$ rpki-client -vvf repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa File: 3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa (raw, json) Hash identifier: XIO/+nSZhKej3jMnOjZbsCNK4K1ZrGVSBexuH2tpC2E= Subject key identifier: 3F:68:FE:D0:40:6D:76:88:A3:7C:C1:86:7D:88:47:1B:77:D4:B1:18 Certificate issuer: /CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E Certificate serial: 03A3FDFEE2FA69E107B297895D420171669085DF Authority key identifier: D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa Signing time: Thu 10 Jul 2025 07:02:54 +0000 ROA not before: Thu 10 Jul 2025 06:57:54 +0000 ROA not after: Thu 09 Jul 2026 07:02:54 +0000 asID: 140465 IP address blocks: 103.35.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.crl rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a3:fd:fe:e2:fa:69:e1:07:b2:97:89:5d:42:01:71:66:90:85:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E Validity Not Before: Jul 10 06:57:54 2025 GMT Not After : Jul 9 07:02:54 2026 GMT Subject: CN=3F68FED0406D7688A37CC1867D88471B77D4B118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:1c:b3:ee:b1:9f:0a:4a:49:06:fc:b8:01: 7d:c7:1d:7a:70:a0:9b:ae:4d:bc:52:56:20:11:ca: 2c:a8:b3:b5:4b:cb:63:55:3b:d1:42:3f:d6:21:33: 4f:ee:fe:d8:41:d0:c6:6b:87:ec:6e:63:bc:73:35: ae:af:b1:34:97:16:1b:bc:eb:03:71:96:d4:01:2f: 1c:7e:2a:27:5d:b8:37:ce:e6:ea:0b:f4:d3:aa:fa: 0f:c7:a0:d1:04:25:0f:2d:94:fa:21:49:8c:08:08: e4:73:5b:aa:cf:78:1b:f6:8f:f3:a3:35:78:86:c0: a7:7f:67:8d:70:be:3d:f4:b0:c4:90:39:92:44:17: d0:fe:72:9c:e1:08:aa:c8:d1:4f:27:3c:5a:1e:9c: 06:01:c8:97:54:3b:9b:41:00:c0:da:e3:b7:1d:7e: 14:df:4f:17:f0:3c:95:5f:71:a0:bf:0f:bb:7b:b3: 5d:0f:56:82:48:a4:22:4b:97:f1:c2:08:d1:83:5a: 34:74:f5:b0:55:a9:42:5b:7d:6d:40:c1:e3:12:b1: d2:29:f2:e3:60:d9:06:be:61:a0:f4:d0:00:51:00: a7:9d:35:1b:55:e2:14:5f:52:ea:e7:37:dd:90:c5: e1:14:3d:c2:8f:50:b8:4a:4a:8c:33:55:0c:dc:d1: 8f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:68:FE:D0:40:6D:76:88:A3:7C:C1:86:7D:88:47:1B:77:D4:B1:18 X509v3 Authority Key Identifier: keyid:D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.35.154.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f4:e1:58:02:4b:d8:f4:a6:7d:34:a8:19:6d:67:31:0b:66: 9e:82:3d:95:42:67:27:df:07:cc:0e:d4:b0:d6:c4:c8:72:b8: 8a:ce:b5:7b:a1:8d:8f:c0:79:b0:39:60:c8:37:ce:fd:7a:36: d9:16:ca:ae:db:dc:b9:36:1f:5c:d5:9c:2a:d3:08:f5:61:ba: 52:b5:04:83:68:c1:9d:3c:6a:32:38:db:55:83:9c:7a:c7:97: ee:6e:a5:d3:9d:c9:7f:bf:82:fc:2e:d8:8d:f3:d9:98:55:68: fc:4f:c1:5d:65:c1:36:1b:a7:eb:55:86:dd:0c:c3:cc:29:bd: 91:73:fb:a7:e7:06:35:09:bb:5d:b8:37:d4:cc:82:bf:dc:b0: ca:17:bb:2a:75:13:65:df:79:3c:59:75:5a:6d:3c:cb:ed:58: 52:d0:e1:5b:c5:62:6b:92:a6:c1:0a:72:ce:8e:dd:df:75:8d: 91:aa:6f:8c:a3:53:c9:75:bc:e6:a2:92:e7:b2:43:10:cd:72: 1d:d1:93:7c:7e:62:97:7d:00:83:b1:41:e5:4a:48:f2:30:3f: 3b:9e:5e:74:0c:34:60:8f:9d:75:3d:e0:a3:7b:b8:a1:00:85: 3f:ec:38:cd:07:63:11:6f:63:8c:12:ae:0e:a3:b0:72:a7:29: 18:36:7c:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA6P9/uL6aeEHspeJXUIBcWaQhd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBEMUREOTIyNTMyMUUxRDREMUQyRjYzQTdFMDg4MEIz NUY2ODM3RTAeFw0yNTA3MTAwNjU3NTRaFw0yNjA3MDkwNzAyNTRaMDMxMTAvBgNV BAMTKDNGNjhGRUQwNDA2RDc2ODhBMzdDQzE4NjdEODg0NzFCNzdENEIxMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLBByz7rGfCkpJBvy4AX3HHXpw oJuuTbxSViARyiyos7VLy2NVO9FCP9YhM0/u/thB0MZrh+xuY7xzNa6vsTSXFhu8 6wNxltQBLxx+KidduDfO5uoL9NOq+g/HoNEEJQ8tlPohSYwICORzW6rPeBv2j/Oj NXiGwKd/Z41wvj30sMSQOZJEF9D+cpzhCKrI0U8nPFoenAYByJdUO5tBAMDa47cd fhTfTxfwPJVfcaC/D7t7s10PVoJIpCJLl/HCCNGDWjR09bBVqUJbfW1AweMSsdIp 8uNg2Qa+YaD00ABRAKedNRtV4hRfUurnN92QxeEUPcKPULhKSowzVQzc0Y9jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP2j+0EBtdoijfMGGfYhHG3fUsRgwHwYDVR0j BBgwFoAU0NHdkiUyHh1NHS9jp+CICzX2g34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjkzMjljZi0zMTIzLTRjZTAtYTY4Ny0wYTAzY2Q3NTg3MzgvMC9EMEQxREQ5MjI1 MzIxRTFENEQxRDJGNjNBN0UwODgwQjM1RjY4MzdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBEMUREOTIyNTMyMUUxRDREMUQyRjYzQTdFMDg4MEIzNUY2 ODM3RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyOTMyOWNmLTMxMjMtNGNlMC1h Njg3LTBhMDNjZDc1ODczOC8wLzMxMzAzMzJlMzMzNTJlMzEzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyOaMA0GCSqG SIb3DQEBCwUAA4IBAQBe9OFYAkvY9KZ9NKgZbWcxC2aegj2VQmcn3wfMDtSw1sTI criKzrV7oY2PwHmwOWDIN879ejbZFsqu29y5Nh9c1Zwq0wj1YbpStQSDaMGdPGoy ONtVg5x6x5fubqXTncl/v4L8LtiN89mYVWj8T8FdZcE2G6frVYbdDMPMKb2Rc/un 5wY1CbtduDfUzIK/3LDKF7sqdRNl33k8WXVabTzL7VhS0OFbxWJrkqbBCnLOjt3f dY2Rqm+Mo1PJdbzmopLnskMQzXId0ZN8fmKXfQCDsUHlSkjyMD87nl50DDRgj511 PeCje7ihAIU/7DjNB2MRb2OMEq4Oo7BypykYNnws -----END CERTIFICATE-----Generated at Sat Aug 23 23:53:29 2025 by rpki-client