$ rpki-client -vvf repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3137392e38342e302f32342d3234203d3e20313432333037.roa File: 3130332e3137392e38342e302f32342d3234203d3e20313432333037.roa (raw, json) Hash identifier: +xcxN+4e+D+gyfY3CKK8YfXazcHblakfG9WnHK8J/Es= Subject key identifier: 38:BD:1A:17:34:EB:4F:05:6C:C4:D6:94:0B:B1:1F:92:E2:DD:F1:41 Certificate issuer: /CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Certificate serial: 4D996AD0153DA72CD29C86A350E8AAFB9598E953 Authority key identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3137392e38342e302f32342d3234203d3e20313432333037.roa Signing time: Thu 09 Oct 2025 11:00:00 +0000 ROA not before: Thu 09 Oct 2025 10:55:00 +0000 ROA not after: Thu 08 Oct 2026 11:00:00 +0000 asID: 142307 IP address blocks: 103.179.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.crl rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:99:6a:d0:15:3d:a7:2c:d2:9c:86:a3:50:e8:aa:fb:95:98:e9:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Validity Not Before: Oct 9 10:55:00 2025 GMT Not After : Oct 8 11:00:00 2026 GMT Subject: CN=38BD1A1734EB4F056CC4D6940BB11F92E2DDF141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:cc:ca:c4:64:dc:81:ed:e8:f2:70:95:c5:94: 38:0a:23:ba:cb:88:19:1a:7d:6a:8c:a2:ff:ad:e6: 7e:f3:ab:b5:8b:aa:75:aa:af:9e:9e:5c:83:b7:eb: b8:de:a1:6c:2a:60:d8:3d:86:88:5f:8a:1b:9a:83: 33:a4:9d:c5:1f:0d:a3:7a:82:7f:af:b3:cd:6b:8b: 52:3f:aa:34:77:ba:87:e1:74:24:bd:7e:8d:86:20: 7d:2e:24:fa:30:30:f1:b8:24:83:e2:80:b1:1a:c1: d3:80:68:cc:63:04:70:25:6e:ec:ab:4d:bc:8c:5b: 0d:42:a5:71:04:f5:ca:07:4b:89:bc:d2:2a:b9:5f: ff:e9:48:27:d9:82:ea:21:9c:cb:76:d1:fa:e8:2d: 87:0e:61:f9:fa:dd:18:56:2f:58:db:c5:dc:1c:b5: 9b:ac:c8:38:49:90:34:0b:22:75:87:78:c7:1f:c0: 98:6e:22:7f:64:07:0b:84:f9:b3:9d:9f:f0:0e:d8: 55:39:96:02:d1:c8:27:4f:18:0c:62:2e:9b:26:c1: 77:16:e1:87:51:04:7f:9c:16:92:09:53:a6:ad:d8: 93:c7:39:2b:34:9d:3c:ab:5f:ba:ed:ac:94:9c:8f: e1:e7:ad:5e:50:6c:04:04:b8:b3:e5:ad:2c:b0:29: e1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:BD:1A:17:34:EB:4F:05:6C:C4:D6:94:0B:B1:1F:92:E2:DD:F1:41 X509v3 Authority Key Identifier: keyid:60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/3130332e3137392e38342e302f32342d3234203d3e20313432333037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.84.0/24 Signature Algorithm: sha256WithRSAEncryption be:64:4c:21:57:e4:37:bf:25:67:b3:b0:10:c2:b4:8b:79:f5: ab:31:cc:58:c0:10:f0:d2:97:69:b6:3f:d7:60:3b:58:cd:7f: 56:50:11:32:19:13:d8:de:c7:4d:7c:d0:7e:e1:9b:45:c9:56: e4:74:06:fa:93:9d:26:82:7c:f5:0b:7c:80:71:38:2e:65:ee: 54:e9:77:fa:39:f7:c5:93:d5:e3:1b:d2:c2:d7:a0:1a:fe:d4: 8d:9f:6f:ec:e7:72:7e:9a:ae:d1:89:97:23:44:3e:96:37:9b: 8c:32:20:6d:ce:ad:2d:77:50:06:a7:77:f3:ca:28:1e:de:cc: 77:47:ea:7f:de:ee:42:23:01:a7:75:49:73:1d:21:3a:0e:62: ff:7f:84:f6:c0:77:f0:09:d9:3d:58:ed:a8:82:00:23:bf:a7: 80:06:fe:cd:04:d6:e7:52:e3:e6:c0:ff:af:8d:ad:2f:68:33: 5c:3e:44:40:09:9f:cb:e6:e1:55:fc:fa:79:2c:15:79:95:f9: 95:0d:c5:ce:15:f3:ce:73:e8:86:aa:2c:54:c6:50:ed:ba:31: 29:78:00:0b:a3:f4:ec:8c:93:23:73:d9:0c:56:77:ed:73:57: d9:9c:ed:28:27:22:31:9c:29:54:f3:aa:40:4e:b6:61:80:90: c5:79:43:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTZlq0BU9pyzSnIajUOiq+5WY6VMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBBQTAxMjAwRDEyMUVFRUZFMjJDRUZFRTc2QjU1NzIw RThEOTQzOTAeFw0yNTEwMDkxMDU1MDBaFw0yNjEwMDgxMTAwMDBaMDMxMTAvBgNV BAMTKDM4QkQxQTE3MzRFQjRGMDU2Q0M0RDY5NDBCQjExRjkyRTJEREYxNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqzMrEZNyB7ejycJXFlDgKI7rL iBkafWqMov+t5n7zq7WLqnWqr56eXIO367jeoWwqYNg9hohfihuagzOkncUfDaN6 gn+vs81ri1I/qjR3uofhdCS9fo2GIH0uJPowMPG4JIPigLEawdOAaMxjBHAlbuyr TbyMWw1CpXEE9coHS4m80iq5X//pSCfZguohnMt20froLYcOYfn63RhWL1jbxdwc tZusyDhJkDQLInWHeMcfwJhuIn9kBwuE+bOdn/AO2FU5lgLRyCdPGAxiLpsmwXcW 4YdRBH+cFpIJU6at2JPHOSs0nTyrX7rtrJScj+HnrV5QbAQEuLPlrSywKeFbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOL0aFzTrTwVsxNaUC7EfkuLd8UEwHwYDVR0j BBgwFoAUYKoBIA0SHu7+Is7+52tVcg6NlDkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWYyMGIyZS1hN2E4LTQyZmQtOTJmOC05NDk2MjMzYjJjOWUvMC82MEFBMDEyMDBE MTIxRUVFRkUyMkNFRkVFNzZCNTU3MjBFOEQ5NDM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBBQTAxMjAwRDEyMUVFRUZFMjJDRUZFRTc2QjU1NzIwRThE OTQzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZjIwYjJlLWE3YTgtNDJmZC05 MmY4LTk0OTYyMzNiMmM5ZS8wLzMxMzAzMzJlMzEzNzM5MmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NUMA0GCSqG SIb3DQEBCwUAA4IBAQC+ZEwhV+Q3vyVns7AQwrSLefWrMcxYwBDw0pdptj/XYDtY zX9WUBEyGRPY3sdNfNB+4ZtFyVbkdAb6k50mgnz1C3yAcTguZe5U6Xf6OffFk9Xj G9LC16Aa/tSNn2/s53J+mq7RiZcjRD6WN5uMMiBtzq0td1AGp3fzyige3sx3R+p/ 3u5CIwGndUlzHSE6DmL/f4T2wHfwCdk9WO2oggAjv6eABv7NBNbnUuPmwP+vja0v aDNcPkRACZ/L5uFV/Pp5LBV5lfmVDcXOFfPOc+iGqixUxlDtujEpeAALo/TsjJMj c9kMVnftc1fZnO0oJyIxnClU86pATrZhgJDFeUPK -----END CERTIFICATE-----Generated at Mon Oct 20 17:44:25 2025 by rpki-client