$ rpki-client -vvf repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/3130332e31332e3133362e302f32342d3234203d3e20313430343537.roa File: 3130332e31332e3133362e302f32342d3234203d3e20313430343537.roa (raw, json) Hash identifier: An6EMR5UX4KSjk0FZOrqiyzcjniIuBPOS2x0pcY6vGs= Subject key identifier: 7F:98:66:EA:E0:9D:E7:5D:1A:1D:72:B1:9D:55:E8:BA:1B:7D:F0:26 Certificate issuer: /CN=B4771724B89252E420CF8D2504309C8B69AC30CB Certificate serial: 6C6E6B104CA750D81405904BBF5E989DBA6EBE73 Authority key identifier: B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4771724B89252E420CF8D2504309C8B69AC30CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/3130332e31332e3133362e302f32342d3234203d3e20313430343537.roa Signing time: Thu 07 Aug 2025 11:00:02 +0000 ROA not before: Thu 07 Aug 2025 10:55:02 +0000 ROA not after: Thu 06 Aug 2026 11:00:02 +0000 asID: 140457 IP address blocks: 103.13.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.crl rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4771724B89252E420CF8D2504309C8B69AC30CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 15:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:6e:6b:10:4c:a7:50:d8:14:05:90:4b:bf:5e:98:9d:ba:6e:be:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4771724B89252E420CF8D2504309C8B69AC30CB Validity Not Before: Aug 7 10:55:02 2025 GMT Not After : Aug 6 11:00:02 2026 GMT Subject: CN=7F9866EAE09DE75D1A1D72B19D55E8BA1B7DF026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:05:d4:c8:32:5d:bf:cf:19:6c:4b:e2:a8: a4:a5:de:d7:08:9b:ad:bd:35:a4:e0:87:f3:6a:08: 86:14:11:10:ed:c7:96:44:c6:ea:b9:a9:09:39:a2: 81:5f:d3:48:54:91:72:f6:61:d3:c8:67:f6:47:ca: c0:72:59:f7:f3:76:72:45:85:20:78:0d:f8:4f:80: e7:19:a2:8d:26:a9:7f:d0:1e:c1:8b:e9:fe:db:e0: 69:45:f0:cc:2f:94:ab:3f:0c:43:f3:29:5c:e0:d6: d6:8a:e0:6e:29:86:d5:9a:0f:46:2a:f1:f5:9b:14: 4d:78:08:29:bf:ce:7f:9e:76:8c:50:28:4b:69:af: 54:70:be:26:e0:13:3c:0d:f8:42:06:0d:6b:77:69: 78:88:a3:75:62:f8:15:ba:f4:0a:cd:04:29:23:c5: 4e:df:51:47:67:b9:9c:34:d3:96:62:5a:f9:bc:8e: 8f:57:7c:99:7b:68:22:f0:e1:24:a3:7b:96:ad:10: 3b:be:9f:63:ad:fb:7b:e7:be:0b:a8:a5:d8:0d:cb: 4a:ae:4f:aa:7d:c3:fa:32:47:76:8c:2c:25:18:45: d9:a4:b0:96:8d:e2:5b:15:f7:5f:12:64:7d:8b:95: fa:d0:7f:68:f7:9b:cd:ce:8d:94:c2:57:30:64:2d: 21:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:98:66:EA:E0:9D:E7:5D:1A:1D:72:B1:9D:55:E8:BA:1B:7D:F0:26 X509v3 Authority Key Identifier: keyid:B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4771724B89252E420CF8D2504309C8B69AC30CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/3130332e31332e3133362e302f32342d3234203d3e20313430343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.136.0/24 Signature Algorithm: sha256WithRSAEncryption 66:a4:22:a4:34:37:7e:e5:77:a4:07:10:ab:7f:4f:23:25:0d: 49:7e:c2:96:93:f9:77:8e:cf:56:56:c4:94:37:03:d4:09:a0: da:ba:6e:11:9b:7b:22:b5:d5:c7:68:28:4b:e0:00:63:9a:14: 52:25:0a:1f:d2:a3:ce:60:e7:b4:94:0d:0f:ad:df:40:31:36: af:d3:14:fa:b3:d2:ce:91:7a:86:2c:09:2e:39:84:58:be:19: 1c:64:34:de:84:22:79:68:1c:30:56:a0:1c:34:b7:50:2e:80: 38:aa:4a:54:dc:63:3d:81:42:99:47:28:06:ec:e6:a7:89:c0: 50:65:74:5c:0c:7a:a3:e8:5a:42:76:1f:43:8d:61:b3:90:93: 16:8e:4a:fe:42:54:d3:f1:af:fb:89:9c:43:53:c3:8d:15:5f: 57:1c:17:6a:78:d8:bf:c1:a9:c6:d6:d7:24:a2:30:e2:e9:07: 36:d3:ce:3a:2c:e5:df:df:ab:79:c7:60:07:70:62:71:35:0a: ed:06:27:36:dd:a6:f6:98:75:49:b5:fc:0a:73:26:aa:91:8f: 98:64:20:e1:db:ce:a2:89:81:09:cf:fa:d4:d4:15:52:9b:73: eb:cf:e2:46:95:79:74:0e:01:cc:31:a5:3c:7a:08:96:14:ee: e6:e2:d3:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbG5rEEynUNgUBZBLv16YnbpuvnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ3NzE3MjRCODkyNTJFNDIwQ0Y4RDI1MDQzMDlDOEI2 OUFDMzBDQjAeFw0yNTA4MDcxMDU1MDJaFw0yNjA4MDYxMTAwMDJaMDMxMTAvBgNV BAMTKDdGOTg2NkVBRTA5REU3NUQxQTFENzJCMTlENTVFOEJBMUI3REYwMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSIAXUyDJdv88ZbEviqKSl3tcI m629NaTgh/NqCIYUERDtx5ZExuq5qQk5ooFf00hUkXL2YdPIZ/ZHysByWffzdnJF hSB4DfhPgOcZoo0mqX/QHsGL6f7b4GlF8MwvlKs/DEPzKVzg1taK4G4phtWaD0Yq 8fWbFE14CCm/zn+edoxQKEtpr1RwvibgEzwN+EIGDWt3aXiIo3Vi+BW69ArNBCkj xU7fUUdnuZw005ZiWvm8jo9XfJl7aCLw4SSje5atEDu+n2Ot+3vnvguopdgNy0qu T6p9w/oyR3aMLCUYRdmksJaN4lsV918SZH2LlfrQf2j3m83OjZTCVzBkLSFLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf5hm6uCd510aHXKxnVXouht98CYwHwYDVR0j BBgwFoAUtHcXJLiSUuQgz40lBDCci2msMMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTVhZjhhZi1hNDBmLTQyYzctOWY0Yy0xOGUwY2E1Y2Q0N2UvMC9CNDc3MTcyNEI4 OTI1MkU0MjBDRjhEMjUwNDMwOUM4QjY5QUMzMENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQ3NzE3MjRCODkyNTJFNDIwQ0Y4RDI1MDQzMDlDOEI2OUFD MzBDQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NWFmOGFmLWE0MGYtNDJjNy05 ZjRjLTE4ZTBjYTVjZDQ3ZS8wLzMxMzAzMzJlMzEzMzJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw2IMA0GCSqG SIb3DQEBCwUAA4IBAQBmpCKkNDd+5XekBxCrf08jJQ1JfsKWk/l3js9WVsSUNwPU CaDaum4Rm3sitdXHaChL4ABjmhRSJQof0qPOYOe0lA0Prd9AMTav0xT6s9LOkXqG LAkuOYRYvhkcZDTehCJ5aBwwVqAcNLdQLoA4qkpU3GM9gUKZRygG7OanicBQZXRc DHqj6FpCdh9DjWGzkJMWjkr+QlTT8a/7iZxDU8ONFV9XHBdqeNi/wanG1tckojDi 6Qc20846LOXf36t5x2AHcGJxNQrtBic23ab2mHVJtfwKcyaqkY+YZCDh286iiYEJ z/rU1BVSm3Prz+JGlXl0DgHMMaU8egiWFO7m4tPf -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:49 2025 by rpki-client