$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa File: 3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa (raw, json) Hash identifier: yVV5dswPF/JJinXwT/AnHMY4w0AFsBRTFOmucBW2KiU= Subject key identifier: B2:E6:F8:76:1C:90:DE:07:46:59:74:95:75:2D:60:95:5E:BF:12:17 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 0316CB7777202EAD0C64CF0FD57D829C12DD8B4A Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa Signing time: Sat 02 Aug 2025 10:00:58 +0000 ROA not before: Sat 02 Aug 2025 09:55:58 +0000 ROA not after: Sat 01 Aug 2026 10:00:58 +0000 asID: 138087 IP address blocks: 103.125.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 11:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:16:cb:77:77:20:2e:ad:0c:64:cf:0f:d5:7d:82:9c:12:dd:8b:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Aug 2 09:55:58 2025 GMT Not After : Aug 1 10:00:58 2026 GMT Subject: CN=B2E6F8761C90DE0746597495752D60955EBF1217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:03:30:25:f6:be:b5:84:bb:05:51:c6:94:05: 56:ee:3a:09:0e:68:75:d9:3c:d0:c3:33:ea:81:f4: 63:09:2d:9d:20:ca:23:ef:d9:9b:b5:ac:8b:e8:18: 81:14:50:22:5a:2e:9f:f2:ee:fd:f8:d8:e2:78:6e: 45:28:fd:7b:50:1a:a3:3e:4f:e4:58:0e:d7:f1:b7: 84:6d:a9:bf:90:be:22:bf:61:34:41:91:8f:af:20: f5:52:4e:89:de:cb:61:eb:0b:b4:f6:24:37:bc:5c: 27:e7:98:f7:3b:3b:42:ac:26:f3:c7:19:f5:a5:82: 36:91:c0:a2:33:a1:b3:c7:7d:fd:c3:65:6b:f1:24: 7c:af:bb:b4:6f:9f:d2:9a:7e:14:74:19:2e:16:5c: 23:fc:8e:c8:13:a2:08:a1:8c:c6:6c:53:d1:a9:c2: 79:99:c4:ac:cd:28:7f:92:34:ba:0b:a9:b3:ad:51: 80:07:29:27:7f:06:55:b9:7c:a1:48:89:b2:7a:b8: e9:cc:27:d6:d4:89:3f:22:ad:ff:2c:d8:8e:70:45: e3:ba:67:6b:a7:b3:e6:7b:3f:80:f0:d1:b3:ca:89: e3:16:16:be:f2:25:c1:6b:93:dd:b6:c9:1a:cb:43: 62:90:82:75:58:0b:31:fb:c4:d1:e9:de:81:3d:e7: bb:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E6:F8:76:1C:90:DE:07:46:59:74:95:75:2D:60:95:5E:BF:12:17 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/22 Signature Algorithm: sha256WithRSAEncryption cf:3d:38:17:6d:0c:b6:df:25:5a:5f:6b:c0:5e:f9:61:02:57: 4d:ec:0d:a4:61:f4:e7:bc:4a:6e:d3:de:5d:2a:b2:0c:cc:a9: 22:a9:1f:a0:7d:79:ef:2d:31:2f:67:14:18:6b:f8:72:d1:34: e3:87:ad:ec:2c:88:26:dc:28:3a:4c:d6:92:62:26:02:14:97: 89:36:f0:01:64:ff:9c:a0:4e:b5:d3:fa:0e:9f:32:3b:5d:21: a2:fa:5d:95:34:7d:99:09:27:7d:c5:06:c9:09:54:d5:67:04: 42:9f:53:0c:df:ae:98:5e:e7:8b:8a:e7:97:5a:a2:fc:6b:5c: a8:6f:f4:7b:29:af:73:b6:f3:04:db:2c:45:7c:ae:ab:21:28: 8e:17:35:f5:04:4f:3d:c0:7e:8e:7a:38:6d:fa:d7:45:e5:e7: c1:84:52:df:92:1d:e1:5b:23:74:72:6a:9b:c6:59:26:7f:2f: 0c:d5:71:0a:22:7a:c1:6d:b0:0c:5b:8c:dd:19:e4:25:80:a6: 73:38:78:a4:91:8b:60:f9:65:42:2d:80:4d:bb:57:89:5d:c8: a4:25:c6:22:86:9d:d9:15:e1:f8:be:62:d0:44:c5:ff:1c:cb: 13:f5:a8:a7:f3:26:f6:77:ba:51:2f:f6:1c:1a:68:fc:6a:9d: c4:1c:06:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAxbLd3cgLq0MZM8P1X2CnBLdi0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNTA4MDIwOTU1NThaFw0yNjA4MDExMDAwNThaMDMxMTAvBgNV BAMTKEIyRTZGODc2MUM5MERFMDc0NjU5NzQ5NTc1MkQ2MDk1NUVCRjEyMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVAzAl9r61hLsFUcaUBVbuOgkO aHXZPNDDM+qB9GMJLZ0gyiPv2Zu1rIvoGIEUUCJaLp/y7v342OJ4bkUo/XtQGqM+ T+RYDtfxt4Rtqb+QviK/YTRBkY+vIPVSToney2HrC7T2JDe8XCfnmPc7O0KsJvPH GfWlgjaRwKIzobPHff3DZWvxJHyvu7Rvn9KafhR0GS4WXCP8jsgTogihjMZsU9Gp wnmZxKzNKH+SNLoLqbOtUYAHKSd/BlW5fKFIibJ6uOnMJ9bUiT8irf8s2I5wReO6 Z2uns+Z7P4Dw0bPKieMWFr7yJcFrk922yRrLQ2KQgnVYCzH7xNHp3oE957tnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsub4dhyQ3gdGWXSVdS1glV6/EhcwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ30QMA0GCSqG SIb3DQEBCwUAA4IBAQDPPTgXbQy23yVaX2vAXvlhAldN7A2kYfTnvEpu095dKrIM zKkiqR+gfXnvLTEvZxQYa/hy0TTjh63sLIgm3Cg6TNaSYiYCFJeJNvABZP+coE61 0/oOnzI7XSGi+l2VNH2ZCSd9xQbJCVTVZwRCn1MM366YXueLiueXWqL8a1yob/R7 Ka9ztvME2yxFfK6rISiOFzX1BE89wH6Oejht+tdF5efBhFLfkh3hWyN0cmqbxlkm fy8M1XEKInrBbbAMW4zdGeQlgKZzOHikkYtg+WVCLYBNu1eJXcikJcYihp3ZFeH4 vmLQRMX/HMsT9ain8yb2d7pRL/YcGmj8ap3EHAY8 -----END CERTIFICATE-----Generated at Thu Aug 7 11:21:24 2025 by rpki-client