$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa File: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: GggD4UAIQuJ2Ici9kI1FCxhBRH2erQ0+Zgb75d0bwAQ= Subject key identifier: 11:0D:D5:68:F1:B3:0D:63:DE:25:E0:8D:75:6C:A3:7E:42:25:02:A8 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 5D93570410C431A4AC877B713BDD757C40368BD0 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa Signing time: Sun 27 Jul 2025 06:00:02 +0000 ROA not before: Sun 27 Jul 2025 05:55:02 +0000 ROA not after: Sun 26 Jul 2026 06:00:02 +0000 asID: 58474 IP address blocks: 103.28.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 11:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:93:57:04:10:c4:31:a4:ac:87:7b:71:3b:dd:75:7c:40:36:8b:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Jul 27 05:55:02 2025 GMT Not After : Jul 26 06:00:02 2026 GMT Subject: CN=110DD568F1B30D63DE25E08D756CA37E422502A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e2:cc:da:02:5a:ea:30:89:7b:9d:6f:78:0c: f9:37:c2:a4:11:d0:c0:bf:fb:0f:a3:cb:5c:d1:23: a2:91:38:c9:09:90:bc:e3:9f:ce:15:2e:17:5d:12: fc:65:b2:79:b0:68:d1:45:37:28:68:b9:f0:9d:cb: 84:ab:8c:2b:ca:7c:6f:6b:ad:87:46:56:89:5a:c7: 0a:bb:9d:50:a9:46:32:ea:24:81:c2:79:7b:25:ab: 36:cc:ff:45:7a:10:91:aa:7b:dd:2f:56:4b:38:80: 29:5f:bb:d4:e4:46:fd:8f:af:2b:92:42:ec:e8:4d: 9d:a7:4d:23:96:8a:83:f9:fe:49:96:cf:03:5a:9d: c1:02:60:6a:84:f7:45:8c:18:c1:8f:3f:d2:bf:36: d3:e7:67:b0:76:07:e1:07:71:67:14:4b:46:f5:29: 64:ec:b3:7c:60:61:2a:a2:11:df:bb:67:03:d7:ed: 64:26:f2:93:78:d2:90:b1:61:fa:d2:55:1d:7b:a9: 1a:dc:62:c8:03:6e:89:2b:cf:b4:a2:b6:97:8b:84: c1:83:64:93:cc:cc:8d:66:81:40:63:a7:fc:05:2b: 59:10:e1:41:a2:e3:80:0b:b9:29:21:31:bb:f9:23: 26:4c:87:82:09:9f:40:2d:27:c4:d8:39:2f:4c:46: 66:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0D:D5:68:F1:B3:0D:63:DE:25:E0:8D:75:6C:A3:7E:42:25:02:A8 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35392e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.59.0/24 Signature Algorithm: sha256WithRSAEncryption 57:01:d3:c7:64:28:68:14:88:e8:8f:43:ce:99:0d:b0:21:03: 5d:07:37:cc:45:51:8a:00:4e:87:12:ca:31:6f:be:3f:74:4b: 2b:02:d5:b4:aa:ac:9a:17:e3:b5:1e:13:47:e7:ac:4e:41:79: fc:57:f0:6f:22:ae:2b:59:a8:cb:89:02:dc:0c:b4:db:ae:da: b2:1f:c4:dd:c6:14:98:75:3d:4e:d3:2e:71:93:b0:a9:38:eb: bc:55:f2:71:6d:42:73:2b:f8:c9:84:a1:0c:a1:69:bc:a5:94: fe:aa:48:41:83:b5:75:5e:33:25:67:c5:35:3e:df:9f:88:87: 91:3c:4e:a6:a4:95:48:44:aa:42:7e:4d:56:cc:15:62:2e:a7: 23:ee:7c:44:39:e0:57:a6:9f:52:f8:15:a2:93:e2:4b:40:b2: 37:a7:57:c6:86:d6:ca:41:f2:38:b0:57:4b:52:77:f2:9a:30: af:4e:51:f1:f6:56:79:f2:e5:89:34:a5:14:bd:7b:04:02:41: 23:42:39:6f:b5:c2:52:ad:dc:55:0c:46:a7:45:83:58:f8:28: 15:2f:0a:da:cd:ae:5a:f8:29:5b:f1:d8:72:f3:71:03:c1:30: 11:25:d7:4c:9a:7d:d3:c9:3e:47:81:32:01:9b:da:63:ce:f7: c1:00:65:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXZNXBBDEMaSsh3txO911fEA2i9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA3MjcwNTU1MDJaFw0yNjA3MjYwNjAwMDJaMDMxMTAvBgNV BAMTKDExMERENTY4RjFCMzBENjNERTI1RTA4RDc1NkNBMzdFNDIyNTAyQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC74szaAlrqMIl7nW94DPk3wqQR 0MC/+w+jy1zRI6KROMkJkLzjn84VLhddEvxlsnmwaNFFNyhoufCdy4SrjCvKfG9r rYdGVolaxwq7nVCpRjLqJIHCeXslqzbM/0V6EJGqe90vVks4gClfu9TkRv2PryuS QuzoTZ2nTSOWioP5/kmWzwNancECYGqE90WMGMGPP9K/NtPnZ7B2B+EHcWcUS0b1 KWTss3xgYSqiEd+7ZwPX7WQm8pN40pCxYfrSVR17qRrcYsgDbokrz7SitpeLhMGD ZJPMzI1mgUBjp/wFK1kQ4UGi44ALuSkhMbv5IyZMh4IJn0AtJ8TYOS9MRmYJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEQ3VaPGzDWPeJeCNdWyjfkIlAqgwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDswDQYJKoZIhvcN AQELBQADggEBAFcB08dkKGgUiOiPQ86ZDbAhA10HN8xFUYoATocSyjFvvj90SysC 1bSqrJoX47UeE0fnrE5BefxX8G8iritZqMuJAtwMtNuu2rIfxN3GFJh1PU7TLnGT sKk467xV8nFtQnMr+MmEoQyhabyllP6qSEGDtXVeMyVnxTU+35+Ih5E8TqaklUhE qkJ+TVbMFWIupyPufEQ54Femn1L4FaKT4ktAsjenV8aG1spB8jiwV0tSd/KaMK9O UfH2Vnny5Yk0pRS9ewQCQSNCOW+1wlKt3FUMRqdFg1j4KBUvCtrNrlr4KVvx2HLz cQPBMBEl10yafdPJPkeBMgGb2mPO98EAZeM= -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:35 2025 by rpki-client