$ rpki-client -vvf repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa File: 3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa (raw, json) Hash identifier: 4X1JxcSmayIhgSwsgvbbBh0nVrfOfdW4VG7Ltuesc5s= Subject key identifier: FA:1C:76:AE:F1:48:FB:B3:DF:FD:F1:6F:91:A1:90:1E:BA:03:C6:B0 Certificate issuer: /CN=D3BDA2123144839640DA280D6B971C12D0C9C929 Certificate serial: 7DF3DE5D51E11ADE4F9D4DFD07B477EEFBF4B014 Authority key identifier: D3:BD:A2:12:31:44:83:96:40:DA:28:0D:6B:97:1C:12:D0:C9:C9:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer Subject info access: rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa Signing time: Mon 18 Aug 2025 04:01:05 +0000 ROA not before: Mon 18 Aug 2025 03:56:05 +0000 ROA not after: Mon 17 Aug 2026 04:01:05 +0000 asID: 136871 IP address blocks: 103.104.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.crl rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f3:de:5d:51:e1:1a:de:4f:9d:4d:fd:07:b4:77:ee:fb:f4:b0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3BDA2123144839640DA280D6B971C12D0C9C929 Validity Not Before: Aug 18 03:56:05 2025 GMT Not After : Aug 17 04:01:05 2026 GMT Subject: CN=FA1C76AEF148FBB3DFFDF16F91A1901EBA03C6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6f:99:c7:d3:3f:6a:72:8f:c4:33:33:1c:db: d2:a8:74:aa:7c:92:9a:e8:ef:fb:cb:c9:00:56:87: fc:4d:c9:34:4e:85:42:95:1e:93:fd:50:1f:0a:bf: fe:5d:a7:a7:94:cf:90:9e:28:73:3c:99:65:26:a0: 52:85:63:a2:b1:0f:e6:93:b4:20:00:e9:a2:0d:51: f2:0c:d4:38:40:77:8f:3b:3e:c9:b6:22:b5:f1:c2: 8d:87:66:36:c9:36:44:52:70:f1:7d:a5:5c:27:c0: 7d:e5:71:47:94:a7:14:0c:bb:4a:e2:02:fb:12:46: 8b:a1:f8:69:cc:07:eb:fc:3f:5a:5e:51:0e:3e:1b: 8e:b3:91:d3:b4:05:e9:41:b3:8b:c6:42:da:b2:e7: 01:4c:bd:68:99:f0:a1:c8:57:b8:8d:34:9a:c4:0e: 7a:88:12:3e:c8:40:bf:7e:92:4c:a6:7e:14:a1:02: 02:b8:75:5b:a9:58:6f:b5:a0:58:22:63:ae:a6:be: 9b:f3:43:44:96:03:70:38:2a:6e:35:d5:a2:3d:0e: d3:c5:a5:97:da:0b:78:13:00:e0:83:f3:4c:a2:74: 8b:aa:81:0a:05:63:c1:29:21:db:dd:03:58:74:25: a8:7e:f0:1e:7a:a8:f3:69:8e:77:b1:d7:a6:16:70: 57:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1C:76:AE:F1:48:FB:B3:DF:FD:F1:6F:91:A1:90:1E:BA:03:C6:B0 X509v3 Authority Key Identifier: keyid:D3:BD:A2:12:31:44:83:96:40:DA:28:0D:6B:97:1C:12:D0:C9:C9:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.130.0/24 Signature Algorithm: sha256WithRSAEncryption 54:11:75:37:50:6e:2e:75:1e:2b:a3:5a:dc:4d:14:b0:5c:95: 53:11:3f:00:05:c8:f6:e0:61:c6:61:2f:64:c0:4f:b6:98:30: 72:64:5e:61:55:70:f0:d8:96:0f:f6:db:b0:83:e1:7e:6d:9a: 6a:8a:bd:9d:3f:c4:83:7f:25:2b:2b:4f:73:37:7f:89:32:1e: 0b:dc:2a:36:7a:c3:08:9f:52:48:b9:71:18:6c:06:6a:b5:59: f9:12:b3:21:fc:e4:b4:46:5b:66:58:00:b7:c0:e0:9b:f9:dd: 2d:dd:74:f1:fc:3b:7c:d7:99:18:c8:58:53:27:c3:b3:91:63: 06:e0:67:f4:86:fe:c1:4e:29:93:c3:dc:bf:87:20:e2:00:6d: 0a:71:89:eb:14:c8:c0:37:fe:cf:b6:f6:05:92:9f:74:89:ee: 3f:61:9f:11:eb:b9:aa:05:de:3e:84:1c:c9:60:ec:09:22:50: a0:2c:a2:a2:a6:1b:71:03:28:8e:6b:95:ea:4d:1f:fa:70:4a: 9b:90:22:29:3a:0a:ac:23:aa:dc:5f:09:ae:f3:87:2d:54:a3: 01:6e:10:6c:2d:73:ec:81:e8:75:bf:b5:e5:f9:60:4b:48:5f: 08:14:0b:5e:db:3c:35:ef:d5:f8:fe:02:f1:24:98:ba:fb:60: ce:ad:2c:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUffPeXVHhGt5PnU39B7R37vv0sBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCREEyMTIzMTQ0ODM5NjQwREEyODBENkI5NzFDMTJE MEM5QzkyOTAeFw0yNTA4MTgwMzU2MDVaFw0yNjA4MTcwNDAxMDVaMDMxMTAvBgNV BAMTKEZBMUM3NkFFRjE0OEZCQjNERkZERjE2RjkxQTE5MDFFQkEwM0M2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+b5nH0z9qco/EMzMc29KodKp8 kpro7/vLyQBWh/xNyTROhUKVHpP9UB8Kv/5dp6eUz5CeKHM8mWUmoFKFY6KxD+aT tCAA6aINUfIM1DhAd487Psm2IrXxwo2HZjbJNkRScPF9pVwnwH3lcUeUpxQMu0ri AvsSRouh+GnMB+v8P1peUQ4+G46zkdO0BelBs4vGQtqy5wFMvWiZ8KHIV7iNNJrE DnqIEj7IQL9+kkymfhShAgK4dVupWG+1oFgiY66mvpvzQ0SWA3A4Km411aI9DtPF pZfaC3gTAOCD80yidIuqgQoFY8EpIdvdA1h0Jah+8B56qPNpjnex16YWcFfxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+hx2rvFI+7Pf/fFvkaGQHroDxrAwHwYDVR0j BBgwFoAU072iEjFEg5ZA2igNa5ccEtDJySkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjA3NDRiMS0yNTI5LTRhZTItYjVkNS01ZDQ5OWQzZjUyYzIvMC9EM0JEQTIxMjMx NDQ4Mzk2NDBEQTI4MEQ2Qjk3MUMxMkQwQzlDOTI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNCREEyMTIzMTQ0ODM5NjQwREEyODBENkI5NzFDMTJEMEM5 QzkyOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MDc0NGIxLTI1MjktNGFlMi1i NWQ1LTVkNDk5ZDNmNTJjMi8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaIIwDQYJ KoZIhvcNAQELBQADggEBAFQRdTdQbi51HiujWtxNFLBclVMRPwAFyPbgYcZhL2TA T7aYMHJkXmFVcPDYlg/227CD4X5tmmqKvZ0/xIN/JSsrT3M3f4kyHgvcKjZ6wwif Uki5cRhsBmq1WfkSsyH85LRGW2ZYALfA4Jv53S3ddPH8O3zXmRjIWFMnw7ORYwbg Z/SG/sFOKZPD3L+HIOIAbQpxiesUyMA3/s+29gWSn3SJ7j9hnxHruaoF3j6EHMlg 7AkiUKAsoqKmG3EDKI5rlepNH/pwSpuQIik6CqwjqtxfCa7zhy1UowFuEGwtc+yB 6HW/teX5YEtIXwgUC17bPDXv1fj+AvEkmLr7YM6tLDY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:56:18 2025 by rpki-client