$ rpki-client -vvf repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137382e302f32342d3234203d3e20313431353932.roa File: 3130332e3136302e3137382e302f32342d3234203d3e20313431353932.roa (raw, json) Hash identifier: 070ri83xExMdKtEdfjzfBz11cSdoZunm6w/qFgRzS8c= Subject key identifier: 0F:F4:85:DA:A4:8D:06:A4:DB:04:A6:D7:9B:BA:10:0B:94:12:23:7C Certificate issuer: /CN=032056FFABA06741112BA404900B315C87E35361 Certificate serial: 27AF70061A66FBDBA8654DD44346435C68774BCE Authority key identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137382e302f32342d3234203d3e20313431353932.roa Signing time: Thu 21 Aug 2025 11:02:26 +0000 ROA not before: Thu 21 Aug 2025 10:57:26 +0000 ROA not after: Thu 20 Aug 2026 11:02:26 +0000 asID: 141592 IP address blocks: 103.160.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:af:70:06:1a:66:fb:db:a8:65:4d:d4:43:46:43:5c:68:77:4b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032056FFABA06741112BA404900B315C87E35361 Validity Not Before: Aug 21 10:57:26 2025 GMT Not After : Aug 20 11:02:26 2026 GMT Subject: CN=0FF485DAA48D06A4DB04A6D79BBA100B9412237C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:f8:b1:8d:2d:e3:40:89:41:f9:1e:d9:fa: ef:b5:04:4d:71:57:38:f0:a8:b0:93:5e:f3:85:91: 20:48:e0:32:d4:49:78:9a:82:b6:e0:49:a0:8b:65: c5:ad:cb:40:01:31:73:38:b2:26:3c:fc:10:61:7a: 64:e7:ae:cf:00:05:9f:b9:bc:ef:e5:a2:01:85:0b: e0:39:83:93:99:6a:de:db:51:ae:38:0d:54:b3:2f: 1a:85:30:eb:47:20:a8:9a:ff:ae:98:74:7f:6e:15: 86:50:6d:2b:33:0d:46:eb:11:c5:9d:67:04:f1:29: dd:30:2e:51:37:7c:b3:17:b8:9e:32:dc:54:b7:d1: df:64:29:a6:69:4b:30:47:53:c7:2b:f3:de:42:ec: bf:a5:b1:c3:80:39:4f:79:d9:a7:da:29:5c:76:d3: 76:55:f0:bb:e8:70:bc:03:f8:e2:85:8d:5c:2b:c3: 3b:08:08:af:cf:e0:85:10:b3:77:9d:3b:81:5e:ee: 96:c8:cc:2a:1e:5f:be:db:69:b5:e0:18:96:64:86: bf:a9:4b:2a:82:6c:2e:10:13:10:31:0c:c6:3f:84: 4f:44:4f:fe:a4:a0:c3:0c:4c:d4:4e:b7:ba:5d:f4: 18:82:ae:c1:80:2e:28:22:ac:3c:f4:07:26:de:52: 6d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F4:85:DA:A4:8D:06:A4:DB:04:A6:D7:9B:BA:10:0B:94:12:23:7C X509v3 Authority Key Identifier: keyid:03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/3130332e3136302e3137382e302f32342d3234203d3e20313431353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.178.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ad:3c:8e:3a:af:49:2b:68:ae:b4:05:77:d2:7a:f2:be:54: 74:41:4f:59:90:c3:a6:62:a7:97:e0:bb:ea:ce:20:4c:19:b9: 31:82:48:ea:b6:a2:56:06:d4:c6:01:ec:85:e5:71:5c:04:ef: 2b:c3:c1:9f:a0:14:c8:93:0b:eb:b5:04:69:59:3a:a2:6f:13: 8b:ca:6d:08:e8:0b:82:f1:23:c0:0d:ea:85:e0:a0:81:5c:cd: 29:9f:51:97:fd:cf:e3:4a:cb:7e:0e:4a:32:98:cc:6d:d9:a3: 03:49:9e:1d:5f:c8:df:80:ae:0e:1a:f7:78:60:b4:17:a9:59: 16:7a:20:53:d7:74:22:7a:4c:5d:0f:60:a4:11:c3:db:1c:10: c4:0d:1c:5b:a3:69:e5:04:37:ab:10:88:a6:f8:9e:3b:94:d1: 2e:cf:10:02:d0:3f:d8:65:af:ed:44:7a:85:03:c8:70:e7:5e: 7c:d2:90:ad:52:25:67:53:0a:92:aa:a8:6d:d4:7e:8c:e6:2a: ce:70:73:a3:0f:b4:d2:07:97:47:13:2a:e0:e1:5b:fa:30:7c: 05:f4:4a:91:16:58:0e:67:aa:a6:b0:17:74:66:a9:7d:bd:fe: eb:00:f3:31:d0:cb:b5:55:fa:fc:fd:99:61:e3:8d:69:fa:2a: 05:58:37:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ69wBhpm+9uoZU3UQ0ZDXGh3S84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4 N0UzNTM2MTAeFw0yNTA4MjExMDU3MjZaFw0yNjA4MjAxMTAyMjZaMDMxMTAvBgNV BAMTKDBGRjQ4NURBQTQ4RDA2QTREQjA0QTZENzlCQkExMDBCOTQxMjIzN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtV/ixjS3jQIlB+R7Z+u+1BE1x VzjwqLCTXvOFkSBI4DLUSXiagrbgSaCLZcWty0ABMXM4siY8/BBhemTnrs8ABZ+5 vO/logGFC+A5g5OZat7bUa44DVSzLxqFMOtHIKia/66YdH9uFYZQbSszDUbrEcWd ZwTxKd0wLlE3fLMXuJ4y3FS30d9kKaZpSzBHU8cr895C7L+lscOAOU952afaKVx2 03ZV8LvocLwD+OKFjVwrwzsICK/P4IUQs3edO4Fe7pbIzCoeX77babXgGJZkhr+p SyqCbC4QExAxDMY/hE9ET/6koMMMTNROt7pd9BiCrsGALigirDz0BybeUm2ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUD/SF2qSNBqTbBKbXm7oQC5QSI3wwHwYDVR0j BBgwFoAUAyBW/6ugZ0ERK6QEkAsxXIfjU2EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE4MjBiNC04MmVmLTQ0MTItYmUyZS01ZDY5MTRiZDQ4NDQvMC8wMzIwNTZGRkFC QTA2NzQxMTEyQkE0MDQ5MDBCMzE1Qzg3RTM1MzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMDU2RkZBQkEwNjc0MTExMkJBNDA0OTAwQjMxNUM4N0Uz NTM2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTgyMGI0LTgyZWYtNDQxMi1i ZTJlLTVkNjkxNGJkNDg0NC8wLzMxMzAzMzJlMzEzNjMwMmUzMTM3MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLIwDQYJ KoZIhvcNAQELBQADggEBACCtPI46r0kraK60BXfSevK+VHRBT1mQw6Zip5fgu+rO IEwZuTGCSOq2olYG1MYB7IXlcVwE7yvDwZ+gFMiTC+u1BGlZOqJvE4vKbQjoC4Lx I8AN6oXgoIFczSmfUZf9z+NKy34OSjKYzG3ZowNJnh1fyN+Arg4a93hgtBepWRZ6 IFPXdCJ6TF0PYKQRw9scEMQNHFujaeUEN6sQiKb4njuU0S7PEALQP9hlr+1EeoUD yHDnXnzSkK1SJWdTCpKqqG3UfozmKs5wc6MPtNIHl0cTKuDhW/owfAX0SpEWWA5n qqawF3RmqX29/usA8zHQy7VV+vz9mWHjjWn6KgVYN44= -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:40 2025 by rpki-client