$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa File: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (raw, json) Hash identifier: HvzvMBj5qU+NExWSjTWqrdpmvH/WBtBrlcSKkhbhERc= Subject key identifier: 01:11:9E:76:10:28:0B:C4:12:DA:EF:57:DB:84:3D:74:35:90:E3:26 Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 7D8EE3F7A835F9870FC60E9CB2AEDFBFB46F579C Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa Signing time: Mon 21 Jul 2025 14:00:01 +0000 ROA not before: Mon 21 Jul 2025 13:55:01 +0000 ROA not after: Mon 20 Jul 2026 14:00:01 +0000 asID: 56259 IP address blocks: 103.10.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:8e:e3:f7:a8:35:f9:87:0f:c6:0e:9c:b2:ae:df:bf:b4:6f:57:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Jul 21 13:55:01 2025 GMT Not After : Jul 20 14:00:01 2026 GMT Subject: CN=01119E7610280BC412DAEF57DB843D743590E326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:07:12:56:51:4a:f7:01:a5:1a:5f:62:91: 33:6b:ed:5a:be:45:09:c5:f2:8e:03:88:8f:de:86: bb:3e:bb:06:f7:be:c0:fd:cd:ad:78:6a:3a:88:39: 10:f0:3e:ae:cb:a6:69:ff:65:01:7e:f8:55:11:30: 9a:34:42:1d:b8:bb:2f:c3:2e:85:3d:a6:8c:ac:94: fd:14:93:d2:db:2e:ad:d3:b5:2a:b3:2c:df:b3:74: fc:cb:88:47:6d:fa:a0:a2:80:9f:45:6b:d0:64:99: ca:9c:f0:6d:da:61:4e:dd:e3:3b:8f:08:85:bf:91: 78:85:60:2d:14:f1:18:37:8b:e0:3d:72:44:7c:09: b0:04:85:3c:d9:8d:db:14:79:62:66:24:77:fb:3a: 08:ad:4c:e8:73:3a:7e:77:78:02:8d:f8:39:58:ed: 5a:c5:93:a9:94:10:bc:fb:88:70:30:54:2d:b7:59: c4:49:83:a9:b0:f2:5f:21:d9:9d:ab:be:4d:3b:26: f5:8a:25:28:ee:7d:e4:9b:f7:8d:4c:47:cc:ee:70: ea:15:34:81:10:0e:50:86:10:34:7f:34:65:63:81: 0e:8e:7a:35:fa:51:13:8e:57:df:e0:28:a2:14:3f: c3:4f:89:a7:b6:9e:79:0c:86:e2:77:63:7b:cb:75: 78:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:11:9E:76:10:28:0B:C4:12:DA:EF:57:DB:84:3D:74:35:90:E3:26 X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.253.0/24 Signature Algorithm: sha256WithRSAEncryption 99:aa:3f:91:df:6c:a2:83:04:4f:ba:3d:54:d2:0c:94:b2:66: b6:c7:77:d7:c7:b3:74:78:a2:51:25:d1:9b:4c:b7:f0:f1:7b: 31:f7:b4:b9:97:b0:eb:b3:d4:43:d1:9e:b4:e4:81:53:1c:3a: f4:74:15:74:a6:cd:f8:e8:c8:1e:eb:bf:ec:98:9c:08:61:48: 97:73:ab:9c:bb:f3:c7:36:d5:dc:f7:20:40:23:07:c8:19:7a: 81:f4:50:16:26:b7:4e:55:e1:fb:6c:59:8f:5d:15:4c:cc:f7: a0:b4:c8:35:a4:6e:f5:50:d8:92:9a:2a:1c:6a:2b:93:cd:16: 16:80:ef:3e:04:48:f8:2f:32:28:a0:3c:d7:43:be:fa:e8:d8: 43:52:35:32:f3:fc:0d:c2:cc:ef:0c:c4:5f:f4:0c:9c:64:50: 99:12:e8:dd:0d:4f:a0:8c:cb:0a:7b:20:06:02:a4:bd:65:e0: 41:55:ae:dd:bb:16:3f:9d:49:b0:67:ed:53:d1:a2:59:6a:fe: 6c:7f:a5:d7:6a:bf:84:ca:bc:42:00:ef:09:bd:b8:92:37:df: 37:88:ba:d6:dd:32:08:05:41:b3:03:08:06:ef:ac:5f:16:f6: 80:2f:98:bb:a9:b7:ab:cf:64:ef:96:50:d0:7f:09:2a:f5:59: 7f:0a:e7:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfY7j96g1+YcPxg6csq7fv7RvV5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTA3MjExMzU1MDFaFw0yNjA3MjAxNDAwMDFaMDMxMTAvBgNV BAMTKDAxMTE5RTc2MTAyODBCQzQxMkRBRUY1N0RCODQzRDc0MzU5MEUzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyKgcSVlFK9wGlGl9ikTNr7Vq+ RQnF8o4DiI/ehrs+uwb3vsD9za14ajqIORDwPq7Lpmn/ZQF++FURMJo0Qh24uy/D LoU9poyslP0Uk9LbLq3TtSqzLN+zdPzLiEdt+qCigJ9Fa9Bkmcqc8G3aYU7d4zuP CIW/kXiFYC0U8Rg3i+A9ckR8CbAEhTzZjdsUeWJmJHf7OgitTOhzOn53eAKN+DlY 7VrFk6mUELz7iHAwVC23WcRJg6mw8l8h2Z2rvk07JvWKJSjufeSb941MR8zucOoV NIEQDlCGEDR/NGVjgQ6OejX6UROOV9/gKKIUP8NPiae2nnkMhuJ3Y3vLdXj9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUARGedhAoC8QS2u9X24Q9dDWQ4yYwHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkOTcwMDMyLTA4ZWEtNDg5MC1i ZGJhLTYzMDlhNDk3OTE3ZC8wLzMxMzAzMzJlMzEzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcK/TANBgkqhkiG 9w0BAQsFAAOCAQEAmao/kd9sooMET7o9VNIMlLJmtsd318ezdHiiUSXRm0y38PF7 Mfe0uZew67PUQ9GetOSBUxw69HQVdKbN+OjIHuu/7JicCGFIl3OrnLvzxzbV3Pcg QCMHyBl6gfRQFia3TlXh+2xZj10VTMz3oLTINaRu9VDYkpoqHGork80WFoDvPgRI +C8yKKA810O++ujYQ1I1MvP8DcLM7wzEX/QMnGRQmRLo3Q1PoIzLCnsgBgKkvWXg QVWu3bsWP51JsGftU9GiWWr+bH+l12q/hMq8QgDvCb24kjffN4i61t0yCAVBswMI Bu+sXxb2gC+Yu6m3q89k75ZQ0H8JKvVZfwrnkA== -----END CERTIFICATE-----Generated at Sat Aug 9 20:42:36 2025 by rpki-client