$ rpki-client -vvf repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa File: 3130332e3136362e382e302f32342d3234203d3e20313431393738.roa (raw, json) Hash identifier: GtkgNmJXl7nxDiRttWokSpJjVQu0Ps6kMb8tIC7Cyu0= Subject key identifier: 0C:C4:2F:45:0A:A2:C4:D3:17:6A:E5:2A:B3:FC:50:64:FB:36:75:BD Certificate issuer: /CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Certificate serial: 18FB1908501ED2CBA9D890BF30BD85BD16F0330C Authority key identifier: 21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa Signing time: Tue 29 Jul 2025 11:00:00 +0000 ROA not before: Tue 29 Jul 2025 10:55:00 +0000 ROA not after: Tue 28 Jul 2026 11:00:00 +0000 asID: 141978 IP address blocks: 103.166.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 16:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fb:19:08:50:1e:d2:cb:a9:d8:90:bf:30:bd:85:bd:16:f0:33:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Validity Not Before: Jul 29 10:55:00 2025 GMT Not After : Jul 28 11:00:00 2026 GMT Subject: CN=0CC42F450AA2C4D3176AE52AB3FC5064FB3675BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:dd:68:6a:44:3f:85:d3:99:79:7e:1d:a8: 6d:11:50:16:c4:80:1e:8a:0d:e4:93:bd:28:0c:fe: f4:be:5b:38:26:53:5c:88:30:79:81:0c:e7:58:52: 57:df:e5:83:1c:89:2e:47:60:67:c0:e1:33:2b:a9: c6:56:49:c3:21:aa:dd:14:28:7d:9f:4b:d8:6b:15: c9:51:a0:c8:a2:7b:e4:6d:93:db:75:ce:67:e8:0b: 2f:d4:0f:76:ab:27:f3:59:7e:93:17:bd:43:68:6e: 4b:aa:dd:5d:1f:68:47:eb:f8:0d:65:e1:61:ec:63: 88:f7:f3:b2:8a:f5:48:d0:8b:7f:cf:cc:f4:cf:41: 8a:46:20:5a:c9:c0:4a:79:e9:79:53:d1:de:f7:80: 5c:28:3f:70:5f:3c:44:61:6c:63:51:d5:12:20:be: 6f:b5:2f:42:0f:67:f8:da:ef:15:6a:5a:c8:40:c3: 48:3d:0f:66:01:8f:ee:b0:cc:c7:59:2d:3d:30:e1: 3a:c4:7f:92:18:9d:a0:56:58:8b:60:e3:4b:9d:1c: 79:83:a8:15:0d:e9:83:94:71:92:24:49:24:a4:65: e3:f2:9d:37:cf:c8:60:1e:25:84:4a:dc:71:a3:d6: 9f:91:78:30:6e:5e:99:ab:5b:d1:d1:f9:bc:e6:3f: 98:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C4:2F:45:0A:A2:C4:D3:17:6A:E5:2A:B3:FC:50:64:FB:36:75:BD X509v3 Authority Key Identifier: keyid:21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.8.0/24 Signature Algorithm: sha256WithRSAEncryption 83:71:54:3f:8c:04:a1:6f:a6:ac:88:a6:3b:a9:17:d2:88:b0: 45:ef:23:7b:7c:ba:d5:b3:23:fb:14:29:d5:6a:4c:ea:03:26: 42:ad:5d:86:3f:fd:89:87:5c:3b:61:a3:17:e1:dd:bc:95:49: 5a:5a:a5:24:bf:62:3b:74:4d:0f:d0:eb:1f:9c:0d:fd:71:ff: a1:13:86:89:f4:90:0f:25:21:37:f0:89:8f:92:06:64:27:ac: ea:04:7d:25:53:a2:14:9a:62:78:ef:f3:54:2b:5f:e2:17:6c: f5:52:10:f1:9e:eb:07:1c:87:99:7d:60:0c:c2:70:9b:e5:fb: 0e:b6:6d:5e:f5:4e:85:c9:02:b2:85:a5:9f:81:9f:12:9a:e7: 17:a9:99:a0:62:1e:86:04:06:a6:95:d5:c9:e6:64:8d:7a:68: 21:c1:a5:e1:99:0f:af:57:61:8f:68:57:85:ea:9c:68:e2:da: 11:40:d4:0d:47:c8:9e:5d:a7:72:54:9b:6d:7c:4a:e5:7b:2a: 9d:42:b4:4c:a5:d7:c0:64:f8:00:e6:77:1b:74:ba:34:c2:24: 5d:9d:05:6a:f6:8d:dc:b3:b3:30:d7:25:9d:e8:ff:39:f9:b0: 9f:36:07:8d:ec:76:26:11:19:e8:72:1d:55:cf:86:c4:1f:26: 1c:30:f0:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGPsZCFAe0sup2JC/ML2FvRbwMwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIx N0U2M0JBMTAeFw0yNTA3MjkxMDU1MDBaFw0yNjA3MjgxMTAwMDBaMDMxMTAvBgNV BAMTKDBDQzQyRjQ1MEFBMkM0RDMxNzZBRTUyQUIzRkM1MDY0RkIzNjc1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnht1oakQ/hdOZeX4dqG0RUBbE gB6KDeSTvSgM/vS+WzgmU1yIMHmBDOdYUlff5YMciS5HYGfA4TMrqcZWScMhqt0U KH2fS9hrFclRoMiie+Rtk9t1zmfoCy/UD3arJ/NZfpMXvUNobkuq3V0faEfr+A1l 4WHsY4j387KK9UjQi3/PzPTPQYpGIFrJwEp56XlT0d73gFwoP3BfPERhbGNR1RIg vm+1L0IPZ/ja7xVqWshAw0g9D2YBj+6wzMdZLT0w4TrEf5IYnaBWWItg40udHHmD qBUN6YOUcZIkSSSkZePynTfPyGAeJYRK3HGj1p+ReDBuXpmrW9HR+bzmP5i3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDMQvRQqixNMXauUqs/xQZPs2db0wHwYDVR0j BBgwFoAUIeRv7gOhpMuUT2zmgorDAhfmO6EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ODIyMTJjMi0zZDY4LTQ4NjctYjk5Yy1mYzVjZjRkMGRiZjEvMC8yMUU0NkZFRTAz QTFBNENCOTQ0RjZDRTY4MjhBQzMwMjE3RTYzQkExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIxN0U2 M0JBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4MjIxMmMyLTNkNjgtNDg2Ny1i OTljLWZjNWNmNGQwZGJmMS8wLzMxMzAzMzJlMzEzNjM2MmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGemCDANBgkqhkiG 9w0BAQsFAAOCAQEAg3FUP4wEoW+mrIimO6kX0oiwRe8je3y61bMj+xQp1WpM6gMm Qq1dhj/9iYdcO2GjF+HdvJVJWlqlJL9iO3RND9DrH5wN/XH/oROGifSQDyUhN/CJ j5IGZCes6gR9JVOiFJpieO/zVCtf4hds9VIQ8Z7rBxyHmX1gDMJwm+X7DrZtXvVO hckCsoWln4GfEprnF6mZoGIehgQGppXVyeZkjXpoIcGl4ZkPr1dhj2hXheqcaOLa EUDUDUfInl2nclSbbXxK5XsqnUK0TKXXwGT4AOZ3G3S6NMIkXZ0FavaN3LOzMNcl nej/OfmwnzYHjex2JhEZ6HIdVc+GxB8mHDDw4Q== -----END CERTIFICATE-----Generated at Thu Aug 7 11:12:03 2025 by rpki-client