$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa File: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (raw, json) Hash identifier: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs= Subject key identifier: 4E:51:A8:69:69:C9:34:AF:78:D5:EB:62:9F:C8:41:96:73:11:51:B2 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 798E2457AF1A76F801AF4E53027ABBA6B27E555A Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa Signing time: Thu 26 Jun 2025 09:02:23 +0000 ROA not before: Thu 26 Jun 2025 08:57:23 +0000 ROA not after: Thu 25 Jun 2026 09:02:23 +0000 asID: 141674 IP address blocks: 103.177.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8e:24:57:af:1a:76:f8:01:af:4e:53:02:7a:bb:a6:b2:7e:55:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jun 26 08:57:23 2025 GMT Not After : Jun 25 09:02:23 2026 GMT Subject: CN=4E51A86969C934AF78D5EB629FC84196731151B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:30:fd:56:cb:32:3d:dd:0d:74:66:a4:22: 94:61:4b:41:81:5c:81:41:fd:53:15:e7:18:fc:ff: c5:b8:d5:6a:7e:12:0c:22:99:1e:b4:d9:82:c8:74: d3:c2:fc:3a:1a:ba:48:32:b0:a4:d5:95:a0:eb:64: a6:c6:23:c3:08:f3:4b:cb:6d:b7:65:5f:56:c8:30: bf:49:f4:c6:3f:b7:6d:cf:4a:a2:2d:62:d3:fe:d2: d5:25:c8:40:49:12:68:2c:5f:20:84:85:0c:98:cb: 80:13:be:b8:9a:e8:7b:ae:c1:45:f0:6a:4c:0d:34: e4:2e:8f:2d:e8:11:5d:ef:5f:a8:bc:dc:23:a3:60: 8f:bb:b0:35:0d:ec:4a:5e:c9:b9:79:e1:2e:c6:23: ad:6f:4f:be:73:1a:8f:83:d4:3b:e1:ad:6f:5c:3a: d3:56:ee:31:88:41:69:d8:de:2e:1b:60:c6:7b:48: ec:8a:aa:5b:02:6c:95:4e:0a:b6:fa:66:89:7e:46: 9e:20:c8:fc:e7:e6:6c:28:7d:ad:6d:da:3e:b1:c5: 69:4f:7d:fb:fc:a5:6c:5e:ae:28:1f:a5:66:c9:2e: 61:c3:21:d0:30:b7:04:16:76:9a:22:e9:f1:3c:b6: c0:47:22:25:27:1d:bc:61:8f:71:73:ec:94:12:ac: 59:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:51:A8:69:69:C9:34:AF:78:D5:EB:62:9F:C8:41:96:73:11:51:B2 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.107.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:57:14:7d:08:ce:c1:02:08:f1:bb:15:90:b5:db:ea:2e:f8: 59:83:1a:cd:a0:37:fa:7e:73:8e:0d:f3:a1:cb:06:d4:61:a2: 36:6e:64:16:3f:23:4e:41:41:f2:84:d1:7f:6c:3c:69:7c:ae: e6:95:32:51:db:91:1a:ef:b0:8e:c1:a9:8e:50:5f:e4:9b:78: 56:fc:28:cb:5c:fd:7b:a6:0a:d0:f5:32:2f:ce:7a:16:26:c5: d1:62:cc:d5:3e:aa:72:70:58:53:a8:e8:fd:88:1b:cc:13:97: 57:77:72:96:35:49:cf:a4:1f:75:33:be:2c:c3:92:fc:7c:ad: 55:c4:c6:04:a3:69:23:33:7b:9c:56:45:07:50:60:d1:21:31: b8:42:2d:6e:20:62:78:10:34:01:42:85:7e:2f:24:46:a4:1f: 11:a5:2f:97:0b:20:f0:04:c8:98:0f:82:42:9c:d2:96:0f:36: f9:8c:aa:8c:88:86:2d:3e:53:59:86:aa:30:0f:ee:70:52:0a: 38:73:74:33:c5:48:84:1e:00:c8:be:59:1d:bf:21:67:f8:a2: f9:7b:d5:72:dc:2b:a4:cb:e1:fb:c2:0e:f9:e6:81:36:0e:c9: 2d:28:76:ed:27:e1:a4:a2:6b:37:a7:5f:51:20:b5:fc:1f:5e: 1e:34:d8:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeY4kV68advgBr05TAnq7prJ+VVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA2MjYwODU3MjNaFw0yNjA2MjUwOTAyMjNaMDMxMTAvBgNV BAMTKDRFNTFBODY5NjlDOTM0QUY3OEQ1RUI2MjlGQzg0MTk2NzMxMTUxQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQpjD9VssyPd0NdGakIpRhS0GB XIFB/VMV5xj8/8W41Wp+EgwimR602YLIdNPC/DoaukgysKTVlaDrZKbGI8MI80vL bbdlX1bIML9J9MY/t23PSqItYtP+0tUlyEBJEmgsXyCEhQyYy4ATvria6HuuwUXw akwNNOQujy3oEV3vX6i83COjYI+7sDUN7Epeybl54S7GI61vT75zGo+D1DvhrW9c OtNW7jGIQWnY3i4bYMZ7SOyKqlsCbJVOCrb6Zol+Rp4gyPzn5mwofa1t2j6xxWlP ffv8pWxerigfpWbJLmHDIdAwtwQWdpoi6fE8tsBHIiUnHbxhj3Fz7JQSrFmHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTlGoaWnJNK941etin8hBlnMRUbIwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0Y2M2OWU5LWVmNzQtNGI4MS05 MWY0LTdiZmRmOTNmN2JhYS8wLzMxMzAzMzJlMzEzNzM3MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsWswDQYJ KoZIhvcNAQELBQADggEBAC1XFH0IzsECCPG7FZC12+ou+FmDGs2gN/p+c44N86HL BtRhojZuZBY/I05BQfKE0X9sPGl8ruaVMlHbkRrvsI7BqY5QX+SbeFb8KMtc/Xum CtD1Mi/OehYmxdFizNU+qnJwWFOo6P2IG8wTl1d3cpY1Sc+kH3UzvizDkvx8rVXE xgSjaSMze5xWRQdQYNEhMbhCLW4gYngQNAFChX4vJEakHxGlL5cLIPAEyJgPgkKc 0pYPNvmMqoyIhi0+U1mGqjAP7nBSCjhzdDPFSIQeAMi+WR2/IWf4ovl71XLcK6TL 4fvCDvnmgTYOyS0odu0n4aSiazenX1EgtfwfXh402D0= -----END CERTIFICATE-----Generated at Mon Oct 20 19:01:26 2025 by rpki-client