$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa File: 3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa (raw, json) Hash identifier: 85hVM7OWzsW2IWi1L1cP9n78qkkPX/THHIrPs4N+UMQ= Subject key identifier: FF:EC:15:62:DF:78:9C:47:54:C5:00:1C:52:75:8E:08:09:03:D1:3E Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 047C8203E441285FC0F74E14BDEA332F9ADF4200 Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa Signing time: Sat 04 Oct 2025 07:00:01 +0000 ROA not before: Sat 04 Oct 2025 06:55:01 +0000 ROA not after: Sat 03 Oct 2026 07:00:01 +0000 asID: 63930 IP address blocks: 103.120.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 10:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7c:82:03:e4:41:28:5f:c0:f7:4e:14:bd:ea:33:2f:9a:df:42:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Oct 4 06:55:01 2025 GMT Not After : Oct 3 07:00:01 2026 GMT Subject: CN=FFEC1562DF789C4754C5001C52758E080903D13E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:be:0c:ff:c7:a5:0f:1e:0a:e1:98:c6:38: be:41:ff:21:fc:30:d3:91:9c:f5:a6:b1:ef:9a:7d: c1:cd:db:1a:f3:7d:98:ce:93:de:cd:2c:f3:4b:f4: 5d:7f:ab:41:49:b4:0f:89:f5:8f:5c:c3:c7:fb:9f: 65:6e:8f:10:52:e4:69:f7:a5:71:df:e2:6e:2d:99: a3:61:ab:9b:dc:ed:75:24:db:2a:29:6f:97:19:2e: cc:09:a0:39:5a:b0:64:ea:75:5b:0f:3b:e3:3c:fa: fd:a9:ba:aa:89:f7:ea:2f:97:e9:eb:77:58:ea:70: 43:37:16:5a:d1:66:79:77:9b:db:92:7f:c5:e8:12: 15:7f:e1:17:62:d5:be:98:37:71:1e:2d:0d:6e:81: 21:cc:e2:db:2d:ae:ee:72:fe:f5:8e:75:98:e8:a4: ce:45:5d:35:1c:a4:b6:6e:11:ad:3d:a2:c7:26:09: 29:26:65:41:5d:88:76:5f:bd:87:65:fb:8e:63:c2: d7:ac:f5:e5:6e:5b:8f:79:a0:8a:23:82:31:c0:e1: 3f:53:4d:0c:59:9e:ef:b4:83:93:28:7e:15:e1:20: 67:f3:83:88:5e:2e:c3:7b:4f:42:23:40:6b:d1:75: 82:4f:84:a4:9d:43:28:88:84:12:aa:c8:2e:20:f5: 88:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EC:15:62:DF:78:9C:47:54:C5:00:1C:52:75:8E:08:09:03:D1:3E X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.206.0/24 Signature Algorithm: sha256WithRSAEncryption a1:3f:60:95:09:0b:60:50:33:2b:bf:26:c2:7e:68:c8:cd:e1: 82:a8:a2:37:67:96:24:fb:88:8d:63:2b:81:80:eb:13:f7:3d: e4:72:72:22:d6:90:9d:fd:50:21:bd:a1:8d:ba:c4:b6:f3:fa: 28:27:14:da:f1:9f:a1:32:7f:a0:18:6f:56:75:35:0e:31:8f: f4:14:b1:fc:b1:ca:d8:c6:20:e2:e8:8c:5c:3e:90:e6:66:5c: 8a:0d:76:01:86:49:25:91:93:2c:09:df:ed:18:9b:e1:e1:c2: 66:3e:4a:0f:ab:01:15:c3:bc:00:b7:1f:fd:b5:3d:b3:ce:b7: 20:10:69:f0:57:e4:29:4e:86:cc:79:80:1e:cb:07:64:0c:df: b1:d6:b9:e3:7b:4a:28:96:74:35:9a:79:5e:f6:70:1e:67:53: 2c:37:4f:c1:c1:33:86:aa:f3:86:b9:fb:67:70:16:2a:88:ae: f9:db:b0:3e:66:63:ee:bf:a8:a0:3d:60:0c:99:04:23:92:e3: d6:99:c1:18:12:20:05:80:d9:29:fa:52:87:15:44:e8:a2:39: 6a:73:f9:58:4a:fc:6f:5e:07:ab:06:6c:98:14:f9:f0:95:d3: 4a:ce:19:2b:3d:40:f3:b9:97:3c:d5:f2:3f:cb:a9:38:f9:c9: 14:0b:ef:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBHyCA+RBKF/A904UveozL5rfQgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yNTEwMDQwNjU1MDFaFw0yNjEwMDMwNzAwMDFaMDMxMTAvBgNV BAMTKEZGRUMxNTYyREY3ODlDNDc1NEM1MDAxQzUyNzU4RTA4MDkwM0QxM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO974M/8elDx4K4ZjGOL5B/yH8 MNORnPWmse+afcHN2xrzfZjOk97NLPNL9F1/q0FJtA+J9Y9cw8f7n2VujxBS5Gn3 pXHf4m4tmaNhq5vc7XUk2yopb5cZLswJoDlasGTqdVsPO+M8+v2puqqJ9+ovl+nr d1jqcEM3FlrRZnl3m9uSf8XoEhV/4Rdi1b6YN3EeLQ1ugSHM4tstru5y/vWOdZjo pM5FXTUcpLZuEa09oscmCSkmZUFdiHZfvYdl+45jwtes9eVuW495oIojgjHA4T9T TQxZnu+0g5MofhXhIGfzg4heLsN7T0IjQGvRdYJPhKSdQyiIhBKqyC4g9YibAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/+wVYt94nEdUxQAcUnWOCAkD0T4wHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzkzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3jOMA0GCSqG SIb3DQEBCwUAA4IBAQChP2CVCQtgUDMrvybCfmjIzeGCqKI3Z5Yk+4iNYyuBgOsT 9z3kcnIi1pCd/VAhvaGNusS28/ooJxTa8Z+hMn+gGG9WdTUOMY/0FLH8scrYxiDi 6IxcPpDmZlyKDXYBhkklkZMsCd/tGJvh4cJmPkoPqwEVw7wAtx/9tT2zzrcgEGnw V+QpTobMeYAeywdkDN+x1rnje0oolnQ1mnle9nAeZ1MsN0/BwTOGqvOGuftncBYq iK7527A+ZmPuv6igPWAMmQQjkuPWmcEYEiAFgNkp+lKHFUToojlqc/lYSvxvXger BmyYFPnwldNKzhkrPUDzuZc81fI/y6k4+ckUC+9p -----END CERTIFICATE-----Generated at Mon Oct 20 11:05:26 2025 by rpki-client