2f4qhq+0eMIwNZx9uQeZbl/MPkSfZeZnQXtMX2Ls7P meonNmGNZXbXNd/wGiEQ8eIjHXc/jHlaTnUMMxA1FwEw2FIOFlyrmZXcMg3CvDRy bIVzbQD1k9edXDZl/xQfEFvldfc8mY0E8OHwfp4DTJUSXzouTX3NP/OtO1ktQXYA WIZ4fiXZakNqD6YB+cvretdSVlIC5lnhDmavbr211Ga8p4vd9W4iTX+q5YPha+WC 0XGRZtK12O7DzWvPeIbgyfujVJhB+nk5jLC5nQtKHEGg6hfCPi5w5sCCM++r/wRU Ld8jHWuj9KFFTRjvNdmsB71wKd3q0lugKFc= -----END CERTIFICATE-----Generated at Sat Aug 9 15:09:33 2025 by rpki-client