$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa File: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (raw, json) Hash identifier: +R3i1yikLZX3N7J8PecP2cVBYYEEV31MZ2NuNFEDBz0= Subject key identifier: F1:B2:10:A0:D1:F3:49:2B:4A:57:1A:48:18:ED:0C:FE:1E:66:C4:34 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 0562C08B9FF6F0469DCE5CDB74B18C6A5049A703 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa Signing time: Thu 21 Aug 2025 09:01:12 +0000 ROA not before: Thu 21 Aug 2025 08:56:12 +0000 ROA not after: Thu 20 Aug 2026 09:01:12 +0000 asID: 58503 IP address blocks: 103.6.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 18:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:62:c0:8b:9f:f6:f0:46:9d:ce:5c:db:74:b1:8c:6a:50:49:a7:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 21 08:56:12 2025 GMT Not After : Aug 20 09:01:12 2026 GMT Subject: CN=F1B210A0D1F3492B4A571A4818ED0CFE1E66C434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:48:33:02:f4:9b:49:74:02:0f:a6:4f:77:82: 0f:f8:67:94:9b:6d:c4:02:2d:96:71:3d:0c:64:c3: c2:c1:6b:3f:78:25:52:f8:d8:fe:1f:60:0e:8d:26: 25:76:c8:b9:3f:d8:06:da:9a:0e:11:41:5b:c5:a0: 05:f9:f6:7e:a1:21:6e:37:21:54:3c:2d:aa:22:21: 0b:1c:23:37:5f:bf:8d:9b:87:ab:5f:34:c5:51:44: 93:6d:f0:10:84:a3:2e:5f:a5:58:fd:fb:c1:c4:a3: 93:f5:74:4a:e8:49:ff:69:a9:70:04:fa:21:9b:bf: 7e:6b:44:89:07:89:cb:c1:0e:45:3a:46:0c:13:6b: ee:4c:cf:7c:39:9e:e5:fb:3a:fc:71:9e:e4:0e:fb: a4:e7:e8:21:80:a9:85:7e:4f:9b:80:e4:b9:c9:4e: ff:48:56:f6:ee:07:40:08:f0:00:15:ae:0f:26:01: f6:8f:8a:ed:f3:43:83:a7:b0:2e:b4:1e:91:66:2a: b5:4b:bc:f2:ec:c2:d4:a0:ca:f6:e9:cd:72:1c:9b: f5:f5:0c:bd:61:ef:75:01:71:23:a5:7a:4b:65:72: d8:6d:d0:2f:c3:d6:25:ca:5b:0d:0a:98:72:fb:22: bd:8f:b5:da:ec:4d:9b:5e:3b:71:a0:8e:cd:7f:f0: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B2:10:A0:D1:F3:49:2B:4A:57:1A:48:18:ED:0C:FE:1E:66:C4:34 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.205.0/24 Signature Algorithm: sha256WithRSAEncryption 42:52:25:03:47:fa:d7:89:ea:29:69:ae:0e:3e:8c:f7:1f:9e: 01:f1:86:79:c6:05:73:db:59:bf:39:0a:5a:d0:47:65:e0:d7: 82:b6:38:b5:1a:c1:e0:81:fc:5e:09:56:c4:4e:de:71:41:1b: ce:d6:21:9c:5a:68:26:48:28:e9:64:5b:5a:d8:f1:50:c5:b5: 37:6f:c9:c6:e2:84:ad:c8:b3:c0:d0:2e:2d:3a:9d:71:3a:0a: 13:31:e8:a4:d6:2d:0c:03:b2:6f:65:20:9a:1a:71:55:6d:ce: 7c:eb:99:55:cc:81:28:cd:ef:97:80:f4:ca:37:0a:2f:e4:81: c9:08:9b:4a:9d:26:f1:1e:17:84:b2:dc:43:fc:00:af:df:ec: de:24:ee:74:36:92:da:f6:7e:f4:1e:94:f0:65:2b:09:2e:dc: d8:c0:78:b6:1b:1d:83:54:78:d7:ef:fc:62:c7:af:69:8d:a6: 38:f4:ea:bd:7e:69:5d:8b:81:24:53:ef:62:b5:7e:4b:85:a6: 23:98:b3:1d:0b:fd:eb:b1:a8:32:58:18:d6:f3:6f:3b:23:5b: f1:dd:1d:f1:a8:4a:44:78:83:5f:b8:78:2a:10:9e:63:7d:3e: de:54:70:10:64:7f:43:00:16:92:84:ea:ed:30:de:02:b8:b6: f8:61:7d:c1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBWLAi5/28EadzlzbdLGMalBJpwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MjEwODU2MTJaFw0yNjA4MjAwOTAxMTJaMDMxMTAvBgNV BAMTKEYxQjIxMEEwRDFGMzQ5MkI0QTU3MUE0ODE4RUQwQ0ZFMUU2NkM0MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKSDMC9JtJdAIPpk93gg/4Z5Sb bcQCLZZxPQxkw8LBaz94JVL42P4fYA6NJiV2yLk/2Abamg4RQVvFoAX59n6hIW43 IVQ8LaoiIQscIzdfv42bh6tfNMVRRJNt8BCEoy5fpVj9+8HEo5P1dEroSf9pqXAE +iGbv35rRIkHicvBDkU6RgwTa+5Mz3w5nuX7OvxxnuQO+6Tn6CGAqYV+T5uA5LnJ Tv9IVvbuB0AI8AAVrg8mAfaPiu3zQ4OnsC60HpFmKrVLvPLswtSgyvbpzXIcm/X1 DL1h73UBcSOlektlctht0C/D1iXKWw0KmHL7Ir2PtdrsTZteO3Ggjs1/8K0LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8bIQoNHzSStKVxpIGO0M/h5mxDQwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBs0wDQYJKoZIhvcN AQELBQADggEBAEJSJQNH+teJ6ilprg4+jPcfngHxhnnGBXPbWb85ClrQR2Xg14K2 OLUaweCB/F4JVsRO3nFBG87WIZxaaCZIKOlkW1rY8VDFtTdvycbihK3Is8DQLi06 nXE6ChMx6KTWLQwDsm9lIJoacVVtznzrmVXMgSjN75eA9Mo3Ci/kgckIm0qdJvEe F4Sy3EP8AK/f7N4k7nQ2ktr2fvQelPBlKwku3NjAeLYbHYNUeNfv/GLHr2mNpjj0 6r1+aV2LgSRT72K1fkuFpiOYsx0L/euxqDJYGNbzbzsjW/HdHfGoSkR4g1+4eCoQ nmN9Pt5UcBBkf0MAFpKE6u0w3gK4tvhhfcE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:59:57 2025 by rpki-client