$ rpki-client -vvf repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/3130332e332e3233332e302f32342d3234203d3e203538343837.roa File: 3130332e332e3233332e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: J+VrJkjfilmZKoAgsIWnKv1mOwdSs14Mc87IKiPWNdQ= Subject key identifier: BF:37:6D:FD:45:37:0F:74:73:F5:EC:AE:4A:4D:37:C9:1F:AF:5C:5F Certificate issuer: /CN=FF102371565831DDB9C06DF47DF79B1120C9861E Certificate serial: 21A2C3CD7C6E84656DBADF6ECFA86AFFCA45D638 Authority key identifier: FF:10:23:71:56:58:31:DD:B9:C0:6D:F4:7D:F7:9B:11:20:C9:86:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF102371565831DDB9C06DF47DF79B1120C9861E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/3130332e332e3233332e302f32342d3234203d3e203538343837.roa Signing time: Fri 01 Aug 2025 08:10:14 +0000 ROA not before: Fri 01 Aug 2025 08:05:14 +0000 ROA not after: Fri 31 Jul 2026 08:10:14 +0000 asID: 58487 IP address blocks: 103.3.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/FF102371565831DDB9C06DF47DF79B1120C9861E.crl rsync://repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/FF102371565831DDB9C06DF47DF79B1120C9861E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF102371565831DDB9C06DF47DF79B1120C9861E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 23:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a2:c3:cd:7c:6e:84:65:6d:ba:df:6e:cf:a8:6a:ff:ca:45:d6:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF102371565831DDB9C06DF47DF79B1120C9861E Validity Not Before: Aug 1 08:05:14 2025 GMT Not After : Jul 31 08:10:14 2026 GMT Subject: CN=BF376DFD45370F7473F5ECAE4A4D37C91FAF5C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c3:0d:40:37:6d:12:8a:31:50:c7:2f:a0:ed: dd:d8:46:7e:d7:0f:63:d8:5d:31:c3:ea:d4:f6:08: 73:bc:12:db:48:b9:df:c1:f5:2e:c2:b8:52:2f:cc: 2a:ca:8b:e5:b8:b7:f9:67:f7:b0:70:e5:b8:a0:eb: 1e:d9:4d:fc:a1:5f:a4:10:3e:34:ed:ce:8b:01:8d: a8:57:f4:04:04:a8:d2:d3:ed:b2:0f:b7:a9:26:03: 07:ce:fe:23:89:42:4c:b4:e6:84:0b:46:88:38:87: fe:48:11:42:86:d9:c2:2d:a9:61:a3:99:07:76:7c: 63:51:73:42:b4:0c:59:4e:16:d8:8f:f0:5b:f0:a1: 6f:4d:63:58:02:29:ab:f4:9e:c9:6e:84:07:0b:91: 1e:84:0f:8b:51:a7:f6:01:27:fc:65:0a:29:95:99: af:69:0e:bc:16:98:9c:99:1e:98:b4:3f:71:58:5b: ea:75:f5:19:d7:1e:00:dd:43:85:88:66:a4:e0:f9: 9a:f0:12:02:77:0d:a6:d9:7a:bb:07:1f:60:16:85: 34:b0:cd:ff:75:f8:f8:00:ac:af:a5:15:6a:31:2f: 1e:41:56:50:79:ea:5e:04:aa:64:fc:4a:14:04:b8: b6:06:ab:e5:c0:80:f5:b8:58:9d:68:6f:52:a9:a7: 07:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:37:6D:FD:45:37:0F:74:73:F5:EC:AE:4A:4D:37:C9:1F:AF:5C:5F X509v3 Authority Key Identifier: keyid:FF:10:23:71:56:58:31:DD:B9:C0:6D:F4:7D:F7:9B:11:20:C9:86:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/FF102371565831DDB9C06DF47DF79B1120C9861E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF102371565831DDB9C06DF47DF79B1120C9861E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/343f29ea-874a-4d1a-abcc-75293cb51a6d/0/3130332e332e3233332e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.233.0/24 Signature Algorithm: sha256WithRSAEncryption 09:81:82:ca:d1:68:fc:2e:f4:7b:e9:1e:7b:a7:ac:ba:4d:c1: 99:3a:e5:b2:be:bd:f7:e0:48:fd:71:fb:51:78:d5:a7:1a:da: c9:0f:c2:c2:22:d8:bc:0a:f5:32:62:75:c8:64:a7:73:a2:01: 30:9a:c2:ae:d3:e1:5b:ee:ce:be:3b:09:02:03:50:20:d1:37: 8f:f3:d8:e0:46:3a:63:47:e3:d5:7a:2e:fb:ea:b6:fe:f5:83: fd:bf:e2:a2:8a:84:c3:e6:b8:20:3d:a7:79:1d:a7:1e:c4:8a: 42:bb:4d:4e:43:08:6e:33:da:28:08:65:04:64:5c:a9:48:fc: e5:ec:16:2d:bc:71:f3:55:b0:e6:bd:16:d2:5d:f7:c9:40:34: 6d:7e:12:4e:32:c9:54:f0:df:a1:6e:7f:18:8c:9c:10:98:2c: 42:8f:b4:50:56:b3:e2:4a:4d:b8:93:f9:e0:da:18:19:d8:83: 79:1f:30:44:1d:f9:d3:57:35:c4:1b:5f:02:38:2f:ea:6a:65: 27:2b:7c:fc:8f:47:22:bb:43:64:8a:bc:69:ba:dd:3a:7a:b9: 4e:66:ad:0a:21:3c:40:0b:56:38:54:53:d9:d8:42:fa:60:b4: db:5c:1b:54:d7:48:48:2c:c4:25:25:28:ae:97:4d:5f:12:b3: fb:69:c5:d3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIaLDzXxuhGVtut9uz6hq/8pF1jgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYxMDIzNzE1NjU4MzFEREI5QzA2REY0N0RGNzlCMTEy MEM5ODYxRTAeFw0yNTA4MDEwODA1MTRaFw0yNjA3MzEwODEwMTRaMDMxMTAvBgNV BAMTKEJGMzc2REZENDUzNzBGNzQ3M0Y1RUNBRTRBNEQzN0M5MUZBRjVDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEww1AN20SijFQxy+g7d3YRn7X D2PYXTHD6tT2CHO8EttIud/B9S7CuFIvzCrKi+W4t/ln97Bw5big6x7ZTfyhX6QQ PjTtzosBjahX9AQEqNLT7bIPt6kmAwfO/iOJQky05oQLRog4h/5IEUKG2cItqWGj mQd2fGNRc0K0DFlOFtiP8FvwoW9NY1gCKav0nsluhAcLkR6ED4tRp/YBJ/xlCimV ma9pDrwWmJyZHpi0P3FYW+p19RnXHgDdQ4WIZqTg+ZrwEgJ3DabZersHH2AWhTSw zf91+PgArK+lFWoxLx5BVlB56l4EqmT8ShQEuLYGq+XAgPW4WJ1ob1KppwcZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvzdt/UU3D3Rz9eyuSk03yR+vXF8wHwYDVR0j BBgwFoAU/xAjcVZYMd25wG30ffebESDJhh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDNmMjllYS04NzRhLTRkMWEtYWJjYy03NTI5M2NiNTFhNmQvMC9GRjEwMjM3MTU2 NTgzMUREQjlDMDZERjQ3REY3OUIxMTIwQzk4NjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkYxMDIzNzE1NjU4MzFEREI5QzA2REY0N0RGNzlCMTEyMEM5 ODYxRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0M2YyOWVhLTg3NGEtNGQxYS1h YmNjLTc1MjkzY2I1MWE2ZC8wLzMxMzAzMzJlMzMyZTMyMzMzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnA+kwDQYJKoZIhvcN AQELBQADggEBAAmBgsrRaPwu9HvpHnunrLpNwZk65bK+vffgSP1x+1F41aca2skP wsIi2LwK9TJidchkp3OiATCawq7T4Vvuzr47CQIDUCDRN4/z2OBGOmNH49V6Lvvq tv71g/2/4qKKhMPmuCA9p3kdpx7EikK7TU5DCG4z2igIZQRkXKlI/OXsFi28cfNV sOa9FtJd98lANG1+Ek4yyVTw36FufxiMnBCYLEKPtFBWs+JKTbiT+eDaGBnYg3kf MEQd+dNXNcQbXwI4L+pqZScrfPyPRyK7Q2SKvGm63Tp6uU5mrQohPEALVjhUU9nY QvpgtNtcG1TXSEgsxCUlKK6XTV8Ss/tpxdM= -----END CERTIFICATE-----Generated at Tue Aug 5 16:50:08 2025 by rpki-client