$ rpki-client -vvf repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233312e302f32342d3234203d3e20313437303837.roa File: 3130332e3137332e3233312e302f32342d3234203d3e20313437303837.roa (raw, json) Hash identifier: ZuAJ9UU5ofuu/a/pfpbxOKyZsNH+A+BhN1h6JCEwmPc= Subject key identifier: F5:78:AF:3A:9F:56:04:E7:CE:8D:D3:73:1B:B6:08:83:A8:4E:83:D4 Certificate issuer: /CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Certificate serial: 219AE9E7CB2305CC20162307BAB33AF71642615F Authority key identifier: 58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233312e302f32342d3234203d3e20313437303837.roa Signing time: Sat 02 Aug 2025 19:00:01 +0000 ROA not before: Sat 02 Aug 2025 18:55:01 +0000 ROA not after: Sat 01 Aug 2026 19:00:01 +0000 asID: 147087 IP address blocks: 103.173.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 15:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:9a:e9:e7:cb:23:05:cc:20:16:23:07:ba:b3:3a:f7:16:42:61:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Validity Not Before: Aug 2 18:55:01 2025 GMT Not After : Aug 1 19:00:01 2026 GMT Subject: CN=F578AF3A9F5604E7CE8DD3731BB60883A84E83D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7c:f7:a3:45:93:3c:86:67:fc:52:52:2b:72: 8b:46:13:5a:0f:21:a0:f1:06:d0:bd:e7:0e:83:28: 5a:26:0d:77:51:7a:63:c9:8e:5f:8e:25:d5:73:6a: ae:84:77:35:cd:ad:9b:ed:12:41:a6:b9:d2:de:36: 51:4a:bc:e2:8b:ff:50:bd:50:9c:15:51:c7:08:ce: 93:0c:8e:b2:43:c8:14:47:46:47:da:8a:b3:40:3b: 4a:d2:47:be:1d:80:b9:f6:20:67:d4:f2:b4:89:2a: 2d:ed:a3:97:53:f2:fd:ca:b6:00:f5:d2:e9:9e:0c: a6:0e:6e:c6:e8:83:db:da:c0:19:17:89:6c:63:43: bb:34:d0:7c:13:dd:cf:1f:1b:43:c4:07:66:dc:6a: eb:e6:2b:bf:8f:87:12:6d:49:f0:5f:89:ce:84:0a: 12:ae:ed:19:c1:76:74:c2:de:bb:36:aa:af:01:88: 33:b9:6a:f4:03:38:f0:e2:35:55:20:73:e5:1b:8b: 88:91:4c:c4:61:3d:f0:6d:ac:9c:60:c8:75:c2:f1: da:55:41:90:15:23:62:47:48:65:c2:37:59:4b:f2: ac:6c:22:9b:c5:70:1d:10:15:90:4f:55:60:4c:84: ae:17:0b:4a:ac:61:4a:86:20:cb:5b:ee:3a:9c:5b: 22:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:AF:3A:9F:56:04:E7:CE:8D:D3:73:1B:B6:08:83:A8:4E:83:D4 X509v3 Authority Key Identifier: keyid:58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233312e302f32342d3234203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.231.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:e6:31:8d:18:35:c2:e5:f1:1e:71:37:50:9b:22:df:59:da: de:dc:fd:d2:c3:c7:0c:c8:a6:b5:1e:17:5f:87:dc:c5:44:cf: 80:0a:33:1f:1c:b3:cd:a2:e0:da:cd:bf:d2:0c:6d:93:41:af: f4:d8:4c:5b:8a:60:a4:af:c0:52:96:6f:ab:f5:64:c2:df:01: ac:5a:d6:76:f5:76:5b:8c:44:ff:a5:a4:36:f2:94:0d:50:0d: 2e:90:1a:07:3f:42:75:0c:bb:1f:c3:99:a4:47:eb:ad:94:b8: ab:de:46:d7:47:fd:ec:08:55:a9:15:70:d2:ce:95:e7:80:0b: cf:46:41:b3:20:dc:a0:82:86:3f:8c:60:5c:ea:c3:ac:31:4d: 44:ab:96:15:a2:93:4f:8b:0c:24:88:54:5f:0c:57:0d:20:50: 5d:00:7e:fa:45:43:60:bf:99:ca:60:78:e5:b3:ae:70:96:20: 3d:13:a5:6b:a1:43:47:bf:36:9d:42:fc:a0:94:61:d1:3d:8c: 8d:b9:61:d3:39:cc:3b:fc:7c:b6:01:a5:d8:17:a9:db:00:ba: df:98:a7:97:a2:8e:00:28:9c:dd:68:fd:af:69:e8:db:61:54: 49:ee:e9:f4:20:9f:44:59:73:50:dc:b4:e7:d9:97:37:98:25: f6:d4:65:06 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIZrp58sjBcwgFiMHurM69xZCYV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJG ODZEQTZFODAeFw0yNTA4MDIxODU1MDFaFw0yNjA4MDExOTAwMDFaMDMxMTAvBgNV BAMTKEY1NzhBRjNBOUY1NjA0RTdDRThERDM3MzFCQjYwODgzQTg0RTgzRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDfPejRZM8hmf8UlIrcotGE1oP IaDxBtC95w6DKFomDXdRemPJjl+OJdVzaq6EdzXNrZvtEkGmudLeNlFKvOKL/1C9 UJwVUccIzpMMjrJDyBRHRkfairNAO0rSR74dgLn2IGfU8rSJKi3to5dT8v3KtgD1 0umeDKYObsbog9vawBkXiWxjQ7s00HwT3c8fG0PEB2bcauvmK7+PhxJtSfBfic6E ChKu7RnBdnTC3rs2qq8BiDO5avQDOPDiNVUgc+Ubi4iRTMRhPfBtrJxgyHXC8dpV QZAVI2JHSGXCN1lL8qxsIpvFcB0QFZBPVWBMhK4XC0qsYUqGIMtb7jqcWyLnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9XivOp9WBOfOjdNzG7YIg6hOg9QwHwYDVR0j BBgwFoAUWA9hwjpIV74jCV4GD+NmQvhtpugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDBmOWNjNy00YTY5LTRjOWUtYmJhNi00ZDlhYmI1NmVmZjYvMC81ODBGNjFDMjNB NDg1N0JFMjMwOTVFMDYwRkUzNjY0MkY4NkRBNkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJGODZE QTZFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwMGY5Y2M3LTRhNjktNGM5ZS1i YmE2LTRkOWFiYjU2ZWZmNi8wLzMxMzAzMzJlMzEzNzMzMmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrecwDQYJ KoZIhvcNAQELBQADggEBAIvmMY0YNcLl8R5xN1CbIt9Z2t7c/dLDxwzIprUeF1+H 3MVEz4AKMx8cs82i4NrNv9IMbZNBr/TYTFuKYKSvwFKWb6v1ZMLfAaxa1nb1dluM RP+lpDbylA1QDS6QGgc/QnUMux/DmaRH662UuKveRtdH/ewIVakVcNLOleeAC89G QbMg3KCChj+MYFzqw6wxTUSrlhWik0+LDCSIVF8MVw0gUF0AfvpFQ2C/mcpgeOWz rnCWID0TpWuhQ0e/Np1C/KCUYdE9jI25YdM5zDv8fLYBpdgXqdsAut+Yp5eijgAo nN1o/a9p6NthVEnu6fQgn0RZc1DctOfZlzeYJfbUZQY= -----END CERTIFICATE-----Generated at Fri Aug 8 12:49:05 2025 by rpki-client