$ rpki-client -vvf repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3130332e3134332e3232342e302f32332d3233203d3e20313339343132.roa File: 3130332e3134332e3232342e302f32332d3233203d3e20313339343132.roa (raw, json) Hash identifier: Zm0hpNa3KzjUY5ugGNSToALOnFgESrmbArm+FZK1Qzs= Subject key identifier: 6B:55:F9:3D:E0:3E:CA:E7:2C:DC:CE:05:CB:4A:DA:9C:66:C3:81:73 Certificate issuer: /CN=3D7EA7788E025E12DEFD18EEB278AF6D47B034C2 Certificate serial: 35E6D8765E768A3F9552E329481D607B2D0772DC Authority key identifier: 3D:7E:A7:78:8E:02:5E:12:DE:FD:18:EE:B2:78:AF:6D:47:B0:34:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3130332e3134332e3232342e302f32332d3233203d3e20313339343132.roa Signing time: Tue 24 Jun 2025 15:00:01 +0000 ROA not before: Tue 24 Jun 2025 14:55:01 +0000 ROA not after: Tue 23 Jun 2026 15:00:01 +0000 asID: 139412 IP address blocks: 103.143.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.crl rsync://repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e6:d8:76:5e:76:8a:3f:95:52:e3:29:48:1d:60:7b:2d:07:72:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D7EA7788E025E12DEFD18EEB278AF6D47B034C2 Validity Not Before: Jun 24 14:55:01 2025 GMT Not After : Jun 23 15:00:01 2026 GMT Subject: CN=6B55F93DE03ECAE72CDCCE05CB4ADA9C66C38173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:49:2c:f3:f4:00:c4:fa:56:4e:5c:82:01:1c: 12:1c:db:4f:7c:67:36:ba:de:c4:53:ad:51:1a:88: 3a:3c:dc:4d:62:c1:0a:15:d3:c5:77:c7:89:ee:c8: 13:e5:05:0e:c8:3b:40:32:46:63:13:70:7b:57:03: 3b:47:01:a0:54:f0:47:37:09:c3:ad:e6:50:cc:a1: 79:2c:56:4f:84:08:3a:35:37:66:df:fc:70:dc:9a: 31:67:aa:4d:c1:30:e7:05:ce:c4:67:03:1d:f2:d7: 2a:67:22:13:06:38:41:22:fc:d9:2f:dd:50:d8:18: 1e:c3:41:bd:eb:86:b3:10:a5:1c:6c:1d:f9:f5:e0: bc:84:de:b1:3f:42:20:1d:6d:4d:ae:71:6f:e3:fb: fc:d4:a2:19:e3:69:c3:be:71:30:ce:b0:56:0a:cb: 5e:e4:b0:87:7f:07:dd:14:8c:7c:29:95:2b:4a:c1: 43:f5:80:37:68:1c:18:3f:b0:db:80:7a:3b:39:42: f2:7a:60:19:f6:dc:51:bf:de:cf:c3:c6:55:19:8b: ec:07:6a:06:7d:27:55:63:57:3f:7f:b1:55:f5:e0: e9:68:4f:aa:8d:2b:a9:44:4a:45:e5:9a:2c:22:98: fa:7d:f5:ef:59:2b:e1:11:ca:7f:57:31:e7:7a:b5: 6f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:55:F9:3D:E0:3E:CA:E7:2C:DC:CE:05:CB:4A:DA:9C:66:C3:81:73 X509v3 Authority Key Identifier: keyid:3D:7E:A7:78:8E:02:5E:12:DE:FD:18:EE:B2:78:AF:6D:47:B0:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D7EA7788E025E12DEFD18EEB278AF6D47B034C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7770feeb-2caa-476a-ab43-f652a11fd08c/0/3130332e3134332e3232342e302f32332d3233203d3e20313339343132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.224.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:f4:8e:61:b5:8d:05:50:94:e9:e5:4b:b0:c6:f6:ff:0e:3b: 43:15:d3:0d:d8:51:5b:32:b8:4c:fa:c7:09:b5:03:c6:dc:77: 11:cf:46:7e:c0:b5:c1:e6:b0:eb:ec:d8:00:95:35:8b:d3:20: 38:ad:38:43:fd:c0:0a:d2:ff:57:3f:bb:5b:5f:a2:fc:28:1b: 4e:77:6e:40:2d:7b:75:8f:3f:ac:d9:d2:eb:49:79:24:6e:cf: 52:39:71:5d:0c:30:d3:58:f5:91:fd:20:9b:76:f0:43:e2:d8: db:77:72:53:0e:c0:c1:18:05:d7:b9:25:ef:d6:fa:b6:f8:08: 4b:60:cb:59:74:5d:fa:65:d0:e3:c3:0e:40:69:93:9e:85:c4: 7a:f3:9f:c7:91:2c:c9:f5:54:15:bd:02:8e:57:11:7b:fd:4b: 78:f6:2f:12:87:5c:6d:80:41:6a:95:2b:0d:6f:4e:03:37:10: e4:6c:77:16:3a:af:64:b5:bd:c7:ac:ca:1d:8e:47:ad:7e:b3: 06:16:23:f4:85:67:af:86:ee:fb:ac:e3:25:c4:87:ad:2d:5b: 7a:fc:9f:7f:9b:97:75:f9:b3:fc:cd:c5:bb:69:3e:39:bf:af: 27:72:a8:8f:23:3e:be:6d:21:26:c4:40:61:10:3e:78:67:b4: 61:ab:4a:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNebYdl52ij+VUuMpSB1gey0HctwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3RUE3Nzg4RTAyNUUxMkRFRkQxOEVFQjI3OEFGNkQ0 N0IwMzRDMjAeFw0yNTA2MjQxNDU1MDFaFw0yNjA2MjMxNTAwMDFaMDMxMTAvBgNV BAMTKDZCNTVGOTNERTAzRUNBRTcyQ0RDQ0UwNUNCNEFEQTlDNjZDMzgxNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvSSzz9ADE+lZOXIIBHBIc2098 Zza63sRTrVEaiDo83E1iwQoV08V3x4nuyBPlBQ7IO0AyRmMTcHtXAztHAaBU8Ec3 CcOt5lDMoXksVk+ECDo1N2bf/HDcmjFnqk3BMOcFzsRnAx3y1ypnIhMGOEEi/Nkv 3VDYGB7DQb3rhrMQpRxsHfn14LyE3rE/QiAdbU2ucW/j+/zUohnjacO+cTDOsFYK y17ksId/B90UjHwplStKwUP1gDdoHBg/sNuAejs5QvJ6YBn23FG/3s/DxlUZi+wH agZ9J1VjVz9/sVX14OloT6qNK6lESkXlmiwimPp99e9ZK+ERyn9XMed6tW/XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa1X5PeA+yucs3M4Fy0ranGbDgXMwHwYDVR0j BBgwFoAUPX6neI4CXhLe/RjusnivbUewNMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NzcwZmVlYi0yY2FhLTQ3NmEtYWI0My1mNjUyYTExZmQwOGMvMC8zRDdFQTc3ODhF MDI1RTEyREVGRDE4RUVCMjc4QUY2RDQ3QjAzNEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3RUE3Nzg4RTAyNUUxMkRFRkQxOEVFQjI3OEFGNkQ0N0Iw MzRDMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NzBmZWViLTJjYWEtNDc2YS1h YjQzLWY2NTJhMTFmZDA4Yy8wLzMxMzAzMzJlMzEzNDMzMmUzMjMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnj+AwDQYJ KoZIhvcNAQELBQADggEBAIr0jmG1jQVQlOnlS7DG9v8OO0MV0w3YUVsyuEz6xwm1 A8bcdxHPRn7AtcHmsOvs2ACVNYvTIDitOEP9wArS/1c/u1tfovwoG053bkAte3WP P6zZ0utJeSRuz1I5cV0MMNNY9ZH9IJt28EPi2Nt3clMOwMEYBde5Je/W+rb4CEtg y1l0Xfpl0OPDDkBpk56FxHrzn8eRLMn1VBW9Ao5XEXv9S3j2LxKHXG2AQWqVKw1v TgM3EORsdxY6r2S1vcesyh2OR61+swYWI/SFZ6+G7vus4yXEh60tW3r8n3+bl3X5 s/zNxbtpPjm/rydyqI8jPr5tISbEQGEQPnhntGGrSoI= -----END CERTIFICATE-----Generated at Tue Jul 1 00:46:28 2025 by rpki-client