$ rpki-client -vvf repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa File: 3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa (raw, json) Hash identifier: o2bQvGOl23Ff/IhGDb/Bx0WpnGHktg20JirSu+NaGU4= Subject key identifier: 63:F7:2D:56:17:94:8E:52:E8:4F:C9:9A:54:70:8F:E3:CA:83:46:DD Certificate issuer: /CN=D065D2A0A105660C70D0A89385A33A61750ED7E8 Certificate serial: 2AC6B7A5ABC405C704C0BDADEDD42FF0C2944547 Authority key identifier: D0:65:D2:A0:A1:05:66:0C:70:D0:A8:93:85:A3:3A:61:75:0E:D7:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D065D2A0A105660C70D0A89385A33A61750ED7E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa Signing time: Wed 23 Jul 2025 16:00:00 +0000 ROA not before: Wed 23 Jul 2025 15:55:00 +0000 ROA not after: Wed 22 Jul 2026 16:00:00 +0000 asID: 141618 IP address blocks: 103.161.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/D065D2A0A105660C70D0A89385A33A61750ED7E8.crl rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/D065D2A0A105660C70D0A89385A33A61750ED7E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D065D2A0A105660C70D0A89385A33A61750ED7E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c6:b7:a5:ab:c4:05:c7:04:c0:bd:ad:ed:d4:2f:f0:c2:94:45:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D065D2A0A105660C70D0A89385A33A61750ED7E8 Validity Not Before: Jul 23 15:55:00 2025 GMT Not After : Jul 22 16:00:00 2026 GMT Subject: CN=63F72D5617948E52E84FC99A54708FE3CA8346DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f0:5e:60:d2:a3:83:04:ff:3a:7e:6b:9e:d2: 54:25:4b:58:90:62:30:53:4f:da:1a:0b:0f:fe:91: a3:3d:71:1a:bb:e4:91:c6:79:67:e3:5c:bd:48:2e: 04:ff:07:cd:a2:d9:ac:97:04:f5:7f:30:8c:95:de: 2d:8e:21:80:7b:42:95:c8:e6:96:48:f6:66:3b:79: 7e:84:60:25:eb:fc:3c:95:f7:9f:bf:54:50:fd:b5: ec:cd:db:fb:8d:b8:77:1c:6d:71:19:46:7f:3e:7f: 54:04:77:77:5b:fc:04:31:45:c7:44:a2:7e:96:fc: c7:31:3e:e3:a9:2c:3e:d9:21:68:ff:2d:f2:ee:90: d4:a8:a8:d3:b1:f1:be:05:f1:ba:47:89:43:72:b7: 4b:e2:7a:29:07:00:f7:61:ac:ca:b5:b7:66:14:d1: 3c:42:d6:66:45:2c:10:41:44:42:36:88:9f:78:e0: cb:b2:de:e5:a3:09:d3:c8:3e:05:3b:1c:68:e5:d2: 12:8a:d3:e6:42:36:01:dc:25:84:01:23:4e:de:5c: 00:dc:f2:3d:69:e2:f5:e8:03:8d:20:4c:42:b3:0c: 93:04:1d:f5:44:0c:2e:10:be:64:d8:5e:3a:0d:ac: e6:77:e9:0e:df:96:13:22:5e:93:8f:41:e1:62:3a: f9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F7:2D:56:17:94:8E:52:E8:4F:C9:9A:54:70:8F:E3:CA:83:46:DD X509v3 Authority Key Identifier: keyid:D0:65:D2:A0:A1:05:66:0C:70:D0:A8:93:85:A3:3A:61:75:0E:D7:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/D065D2A0A105660C70D0A89385A33A61750ED7E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D065D2A0A105660C70D0A89385A33A61750ED7E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.109.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:25:4b:5c:fa:50:3b:64:83:9b:20:11:60:f8:0a:f3:36:7e: da:07:57:46:03:07:e7:d1:d7:80:9c:4f:64:79:35:fd:f2:93: c7:ca:6f:5f:47:21:f0:c5:1c:9c:c4:a6:cb:04:93:bc:1f:9d: ab:6c:2a:18:85:25:bf:c6:dc:a9:08:c9:fe:a2:e3:fb:4a:53: 59:03:71:82:12:9a:9b:9e:c2:26:e5:58:ec:c5:52:aa:2d:c4: ea:e2:dd:85:e8:a2:da:bf:3c:b8:b8:f1:3d:56:bc:cf:5b:7f: 69:34:d7:2a:96:6c:3b:63:d3:4e:2d:20:cd:cf:82:2e:4f:0e: 29:6b:56:56:8f:05:52:10:65:7b:71:7a:6f:c1:cd:52:b3:8b: 73:40:9e:ad:d9:ad:50:64:3d:c3:02:2f:4d:06:0b:03:9f:4f: 7d:2f:c0:d7:81:8a:f1:5b:f4:31:40:00:0f:e6:73:57:83:f1: 7c:e5:07:ee:1e:4b:d0:f2:6e:b2:eb:df:46:a1:ea:38:92:aa: e9:fb:25:8e:69:9d:49:44:db:19:97:20:f1:89:42:80:f7:53: 7d:34:7d:1f:a3:9b:76:64:8e:62:29:9b:54:8c:b3:96:77:71: 65:6a:b5:46:f2:9e:1d:f4:11:80:53:cb:43:40:9a:14:b8:81: b7:65:58:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKsa3pavEBccEwL2t7dQv8MKURUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA2NUQyQTBBMTA1NjYwQzcwRDBBODkzODVBMzNBNjE3 NTBFRDdFODAeFw0yNTA3MjMxNTU1MDBaFw0yNjA3MjIxNjAwMDBaMDMxMTAvBgNV BAMTKDYzRjcyRDU2MTc5NDhFNTJFODRGQzk5QTU0NzA4RkUzQ0E4MzQ2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC88F5g0qODBP86fmue0lQlS1iQ YjBTT9oaCw/+kaM9cRq75JHGeWfjXL1ILgT/B82i2ayXBPV/MIyV3i2OIYB7QpXI 5pZI9mY7eX6EYCXr/DyV95+/VFD9tezN2/uNuHccbXEZRn8+f1QEd3db/AQxRcdE on6W/McxPuOpLD7ZIWj/LfLukNSoqNOx8b4F8bpHiUNyt0vieikHAPdhrMq1t2YU 0TxC1mZFLBBBREI2iJ944Muy3uWjCdPIPgU7HGjl0hKK0+ZCNgHcJYQBI07eXADc 8j1p4vXoA40gTEKzDJMEHfVEDC4QvmTYXjoNrOZ36Q7flhMiXpOPQeFiOvkzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUY/ctVheUjlLoT8maVHCP48qDRt0wHwYDVR0j BBgwFoAU0GXSoKEFZgxw0KiThaM6YXUO1+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGJhOTdlZi03YmM4LTQ1YjgtODJhYi1mODU1MzNjYWVkZjQvMC9EMDY1RDJBMEEx MDU2NjBDNzBEMEE4OTM4NUEzM0E2MTc1MEVEN0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDA2NUQyQTBBMTA1NjYwQzcwRDBBODkzODVBMzNBNjE3NTBF RDdFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYmE5N2VmLTdiYzgtNDViOC04 MmFiLWY4NTUzM2NhZWRmNC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW0wDQYJ KoZIhvcNAQELBQADggEBAI8lS1z6UDtkg5sgEWD4CvM2ftoHV0YDB+fR14CcT2R5 Nf3yk8fKb19HIfDFHJzEpssEk7wfnatsKhiFJb/G3KkIyf6i4/tKU1kDcYISmpue wiblWOzFUqotxOri3YXootq/PLi48T1WvM9bf2k01yqWbDtj004tIM3Pgi5PDilr VlaPBVIQZXtxem/BzVKzi3NAnq3ZrVBkPcMCL00GCwOfT30vwNeBivFb9DFAAA/m c1eD8XzlB+4eS9DybrLr30ah6jiSqun7JY5pnUlE2xmXIPGJQoD3U300fR+jm3Zk jmIpm1SMs5Z3cWVqtUbynh30EYBTy0NAmhS4gbdlWMk= -----END CERTIFICATE-----Generated at Thu Aug 7 20:25:31 2025 by rpki-client