$ rpki-client -vvf repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233312e302f32342d3234203d3e20313431393037.roa File: 3130332e3136332e3233312e302f32342d3234203d3e20313431393037.roa (raw, json) Hash identifier: yg4jobWhxttigVY/iZoK6bsKdtykwi2az+8aCa0nyW4= Subject key identifier: FE:E6:52:16:29:61:21:F0:C1:49:03:C0:C7:86:E8:78:25:54:FB:E7 Certificate issuer: /CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Certificate serial: 2A1096E7D248126AC66167DA84B23DE0B9E789F9 Authority key identifier: 4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233312e302f32342d3234203d3e20313431393037.roa Signing time: Tue 18 Mar 2025 07:00:03 +0000 ROA not before: Tue 18 Mar 2025 06:55:03 +0000 ROA not after: Tue 17 Mar 2026 07:00:03 +0000 asID: 141907 IP address blocks: 103.163.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 23:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:10:96:e7:d2:48:12:6a:c6:61:67:da:84:b2:3d:e0:b9:e7:89:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Validity Not Before: Mar 18 06:55:03 2025 GMT Not After : Mar 17 07:00:03 2026 GMT Subject: CN=FEE65216296121F0C14903C0C786E8782554FBE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:6c:8b:99:88:33:29:2d:67:45:5a:75:83: d7:76:db:a5:ec:75:dc:b5:3f:4b:7c:73:6a:e8:7d: 40:ad:6b:1c:0f:4d:84:e9:d4:9a:e4:f4:26:b7:76: d0:c9:dd:0c:b9:76:61:9d:af:4c:85:c1:65:7c:0b: b6:16:72:c9:e6:60:7c:a0:70:d9:5a:2a:c7:4c:d8: d8:28:41:10:9e:c3:90:fa:ab:27:06:b4:49:36:a8: e4:a4:f8:c3:f4:c8:71:39:14:05:59:73:22:0e:41: 65:50:c8:ee:91:a5:39:9e:7a:c6:37:5f:ae:94:75: 14:37:66:42:70:11:85:20:24:1e:c3:ae:16:01:5a: 7b:20:5f:6c:99:6b:f3:43:13:ab:67:62:90:b2:e3: 1e:84:ac:22:1b:e9:63:6d:9c:d8:f3:34:63:d5:4a: 21:15:57:b6:b6:57:ca:f6:04:ef:68:cd:e3:af:31: 3a:e2:33:86:55:b5:00:d2:40:fe:1d:4a:40:31:04: 28:1e:d5:bc:c0:b1:af:25:39:a4:73:d6:49:b2:15: 31:e7:02:2f:e7:3f:de:29:ba:e6:f1:de:15:0e:22: 47:01:b8:67:22:86:4f:7d:0c:a5:63:9b:5a:74:ad: 25:a9:d9:47:c7:25:73:c1:1c:e6:1e:b8:28:1b:81: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E6:52:16:29:61:21:F0:C1:49:03:C0:C7:86:E8:78:25:54:FB:E7 X509v3 Authority Key Identifier: keyid:4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233312e302f32342d3234203d3e20313431393037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.231.0/24 Signature Algorithm: sha256WithRSAEncryption af:73:dd:c6:a4:fb:4b:3a:62:38:2f:98:bd:80:0f:ec:69:f4: b9:29:bd:9a:12:2a:46:57:a4:23:18:6f:ee:e6:3c:3d:95:0d: 1d:b3:9d:07:b9:8d:d5:e5:5c:d6:8e:97:47:ac:c9:68:61:ed: 72:bc:16:fa:c1:f5:15:af:29:81:32:44:ab:0d:5a:15:9d:4c: 37:aa:f0:0f:0f:d3:80:08:1c:dc:a0:50:76:6d:80:80:42:80: 18:97:dc:8d:d8:8b:be:da:8b:c9:d4:bc:4d:0a:d0:cc:7f:0d: b4:97:5d:ed:29:2d:0c:c4:e6:ed:f5:34:35:0f:8d:dc:94:92: 4e:1b:9b:8c:00:94:fa:b6:ee:f6:c3:fa:38:1b:c3:a3:3f:81: 8f:34:50:45:52:36:ab:df:d8:76:c8:63:38:1b:b7:91:aa:a3: 69:67:04:ca:80:69:5c:cc:d5:19:67:6c:bf:4e:a3:0e:a2:37: 89:01:17:f8:52:2f:a8:bd:02:ab:e9:20:cc:9d:38:d9:9a:74: 7d:e3:2e:91:ea:12:fd:c0:0d:15:27:68:7f:26:25:28:63:6f: 8f:dc:15:a3:3c:a9:b3:33:8b:8d:fc:b2:da:16:8f:18:f3:22: 47:c0:61:cb:c0:48:1b:25:0e:11:4b:94:c0:e6:7d:96:b8:ed: 7c:b0:28:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKhCW59JIEmrGYWfahLI94LnnifkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4 QjZCRDMxOTAeFw0yNTAzMTgwNjU1MDNaFw0yNjAzMTcwNzAwMDNaMDMxMTAvBgNV BAMTKEZFRTY1MjE2Mjk2MTIxRjBDMTQ5MDNDMEM3ODZFODc4MjU1NEZCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCbmyLmYgzKS1nRVp1g9d226Xs ddy1P0t8c2rofUCtaxwPTYTp1Jrk9Ca3dtDJ3Qy5dmGdr0yFwWV8C7YWcsnmYHyg cNlaKsdM2NgoQRCew5D6qycGtEk2qOSk+MP0yHE5FAVZcyIOQWVQyO6RpTmeesY3 X66UdRQ3ZkJwEYUgJB7DrhYBWnsgX2yZa/NDE6tnYpCy4x6ErCIb6WNtnNjzNGPV SiEVV7a2V8r2BO9ozeOvMTriM4ZVtQDSQP4dSkAxBCge1bzAsa8lOaRz1kmyFTHn Ai/nP94puubx3hUOIkcBuGcihk99DKVjm1p0rSWp2UfHJXPBHOYeuCgbgW+tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/uZSFilhIfDBSQPAx4boeCVU++cwHwYDVR0j BBgwFoAUTs99+wn7O1wh3eZhFQuVdotr0xkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDAzNWIzYi1lNmM1LTQ3ZjgtOTliNC0xY2IwMzI2ZWRhZTUvMC80RUNGN0RGQjA5 RkIzQjVDMjFEREU2NjExNTBCOTU3NjhCNkJEMzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4QjZC RDMxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDM1YjNiLWU2YzUtNDdmOC05 OWI0LTFjYjAzMjZlZGFlNS8wLzMxMzAzMzJlMzEzNjMzMmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+cwDQYJ KoZIhvcNAQELBQADggEBAK9z3cak+0s6YjgvmL2AD+xp9LkpvZoSKkZXpCMYb+7m PD2VDR2znQe5jdXlXNaOl0esyWhh7XK8FvrB9RWvKYEyRKsNWhWdTDeq8A8P04AI HNygUHZtgIBCgBiX3I3Yi77ai8nUvE0K0Mx/DbSXXe0pLQzE5u31NDUPjdyUkk4b m4wAlPq27vbD+jgbw6M/gY80UEVSNqvf2HbIYzgbt5Gqo2lnBMqAaVzM1RlnbL9O ow6iN4kBF/hSL6i9AqvpIMydONmadH3jLpHqEv3ADRUnaH8mJShjb4/cFaM8qbMz i438stoWjxjzIkfAYcvASBslDhFLlMDmfZa47XywKIQ= -----END CERTIFICATE-----Generated at Tue Nov 4 21:14:01 2025 by rpki-client