$ rpki-client -vvf repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136392e302f32342d3234203d3e20313439393234.roa File: 3130332e3139312e3136392e302f32342d3234203d3e20313439393234.roa (raw, json) Hash identifier: vbbBs8uTgIHRSL2AHGhA2HuBp098ICBPDqBGcViwl94= Subject key identifier: 9E:9D:70:C1:A4:79:31:F7:3C:F4:CD:57:13:D7:96:90:58:83:4F:AE Certificate issuer: /CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Certificate serial: 4EB256E839B0479F3CC10761152C92BCFEE5940F Authority key identifier: 68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136392e302f32342d3234203d3e20313439393234.roa Signing time: Tue 22 Jul 2025 13:00:00 +0000 ROA not before: Tue 22 Jul 2025 12:55:00 +0000 ROA not after: Tue 21 Jul 2026 13:00:00 +0000 asID: 149924 IP address blocks: 103.191.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 16:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b2:56:e8:39:b0:47:9f:3c:c1:07:61:15:2c:92:bc:fe:e5:94:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Validity Not Before: Jul 22 12:55:00 2025 GMT Not After : Jul 21 13:00:00 2026 GMT Subject: CN=9E9D70C1A47931F73CF4CD5713D7969058834FAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:42:3f:b9:1f:06:8a:00:ac:a8:e1:aa:88: f8:da:b3:7c:76:04:c8:44:38:e7:e3:c8:a1:f6:57: f0:83:10:41:5e:c2:ed:36:da:e8:c8:66:9d:db:b8: 9e:e8:f2:6e:64:50:a2:a1:ab:53:05:cc:c3:b5:28: b1:45:7b:b4:0d:5a:1a:f9:f9:c9:d0:9b:36:56:fa: 11:73:26:63:84:bf:61:24:f8:1a:75:2c:13:58:e3: 6c:47:d7:8c:34:fd:1f:14:a4:77:a8:cb:b0:47:36: b8:f8:a8:99:48:e3:33:9d:b5:e5:36:ea:08:25:4b: 43:13:c3:61:6b:e8:9f:d4:88:3f:4b:c0:da:50:33: e0:0c:c3:b5:73:74:97:c9:c0:44:dc:0b:5c:fb:fa: 19:d2:b6:10:98:3d:b6:16:33:c1:f7:a5:66:b1:0b: 22:48:08:4b:10:18:3c:74:e6:91:04:7e:b3:5d:02: d3:aa:ac:64:25:b8:12:a0:2d:64:28:7d:80:9b:3a: f0:66:d5:2f:10:c4:76:f5:e0:68:f0:f8:b8:ff:d5: 2b:ea:90:4f:9b:e1:6a:ed:b9:1d:6e:ec:84:93:3c: 9a:3a:e6:98:05:f4:f7:4b:54:ff:03:41:50:6a:e6: cc:1b:64:f3:cb:7e:08:3b:9d:a2:0d:34:24:dc:fd: ce:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9D:70:C1:A4:79:31:F7:3C:F4:CD:57:13:D7:96:90:58:83:4F:AE X509v3 Authority Key Identifier: keyid:68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136392e302f32342d3234203d3e20313439393234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.169.0/24 Signature Algorithm: sha256WithRSAEncryption 26:02:14:8e:3b:c8:86:2a:0e:ca:14:93:de:eb:dc:14:70:77: 13:43:95:46:06:61:16:1b:28:be:db:39:25:ad:da:a5:22:45: 09:dc:84:b5:50:b1:dc:cb:c2:e0:f7:2c:92:a2:7a:f4:a9:0c: b2:e9:1c:9b:08:c4:be:42:aa:2d:1d:bf:2a:45:5b:c7:58:fd: 08:5d:0c:aa:88:02:a8:c9:a6:61:66:d5:36:d2:a6:b5:91:8f: d6:8c:36:13:f7:34:c0:2e:51:52:a1:b1:c8:70:c7:32:f0:65: c6:be:a9:92:e6:47:7f:9c:15:f7:3e:26:f4:ad:73:aa:b1:4f: c7:00:8a:2d:7f:31:24:67:44:40:f8:bc:12:a6:ae:88:89:20: 5a:13:7a:c0:e6:e6:68:ec:4f:fe:dc:7a:1b:ff:1d:fd:a3:43: 6d:21:3d:d5:16:bf:59:f9:ca:35:6c:af:6f:18:74:e4:a2:03: 84:2e:14:11:65:ea:41:f3:52:87:3e:65:10:20:ec:fd:6c:03: e3:dc:e2:99:73:b2:ed:aa:d3:c2:8d:cb:54:92:e6:62:a0:a6: 28:3f:ef:91:e0:70:44:04:f8:5b:e3:d0:6e:84:20:9e:1d:07: ab:32:9b:fe:a7:75:42:dc:43:75:c2:47:00:89:3a:90:8a:47: 7a:0a:38:0c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTrJW6DmwR588wQdhFSySvP7llA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhCMTY2MTBFQUYyRDRCM0FCRkI5QUM1NzE3RURGMEE2 MDAxRUVGRjAeFw0yNTA3MjIxMjU1MDBaFw0yNjA3MjExMzAwMDBaMDMxMTAvBgNV BAMTKDlFOUQ3MEMxQTQ3OTMxRjczQ0Y0Q0Q1NzEzRDc5NjkwNTg4MzRGQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCli0I/uR8GigCsqOGqiPjas3x2 BMhEOOfjyKH2V/CDEEFewu022ujIZp3buJ7o8m5kUKKhq1MFzMO1KLFFe7QNWhr5 +cnQmzZW+hFzJmOEv2Ek+Bp1LBNY42xH14w0/R8UpHeoy7BHNrj4qJlI4zOdteU2 6gglS0MTw2Fr6J/UiD9LwNpQM+AMw7VzdJfJwETcC1z7+hnSthCYPbYWM8H3pWax CyJICEsQGDx05pEEfrNdAtOqrGQluBKgLWQofYCbOvBm1S8QxHb14Gjw+Lj/1Svq kE+b4WrtuR1u7ISTPJo65pgF9PdLVP8DQVBq5swbZPPLfgg7naINNCTc/c6JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnp1wwaR5Mfc89M1XE9eWkFiDT64wHwYDVR0j BBgwFoAUaLFmEOry1LOr+5rFcX7fCmAB7v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MThjMDM4My02MjlmLTQ2ZTItYjExNC0xODhjYzkyMWE2YTUvMC82OEIxNjYxMEVB RjJENEIzQUJGQjlBQzU3MTdFREYwQTYwMDFFRUZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhCMTY2MTBFQUYyRDRCM0FCRkI5QUM1NzE3RURGMEE2MDAx RUVGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxOGMwMzgzLTYyOWYtNDZlMi1i MTE0LTE4OGNjOTIxYTZhNS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMyMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv6kwDQYJ KoZIhvcNAQELBQADggEBACYCFI47yIYqDsoUk97r3BRwdxNDlUYGYRYbKL7bOSWt 2qUiRQnchLVQsdzLwuD3LJKievSpDLLpHJsIxL5Cqi0dvypFW8dY/QhdDKqIAqjJ pmFm1TbSprWRj9aMNhP3NMAuUVKhschwxzLwZca+qZLmR3+cFfc+JvStc6qxT8cA ii1/MSRnRED4vBKmroiJIFoTesDm5mjsT/7cehv/Hf2jQ20hPdUWv1n5yjVsr28Y dOSiA4QuFBFl6kHzUoc+ZRAg7P1sA+Pc4plzsu2q08KNy1SS5mKgpig/75HgcEQE +Fvj0G6EIJ4dB6sym/6ndULcQ3XCRwCJOpCKR3oKOAw= -----END CERTIFICATE-----Generated at Sat Aug 9 22:43:11 2025 by rpki-client