$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa File: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (raw, json) Hash identifier: r9QPk/LpoJs29sx2oR7f3Ru6EP7Ni5LmyXyyS4T2T/Q= Subject key identifier: 31:00:23:17:A8:42:D6:41:72:32:D6:1F:84:AC:23:3B:7E:9D:CD:F3 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 36CF3B42E271E2A65FBF3B4A8F205DC123CE079E Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa Signing time: Thu 21 Aug 2025 09:01:12 +0000 ROA not before: Thu 21 Aug 2025 08:56:12 +0000 ROA not after: Thu 20 Aug 2026 09:01:12 +0000 asID: 58503 IP address blocks: 103.6.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:cf:3b:42:e2:71:e2:a6:5f:bf:3b:4a:8f:20:5d:c1:23:ce:07:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 21 08:56:12 2025 GMT Not After : Aug 20 09:01:12 2026 GMT Subject: CN=31002317A842D6417232D61F84AC233B7E9DCDF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d8:f9:b0:d0:49:90:24:0a:46:04:01:bf:39: 1a:fe:7e:1d:3d:07:8d:f2:30:ec:6d:51:74:f4:3e: e6:b5:23:40:0a:e7:fa:6f:a1:0c:c4:cd:ca:a1:ed: 62:47:48:e7:44:79:97:de:d9:a3:23:33:3e:37:ba: 5a:95:54:03:12:62:39:e6:40:5e:26:4d:d0:5e:f9: eb:57:84:4f:6e:34:fe:86:5e:2f:15:9a:38:6c:be: b1:ae:5e:fc:9c:06:cd:8f:9a:75:f6:11:b6:dc:e1: 3e:6d:44:b5:69:93:bb:95:a0:ef:1f:6c:17:19:5d: e2:20:74:77:7f:f0:85:3f:6a:d5:2c:5d:06:80:47: cb:24:1a:4f:66:40:11:7e:8d:4c:9a:c0:04:12:9b: 96:a2:3a:c4:d1:87:f6:31:b9:8f:50:ef:2c:2c:6a: cc:aa:1c:46:00:e3:06:3b:e2:10:1f:7a:52:b1:ec: 86:81:c3:07:5e:d5:80:ee:a2:c4:a8:58:d4:14:42: b0:67:66:83:02:a6:11:48:cb:83:7f:8d:33:b7:e0: 67:a1:43:6a:53:32:3a:1f:e0:ab:a8:8b:05:ce:0e: 62:52:24:55:0d:60:b6:67:9f:c2:73:05:b5:f2:e6: 3f:3f:e4:bc:6a:e1:84:fd:e7:6d:60:b0:f5:b0:8d: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:00:23:17:A8:42:D6:41:72:32:D6:1F:84:AC:23:3B:7E:9D:CD:F3 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:be:ca:3c:6f:c0:12:2d:8b:e6:ca:45:26:aa:ef:85:96:ba: c0:1b:b6:8e:e3:3c:09:87:93:1f:3c:29:70:07:eb:ff:ef:ae: b6:0c:c1:c7:ac:f8:c5:52:7f:c5:25:ca:7c:18:6a:09:4e:f4: 0a:b7:27:85:b4:61:73:97:4f:20:a6:c4:af:66:45:e9:cd:c9: 61:da:62:18:95:4c:b3:f5:91:bb:74:34:e9:96:06:07:a6:c8: 15:0a:ac:8d:b2:26:1a:39:47:bf:8a:70:1e:7f:33:a9:23:db: 12:68:10:39:90:d3:3b:0b:62:93:b1:0b:31:8b:a6:4e:c3:3c: 33:41:f7:b6:ce:fa:52:a0:58:22:df:25:87:34:12:3c:a0:94: a1:ff:d7:e4:e5:b2:43:2a:a5:90:31:14:66:dc:14:ad:e6:7b: 61:05:65:af:e3:6c:4b:69:da:41:bc:08:10:75:36:bd:1a:d9: 93:be:e0:71:ec:36:d7:6f:ca:29:74:a1:40:3e:dd:15:cb:5b: ba:c7:a6:0c:e7:1e:3d:fe:a5:28:8a:85:ac:bf:37:59:de:8b: 9d:87:4b:8f:29:2c:09:83:93:29:87:64:92:83:34:d3:22:12: 3b:d8:57:32:82:04:35:50:dc:a3:fd:f8:fe:35:de:da:40:9f: 4c:c8:92:73 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNs87QuJx4qZfvztKjyBdwSPOB54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MjEwODU2MTJaFw0yNjA4MjAwOTAxMTJaMDMxMTAvBgNV BAMTKDMxMDAyMzE3QTg0MkQ2NDE3MjMyRDYxRjg0QUMyMzNCN0U5RENERjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa2Pmw0EmQJApGBAG/ORr+fh09 B43yMOxtUXT0Pua1I0AK5/pvoQzEzcqh7WJHSOdEeZfe2aMjMz43ulqVVAMSYjnm QF4mTdBe+etXhE9uNP6GXi8VmjhsvrGuXvycBs2PmnX2Ebbc4T5tRLVpk7uVoO8f bBcZXeIgdHd/8IU/atUsXQaAR8skGk9mQBF+jUyawAQSm5aiOsTRh/YxuY9Q7yws asyqHEYA4wY74hAfelKx7IaBwwde1YDuosSoWNQUQrBnZoMCphFIy4N/jTO34Geh Q2pTMjof4KuoiwXODmJSJFUNYLZnn8JzBbXy5j8/5Lxq4YT9521gsPWwjczTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMQAjF6hC1kFyMtYfhKwjO36dzfMwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBswwDQYJKoZIhvcN AQELBQADggEBAFy+yjxvwBIti+bKRSaq74WWusAbto7jPAmHkx88KXAH6//vrrYM wces+MVSf8UlynwYaglO9Aq3J4W0YXOXTyCmxK9mRenNyWHaYhiVTLP1kbt0NOmW BgemyBUKrI2yJho5R7+KcB5/M6kj2xJoEDmQ0zsLYpOxCzGLpk7DPDNB97bO+lKg WCLfJYc0EjyglKH/1+TlskMqpZAxFGbcFK3me2EFZa/jbEtp2kG8CBB1Nr0a2ZO+ 4HHsNtdvyil0oUA+3RXLW7rHpgznHj3+pSiKhay/N1nei52HS48pLAmDkymHZJKD NNMiEjvYVzKCBDVQ3KP9+P413tpAn0zIknM= -----END CERTIFICATE-----Generated at Sat Aug 23 15:43:09 2025 by rpki-client