$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa File: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (raw, json) Hash identifier: T5UFtTORiPkpyQMb1pkITrlGjn812lML7gJ4GIu0cac= Subject key identifier: 21:2C:64:33:5B:69:AC:8A:C6:12:B9:39:8F:39:91:C9:A3:EB:BD:EB Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 412986940F91BAC3673A28B4EC06E1DE967FF8EF Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa Signing time: Thu 21 Aug 2025 11:00:02 +0000 ROA not before: Thu 21 Aug 2025 10:55:02 +0000 ROA not after: Thu 20 Aug 2026 11:00:02 +0000 asID: 58503 IP address blocks: 103.6.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:29:86:94:0f:91:ba:c3:67:3a:28:b4:ec:06:e1:de:96:7f:f8:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Aug 21 10:55:02 2025 GMT Not After : Aug 20 11:00:02 2026 GMT Subject: CN=212C64335B69AC8AC612B9398F3991C9A3EBBDEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ba:a9:4c:7c:c4:f5:63:d6:d3:45:1b:a3:2e: a8:2f:4b:56:4f:f3:2f:e2:bd:53:e9:25:35:88:b0: 67:5a:39:9c:c3:c9:f7:2a:7a:59:b5:37:2a:00:7b: 84:40:18:97:2c:82:cf:59:aa:09:a2:d5:d3:e2:fc: 04:f6:ff:45:b3:29:29:22:6e:ba:17:80:94:c6:f2: b3:f8:4d:12:7b:40:be:2b:3f:bb:1a:65:f3:c3:18: 4c:b5:22:fb:f5:f6:b7:0a:f1:c9:51:57:65:75:17: e8:c8:37:fa:10:8e:3d:c6:79:84:0d:d2:88:fe:1d: 55:98:72:6a:4d:50:ed:62:5a:ac:f1:aa:75:0a:eb: 07:72:11:3a:cd:2f:38:10:80:b0:13:2a:e7:a1:fa: e9:e2:94:d8:ad:a9:c9:ef:67:ba:cf:5b:93:54:11: a4:a4:4f:7f:ec:73:c4:a5:c0:27:f3:04:28:ac:7c: b3:8f:19:1e:0e:4a:27:a4:ba:30:78:3e:df:ce:66: b0:f1:3c:45:e1:6d:d0:7d:76:b7:f8:56:b6:29:53: e5:28:c4:79:0e:bc:92:19:f1:55:48:50:22:18:93: c1:17:bc:cc:32:39:86:1d:cf:c6:78:ec:59:5c:14: 59:12:f1:f2:15:9d:f0:38:7c:15:0d:b2:52:3d:81: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2C:64:33:5B:69:AC:8A:C6:12:B9:39:8F:39:91:C9:A3:EB:BD:EB X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.206.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:57:be:03:da:58:a8:46:aa:24:81:c3:e4:a8:c9:c2:b7:90: 38:15:bc:9e:dd:97:eb:66:03:ab:0e:b0:5e:c7:18:d0:e5:b3: 0f:5e:3f:8d:c3:41:0a:eb:fc:23:06:5b:52:56:64:9a:59:52: cf:2f:5b:0e:9f:49:01:c1:58:7d:3c:ad:ad:97:af:fd:ef:e9: 75:0e:d8:b8:20:3a:cb:86:be:26:08:b6:04:34:d8:5c:9c:bf: f6:e0:db:96:61:06:33:3d:ae:f6:f9:30:c8:5a:28:f7:c8:7f: 7a:c4:82:e5:e7:e9:b1:d5:cd:4f:16:7f:39:2c:3b:b6:ce:cb: 1b:a1:a5:75:1d:cd:8e:03:60:91:28:7d:66:50:e6:bd:20:a7: 1d:aa:9e:39:08:21:99:12:96:4a:6f:86:02:78:f2:e4:d0:0d: df:1d:a1:97:db:d7:d0:c8:f1:00:3b:16:30:29:9a:bc:f5:35: c7:a3:76:dd:ad:80:a3:88:42:30:60:cc:5e:eb:74:14:9f:e3: 03:3e:56:7a:1a:5f:76:82:bc:1f:64:37:5e:77:be:27:1e:ad: fa:73:e8:42:6e:bf:15:f4:9a:7c:da:b5:9a:19:a8:ad:b3:e1: 17:28:d4:bc:8c:6b:b9:d6:5a:fe:b2:f5:a4:7c:bf:42:14:77: 2e:92:f8:13 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQSmGlA+RusNnOii07Abh3pZ/+O8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTA4MjExMDU1MDJaFw0yNjA4MjAxMTAwMDJaMDMxMTAvBgNV BAMTKDIxMkM2NDMzNUI2OUFDOEFDNjEyQjkzOThGMzk5MUM5QTNFQkJERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDguqlMfMT1Y9bTRRujLqgvS1ZP 8y/ivVPpJTWIsGdaOZzDyfcqelm1NyoAe4RAGJcsgs9Zqgmi1dPi/AT2/0WzKSki broXgJTG8rP4TRJ7QL4rP7saZfPDGEy1Ivv19rcK8clRV2V1F+jIN/oQjj3GeYQN 0oj+HVWYcmpNUO1iWqzxqnUK6wdyETrNLzgQgLATKueh+unilNitqcnvZ7rPW5NU EaSkT3/sc8SlwCfzBCisfLOPGR4OSiekujB4Pt/OZrDxPEXhbdB9drf4VrYpU+Uo xHkOvJIZ8VVIUCIYk8EXvMwyOYYdz8Z47FlcFFkS8fIVnfA4fBUNslI9gSZpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUISxkM1tprIrGErk5jzmRyaPrveswHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnBs4wDQYJKoZIhvcN AQELBQADggEBAApXvgPaWKhGqiSBw+SoycK3kDgVvJ7dl+tmA6sOsF7HGNDlsw9e P43DQQrr/CMGW1JWZJpZUs8vWw6fSQHBWH08ra2Xr/3v6XUO2LggOsuGviYItgQ0 2Fycv/bg25ZhBjM9rvb5MMhaKPfIf3rEguXn6bHVzU8WfzksO7bOyxuhpXUdzY4D YJEofWZQ5r0gpx2qnjkIIZkSlkpvhgJ48uTQDd8doZfb19DI8QA7FjApmrz1Ncej dt2tgKOIQjBgzF7rdBSf4wM+VnoaX3aCvB9kN153vicerfpz6EJuvxX0mnzatZoZ qK2z4Rco1LyMa7nWWv6y9aR8v0IUdy6S+BM= -----END CERTIFICATE-----Generated at Sat Aug 23 15:43:17 2025 by rpki-client