$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa File: 3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa (raw, json) Hash identifier: NnrAQKq/S9bS3O9ZlatHMfb5HFDnemqWID50FjT9Aug= Subject key identifier: 1E:15:11:9C:69:55:F7:51:BF:96:44:FD:8C:0A:90:59:52:76:2B:03 Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 127EDFAE2E4E103B254D15B511166C195233D9B1 Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa Signing time: Thu 31 Jul 2025 23:00:00 +0000 ROA not before: Thu 31 Jul 2025 22:55:00 +0000 ROA not after: Thu 30 Jul 2026 23:00:00 +0000 asID: 152031 IP address blocks: 103.243.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 12:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:7e:df:ae:2e:4e:10:3b:25:4d:15:b5:11:16:6c:19:52:33:d9:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Jul 31 22:55:00 2025 GMT Not After : Jul 30 23:00:00 2026 GMT Subject: CN=1E15119C6955F751BF9644FD8C0A905952762B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9e:11:0a:60:2c:dc:0d:cf:0f:f2:16:78:9c: d6:c8:70:7c:1c:09:00:98:ce:00:0c:62:ca:b8:fa: 0b:10:04:bc:d3:74:86:82:11:1b:23:c1:65:a8:d7: 0f:40:d5:d2:c3:4b:43:b5:98:f3:82:86:be:25:7e: 82:d6:02:ce:36:d4:4c:f5:01:3c:2e:fd:a6:76:ca: 65:d9:25:db:1e:e8:ff:76:b0:cf:45:ad:a1:6a:da: c0:ba:81:fe:7b:21:57:22:e3:04:dd:90:73:91:23: 4d:f6:78:b1:21:a3:17:8e:b3:03:57:52:97:99:a2: 6d:3b:d0:6a:a7:74:7e:3f:1e:da:98:d6:cd:97:45: 26:ad:a6:ed:19:76:d1:95:d3:ef:90:a7:05:f9:47: 77:52:36:03:a0:b2:c4:cd:65:19:df:22:62:4c:ce: 47:0e:2b:ab:fa:6b:04:da:72:55:9c:d4:36:f7:44: e9:1b:89:48:04:64:2b:f4:01:86:3b:8e:d9:90:1d: 1a:f7:f9:38:14:95:ad:b5:61:20:4b:47:96:7c:c2: af:7f:9c:7b:ec:57:5e:b2:50:7b:1f:08:45:c2:6b: 36:8b:d8:d9:f2:0e:f4:60:a3:b9:03:f8:74:dc:46: 6d:40:6a:1c:de:59:3a:3e:a1:4d:fd:e6:8d:f7:1b: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:15:11:9C:69:55:F7:51:BF:96:44:FD:8C:0A:90:59:52:76:2B:03 X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.10.0/24 Signature Algorithm: sha256WithRSAEncryption 53:c0:42:63:db:1e:54:6e:76:19:ec:93:ac:29:0c:01:0b:26: a7:0f:0c:2a:80:f0:5b:6a:1c:d5:20:fd:64:f9:85:ef:78:c0: 05:27:d0:83:d6:01:d9:14:db:db:60:31:89:55:23:93:11:e6: 55:e1:2b:66:ab:7d:f2:ed:11:f5:2f:38:26:83:66:a2:75:12: 24:55:3c:4f:38:22:6f:be:8a:26:23:32:a5:7d:0b:d4:22:61: c9:b3:ce:4e:84:2e:22:c9:4b:4e:62:67:4d:be:43:88:e8:e2: 25:71:9f:bd:2b:1d:1d:ac:19:4a:02:df:21:c4:b2:90:ee:d2: 3f:72:ca:89:5d:c2:22:b0:56:12:6f:d6:bf:a3:47:12:99:0b: a6:fd:4c:3e:25:5a:72:a6:2f:4b:ac:37:00:84:af:70:45:8d: 72:4c:e0:00:f8:77:a5:ea:32:33:9a:ae:7f:82:e2:a0:d8:f6: ac:a1:bd:c4:00:3e:82:80:ee:d5:dc:b2:c3:76:39:b2:db:6a: 8d:b5:9b:73:aa:33:89:e4:13:48:41:b4:86:09:c0:54:d6:49: 2a:77:54:0d:51:c3:0c:a0:1c:c7:e1:f9:46:93:a5:df:cf:ac: 5c:ac:5c:1f:67:01:be:a9:18:2d:c8:59:38:05:65:e5:04:36: f3:08:0c:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEn7fri5OEDslTRW1ERZsGVIz2bEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNTA3MzEyMjU1MDBaFw0yNjA3MzAyMzAwMDBaMDMxMTAvBgNV BAMTKDFFMTUxMTlDNjk1NUY3NTFCRjk2NDRGRDhDMEE5MDU5NTI3NjJCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfnhEKYCzcDc8P8hZ4nNbIcHwc CQCYzgAMYsq4+gsQBLzTdIaCERsjwWWo1w9A1dLDS0O1mPOChr4lfoLWAs421Ez1 ATwu/aZ2ymXZJdse6P92sM9FraFq2sC6gf57IVci4wTdkHORI032eLEhoxeOswNX UpeZom070GqndH4/HtqY1s2XRSatpu0ZdtGV0++QpwX5R3dSNgOgssTNZRnfImJM zkcOK6v6awTaclWc1Db3ROkbiUgEZCv0AYY7jtmQHRr3+TgUla21YSBLR5Z8wq9/ nHvsV16yUHsfCEXCazaL2NnyDvRgo7kD+HTcRm1AahzeWTo+oU395o33G36lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHhURnGlV91G/lkT9jAqQWVJ2KwMwHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzAzMzJlMzIzNDMzMmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/MKMA0GCSqG SIb3DQEBCwUAA4IBAQBTwEJj2x5UbnYZ7JOsKQwBCyanDwwqgPBbahzVIP1k+YXv eMAFJ9CD1gHZFNvbYDGJVSOTEeZV4Stmq33y7RH1Lzgmg2aidRIkVTxPOCJvvoom IzKlfQvUImHJs85OhC4iyUtOYmdNvkOI6OIlcZ+9Kx0drBlKAt8hxLKQ7tI/csqJ XcIisFYSb9a/o0cSmQum/Uw+JVpypi9LrDcAhK9wRY1yTOAA+Hel6jIzmq5/guKg 2Pasob3EAD6CgO7V3LLDdjmy22qNtZtzqjOJ5BNIQbSGCcBU1kkqd1QNUcMMoBzH 4flGk6Xfz6xcrFwfZwG+qRgtyFk4BWXlBDbzCAxB -----END CERTIFICATE-----Generated at Thu Aug 7 20:21:33 2025 by rpki-client