$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa File: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (raw, json) Hash identifier: eKQ/v97Slfm6pdQvkBAo8Onj1CnRgWhKWbT8e4WqBcc= Subject key identifier: 24:58:13:21:F4:85:96:4C:0F:F1:B1:7C:1C:9D:FC:E5:5B:72:E2:08 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 5505213086366EA76FDF4FD941AF3D180EA0CFCD Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa Signing time: Thu 21 Aug 2025 11:00:02 +0000 ROA not before: Thu 21 Aug 2025 10:55:02 +0000 ROA not after: Thu 20 Aug 2026 11:00:02 +0000 asID: 58503 IP address blocks: 103.6.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:05:21:30:86:36:6e:a7:6f:df:4f:d9:41:af:3d:18:0e:a0:cf:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 21 10:55:02 2025 GMT Not After : Aug 20 11:00:02 2026 GMT Subject: CN=24581321F485964C0FF1B17C1C9DFCE55B72E208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:79:5a:ac:e7:7d:59:ae:33:04:c9:03:11: cc:bd:06:ee:8c:00:1f:65:4c:b3:15:0a:05:6e:2a: bb:fc:2b:50:54:8d:91:0b:ba:e5:d3:45:74:03:d5: 43:ef:c9:58:b8:44:10:5a:35:f5:1b:d6:99:be:92: 7f:55:04:8a:10:79:95:76:42:0b:8f:5b:97:63:af: 96:97:75:d3:7a:9a:b8:c0:a7:28:31:65:6f:c7:0c: db:bc:5c:2d:05:f2:90:d0:04:97:48:17:a8:45:78: b1:fa:88:70:a9:24:fd:d3:72:d5:2c:d8:a3:95:7c: db:bb:98:7e:d3:ad:8a:96:a5:dc:b2:4e:eb:a1:3c: 3b:7a:b0:02:0c:a2:2d:50:a2:1d:66:5c:dd:b7:75: 81:c8:83:c4:70:99:f1:7a:12:ad:7f:bb:cf:4e:70: b2:bd:ab:42:a2:ce:6a:03:34:92:8f:8f:10:7a:ac: 82:06:5b:dd:a4:44:d1:53:1a:f0:30:64:35:f7:72: 43:2f:b7:0e:80:f5:ae:d8:c7:c7:97:2d:66:d8:ea: 32:dd:70:64:a3:f9:c3:e0:9c:7b:79:1b:d8:2f:61: 0d:e2:1a:8a:fc:14:0b:94:cf:d7:3a:76:10:40:cf: 1a:42:e4:a9:4f:e7:9d:95:f5:bf:e7:cb:4c:54:e8: e2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:58:13:21:F4:85:96:4C:0F:F1:B1:7C:1C:9D:FC:E5:5B:72:E2:08 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/22 Signature Algorithm: sha256WithRSAEncryption b5:43:9f:4c:4d:de:05:84:ed:ae:0f:ee:53:39:72:ff:7e:aa: e2:c6:29:42:2c:9a:93:8c:8f:06:77:e9:be:24:87:8f:b2:8f: 61:f1:1c:45:ff:48:83:e8:34:2c:23:b8:9a:82:78:ae:2a:83: 4f:cd:cb:07:70:15:c5:44:ea:18:e6:99:cb:22:91:a0:76:56: dc:cc:05:4e:7e:ea:4c:24:a2:31:50:06:a8:af:73:e5:b6:90: fb:26:47:ec:00:12:ed:25:5a:69:49:95:f6:21:79:49:6a:28: 1e:e6:37:24:72:6a:34:23:15:05:5b:cb:4f:39:4e:83:d1:1d: 08:62:61:d4:09:51:a7:64:37:73:2a:56:ac:61:ed:c8:9d:6a: ab:08:cc:3e:f0:c5:17:e1:ba:48:8f:c4:95:25:ea:54:46:11: ff:a8:08:d3:43:31:56:95:c8:c3:14:15:3d:0c:90:67:50:41: d8:e1:ad:00:41:b0:d7:b0:e7:f1:96:ac:73:1d:e8:18:a6:2c: 73:d8:a0:4d:50:c4:dd:3a:bc:e7:46:ce:2c:96:dd:dd:49:be: 19:21:ad:4c:a8:98:e2:c2:72:eb:b3:f3:dd:a1:90:99:0c:f9: 62:55:aa:ec:79:ab:0e:cd:17:f2:5c:13:89:d0:0f:51:31:7b: be:fa:91:37 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVQUhMIY2bqdv30/ZQa89GA6gz80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MjExMDU1MDJaFw0yNjA4MjAxMTAwMDJaMDMxMTAvBgNV BAMTKDI0NTgxMzIxRjQ4NTk2NEMwRkYxQjE3QzFDOURGQ0U1NUI3MkUyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwXXlarOd9Wa4zBMkDEcy9Bu6M AB9lTLMVCgVuKrv8K1BUjZELuuXTRXQD1UPvyVi4RBBaNfUb1pm+kn9VBIoQeZV2 QguPW5djr5aXddN6mrjApygxZW/HDNu8XC0F8pDQBJdIF6hFeLH6iHCpJP3TctUs 2KOVfNu7mH7TrYqWpdyyTuuhPDt6sAIMoi1Qoh1mXN23dYHIg8RwmfF6Eq1/u89O cLK9q0KizmoDNJKPjxB6rIIGW92kRNFTGvAwZDX3ckMvtw6A9a7Yx8eXLWbY6jLd cGSj+cPgnHt5G9gvYQ3iGor8FAuUz9c6dhBAzxpC5KlP552V9b/ny0xU6OLbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJFgTIfSFlkwP8bF8HJ385Vty4ggwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnBswwDQYJKoZIhvcN AQELBQADggEBALVDn0xN3gWE7a4P7lM5cv9+quLGKUIsmpOMjwZ36b4kh4+yj2Hx HEX/SIPoNCwjuJqCeK4qg0/NywdwFcVE6hjmmcsikaB2VtzMBU5+6kwkojFQBqiv c+W2kPsmR+wAEu0lWmlJlfYheUlqKB7mNyRyajQjFQVby085ToPRHQhiYdQJUadk N3MqVqxh7cidaqsIzD7wxRfhukiPxJUl6lRGEf+oCNNDMVaVyMMUFT0MkGdQQdjh rQBBsNew5/GWrHMd6BimLHPYoE1QxN06vOdGziyW3d1JvhkhrUyomOLCcuuz892h kJkM+WJVqux5qw7NF/JcE4nQD1Exe776kTc= -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:12 2025 by rpki-client