$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/3130332e3137372e362e302f32332d3234203d3e20313437313430.roa File: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (raw, json) Hash identifier: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E= Subject key identifier: DD:DB:F3:CC:71:5E:1B:41:0B:2D:70:5F:49:43:EC:69:73:77:64:58 Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 5B13281EF4D95180A21BF1DAFE2ADFE88A029159 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/3130332e3137372e362e302f32332d3234203d3e20313437313430.roa Signing time: Sat 23 Aug 2025 04:00:02 +0000 ROA not before: Sat 23 Aug 2025 03:55:02 +0000 ROA not after: Sat 22 Aug 2026 04:00:02 +0000 asID: 147140 IP address blocks: 103.177.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:13:28:1e:f4:d9:51:80:a2:1b:f1:da:fe:2a:df:e8:8a:02:91:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Aug 23 03:55:02 2025 GMT Not After : Aug 22 04:00:02 2026 GMT Subject: CN=DDDBF3CC715E1B410B2D705F4943EC6973776458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:65:de:e9:9a:ba:6f:dc:c5:6b:f9:b0:f2:b8: da:ca:8f:50:8d:34:4b:eb:9a:7f:db:cb:e0:9b:33: 3b:06:3d:e6:77:31:6a:69:f0:6c:04:3d:41:42:50: 6e:56:93:b7:8a:7a:aa:70:48:1e:80:54:8f:ff:46: 94:e7:cb:db:ff:54:b9:14:ea:f7:b4:13:d9:7d:a5: 1b:4b:23:70:94:57:05:f7:5f:fa:02:e2:d1:37:e3: 7e:5c:fe:41:d5:9c:17:84:e8:ed:ae:43:b3:a8:a3: d7:2f:e8:ad:ac:7b:75:6b:24:3e:5c:d9:60:60:21: 18:13:73:a6:64:f4:94:65:ab:da:fd:d3:dd:10:44: 7d:7d:5f:ac:7d:d0:a6:74:5a:31:ab:4b:42:41:10: 7a:1a:02:18:c1:ea:aa:63:39:ab:e1:0b:6e:e8:af: 51:7f:98:4a:b4:f7:6d:a9:31:e9:d6:cd:84:0d:f3: e2:27:53:e0:e5:e6:c4:08:a1:b8:7c:d0:14:91:92: de:46:88:07:bd:70:35:11:15:b9:e1:40:0b:c2:e1: c0:f6:d7:75:9a:10:16:09:11:b5:9b:71:21:75:fb: 6f:3b:59:88:0d:15:1b:e2:4e:c5:49:1f:82:56:21: 75:0b:14:d3:a7:1b:89:ee:98:3e:df:d5:1b:01:5e: 15:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DB:F3:CC:71:5E:1B:41:0B:2D:70:5F:49:43:EC:69:73:77:64:58 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/3130332e3137372e362e302f32332d3234203d3e20313437313430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.6.0/23 Signature Algorithm: sha256WithRSAEncryption a2:eb:fb:89:44:4b:05:a5:18:b3:b9:e5:9f:f9:1a:c0:a3:f0: 53:ec:95:48:10:a0:9b:8b:f7:4c:0c:da:70:10:5e:e7:75:b4: da:66:e6:9d:c8:4a:b3:7e:23:8a:8e:3a:42:3a:3f:0b:c3:86: ce:9e:02:1c:78:e1:80:86:b6:da:02:0e:87:49:a1:09:80:91: 3b:c0:bf:36:da:ac:04:98:46:92:c7:d2:b0:95:1c:47:99:69: e0:76:70:bb:21:fd:12:7e:c5:62:46:10:69:6b:55:9f:b0:4e: 1b:6c:7e:ed:68:79:a9:46:da:87:87:a1:a4:22:ca:79:2d:bf: a7:17:c8:30:08:21:ed:2f:70:4d:25:ff:91:ed:d0:17:d9:81: d2:f4:1a:31:34:0d:ff:a8:86:62:6c:96:99:57:fa:4e:87:9a: 99:b9:3e:29:0e:b7:f1:ae:b7:c7:0b:03:f3:62:94:39:b8:08: 7a:43:52:fe:50:f7:88:76:56:8b:d7:17:9f:f7:16:c0:c6:c3: ac:34:14:55:c4:18:3e:34:61:4e:38:21:2b:96:5c:5d:57:1d: a5:c5:a8:38:12:a5:58:c9:ea:91:84:f5:ef:21:d0:42:c9:ad: 2a:0e:70:1b:85:04:6d:3d:04:86:1f:54:75:b4:45:79:73:70: b2:38:a7:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWxMoHvTZUYCiG/Ha/irf6IoCkVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTA4MjMwMzU1MDJaFw0yNjA4MjIwNDAwMDJaMDMxMTAvBgNV BAMTKEREREJGM0NDNzE1RTFCNDEwQjJENzA1RjQ5NDNFQzY5NzM3NzY0NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpZd7pmrpv3MVr+bDyuNrKj1CN NEvrmn/by+CbMzsGPeZ3MWpp8GwEPUFCUG5Wk7eKeqpwSB6AVI//RpTny9v/VLkU 6ve0E9l9pRtLI3CUVwX3X/oC4tE3435c/kHVnBeE6O2uQ7Ooo9cv6K2se3VrJD5c 2WBgIRgTc6Zk9JRlq9r9090QRH19X6x90KZ0WjGrS0JBEHoaAhjB6qpjOavhC27o r1F/mEq0922pMenWzYQN8+InU+Dl5sQIobh80BSRkt5GiAe9cDURFbnhQAvC4cD2 13WaEBYJEbWbcSF1+287WYgNFRviTsVJH4JWIXULFNOnG4numD7f1RsBXhVbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3dvzzHFeG0ELLXBfSUPsaXN3ZFgwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNzFmYzZkLWFhM2ItNGVkNy04 ZmVjLTc0MjdhYTA2MWY4ZS8wLzMxMzAzMzJlMzEzNzM3MmUzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzNzMxMzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWexBjANBgkqhkiG 9w0BAQsFAAOCAQEAouv7iURLBaUYs7nln/kawKPwU+yVSBCgm4v3TAzacBBe53W0 2mbmnchKs34jio46Qjo/C8OGzp4CHHjhgIa22gIOh0mhCYCRO8C/NtqsBJhGksfS sJUcR5lp4HZwuyH9En7FYkYQaWtVn7BOG2x+7Wh5qUbah4ehpCLKeS2/pxfIMAgh 7S9wTSX/ke3QF9mB0vQaMTQN/6iGYmyWmVf6Toeambk+KQ638a63xwsD82KUObgI ekNS/lD3iHZWi9cXn/cWwMbDrDQUVcQYPjRhTjghK5ZcXVcdpcWoOBKlWMnqkYT1 7yHQQsmtKg5wG4UEbT0Ehh9UdbRFeXNwsjinQw== -----END CERTIFICATE-----Generated at Sat Aug 23 15:43:37 2025 by rpki-client