$ rpki-client -vvf repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132302e302f32342d3234203d3e20313335363336.roa File: 3130332e3133392e3132302e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: GyuTjfSXg8CKV3wiOvbPNmUEDlW/pVUvbq70+NpobI8= Subject key identifier: FF:AA:6E:46:C8:4F:D1:27:F8:28:FB:3B:73:09:4C:12:52:9E:A8:47 Certificate issuer: /CN=C740DD931883C284135261B25A6958E80CDF63D2 Certificate serial: 61E00F0B93E3DEFEE551F61618DFA34AB3533EDC Authority key identifier: C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132302e302f32342d3234203d3e20313335363336.roa Signing time: Mon 11 Aug 2025 04:00:00 +0000 ROA not before: Mon 11 Aug 2025 03:55:00 +0000 ROA not after: Mon 10 Aug 2026 04:00:00 +0000 asID: 135636 IP address blocks: 103.139.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 21:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e0:0f:0b:93:e3:de:fe:e5:51:f6:16:18:df:a3:4a:b3:53:3e:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C740DD931883C284135261B25A6958E80CDF63D2 Validity Not Before: Aug 11 03:55:00 2025 GMT Not After : Aug 10 04:00:00 2026 GMT Subject: CN=FFAA6E46C84FD127F828FB3B73094C12529EA847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9b:5a:08:35:c3:c6:bf:9f:19:92:59:e0:1e: a7:8d:c1:79:a4:f2:1f:08:78:49:cf:af:0f:60:64: 9a:9d:7f:d7:73:c6:6c:59:36:4b:0c:cc:d4:e6:2f: b5:0e:a7:a3:8b:ac:9e:00:6a:76:40:9a:f4:ae:fc: 98:08:a1:52:3d:9d:48:4a:6f:5f:09:44:11:2c:40: a7:92:c9:25:35:05:ea:88:75:b4:99:7e:59:ea:36: 6b:15:77:76:71:d8:24:86:06:cd:cd:5c:a4:94:ff: 71:41:97:b8:8c:5a:07:1c:75:47:dd:bb:c6:90:d5: 7b:f4:6c:dd:cc:dc:95:d7:80:73:dc:14:08:76:15: ee:99:f0:c4:6c:9e:e9:ad:35:e5:e2:70:bc:a7:ca: 10:3c:cf:28:94:e3:87:b6:72:79:ac:12:9c:5b:98: d6:a5:3a:4e:33:bc:84:6b:11:8d:42:9d:1c:4c:b7: cf:57:b4:2f:7b:6e:ee:d6:81:7e:ca:4e:de:1a:2d: 07:23:a7:42:ef:fa:2d:79:7b:ae:36:f3:d1:0d:1d: b8:1c:47:b0:ec:b2:a3:b3:4d:9c:65:4e:a5:14:5e: c0:27:e7:d8:80:b6:a4:43:61:cb:f2:50:26:a6:e6: 3b:4b:ba:5e:b4:a8:57:51:e4:5d:6a:19:26:8e:14: fd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AA:6E:46:C8:4F:D1:27:F8:28:FB:3B:73:09:4C:12:52:9E:A8:47 X509v3 Authority Key Identifier: keyid:C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132302e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.120.0/24 Signature Algorithm: sha256WithRSAEncryption 16:2a:b8:64:59:c0:5b:e0:a4:e8:76:40:e7:14:41:55:a1:0d: b6:3d:a9:94:ab:58:bf:ec:8b:52:dd:4e:5f:29:a6:79:63:49: 1f:22:dc:e1:f1:9f:93:24:d7:b5:74:a8:76:d9:d7:4d:47:82: 15:b8:3d:d5:03:ef:87:c1:7f:1a:c3:62:18:45:23:7f:95:14: e0:22:80:42:2f:1a:04:a7:8f:58:a7:30:e8:16:d7:e1:8e:ed: f5:02:b9:fb:cd:85:ad:34:a1:c5:2c:98:ea:b6:07:2b:33:c7: 09:b7:eb:6e:1e:7a:59:4f:4f:a9:c0:c6:1a:05:9e:57:98:36: 51:b9:4e:ae:3e:c5:e8:b5:30:23:a1:a5:6d:02:5b:15:db:52: 44:24:e5:37:54:d6:6c:b7:e4:bf:7b:13:5f:a0:df:6c:68:a2: 37:dd:bb:85:e5:32:96:79:c4:a9:9e:f9:2e:95:58:a0:83:58: b9:4a:ae:34:8b:a4:6f:88:0b:1f:ec:df:55:f8:89:cd:61:c8: 7b:78:9d:ca:2b:5b:57:a1:1e:e9:1b:fb:57:f0:56:46:17:69: a2:32:e5:98:40:32:97:fe:a0:ed:af:2c:4f:23:11:45:ba:14: 15:9e:e8:38:0e:27:fc:4a:bc:0e:6c:a2:e2:d7:91:c0:0f:e3: b4:14:ff:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYeAPC5Pj3v7lUfYWGN+jSrNTPtwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgw Q0RGNjNEMjAeFw0yNTA4MTEwMzU1MDBaFw0yNjA4MTAwNDAwMDBaMDMxMTAvBgNV BAMTKEZGQUE2RTQ2Qzg0RkQxMjdGODI4RkIzQjczMDk0QzEyNTI5RUE4NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdm1oINcPGv58ZklngHqeNwXmk 8h8IeEnPrw9gZJqdf9dzxmxZNksMzNTmL7UOp6OLrJ4AanZAmvSu/JgIoVI9nUhK b18JRBEsQKeSySU1BeqIdbSZflnqNmsVd3Zx2CSGBs3NXKSU/3FBl7iMWgccdUfd u8aQ1Xv0bN3M3JXXgHPcFAh2Fe6Z8MRsnumtNeXicLynyhA8zyiU44e2cnmsEpxb mNalOk4zvIRrEY1CnRxMt89XtC97bu7WgX7KTt4aLQcjp0Lv+i15e64289ENHbgc R7DssqOzTZxlTqUUXsAn59iAtqRDYcvyUCam5jtLul60qFdR5F1qGSaOFP0bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/6puRshP0Sf4KPs7cwlMElKeqEcwHwYDVR0j BBgwFoAUx0DdkxiDwoQTUmGyWmlY6AzfY9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDcxNDY2NS1jNjcwLTQ1MWUtYmRjYi05MDc0MjE5ZDU1Y2UvMC9DNzQwREQ5MzE4 ODNDMjg0MTM1MjYxQjI1QTY5NThFODBDREY2M0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgwQ0RG NjNEMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0NzE0NjY1LWM2NzAtNDUxZS1i ZGNiLTkwNzQyMTlkNTVjZS8wLzMxMzAzMzJlMzEzMzM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNjMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni3gwDQYJ KoZIhvcNAQELBQADggEBABYquGRZwFvgpOh2QOcUQVWhDbY9qZSrWL/si1LdTl8p pnljSR8i3OHxn5Mk17V0qHbZ101HghW4PdUD74fBfxrDYhhFI3+VFOAigEIvGgSn j1inMOgW1+GO7fUCufvNha00ocUsmOq2Byszxwm3624eellPT6nAxhoFnleYNlG5 Tq4+xei1MCOhpW0CWxXbUkQk5TdU1my35L97E1+g32xoojfdu4XlMpZ5xKme+S6V WKCDWLlKrjSLpG+ICx/s31X4ic1hyHt4ncorW1ehHukb+1fwVkYXaaIy5ZhAMpf+ oO2vLE8jEUW6FBWe6DgOJ/xKvA5souLXkcAP47QU/8M= -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:35 2025 by rpki-client