$ rpki-client -vvf repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/3130332e3132312e35382e302f32342d3234203d3e20313338303436.roa File: 3130332e3132312e35382e302f32342d3234203d3e20313338303436.roa (raw, json) Hash identifier: qsp//iZceVpeXKSwIm+bVjK6+BteJANtUH8oVA3B3qs= Subject key identifier: 5C:A1:65:76:57:DA:A3:F9:64:E8:B2:63:45:DD:D4:BF:A4:5D:F4:EE Certificate issuer: /CN=F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E Certificate serial: 4B4643E250147F19F5DF7BD253E647CBB6690453 Authority key identifier: F0:7F:FF:47:2E:D9:C7:00:73:BC:98:86:5A:4A:5A:6C:2B:0E:A3:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/3130332e3132312e35382e302f32342d3234203d3e20313338303436.roa Signing time: Tue 12 Aug 2025 10:00:00 +0000 ROA not before: Tue 12 Aug 2025 09:55:00 +0000 ROA not after: Tue 11 Aug 2026 10:00:00 +0000 asID: 138046 IP address blocks: 103.121.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.crl rsync://repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 09:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:46:43:e2:50:14:7f:19:f5:df:7b:d2:53:e6:47:cb:b6:69:04:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E Validity Not Before: Aug 12 09:55:00 2025 GMT Not After : Aug 11 10:00:00 2026 GMT Subject: CN=5CA1657657DAA3F964E8B26345DDD4BFA45DF4EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:eb:96:20:16:99:ac:30:61:82:cf:11:40:8c: 1f:9c:4a:98:5d:e4:6e:f3:32:77:b3:dd:6c:0e:9c: bf:6a:a8:6d:f4:d3:59:8e:37:fc:68:48:27:4c:79: a8:30:80:c6:89:db:c9:a3:b2:6a:3f:03:ed:0e:11: 12:f1:1d:23:88:4c:48:30:34:9d:20:45:f2:cc:f7: 84:34:b5:b4:ee:9b:a2:2e:db:9f:5f:95:a7:f8:b6: 1d:a6:06:dd:4c:ff:f6:5b:62:f0:b3:0d:5f:d1:46: b8:9a:fa:71:27:fd:70:c9:8e:2e:fa:37:9d:0d:6f: 48:aa:9a:2c:e0:a6:22:30:d8:06:60:a2:c7:18:b1: f9:ca:5a:0a:90:66:0a:ef:cd:4d:54:e1:d3:fc:54: bd:b9:da:41:98:41:64:4b:a1:93:c6:ad:f7:b3:9a: b6:ff:ba:b1:fd:34:cd:03:15:96:8a:75:dc:4d:be: 45:a2:fc:a7:bd:09:be:b2:b0:b0:96:af:9f:c0:7a: a5:fc:cb:1c:ba:42:0c:03:52:aa:1a:55:c3:56:3a: 5f:58:5c:52:23:82:94:be:e8:0c:6f:f7:81:7d:61: 53:11:37:d3:f0:cd:cc:ab:1f:3f:3c:10:97:99:9a: f2:f8:4f:2e:ff:48:ae:e3:03:6d:93:11:22:31:ec: 16:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A1:65:76:57:DA:A3:F9:64:E8:B2:63:45:DD:D4:BF:A4:5D:F4:EE X509v3 Authority Key Identifier: keyid:F0:7F:FF:47:2E:D9:C7:00:73:BC:98:86:5A:4A:5A:6C:2B:0E:A3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F07FFF472ED9C70073BC98865A4A5A6C2B0EA35E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/724db567-33a8-4ce0-bcff-cb0f0a85c239/0/3130332e3132312e35382e302f32342d3234203d3e20313338303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.58.0/24 Signature Algorithm: sha256WithRSAEncryption 91:4f:d4:7b:63:45:6c:e4:1a:a4:58:0b:a0:3b:64:ae:af:33: 88:86:a7:c0:7e:22:74:72:94:c4:eb:38:08:8a:33:39:18:f9: a9:9f:c1:df:e1:ab:84:1f:20:a8:fc:0e:bd:34:06:ea:84:5a: 31:d5:1e:70:36:64:ff:8b:6a:86:c4:8e:0d:f6:88:c2:3d:83: 01:ca:d2:b4:fb:6c:0c:38:3c:6c:0a:09:2a:e8:74:54:03:e6: cc:ba:85:09:30:57:35:7b:75:7d:97:b5:2e:4b:be:16:74:bc: e9:9b:7d:2f:14:08:87:c1:c1:db:e9:40:33:30:07:b2:71:92: 62:05:5f:20:91:2e:3d:6c:53:9d:75:01:37:c0:3c:35:36:7f: 73:59:79:34:e3:8e:b4:9d:3c:19:bf:45:5b:84:4e:63:9b:f9: 7f:21:5f:e0:26:2c:ea:56:87:17:9a:55:05:88:60:27:f1:bd: cc:37:37:23:f5:2c:07:e4:70:60:06:8a:67:78:61:82:b0:99: 71:46:21:3a:13:06:13:7f:4c:24:f6:68:1b:90:52:1c:14:02: 24:2e:09:4b:88:e1:1f:1a:12:3f:ed:bf:11:61:23:46:54:ea: fe:39:90:df:20:68:40:51:e6:8c:a9:94:11:65:ce:34:37:62: 6f:48:12:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS0ZD4lAUfxn133vSU+ZHy7ZpBFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA3RkZGNDcyRUQ5QzcwMDczQkM5ODg2NUE0QTVBNkMy QjBFQTM1RTAeFw0yNTA4MTIwOTU1MDBaFw0yNjA4MTExMDAwMDBaMDMxMTAvBgNV BAMTKDVDQTE2NTc2NTdEQUEzRjk2NEU4QjI2MzQ1RERENEJGQTQ1REY0RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC665YgFpmsMGGCzxFAjB+cSphd 5G7zMnez3WwOnL9qqG3001mON/xoSCdMeagwgMaJ28mjsmo/A+0OERLxHSOITEgw NJ0gRfLM94Q0tbTum6Iu259flaf4th2mBt1M//ZbYvCzDV/RRria+nEn/XDJji76 N50Nb0iqmizgpiIw2AZgoscYsfnKWgqQZgrvzU1U4dP8VL252kGYQWRLoZPGrfez mrb/urH9NM0DFZaKddxNvkWi/Ke9Cb6ysLCWr5/AeqX8yxy6QgwDUqoaVcNWOl9Y XFIjgpS+6Axv94F9YVMRN9PwzcyrHz88EJeZmvL4Ty7/SK7jA22TESIx7BZlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXKFldlfao/lk6LJjRd3Uv6Rd9O4wHwYDVR0j BBgwFoAU8H//Ry7ZxwBzvJiGWkpabCsOo14wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjRkYjU2Ny0zM2E4LTRjZTAtYmNmZi1jYjBmMGE4NWMyMzkvMC9GMDdGRkY0NzJF RDlDNzAwNzNCQzk4ODY1QTRBNUE2QzJCMEVBMzVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA3RkZGNDcyRUQ5QzcwMDczQkM5ODg2NUE0QTVBNkMyQjBF QTM1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyNGRiNTY3LTMzYTgtNGNlMC1i Y2ZmLWNiMGYwYTg1YzIzOS8wLzMxMzAzMzJlMzEzMjMxMmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3k6MA0GCSqG SIb3DQEBCwUAA4IBAQCRT9R7Y0Vs5BqkWAugO2SurzOIhqfAfiJ0cpTE6zgIijM5 GPmpn8Hf4auEHyCo/A69NAbqhFox1R5wNmT/i2qGxI4N9ojCPYMBytK0+2wMODxs Cgkq6HRUA+bMuoUJMFc1e3V9l7UuS74WdLzpm30vFAiHwcHb6UAzMAeycZJiBV8g kS49bFOddQE3wDw1Nn9zWXk04460nTwZv0VbhE5jm/l/IV/gJizqVocXmlUFiGAn 8b3MNzcj9SwH5HBgBopneGGCsJlxRiE6EwYTf0wk9mgbkFIcFAIkLglLiOEfGhI/ 7b8RYSNGVOr+OZDfIGhAUeaMqZQRZc40N2JvSBJB -----END CERTIFICATE-----Generated at Sat Aug 23 15:45:02 2025 by rpki-client