$ rpki-client -vvf repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa File: 3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: lBYYjDI8kTfPX8dccHc0ZXaDpghO9Ch8f9L9h3YjbqY= Subject key identifier: 6B:6C:C3:35:69:3F:50:10:D4:A2:31:27:72:F5:BF:3B:26:AA:53:6E Certificate issuer: /CN=061065EDF2843A4462114BCE0A173E21A84A019E Certificate serial: 6CA77022BF982B1BDDC7B1A257A9BB7F746A11F3 Authority key identifier: 06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa Signing time: Thu 07 Aug 2025 04:00:00 +0000 ROA not before: Thu 07 Aug 2025 03:55:00 +0000 ROA not after: Thu 06 Aug 2026 04:00:00 +0000 asID: 139952 IP address blocks: 103.174.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a7:70:22:bf:98:2b:1b:dd:c7:b1:a2:57:a9:bb:7f:74:6a:11:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061065EDF2843A4462114BCE0A173E21A84A019E Validity Not Before: Aug 7 03:55:00 2025 GMT Not After : Aug 6 04:00:00 2026 GMT Subject: CN=6B6CC335693F5010D4A2312772F5BF3B26AA536E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c1:5f:ee:3a:a8:7c:fe:66:83:a7:93:f5:9b: 8b:53:cb:39:ce:fa:c0:a2:b1:6f:cc:7d:94:4a:54: 1a:f7:90:da:5b:96:56:e0:e5:77:e4:2b:c7:8a:15: 33:5f:57:2b:9c:4c:4a:7d:68:84:8e:ae:a9:1a:7b: c1:f2:4a:29:c0:9a:ed:a3:2b:29:77:d9:3d:d5:fc: e2:64:2b:a8:3d:c2:7f:95:c3:ba:95:8e:4d:28:ee: 29:bc:a7:45:00:7f:53:bc:cc:d9:07:39:6d:ab:cf: 85:e0:6f:e6:a1:0a:e8:71:9a:82:e4:6f:d9:86:4d: 6e:bc:64:d1:e5:c0:2f:ea:9e:7b:d9:9e:61:ea:27: a8:fb:a6:96:2f:ea:f1:7e:c1:eb:91:19:d6:fa:63: ea:d0:0a:ee:21:61:5e:a0:1d:22:d7:0f:5d:7a:c1: a0:f3:16:5b:61:2e:67:4b:36:17:9d:78:6d:b6:f9: 1f:7a:8f:66:ef:f6:b7:e2:2b:72:57:c2:67:3d:45: b0:bb:8e:0a:d3:f5:e7:99:f7:5e:37:3f:51:3c:af: e1:f8:07:8d:88:9c:52:cc:2c:20:dd:9b:53:98:4b: 36:af:d7:95:30:f7:75:8c:db:f8:3f:52:c3:64:ad: 3e:8d:eb:5a:e4:58:f5:d2:3e:91:43:70:ff:e6:d1: b9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6C:C3:35:69:3F:50:10:D4:A2:31:27:72:F5:BF:3B:26:AA:53:6E X509v3 Authority Key Identifier: keyid:06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.112.0/24 Signature Algorithm: sha256WithRSAEncryption c7:76:84:9f:c1:b2:3e:e0:bd:67:57:08:0b:4b:9c:24:98:18: 7a:5a:cf:43:05:ee:91:c4:6c:05:51:f7:c9:05:e8:e4:7c:ab: 75:77:bd:02:1b:c2:23:e4:f2:e7:fa:ab:72:4e:fd:08:68:73: 10:66:45:85:22:1d:e5:9e:40:ab:45:e1:36:0a:13:16:3c:37: ea:a3:3f:5d:ff:1d:da:de:44:fb:3c:87:15:03:a7:d4:bc:dd: a9:db:94:7c:ce:cb:61:7d:df:cf:a0:ec:44:01:4a:b7:85:d1: 42:0e:4b:e7:bd:10:0a:ce:15:c3:e9:85:b2:c7:0c:9e:74:b7: 64:1b:be:cc:13:2e:2e:0b:9f:d4:6a:b9:0c:38:69:57:16:28: 78:b2:30:43:76:97:26:26:2d:5a:0b:8d:57:ed:7f:96:72:e3: f2:4c:4f:b6:52:d1:1d:67:11:a5:c3:e5:33:d3:8f:81:bc:99: cc:e8:f8:2b:f3:0e:47:6d:39:ca:b4:02:25:99:22:d3:9f:c4: 44:4c:ee:52:d3:59:13:3a:e3:ae:f9:15:e8:6a:40:98:d5:93: be:39:7f:ab:ec:af:c7:17:f0:f9:2a:a8:d7:5c:ad:58:6d:8b: 3f:d4:2d:02:1d:4f:35:34:51:80:bd:c9:18:43:69:54:82:b1: 7f:91:b2:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbKdwIr+YKxvdx7GiV6m7f3RqEfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFB ODRBMDE5RTAeFw0yNTA4MDcwMzU1MDBaFw0yNjA4MDYwNDAwMDBaMDMxMTAvBgNV BAMTKDZCNkNDMzM1NjkzRjUwMTBENEEyMzEyNzcyRjVCRjNCMjZBQTUzNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHwV/uOqh8/maDp5P1m4tTyznO +sCisW/MfZRKVBr3kNpbllbg5XfkK8eKFTNfVyucTEp9aISOrqkae8HySinAmu2j Kyl32T3V/OJkK6g9wn+Vw7qVjk0o7im8p0UAf1O8zNkHOW2rz4Xgb+ahCuhxmoLk b9mGTW68ZNHlwC/qnnvZnmHqJ6j7ppYv6vF+weuRGdb6Y+rQCu4hYV6gHSLXD116 waDzFlthLmdLNhedeG22+R96j2bv9rfiK3JXwmc9RbC7jgrT9eeZ9143P1E8r+H4 B42InFLMLCDdm1OYSzav15Uw93WM2/g/UsNkrT6N61rkWPXSPpFDcP/m0bkPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa2zDNWk/UBDUojEncvW/OyaqU24wHwYDVR0j BBgwFoAUBhBl7fKEOkRiEUvOChc+IahKAZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzM2MjRjNC1iZmRjLTRlNDgtOGVhMC1lYjA1NjA1YzYyMTMvMC8wNjEwNjVFREYy ODQzQTQ0NjIxMTRCQ0UwQTE3M0UyMUE4NEEwMTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFBODRB MDE5RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzYyNGM0LWJmZGMtNGU0OC04 ZWEwLWViMDU2MDVjNjIxMy8wLzMxMzAzMzJlMzEzNzM0MmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnAwDQYJ KoZIhvcNAQELBQADggEBAMd2hJ/Bsj7gvWdXCAtLnCSYGHpaz0MF7pHEbAVR98kF 6OR8q3V3vQIbwiPk8uf6q3JO/QhocxBmRYUiHeWeQKtF4TYKExY8N+qjP13/Hdre RPs8hxUDp9S83anblHzOy2F938+g7EQBSreF0UIOS+e9EArOFcPphbLHDJ50t2Qb vswTLi4Ln9RquQw4aVcWKHiyMEN2lyYmLVoLjVftf5Zy4/JMT7ZS0R1nEaXD5TPT j4G8mczo+CvzDkdtOcq0AiWZItOfxERM7lLTWRM64675FehqQJjVk745f6vsr8cX 8PkqqNdcrVhtiz/ULQIdTzU0UYC9yRhDaVSCsX+Rsqk= -----END CERTIFICATE-----Generated at Sat Aug 23 18:36:57 2025 by rpki-client