$ rpki-client -vvf repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/3130332e3138392e3132302e302f32332d3234203d3e20313338383836.roa File: 3130332e3138392e3132302e302f32332d3234203d3e20313338383836.roa (raw, json) Hash identifier: BD1xmKcIfvv53+qbSsqU41j3RH48RKcR2IUwYcDCVHU= Subject key identifier: 69:18:AE:DA:44:9A:74:08:49:9E:11:02:5D:BE:79:B7:B0:C3:29:EB Certificate issuer: /CN=581E644EEC44F9523CF189893E102BCC6008F9BE Certificate serial: 022F6DF0DFA2A1EEDECB7FA96AA3873B76096B0F Authority key identifier: 58:1E:64:4E:EC:44:F9:52:3C:F1:89:89:3E:10:2B:CC:60:08:F9:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/581E644EEC44F9523CF189893E102BCC6008F9BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/3130332e3138392e3132302e302f32332d3234203d3e20313338383836.roa Signing time: Wed 06 Aug 2025 11:01:37 +0000 ROA not before: Wed 06 Aug 2025 10:56:37 +0000 ROA not after: Wed 05 Aug 2026 11:01:37 +0000 asID: 138886 IP address blocks: 103.189.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/581E644EEC44F9523CF189893E102BCC6008F9BE.crl rsync://repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/581E644EEC44F9523CF189893E102BCC6008F9BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/581E644EEC44F9523CF189893E102BCC6008F9BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 11:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2f:6d:f0:df:a2:a1:ee:de:cb:7f:a9:6a:a3:87:3b:76:09:6b:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=581E644EEC44F9523CF189893E102BCC6008F9BE Validity Not Before: Aug 6 10:56:37 2025 GMT Not After : Aug 5 11:01:37 2026 GMT Subject: CN=6918AEDA449A7408499E11025DBE79B7B0C329EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8d:92:f5:cc:7f:c4:35:93:72:82:aa:2c:45: 60:6e:a7:5e:15:96:3d:89:4e:c8:74:0a:26:1f:21: 80:f5:b0:e3:42:af:51:b8:17:46:f9:46:8a:16:f6: ab:dd:88:2a:2d:e1:15:31:6a:bc:a2:ae:1b:04:8e: 45:09:48:90:15:41:37:ee:cf:23:b3:f2:51:e7:80: 40:1d:11:57:a5:95:cb:e1:0a:42:e3:e9:08:15:87: 6c:25:35:fe:cb:95:1e:c7:31:10:08:bd:41:0e:54: 48:b6:d2:fc:de:21:36:41:27:08:90:d1:03:93:85: 49:45:df:78:9a:f2:4a:a7:42:aa:17:85:81:ba:da: 99:f8:56:2d:58:42:fb:72:36:3e:67:45:0b:99:7f: 8c:44:f0:cd:6d:1a:45:6b:60:12:3f:e2:b4:3d:48: e2:a3:c0:3e:cf:b3:b6:e3:a8:3d:58:a8:12:4e:7d: d7:2d:fd:a9:52:ad:09:f5:f4:a7:ac:6f:c5:3f:ba: 35:9a:c3:3d:6c:b4:fc:b3:ff:55:36:bc:b7:8d:dd: b4:71:42:da:e0:27:38:56:19:40:2b:58:ed:d0:c4: 65:7c:4c:f1:b9:fc:be:b6:a9:95:82:e7:1f:c3:58: 45:16:d5:6c:69:61:fd:bc:c4:eb:4f:8a:f5:4c:7a: f7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:18:AE:DA:44:9A:74:08:49:9E:11:02:5D:BE:79:B7:B0:C3:29:EB X509v3 Authority Key Identifier: keyid:58:1E:64:4E:EC:44:F9:52:3C:F1:89:89:3E:10:2B:CC:60:08:F9:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/581E644EEC44F9523CF189893E102BCC6008F9BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/581E644EEC44F9523CF189893E102BCC6008F9BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b7947aa-ce69-4013-a256-58799a56581c/0/3130332e3138392e3132302e302f32332d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.120.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:f0:99:03:d2:ec:c1:2f:f3:98:fd:01:b4:05:89:37:14:c1: 62:30:41:e3:55:ad:c0:ba:45:7f:c1:30:70:14:7b:d2:07:c2: b4:ee:00:a2:67:5e:ce:63:64:a2:22:a1:99:f3:e8:a7:7e:50: 70:c9:75:ba:59:23:14:a8:27:63:6e:ab:e9:1a:c5:24:aa:f7: 07:ea:63:04:e7:6d:88:4f:d9:82:4a:57:5e:53:4e:48:6d:17: c9:69:4d:4d:be:fa:c4:50:50:0c:a5:1b:83:88:ef:c7:b1:9b: 4e:54:3a:6c:ec:58:0a:cc:8e:1d:62:9c:ce:2a:8e:4a:7a:ab: 40:bc:3c:ab:fe:fc:68:0b:cb:a7:4b:54:23:11:15:7c:cf:75: f0:78:ca:f3:0e:63:c5:1d:8e:c2:e7:bc:be:17:d8:36:97:29: 2e:4d:82:f5:97:3a:b9:a3:cd:81:cb:2c:d4:29:55:54:41:00: 89:dd:2a:10:94:17:64:36:b8:4f:65:03:a4:bf:67:94:6e:7b: a6:47:35:86:5b:f8:aa:e6:00:d6:ac:26:0b:8b:1c:ff:62:57: 91:21:15:7a:77:56:6b:6f:b5:6f:bc:19:dc:3c:c9:d8:c8:7d: ec:fc:9c:00:de:13:21:05:44:9c:c9:91:52:5d:14:c0:d8:8c: 35:b4:e6:3e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAi9t8N+ioe7ey3+paqOHO3YJaw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTgxRTY0NEVFQzQ0Rjk1MjNDRjE4OTg5M0UxMDJCQ0M2 MDA4RjlCRTAeFw0yNTA4MDYxMDU2MzdaFw0yNjA4MDUxMTAxMzdaMDMxMTAvBgNV BAMTKDY5MThBRURBNDQ5QTc0MDg0OTlFMTEwMjVEQkU3OUI3QjBDMzI5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBjZL1zH/ENZNygqosRWBup14V lj2JTsh0CiYfIYD1sONCr1G4F0b5RooW9qvdiCot4RUxaryirhsEjkUJSJAVQTfu zyOz8lHngEAdEVellcvhCkLj6QgVh2wlNf7LlR7HMRAIvUEOVEi20vzeITZBJwiQ 0QOThUlF33ia8kqnQqoXhYG62pn4Vi1YQvtyNj5nRQuZf4xE8M1tGkVrYBI/4rQ9 SOKjwD7Ps7bjqD1YqBJOfdct/alSrQn19Kesb8U/ujWawz1stPyz/1U2vLeN3bRx QtrgJzhWGUArWO3QxGV8TPG5/L62qZWC5x/DWEUW1WxpYf28xOtPivVMevcLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaRiu2kSadAhJnhECXb55t7DDKeswHwYDVR0j BBgwFoAUWB5kTuxE+VI88YmJPhArzGAI+b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yjc5NDdhYS1jZTY5LTQwMTMtYTI1Ni01ODc5OWE1NjU4MWMvMC81ODFFNjQ0RUVD NDRGOTUyM0NGMTg5ODkzRTEwMkJDQzYwMDhGOUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTgxRTY0NEVFQzQ0Rjk1MjNDRjE4OTg5M0UxMDJCQ0M2MDA4 RjlCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliNzk0N2FhLWNlNjktNDAxMy1h MjU2LTU4Nzk5YTU2NTgxYy8wLzMxMzAzMzJlMzEzODM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvXgwDQYJ KoZIhvcNAQELBQADggEBAGvwmQPS7MEv85j9AbQFiTcUwWIwQeNVrcC6RX/BMHAU e9IHwrTuAKJnXs5jZKIioZnz6Kd+UHDJdbpZIxSoJ2Nuq+kaxSSq9wfqYwTnbYhP 2YJKV15TTkhtF8lpTU2++sRQUAylG4OI78exm05UOmzsWArMjh1inM4qjkp6q0C8 PKv+/GgLy6dLVCMRFXzPdfB4yvMOY8UdjsLnvL4X2DaXKS5NgvWXOrmjzYHLLNQp VVRBAIndKhCUF2Q2uE9lA6S/Z5Rue6ZHNYZb+KrmANasJguLHP9iV5EhFXp3Vmtv tW+8Gdw8ydjIfez8nADeEyEFRJzJkVJdFMDYjDW05j4= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:32 2025 by rpki-client