$ rpki-client -vvf repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa File: 3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa (raw, json) Hash identifier: oQhg18Sbo2ti9rlX+keHdmEowwBTrgS3kdu5j5Tcp6g= Subject key identifier: 45:C4:75:16:6E:7B:23:21:20:68:5A:B8:19:D0:F7:D1:6B:A0:30:50 Certificate issuer: /CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Certificate serial: 688AD4339A40FA435E2FD50093CF3A5D3C05EC7A Authority key identifier: 58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa Signing time: Sat 02 Aug 2025 18:00:01 +0000 ROA not before: Sat 02 Aug 2025 17:55:01 +0000 ROA not after: Sat 01 Aug 2026 18:00:01 +0000 asID: 147087 IP address blocks: 103.173.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8a:d4:33:9a:40:fa:43:5e:2f:d5:00:93:cf:3a:5d:3c:05:ec:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Validity Not Before: Aug 2 17:55:01 2025 GMT Not After : Aug 1 18:00:01 2026 GMT Subject: CN=45C475166E7B232120685AB819D0F7D16BA03050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ca:f9:b5:ad:7d:76:a3:c1:0b:21:f5:35:53: 29:15:70:bf:fe:df:fc:6c:a0:a7:bf:b4:72:81:96: 56:df:aa:80:f4:14:25:2a:37:29:ed:8e:34:7c:5c: bd:7c:99:8b:99:13:b7:0e:c0:b6:69:68:8e:a8:21: 1e:31:cf:da:8a:8e:ad:14:17:7c:12:d9:51:f9:95: 1b:b4:a6:1d:31:0d:7f:7d:b3:32:35:b3:af:c6:f8: a3:64:4c:37:c7:66:18:68:fb:d7:f9:b4:39:18:89: 2a:35:47:08:80:37:5e:06:4f:4e:d9:f9:41:86:64: e5:da:81:dd:8f:d5:03:b1:a1:23:16:42:58:3b:32: 31:fa:00:2e:40:82:d7:06:82:6d:90:96:3c:a9:26: cf:ce:b8:5a:b8:ae:8f:e8:8c:54:b8:2d:f6:1c:a2: 2e:57:5c:47:1d:55:e1:6c:fb:ad:62:9a:ff:85:fb: b0:7f:0e:00:ff:dc:98:df:17:40:b9:4e:05:66:bd: b6:dd:16:2a:80:dd:50:ed:0a:9f:ba:d2:6d:9c:19: aa:58:bc:00:c1:54:4a:44:0c:cc:50:50:b8:57:f7: 62:16:8f:b5:32:6c:4e:ff:3f:04:95:7d:66:f0:af: 10:c7:06:df:7e:25:ce:50:2f:80:3e:bc:a6:b4:5c: b9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C4:75:16:6E:7B:23:21:20:68:5A:B8:19:D0:F7:D1:6B:A0:30:50 X509v3 Authority Key Identifier: keyid:58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32342d3234203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.230.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:38:ad:f9:5f:a1:e0:e1:e7:41:85:4b:41:2f:bc:b7:84:f4: c7:a7:6a:76:1f:98:b4:40:c4:ff:1b:1f:9f:77:a0:07:dd:3c: e9:8c:06:ce:fb:62:e3:c1:6e:49:d0:f9:62:c4:50:54:8f:ac: 92:e3:55:ca:c5:3c:e8:50:fa:4c:e6:62:8d:e8:1b:80:bd:f7: a8:06:55:8f:9a:72:10:34:45:3f:75:cb:35:a7:e6:d2:f9:a3: e4:aa:6f:52:32:03:3e:61:8b:6b:f4:c7:e6:d0:b4:6c:f5:25: 06:ef:dc:7c:89:58:de:1b:3f:82:57:fc:f1:d8:94:b8:9b:1c: 04:5c:80:75:82:29:44:e1:7c:da:e8:fc:ef:11:95:98:7a:c8: 49:37:4f:3a:5a:84:df:f7:10:1a:18:2e:b4:36:90:b6:81:6f: 83:ee:4a:6b:4a:60:63:1f:fd:ab:df:a1:bf:34:27:f4:bd:4f: d1:82:29:11:64:42:03:a3:1f:88:5e:dd:74:d3:a2:a4:bf:4d: 3a:06:f6:12:a2:bb:ed:38:7f:43:24:a4:ba:64:33:e8:39:50: 7d:16:5a:10:ce:fa:e6:d3:14:a3:fd:70:4d:7b:45:1e:c9:7e: c8:fb:dd:6b:d8:ed:18:2e:8b:4c:ed:39:30:8b:cd:0d:b1:f3: 9a:ff:9d:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaIrUM5pA+kNeL9UAk886XTwF7HowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJG ODZEQTZFODAeFw0yNTA4MDIxNzU1MDFaFw0yNjA4MDExODAwMDFaMDMxMTAvBgNV BAMTKDQ1QzQ3NTE2NkU3QjIzMjEyMDY4NUFCODE5RDBGN0QxNkJBMDMwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7yvm1rX12o8ELIfU1UykVcL/+ 3/xsoKe/tHKBllbfqoD0FCUqNyntjjR8XL18mYuZE7cOwLZpaI6oIR4xz9qKjq0U F3wS2VH5lRu0ph0xDX99szI1s6/G+KNkTDfHZhho+9f5tDkYiSo1RwiAN14GT07Z +UGGZOXagd2P1QOxoSMWQlg7MjH6AC5AgtcGgm2QljypJs/OuFq4ro/ojFS4LfYc oi5XXEcdVeFs+61imv+F+7B/DgD/3JjfF0C5TgVmvbbdFiqA3VDtCp+60m2cGapY vADBVEpEDMxQULhX92IWj7UybE7/PwSVfWbwrxDHBt9+Jc5QL4A+vKa0XLmfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURcR1Fm57IyEgaFq4GdD30WugMFAwHwYDVR0j BBgwFoAUWA9hwjpIV74jCV4GD+NmQvhtpugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDBmOWNjNy00YTY5LTRjOWUtYmJhNi00ZDlhYmI1NmVmZjYvMC81ODBGNjFDMjNB NDg1N0JFMjMwOTVFMDYwRkUzNjY0MkY4NkRBNkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJGODZE QTZFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwMGY5Y2M3LTRhNjktNGM5ZS1i YmE2LTRkOWFiYjU2ZWZmNi8wLzMxMzAzMzJlMzEzNzMzMmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnreYwDQYJ KoZIhvcNAQELBQADggEBAI44rflfoeDh50GFS0EvvLeE9MenanYfmLRAxP8bH593 oAfdPOmMBs77YuPBbknQ+WLEUFSPrJLjVcrFPOhQ+kzmYo3oG4C996gGVY+achA0 RT91yzWn5tL5o+Sqb1IyAz5hi2v0x+bQtGz1JQbv3HyJWN4bP4JX/PHYlLibHARc gHWCKUThfNro/O8RlZh6yEk3TzpahN/3EBoYLrQ2kLaBb4PuSmtKYGMf/avfob80 J/S9T9GCKRFkQgOjH4he3XTToqS/TToG9hKiu+04f0MkpLpkM+g5UH0WWhDO+ubT FKP9cE17RR7Jfsj73WvY7Rgui0ztOTCLzQ2x85r/nWI= -----END CERTIFICATE-----Generated at Tue Nov 4 16:48:45 2025 by rpki-client