$ rpki-client -vvf repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa File: 3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa (raw, json) Hash identifier: KB67q4SCRzcFv43ZUJG/KADzbe2hXV8kny5lP7t0r80= Subject key identifier: 5D:2F:3E:D6:01:40:DA:1F:17:84:8C:88:2C:3F:0F:DE:83:A1:5B:F3 Certificate issuer: /CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Certificate serial: 321433A066FCF9B656E59626A5F28E16008A2AE7 Authority key identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa Signing time: Sun 27 Jul 2025 09:00:00 +0000 ROA not before: Sun 27 Jul 2025 08:55:00 +0000 ROA not after: Sun 26 Jul 2026 09:00:00 +0000 asID: 138064 IP address blocks: 103.175.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.crl rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 21:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:14:33:a0:66:fc:f9:b6:56:e5:96:26:a5:f2:8e:16:00:8a:2a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Validity Not Before: Jul 27 08:55:00 2025 GMT Not After : Jul 26 09:00:00 2026 GMT Subject: CN=5D2F3ED60140DA1F17848C882C3F0FDE83A15BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:d7:ea:a6:9b:43:28:d4:3b:2a:2c:dd:42: b7:3e:9a:f2:b0:27:8a:c1:aa:3d:71:b1:42:9c:f0: 87:17:88:be:82:02:0c:eb:58:e0:ee:50:41:12:30: 9c:03:c1:46:dd:4e:69:c0:b4:b7:f2:37:1b:97:32: 96:0a:e2:38:fc:d4:c8:57:11:77:c3:4c:59:81:1e: 7a:93:15:bc:67:e8:1c:f2:16:d1:96:a0:5b:62:4b: f5:24:d9:13:02:4a:d8:43:c7:93:11:ba:52:3d:84: f8:46:99:9b:0b:30:f8:1f:ea:ac:59:1e:cb:d5:43: 18:96:fd:4a:fb:85:78:db:31:77:df:f5:bf:22:c9: 9c:0b:59:31:ea:c0:1e:24:7b:ad:25:f4:1e:df:96: 5f:72:f6:00:69:ed:e6:aa:e0:2d:21:88:64:d0:79: 17:f3:ac:57:0a:09:f3:57:0a:69:24:13:fc:0a:05: d8:fd:5b:a3:fc:26:5c:1a:df:ff:7d:7a:73:fd:83: 5d:09:c1:80:f6:12:e6:0f:6e:1d:f3:b4:dd:37:24: 8f:c1:f3:b7:90:63:42:83:b3:29:54:2c:5a:ec:5c: 5f:3c:1e:5d:34:52:f1:65:b4:28:db:74:21:6c:e2: 93:f1:ee:cf:fd:b5:cc:b8:1d:77:98:68:6c:2f:c1: 58:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2F:3E:D6:01:40:DA:1F:17:84:8C:88:2C:3F:0F:DE:83:A1:5B:F3 X509v3 Authority Key Identifier: keyid:3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.82.0/23 Signature Algorithm: sha256WithRSAEncryption ba:40:f4:64:a4:83:77:36:73:31:10:dc:41:f8:de:31:e3:78: 6b:78:96:84:15:7e:d7:d5:4e:04:c3:53:70:eb:15:46:48:29: 28:f8:82:57:e8:a9:c4:6c:af:9d:8b:15:a5:a3:5c:73:35:6b: b1:8b:1b:d6:ae:be:de:e4:20:53:31:2d:f5:dc:8b:85:55:8b: ca:50:44:5d:1f:cd:84:81:6a:3e:5e:11:66:f3:4a:5e:b7:86: 33:dc:d6:bf:2b:24:fc:be:77:15:d1:55:d6:7a:31:88:a9:70: 74:fa:f3:d2:f7:c9:77:8d:a1:6a:b6:3d:fd:ed:ab:f6:9f:f4: 4b:94:fc:0b:74:f7:2c:71:59:9a:1e:da:ad:be:19:aa:f2:4e: 81:0a:f4:b5:d1:d3:04:ec:10:6c:82:b0:19:dc:6a:ef:7a:95: ec:7b:22:00:df:7f:bc:cc:41:7f:e2:73:be:cd:89:e7:63:d5: 20:9b:ab:c1:a0:38:43:5f:15:bf:ff:57:83:27:7a:70:0f:3f: 85:45:a5:c8:01:84:e7:9f:bb:ef:59:51:e6:a8:56:b0:1c:61: 07:d6:50:30:e1:cf:a3:90:7b:8c:d7:d6:fe:44:e9:40:16:3c: 0d:0a:60:86:34:02:16:45:f5:a4:b4:82:94:89:1a:37:ef:d0: 50:69:71:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMhQzoGb8+bZW5ZYmpfKOFgCKKucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0FEN0RBNjFFQkE1ODAwM0QzRUYyOUY3OUFBRkJDQUQ4 NkNFRDYxNDAeFw0yNTA3MjcwODU1MDBaFw0yNjA3MjYwOTAwMDBaMDMxMTAvBgNV BAMTKDVEMkYzRUQ2MDE0MERBMUYxNzg0OEM4ODJDM0YwRkRFODNBMTVCRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Z9fqpptDKNQ7KizdQrc+mvKw J4rBqj1xsUKc8IcXiL6CAgzrWODuUEESMJwDwUbdTmnAtLfyNxuXMpYK4jj81MhX EXfDTFmBHnqTFbxn6BzyFtGWoFtiS/Uk2RMCSthDx5MRulI9hPhGmZsLMPgf6qxZ HsvVQxiW/Ur7hXjbMXff9b8iyZwLWTHqwB4ke60l9B7fll9y9gBp7eaq4C0hiGTQ eRfzrFcKCfNXCmkkE/wKBdj9W6P8Jlwa3/99enP9g10JwYD2EuYPbh3ztN03JI/B 87eQY0KDsylULFrsXF88Hl00UvFltCjbdCFs4pPx7s/9tcy4HXeYaGwvwVi/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXS8+1gFA2h8XhIyILD8P3oOhW/MwHwYDVR0j BBgwFoAUOtfaYeulgAPT7yn3mq+8rYbO1hQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Y2E1NDc4MS05Njc4LTQ3NWMtYWMxYi1jZDRiZmNmNWQwZWEvMC8zQUQ3REE2MUVC QTU4MDAzRDNFRjI5Rjc5QUFGQkNBRDg2Q0VENjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0FEN0RBNjFFQkE1ODAwM0QzRUYyOUY3OUFBRkJDQUQ4NkNF RDYxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjYTU0NzgxLTk2NzgtNDc1Yy1h YzFiLWNkNGJmY2Y1ZDBlYS8wLzMxMzAzMzJlMzEzNzM1MmUzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ69SMA0GCSqG SIb3DQEBCwUAA4IBAQC6QPRkpIN3NnMxENxB+N4x43hreJaEFX7X1U4Ew1Nw6xVG SCko+IJX6KnEbK+dixWlo1xzNWuxixvWrr7e5CBTMS313IuFVYvKUERdH82EgWo+ XhFm80pet4Yz3Na/KyT8vncV0VXWejGIqXB0+vPS98l3jaFqtj397av2n/RLlPwL dPcscVmaHtqtvhmq8k6BCvS10dME7BBsgrAZ3GrvepXseyIA33+8zEF/4nO+zYnn Y9Ugm6vBoDhDXxW//1eDJ3pwDz+FRaXIAYTnn7vvWVHmqFawHGEH1lAw4c+jkHuM 19b+ROlAFjwNCmCGNAIWRfWktIKUiRo379BQaXF3 -----END CERTIFICATE-----Generated at Fri Aug 8 00:01:57 2025 by rpki-client