$ rpki-client -vvf repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa File: 3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: fILGplhDIU4U8qE+HJJyt+4SNVKoBOrgk1ZojWa+PYM= Subject key identifier: BE:36:66:A1:F9:D8:D7:C1:5F:D7:A3:AE:DC:86:9F:1D:90:DF:F9:C1 Certificate issuer: /CN=6A6C813654E0C29339E6CAF522201F8E702FEAD3 Certificate serial: 1E865011D0CE481462C643D567062625F996461C Authority key identifier: 6A:6C:81:36:54:E0:C2:93:39:E6:CA:F5:22:20:1F:8E:70:2F:EA:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa Signing time: Wed 06 Aug 2025 09:00:00 +0000 ROA not before: Wed 06 Aug 2025 08:55:00 +0000 ROA not after: Wed 05 Aug 2026 09:00:00 +0000 asID: 139952 IP address blocks: 103.160.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.crl rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:47:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:86:50:11:d0:ce:48:14:62:c6:43:d5:67:06:26:25:f9:96:46:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A6C813654E0C29339E6CAF522201F8E702FEAD3 Validity Not Before: Aug 6 08:55:00 2025 GMT Not After : Aug 5 09:00:00 2026 GMT Subject: CN=BE3666A1F9D8D7C15FD7A3AEDC869F1D90DFF9C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:cb:8c:b6:72:4e:92:cb:e3:38:87:ea:9e: 91:0f:40:27:5a:99:11:0f:11:b3:ec:64:68:ac:af: 1d:28:81:47:d7:2c:2c:80:15:97:d1:51:92:0a:16: 3f:73:49:25:62:b3:fe:a4:f0:ec:ac:96:64:83:52: 22:c3:2a:3d:a6:64:37:81:44:43:78:c6:35:aa:7e: 67:e9:67:5b:ae:10:b0:e9:f2:76:1e:8d:55:4a:d6: e6:9e:43:19:12:f7:c5:48:66:ab:4e:f9:e0:a0:d1: 09:f6:d8:e0:e5:55:29:d3:15:3c:ee:9d:a3:5c:55: 6c:36:67:60:dc:6e:14:28:93:1d:71:92:47:41:9c: fc:ba:68:13:cf:e0:36:9d:42:7c:60:ec:f1:f9:8e: 50:df:be:49:f8:91:e6:36:f5:d2:98:5a:ea:ca:ae: 25:bb:6b:a9:a9:fa:30:9d:2b:54:c7:5a:40:0c:9f: 5c:22:e8:8a:28:fa:bb:0d:5a:1d:bb:6e:6d:9a:16: 35:a7:a3:e2:77:d6:c2:da:e8:ec:a0:01:da:b5:8a: 00:52:1c:03:6f:4b:7f:6e:c7:67:07:fa:9c:fb:0a: 86:11:80:73:8a:58:22:8d:fb:4e:1f:3e:57:34:ae: 02:87:92:86:51:21:3a:d6:af:1e:16:3f:9a:b9:bb: 47:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:36:66:A1:F9:D8:D7:C1:5F:D7:A3:AE:DC:86:9F:1D:90:DF:F9:C1 X509v3 Authority Key Identifier: keyid:6A:6C:81:36:54:E0:C2:93:39:E6:CA:F5:22:20:1F:8E:70:2F:EA:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.185.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:b5:e7:9b:04:07:2b:56:bf:53:8d:43:e1:73:e6:13:e0:f9: d0:33:b6:85:ab:7a:b6:5d:5b:b5:71:e8:26:56:b7:f6:00:93: 5b:84:40:f0:52:78:27:78:df:f8:2a:29:73:e7:69:2f:6e:69: 56:b3:16:b5:2e:6b:35:13:32:f6:19:11:d9:47:40:d4:9f:4a: f6:df:17:74:e9:ca:c8:3c:93:b0:34:16:3c:6a:76:05:86:55: 5c:5d:23:1e:f3:bb:5c:51:7a:bf:67:96:cc:e5:c9:70:46:dc: 5e:3f:ae:8e:07:ef:a4:e8:85:87:57:0f:e8:6a:b9:49:16:26: 5f:1d:4f:b5:a0:51:b9:e5:cd:35:bb:7e:85:9a:8d:cf:86:44: 0f:8a:9a:fc:d5:84:72:09:34:71:5a:97:a6:19:03:38:ab:60: 4c:df:6f:75:ab:a4:b9:3a:c1:ce:94:42:5e:4e:f9:cb:45:21: 64:98:17:b0:d3:da:0e:d2:6d:2d:b3:36:96:6e:08:4c:b2:74: 73:e5:2d:ec:09:1e:5f:c3:88:cf:3c:eb:12:74:aa:37:d7:89: ee:b5:19:60:9c:91:b9:bb:29:eb:16:8d:73:9f:9f:1c:b0:1d: 9c:23:47:b2:ba:28:b8:b7:5e:fc:a4:07:ac:2d:b5:9a:1f:17: 37:5b:95:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHoZQEdDOSBRixkPVZwYmJfmWRhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE2QzgxMzY1NEUwQzI5MzM5RTZDQUY1MjIyMDFGOEU3 MDJGRUFEMzAeFw0yNTA4MDYwODU1MDBaFw0yNjA4MDUwOTAwMDBaMDMxMTAvBgNV BAMTKEJFMzY2NkExRjlEOEQ3QzE1RkQ3QTNBRURDODY5RjFEOTBERkY5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8dMuMtnJOksvjOIfqnpEPQCda mREPEbPsZGisrx0ogUfXLCyAFZfRUZIKFj9zSSVis/6k8OyslmSDUiLDKj2mZDeB REN4xjWqfmfpZ1uuELDp8nYejVVK1uaeQxkS98VIZqtO+eCg0Qn22ODlVSnTFTzu naNcVWw2Z2DcbhQokx1xkkdBnPy6aBPP4DadQnxg7PH5jlDfvkn4keY29dKYWurK riW7a6mp+jCdK1THWkAMn1wi6Ioo+rsNWh27bm2aFjWno+J31sLa6OygAdq1igBS HANvS39ux2cH+pz7CoYRgHOKWCKN+04fPlc0rgKHkoZRITrWrx4WP5q5u0f7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvjZmofnY18Ff16Ou3IafHZDf+cEwHwYDVR0j BBgwFoAUamyBNlTgwpM55sr1IiAfjnAv6tMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjgyYmNhMy1lODU4LTRkNTItYjFhMy0yZjRiYWU0N2M5ZjIvMC82QTZDODEzNjU0 RTBDMjkzMzlFNkNBRjUyMjIwMUY4RTcwMkZFQUQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE2QzgxMzY1NEUwQzI5MzM5RTZDQUY1MjIyMDFGOEU3MDJG RUFEMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODJiY2EzLWU4NTgtNGQ1Mi1i MWEzLTJmNGJhZTQ3YzlmMi8wLzMxMzAzMzJlMzEzNjMwMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLkwDQYJ KoZIhvcNAQELBQADggEBACy155sEBytWv1ONQ+Fz5hPg+dAztoWrerZdW7Vx6CZW t/YAk1uEQPBSeCd43/gqKXPnaS9uaVazFrUuazUTMvYZEdlHQNSfSvbfF3Tpysg8 k7A0FjxqdgWGVVxdIx7zu1xRer9nlszlyXBG3F4/ro4H76TohYdXD+hquUkWJl8d T7WgUbnlzTW7foWajc+GRA+KmvzVhHIJNHFal6YZAzirYEzfb3WrpLk6wc6UQl5O +ctFIWSYF7DT2g7SbS2zNpZuCEyydHPlLewJHl/DiM886xJ0qjfXie61GWCckbm7 KesWjXOfnxywHZwjR7K6KLi3XvykB6wttZofFzdblWE= -----END CERTIFICATE-----Generated at Thu Aug 7 03:30:44 2025 by rpki-client