$ rpki-client -vvf repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/3130332e3232372e32342e302f32342d3234203d3e203536323436.roa File: 3130332e3232372e32342e302f32342d3234203d3e203536323436.roa (raw, json) Hash identifier: p2JbTeALyG9aK8WKnnAwuAWEvzJMkTyQIFNlD05DkyQ= Subject key identifier: 71:18:84:A6:92:8A:56:C4:5C:8E:B9:64:56:54:56:69:8C:61:CD:F0 Certificate issuer: /CN=2253C6371953B026517446858EB433A938FA4B06 Certificate serial: 77990C383C14A7BF958F3BD75F9F0A83BE0C73B7 Authority key identifier: 22:53:C6:37:19:53:B0:26:51:74:46:85:8E:B4:33:A9:38:FA:4B:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2253C6371953B026517446858EB433A938FA4B06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/3130332e3232372e32342e302f32342d3234203d3e203536323436.roa Signing time: Thu 24 Jul 2025 10:01:56 +0000 ROA not before: Thu 24 Jul 2025 09:56:56 +0000 ROA not after: Thu 23 Jul 2026 10:01:56 +0000 asID: 56246 IP address blocks: 103.227.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/2253C6371953B026517446858EB433A938FA4B06.crl rsync://repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/2253C6371953B026517446858EB433A938FA4B06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2253C6371953B026517446858EB433A938FA4B06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 15:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:99:0c:38:3c:14:a7:bf:95:8f:3b:d7:5f:9f:0a:83:be:0c:73:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2253C6371953B026517446858EB433A938FA4B06 Validity Not Before: Jul 24 09:56:56 2025 GMT Not After : Jul 23 10:01:56 2026 GMT Subject: CN=711884A6928A56C45C8EB964565456698C61CDF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:fd:8c:dd:ee:c5:04:35:97:4f:76:bf:1c: f0:ed:17:2a:ed:08:52:2a:b0:10:15:e0:a0:4e:66: 54:d4:1f:f0:37:be:e0:27:90:a9:32:87:8c:c4:6c: c6:a9:bf:2c:e9:3f:f4:64:77:ae:ea:9d:33:06:f6: 9e:bd:cf:34:70:61:89:4b:e2:02:48:a3:8a:46:0d: f6:38:bb:a8:32:f5:a6:00:43:ff:30:f1:74:b1:b9: 0e:a0:e5:13:09:61:bf:b9:85:2c:f5:ab:2f:c7:b0: 38:e5:ca:37:76:2b:b8:01:86:00:ed:38:e3:7f:7f: b4:ba:ca:9d:da:a0:37:ee:19:65:64:59:aa:3b:fd: 71:cc:44:42:90:1e:53:34:ec:d2:18:9c:f8:dc:b9: 5c:4b:6c:42:f8:46:10:1d:1b:92:aa:54:bb:89:b1: 6c:3c:67:d5:c8:08:03:c2:86:34:85:9c:6f:30:a3: 67:15:83:d8:3c:cd:55:f9:88:7c:04:b5:5b:fa:de: c7:9b:c0:80:15:23:ba:72:ea:e7:5a:ef:40:02:92: f6:d2:2d:93:65:ef:e9:ee:1b:45:5c:b9:30:17:df: 77:7d:4e:de:98:f6:dc:42:0d:37:3f:ee:a3:8c:fe: 28:23:1f:74:f2:69:f0:97:b9:13:8f:4b:a4:c3:41: 3a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:18:84:A6:92:8A:56:C4:5C:8E:B9:64:56:54:56:69:8C:61:CD:F0 X509v3 Authority Key Identifier: keyid:22:53:C6:37:19:53:B0:26:51:74:46:85:8E:B4:33:A9:38:FA:4B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/2253C6371953B026517446858EB433A938FA4B06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2253C6371953B026517446858EB433A938FA4B06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/696e95c2-4887-47fc-8bac-10bb1da97003/0/3130332e3232372e32342e302f32342d3234203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.24.0/24 Signature Algorithm: sha256WithRSAEncryption 85:17:91:00:07:a2:3d:c3:23:4b:93:47:5a:6f:aa:1c:10:aa: 60:4c:8a:c6:77:00:ff:7b:2a:17:59:78:40:0a:95:ff:b6:ae: 52:5f:ce:fe:79:3d:b2:17:86:97:ca:6d:fb:c3:2b:58:1b:c3: 35:20:4f:05:ad:6b:c9:c9:5f:39:df:03:9b:0c:ed:c6:40:a1: b6:c0:c3:c4:e8:cc:88:45:0d:68:19:44:55:cb:a7:5d:fb:9f: b9:26:9b:bf:68:6a:90:e2:c8:8e:4a:14:2c:7b:f5:f0:97:1f: 13:4d:f6:11:a2:c3:9a:68:e9:17:ce:de:00:72:e8:51:6e:f7: d1:98:f5:44:b1:42:90:8f:d9:b4:70:78:34:7d:69:ac:18:fb: 9a:1b:ca:af:6b:74:43:72:bf:1e:d0:4e:6d:76:d2:a4:69:80: 82:29:6a:e0:ff:9c:02:de:ca:d9:25:ce:91:76:6e:fd:e1:a4: c8:4e:c1:83:a4:3f:f8:4a:47:49:c2:cc:e1:1a:b4:ad:20:c0: 34:7c:1f:19:25:c0:1e:a6:76:3d:de:4c:db:22:be:af:4f:3b: 80:ae:27:53:d0:52:e1:51:ca:d0:88:7a:fe:fa:27:52:91:d7: 41:ad:64:b8:04:d5:57:ed:f3:31:2b:97:f1:a3:40:12:05:c2: aa:ab:f5:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd5kMODwUp7+VjzvXX58Kg74Mc7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI1M0M2MzcxOTUzQjAyNjUxNzQ0Njg1OEVCNDMzQTkz OEZBNEIwNjAeFw0yNTA3MjQwOTU2NTZaFw0yNjA3MjMxMDAxNTZaMDMxMTAvBgNV BAMTKDcxMTg4NEE2OTI4QTU2QzQ1QzhFQjk2NDU2NTQ1NjY5OEM2MUNERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF+/2M3e7FBDWXT3a/HPDtFyrt CFIqsBAV4KBOZlTUH/A3vuAnkKkyh4zEbMapvyzpP/Rkd67qnTMG9p69zzRwYYlL 4gJIo4pGDfY4u6gy9aYAQ/8w8XSxuQ6g5RMJYb+5hSz1qy/HsDjlyjd2K7gBhgDt OON/f7S6yp3aoDfuGWVkWao7/XHMREKQHlM07NIYnPjcuVxLbEL4RhAdG5KqVLuJ sWw8Z9XICAPChjSFnG8wo2cVg9g8zVX5iHwEtVv63sebwIAVI7py6uda70ACkvbS LZNl7+nuG0VcuTAX33d9Tt6Y9txCDTc/7qOM/igjH3TyafCXuROPS6TDQTpLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcRiEppKKVsRcjrlkVlRWaYxhzfAwHwYDVR0j BBgwFoAUIlPGNxlTsCZRdEaFjrQzqTj6SwYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTZlOTVjMi00ODg3LTQ3ZmMtOGJhYy0xMGJiMWRhOTcwMDMvMC8yMjUzQzYzNzE5 NTNCMDI2NTE3NDQ2ODU4RUI0MzNBOTM4RkE0QjA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI1M0M2MzcxOTUzQjAyNjUxNzQ0Njg1OEVCNDMzQTkzOEZB NEIwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5NmU5NWMyLTQ4ODctNDdmYy04 YmFjLTEwYmIxZGE5NzAwMy8wLzMxMzAzMzJlMzIzMjM3MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfjGDANBgkqhkiG 9w0BAQsFAAOCAQEAhReRAAeiPcMjS5NHWm+qHBCqYEyKxncA/3sqF1l4QAqV/7au Ul/O/nk9sheGl8pt+8MrWBvDNSBPBa1ryclfOd8DmwztxkChtsDDxOjMiEUNaBlE VcunXfufuSabv2hqkOLIjkoULHv18JcfE032EaLDmmjpF87eAHLoUW730Zj1RLFC kI/ZtHB4NH1prBj7mhvKr2t0Q3K/HtBObXbSpGmAgilq4P+cAt7K2SXOkXZu/eGk yE7Bg6Q/+EpHScLM4Rq0rSDANHwfGSXAHqZ2Pd5M2yK+r087gK4nU9BS4VHK0Ih6 /vonUpHXQa1kuATVV+3zMSuX8aNAEgXCqqv1qQ== -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:21 2025 by rpki-client