$ rpki-client -vvf repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/3130332e36362e38362e302f32342d3234203d3e20313431313037.roa File: 3130332e36362e38362e302f32342d3234203d3e20313431313037.roa (raw, json) Hash identifier: HELC9mdQ84lzVVvguuZaZieGiyQ03u73Eihy4Pkp6bs= Subject key identifier: A9:B4:65:95:84:D6:81:FE:E8:C1:9A:F0:DC:25:0D:22:66:08:E5:6C Certificate issuer: /CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Certificate serial: 739291185F92EC64325014682AAEEB198054F5A1 Authority key identifier: CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/3130332e36362e38362e302f32342d3234203d3e20313431313037.roa Signing time: Sat 26 Jul 2025 13:00:02 +0000 ROA not before: Sat 26 Jul 2025 12:55:02 +0000 ROA not after: Sat 25 Jul 2026 13:00:02 +0000 asID: 141107 IP address blocks: 103.66.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 20:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:92:91:18:5f:92:ec:64:32:50:14:68:2a:ae:eb:19:80:54:f5:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Validity Not Before: Jul 26 12:55:02 2025 GMT Not After : Jul 25 13:00:02 2026 GMT Subject: CN=A9B4659584D681FEE8C19AF0DC250D226608E56C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:7a:4d:b3:1c:44:94:e3:5b:ea:bf:74:c6: bf:db:08:22:82:08:55:51:a0:b2:de:83:ba:53:79: f2:dd:22:f3:aa:a2:7c:0f:aa:40:95:28:a4:90:eb: 29:b9:6c:eb:68:13:a0:ce:3b:08:48:2c:2d:ba:d5: 71:6f:7a:44:f8:25:fc:48:92:c3:6b:da:57:5a:66: 84:18:0b:79:c2:14:e0:58:ee:01:60:72:e5:c5:9e: 25:32:4a:b9:69:19:12:cd:6e:90:11:08:30:ce:1b: a0:82:e4:a5:7e:63:f1:c9:92:39:0c:cb:dc:f1:ef: 83:b8:1f:f4:cb:02:e6:66:66:4c:87:bd:b9:3b:2e: 67:37:96:77:16:e0:05:e3:75:50:3c:80:59:d1:ef: 5a:26:6d:03:bd:12:85:40:63:27:43:67:9a:f9:a2: 8e:2a:ab:30:a1:52:6d:d8:6f:6d:b9:06:aa:7d:ca: de:a6:ec:7e:95:5d:d9:f5:c8:a8:e6:69:bf:93:55: 6a:15:a7:56:77:32:39:22:1c:2a:92:a9:d0:c5:54: bd:81:e0:71:2d:43:ce:f5:1e:b0:5a:04:2c:17:5e: 75:37:2c:ff:db:9b:f5:b8:2a:a4:4c:35:01:97:73: e9:04:89:9c:a5:25:40:2d:57:24:8c:48:50:38:1b: 23:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B4:65:95:84:D6:81:FE:E8:C1:9A:F0:DC:25:0D:22:66:08:E5:6C X509v3 Authority Key Identifier: keyid:CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/3130332e36362e38362e302f32342d3234203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.86.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:38:ca:49:0a:e8:89:ea:b4:ab:3e:7f:93:be:e6:b9:49:01: 44:11:c1:b0:6c:c7:f4:38:22:e9:35:5f:1b:11:21:4f:32:ac: 77:a4:2f:77:86:d5:10:bb:12:cb:89:77:76:a7:59:86:eb:6c: c5:f1:27:a8:09:22:e7:01:ba:cb:01:48:7e:a6:0b:a6:d9:5d: 09:9d:74:2b:6c:62:83:08:a5:57:7d:ba:bc:4e:a1:f0:a8:37: 4e:c2:24:0d:e9:fb:ae:63:8f:0f:33:ca:0a:95:e9:22:a0:84: d2:1a:92:30:9e:2b:66:65:e0:70:c0:78:41:03:99:66:cf:9b: f2:84:20:4f:cd:51:34:cc:0d:f3:62:5e:89:2a:a9:50:76:3c: 4f:5f:9d:af:43:4b:be:71:09:41:2e:28:ea:82:ee:e9:5d:c3: 66:15:d7:1b:73:70:5d:4d:64:67:f0:a5:57:6c:44:62:b8:85: b1:f7:69:24:5d:c4:a4:ab:33:f5:3c:3f:00:80:65:09:56:9c: 99:f2:6f:ee:6a:db:ee:bc:49:2f:8b:dc:71:24:f2:96:75:1a: 31:46:a1:70:b6:a2:51:22:c8:d5:d9:72:5a:9d:c2:aa:85:65: 02:3b:e6:85:f5:50:0e:95:f8:c2:4f:8a:83:54:6f:28:53:22: f1:75:53:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc5KRGF+S7GQyUBRoKq7rGYBU9aEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzcz MjE0MDk5QjAeFw0yNTA3MjYxMjU1MDJaFw0yNjA3MjUxMzAwMDJaMDMxMTAvBgNV BAMTKEE5QjQ2NTk1ODRENjgxRkVFOEMxOUFGMERDMjUwRDIyNjYwOEU1NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrD3pNsxxElONb6r90xr/bCCKC CFVRoLLeg7pTefLdIvOqonwPqkCVKKSQ6ym5bOtoE6DOOwhILC261XFvekT4JfxI ksNr2ldaZoQYC3nCFOBY7gFgcuXFniUySrlpGRLNbpARCDDOG6CC5KV+Y/HJkjkM y9zx74O4H/TLAuZmZkyHvbk7Lmc3lncW4AXjdVA8gFnR71ombQO9EoVAYydDZ5r5 oo4qqzChUm3Yb225Bqp9yt6m7H6VXdn1yKjmab+TVWoVp1Z3MjkiHCqSqdDFVL2B 4HEtQ871HrBaBCwXXnU3LP/bm/W4KqRMNQGXc+kEiZylJUAtVySMSFA4GyP1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqbRllYTWgf7owZrw3CUNImYI5WwwHwYDVR0j BBgwFoAUykHd41kdz4m70VvJbgW9xzIUCZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmNjMmQ0NC05NDE4LTQwMTMtOTcyMy1hOTc4ZjhiZDhiNmIvMC9DQTQxRERFMzU5 MURDRjg5QkJEMTVCQzk2RTA1QkRDNzMyMTQwOTlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzczMjE0 MDk5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmY2MyZDQ0LTk0MTgtNDAxMy05 NzIzLWE5NzhmOGJkOGI2Yi8wLzMxMzAzMzJlMzYzNjJlMzgzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTMxMzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCVjANBgkqhkiG 9w0BAQsFAAOCAQEAGzjKSQroieq0qz5/k77muUkBRBHBsGzH9Dgi6TVfGxEhTzKs d6Qvd4bVELsSy4l3dqdZhutsxfEnqAki5wG6ywFIfqYLptldCZ10K2xigwilV326 vE6h8Kg3TsIkDen7rmOPDzPKCpXpIqCE0hqSMJ4rZmXgcMB4QQOZZs+b8oQgT81R NMwN82JeiSqpUHY8T1+dr0NLvnEJQS4o6oLu6V3DZhXXG3NwXU1kZ/ClV2xEYriF sfdpJF3EpKsz9Tw/AIBlCVacmfJv7mrb7rxJL4vccSTylnUaMUahcLaiUSLI1dly Wp3CqoVlAjvmhfVQDpX4wk+Kg1RvKFMi8XVThA== -----END CERTIFICATE-----Generated at Sat Aug 23 15:54:06 2025 by rpki-client