$ rpki-client -vvf repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa File: 3130332e33392e36382e302f32332d3233203d3e20313530323730.roa (raw, json) Hash identifier: fXiiGXJRCPKNViYWqCFLLjVfmQD8H4I+YjRRxMPnTUk= Subject key identifier: 6C:4E:C4:42:3F:E5:78:8E:F0:01:CB:C5:7D:0C:1C:0B:EF:3C:B3:CD Certificate issuer: /CN=75890247E178C40DD3F9A5968202F684AEB89D9A Certificate serial: 0984B7E0E8E010A63FC6B2E35F29FE53F29A90DB Authority key identifier: 75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa Signing time: Fri 22 Aug 2025 05:00:55 +0000 ROA not before: Fri 22 Aug 2025 04:55:55 +0000 ROA not after: Fri 21 Aug 2026 05:00:55 +0000 asID: 150270 IP address blocks: 103.39.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:84:b7:e0:e8:e0:10:a6:3f:c6:b2:e3:5f:29:fe:53:f2:9a:90:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75890247E178C40DD3F9A5968202F684AEB89D9A Validity Not Before: Aug 22 04:55:55 2025 GMT Not After : Aug 21 05:00:55 2026 GMT Subject: CN=6C4EC4423FE5788EF001CBC57D0C1C0BEF3CB3CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:db:5a:27:1e:e4:48:03:8a:a2:39:77:0f: b5:3f:2b:a2:a0:8f:df:0b:34:e2:24:55:23:5d:33: 12:1a:3f:fd:ac:06:33:85:0d:89:58:4e:84:29:4e: ae:a7:78:4a:9b:f7:a6:ec:5a:3c:78:86:22:e2:21: 49:94:a3:a6:57:72:cc:33:aa:b7:2d:c7:39:26:23: c7:23:8c:b9:04:c5:9b:81:86:8f:d7:c9:dc:09:a3: 41:b6:a1:29:f7:de:a5:45:94:09:69:79:46:6d:0b: a6:90:2f:d6:05:6b:f6:76:c7:2e:90:ab:46:cd:64: 50:42:18:91:a1:ef:c5:e0:72:7e:1a:0f:7e:15:86: a1:1c:44:75:00:1b:08:46:dd:e0:77:f4:49:09:6c: ee:d4:56:32:28:0a:e1:49:ac:d8:12:57:62:0c:fc: 4c:f8:1a:c8:61:81:ee:a5:1b:ea:cb:03:c3:6e:4f: 59:ce:9c:e4:9e:db:3d:ba:9d:e8:25:d0:f6:99:55: 6f:e8:19:e5:34:4b:3a:e7:f5:20:6a:7c:15:b8:45: 93:c0:e1:42:55:d3:09:5a:13:63:64:b9:4e:f2:5d: 08:6a:04:e3:27:91:0b:42:6d:c8:3e:8e:ac:cf:54: fd:40:49:9b:88:8b:e0:f5:50:50:a6:17:8f:41:3b: 77:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4E:C4:42:3F:E5:78:8E:F0:01:CB:C5:7D:0C:1C:0B:EF:3C:B3:CD X509v3 Authority Key Identifier: keyid:75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.68.0/23 Signature Algorithm: sha256WithRSAEncryption 30:92:6c:22:b3:6d:e7:48:d9:ed:23:d2:3e:86:f2:f3:da:71: 7d:25:b2:5c:7f:2f:e2:31:83:69:f8:11:b7:9f:08:43:81:e8: 16:e6:60:42:cc:7e:db:6a:1f:09:38:89:fc:64:41:12:20:8a: 00:86:51:53:07:24:35:54:e8:5f:ba:ad:7d:c5:c8:9a:b7:38: 94:16:b0:43:c4:54:c7:46:bf:10:3f:6d:cd:ab:9e:9f:61:22: 13:f1:b1:15:7f:26:47:0c:5c:29:7d:d5:c1:7b:d6:c8:73:03: 1b:e3:a0:9e:0e:65:cc:dd:b8:6d:c6:db:26:63:6b:bc:1e:be: d5:2b:ed:c1:fb:05:a0:a4:a0:99:18:49:21:70:54:1a:94:60: ab:15:26:c6:96:ce:cf:9b:0f:d7:f0:16:5b:ce:cf:d2:52:52: 97:b7:af:e1:fe:1c:c0:f4:9f:8e:34:a0:cd:5f:62:93:59:d8: 28:b0:8b:01:b4:36:7a:ca:d8:96:a5:19:98:89:91:cb:55:6b: 3c:e5:27:57:c8:82:3b:06:4f:40:77:8d:09:ee:6f:4f:ae:03: 25:e1:dd:7e:0f:f1:30:d1:10:29:fe:2f:3e:48:8a:6c:2e:5e: 5f:84:ef:50:d7:0a:fa:7b:c2:74:14:1c:91:31:79:07:5c:6a: 6a:7e:23:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCYS34OjgEKY/xrLjXyn+U/KakNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRB RUI4OUQ5QTAeFw0yNTA4MjIwNDU1NTVaFw0yNjA4MjEwNTAwNTVaMDMxMTAvBgNV BAMTKDZDNEVDNDQyM0ZFNTc4OEVGMDAxQ0JDNTdEMEMxQzBCRUYzQ0IzQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKzttaJx7kSAOKojl3D7U/K6Kg j98LNOIkVSNdMxIaP/2sBjOFDYlYToQpTq6neEqb96bsWjx4hiLiIUmUo6ZXcswz qrctxzkmI8cjjLkExZuBho/XydwJo0G2oSn33qVFlAlpeUZtC6aQL9YFa/Z2xy6Q q0bNZFBCGJGh78Xgcn4aD34VhqEcRHUAGwhG3eB39EkJbO7UVjIoCuFJrNgSV2IM /Ez4Gshhge6lG+rLA8NuT1nOnOSe2z26negl0PaZVW/oGeU0Szrn9SBqfBW4RZPA 4UJV0wlaE2NkuU7yXQhqBOMnkQtCbcg+jqzPVP1ASZuIi+D1UFCmF49BO3cPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbE7EQj/leI7wAcvFfQwcC+88s80wHwYDVR0j BBgwFoAUdYkCR+F4xA3T+aWWggL2hK64nZowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjI2YmU3Yi0yZTI4LTQ5NTAtYWE0Yy0yMTg1ZTY0N2RiM2YvMC83NTg5MDI0N0Ux NzhDNDBERDNGOUE1OTY4MjAyRjY4NEFFQjg5RDlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRBRUI4 OUQ5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMjZiZTdiLTJlMjgtNDk1MC1h YTRjLTIxODVlNjQ3ZGIzZi8wLzMxMzAzMzJlMzMzOTJlMzYzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDMyMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcnRDANBgkqhkiG 9w0BAQsFAAOCAQEAMJJsIrNt50jZ7SPSPoby89pxfSWyXH8v4jGDafgRt58IQ4Ho FuZgQsx+22ofCTiJ/GRBEiCKAIZRUwckNVToX7qtfcXImrc4lBawQ8RUx0a/ED9t zauen2EiE/GxFX8mRwxcKX3VwXvWyHMDG+Ogng5lzN24bcbbJmNrvB6+1SvtwfsF oKSgmRhJIXBUGpRgqxUmxpbOz5sP1/AWW87P0lJSl7ev4f4cwPSfjjSgzV9ik1nY KLCLAbQ2esrYlqUZmImRy1VrPOUnV8iCOwZPQHeNCe5vT64DJeHdfg/xMNEQKf4v PkiKbC5eX4TvUNcK+nvCdBQckTF5B1xqan4jfg== -----END CERTIFICATE-----Generated at Sat Aug 23 13:37:55 2025 by rpki-client