$ rpki-client -vvf repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa File: 3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa (raw, json) Hash identifier: 2PH25lGx4aoDxJSQ/LOSozIUBGDxDVOVLodCc7y15nU= Subject key identifier: D9:8A:E4:11:7B:2D:EC:FA:CE:21:5C:42:49:4C:A2:9A:A3:D4:D4:21 Certificate issuer: /CN=00C1EB3BEE971CEAB531D756361F934BE0179628 Certificate serial: 6A977A869C540D47CAA510127BF91CEC5E4EB2CF Authority key identifier: 00:C1:EB:3B:EE:97:1C:EA:B5:31:D7:56:36:1F:93:4B:E0:17:96:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa Signing time: Thu 24 Jul 2025 16:00:00 +0000 ROA not before: Thu 24 Jul 2025 15:55:00 +0000 ROA not after: Thu 23 Jul 2026 16:00:00 +0000 asID: 151577 IP address blocks: 103.76.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.crl rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:97:7a:86:9c:54:0d:47:ca:a5:10:12:7b:f9:1c:ec:5e:4e:b2:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00C1EB3BEE971CEAB531D756361F934BE0179628 Validity Not Before: Jul 24 15:55:00 2025 GMT Not After : Jul 23 16:00:00 2026 GMT Subject: CN=D98AE4117B2DECFACE215C42494CA29AA3D4D421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b7:24:47:a3:e9:f5:24:f0:9c:fb:37:e7:38: 08:d9:91:4d:ac:f9:67:68:d1:b3:27:24:87:2c:ae: 6c:fc:51:35:d0:c4:43:2e:12:ec:d2:0c:43:a6:25: 62:f8:2e:ac:11:19:20:7e:ca:d4:fd:34:8a:53:3d: b8:be:c8:dd:8f:d6:a0:dd:06:04:db:0b:54:1b:13: ea:0b:2c:ce:f7:b6:00:db:aa:59:a7:8d:b3:2c:36: 25:36:37:59:1e:b2:66:b7:13:ed:9e:a0:a4:3f:e9: 64:c0:10:c1:fa:91:26:7e:74:71:18:98:0f:d1:78: cc:f6:c2:b7:05:a3:6b:e5:0a:17:cf:19:2d:ce:b1: 19:54:71:f5:d7:a3:59:c4:dd:92:a6:20:62:10:86: 4a:9c:ad:f2:f3:95:ed:45:a1:1e:fc:2f:70:74:83: 48:47:de:1c:0d:d2:a0:84:7d:45:ce:53:c9:9a:cd: 65:be:12:d0:32:db:90:32:e6:e5:b9:a4:fc:8d:dc: 93:cd:84:16:6b:87:d3:00:23:7d:5a:64:d5:d8:cb: 5d:6e:51:d3:bc:55:b1:72:96:af:39:93:73:53:9f: 29:f6:2a:af:ed:1f:2b:de:ec:c2:4d:d5:0e:ce:50: a5:ef:ec:23:ef:f1:b7:16:8b:e7:71:24:9c:04:fa: 0c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8A:E4:11:7B:2D:EC:FA:CE:21:5C:42:49:4C:A2:9A:A3:D4:D4:21 X509v3 Authority Key Identifier: keyid:00:C1:EB:3B:EE:97:1C:EA:B5:31:D7:56:36:1F:93:4B:E0:17:96:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.106.0/23 Signature Algorithm: sha256WithRSAEncryption a2:67:dd:98:3c:f3:0d:a1:42:dd:28:0b:d7:7c:f5:67:d5:3d: c2:3e:6f:e1:8b:95:bb:d3:70:ed:c2:cc:ff:d3:87:71:3d:9b: cc:18:69:cc:b3:9f:ea:86:fa:d0:42:bc:ba:b2:6d:ec:bc:63: 79:47:94:0d:2e:df:ae:75:2e:90:20:75:dc:1b:a8:eb:c1:fe: be:2c:d8:d5:dc:72:53:4f:9c:73:17:55:19:b0:55:0d:f4:52: 63:8a:b8:07:e5:51:c6:84:a5:24:2d:81:17:93:da:b2:03:68: 8f:12:2d:ef:19:5a:21:16:e8:16:24:1b:fa:05:f1:1e:a8:8a: 43:98:ac:e5:bd:4b:ef:de:f2:bd:79:e8:b6:90:b4:68:4f:ae: 6e:38:3d:31:48:5b:fd:48:db:dc:fa:93:47:fc:1e:eb:9d:ea: 12:97:06:f3:9a:20:a8:c6:ea:db:0c:bd:6b:c3:6d:d4:d6:13: f5:6f:8e:d3:2e:b9:13:26:26:dd:29:89:4b:fb:d5:3c:46:bf: 93:78:5c:5c:8c:6a:e6:fe:e0:d1:f7:07:9a:6b:e7:f7:54:8b: 3f:e2:79:f4:bb:85:09:dc:e9:4b:63:b4:84:d7:e4:7e:b4:42: a9:d6:37:6c:a0:88:76:b2:d3:da:ca:b8:22:e9:44:ac:d1:9c: 46:b1:80:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUapd6hpxUDUfKpRASe/kc7F5Oss8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBDMUVCM0JFRTk3MUNFQUI1MzFENzU2MzYxRjkzNEJF MDE3OTYyODAeFw0yNTA3MjQxNTU1MDBaFw0yNjA3MjMxNjAwMDBaMDMxMTAvBgNV BAMTKEQ5OEFFNDExN0IyREVDRkFDRTIxNUM0MjQ5NENBMjlBQTNENEQ0MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwtyRHo+n1JPCc+zfnOAjZkU2s +Wdo0bMnJIcsrmz8UTXQxEMuEuzSDEOmJWL4LqwRGSB+ytT9NIpTPbi+yN2P1qDd BgTbC1QbE+oLLM73tgDbqlmnjbMsNiU2N1kesma3E+2eoKQ/6WTAEMH6kSZ+dHEY mA/ReMz2wrcFo2vlChfPGS3OsRlUcfXXo1nE3ZKmIGIQhkqcrfLzle1FoR78L3B0 g0hH3hwN0qCEfUXOU8mazWW+EtAy25Ay5uW5pPyN3JPNhBZrh9MAI31aZNXYy11u UdO8VbFylq85k3NTnyn2Kq/tHyve7MJN1Q7OUKXv7CPv8bcWi+dxJJwE+gx9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2YrkEXst7PrOIVxCSUyimqPU1CEwHwYDVR0j BBgwFoAUAMHrO+6XHOq1MddWNh+TS+AXligwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzIwY2U3Ni1kYjc1LTQ2NTEtODViMC0wYmZiMThlMGIxNzUvMC8wMEMxRUIzQkVF OTcxQ0VBQjUzMUQ3NTYzNjFGOTM0QkUwMTc5NjI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBDMUVCM0JFRTk3MUNFQUI1MzFENzU2MzYxRjkzNEJFMDE3 OTYyOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MjBjZTc2LWRiNzUtNDY1MS04 NWIwLTBiZmIxOGUwYjE3NS8wLzMxMzAzMzJlMzczNjJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0xqMA0GCSqG SIb3DQEBCwUAA4IBAQCiZ92YPPMNoULdKAvXfPVn1T3CPm/hi5W703Dtwsz/04dx PZvMGGnMs5/qhvrQQry6sm3svGN5R5QNLt+udS6QIHXcG6jrwf6+LNjV3HJTT5xz F1UZsFUN9FJjirgH5VHGhKUkLYEXk9qyA2iPEi3vGVohFugWJBv6BfEeqIpDmKzl vUvv3vK9eei2kLRoT65uOD0xSFv9SNvc+pNH/B7rneoSlwbzmiCoxurbDL1rw23U 1hP1b47TLrkTJibdKYlL+9U8Rr+TeFxcjGrm/uDR9weaa+f3VIs/4nn0u4UJ3OlL Y7SE1+R+tEKp1jdsoIh2stPayrgi6USs0ZxGsYAy -----END CERTIFICATE-----Generated at Sat Aug 9 20:36:24 2025 by rpki-client