$ rpki-client -vvf repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/3130332e36362e35352e302f32342d3234203d3e20313335343537.roa File: 3130332e36362e35352e302f32342d3234203d3e20313335343537.roa (raw, json) Hash identifier: ljnKYF4WQqtb0yfOcUdymtJM6+GnXJyNyFLsK7GZ494= Subject key identifier: D7:1F:4E:4F:28:4A:70:B0:F0:CC:C2:E4:D3:55:DA:D9:E6:0D:F0:11 Certificate issuer: /CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Certificate serial: 2960C386A4A967A7E6DEC7357E0FBAAEBD6F6F62 Authority key identifier: 4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/3130332e36362e35352e302f32342d3234203d3e20313335343537.roa Signing time: Wed 20 Aug 2025 06:02:26 +0000 ROA not before: Wed 20 Aug 2025 05:57:26 +0000 ROA not after: Wed 19 Aug 2026 06:02:26 +0000 asID: 135457 IP address blocks: 103.66.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:60:c3:86:a4:a9:67:a7:e6:de:c7:35:7e:0f:ba:ae:bd:6f:6f:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Validity Not Before: Aug 20 05:57:26 2025 GMT Not After : Aug 19 06:02:26 2026 GMT Subject: CN=D71F4E4F284A70B0F0CCC2E4D355DAD9E60DF011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:de:28:c4:7c:3d:76:09:39:9a:30:30:0a:84: 39:37:25:6d:24:ef:24:29:ba:a7:11:dc:2c:0c:18: 0a:3b:0b:05:f4:1c:97:41:81:5f:08:4d:9a:16:e0: b5:a6:cb:46:28:33:0e:f9:b0:72:53:b6:67:14:ca: 68:28:51:49:6b:7d:80:96:d5:03:6a:ad:ee:7b:36: 6f:6f:8a:36:14:9e:36:4b:de:7a:3f:e3:f4:36:ac: 7b:24:0e:b9:57:a6:37:bb:2e:25:7b:5f:ca:70:97: 23:1d:bb:11:34:99:d8:62:23:f7:90:7d:43:a4:8c: 25:13:87:14:7b:50:9a:f9:b0:f2:2f:32:d3:f5:89: 31:80:f3:df:60:bb:00:eb:09:f1:99:2f:1f:7e:63: 57:e4:48:ed:65:8a:67:69:5f:ba:b0:db:e3:9e:c6: 7d:60:78:b3:42:20:b4:67:53:97:d5:c4:b2:94:af: 88:38:62:34:b0:45:47:e4:25:4b:e2:74:4f:43:05: f7:39:ee:eb:78:2f:76:fc:82:a9:c3:5f:4f:08:f2: 88:53:70:08:dd:a7:d8:17:be:c6:78:2f:e6:c2:6a: 99:ac:be:be:c7:da:2c:71:18:a7:7d:63:4c:8a:cb: 4f:25:b1:ab:68:8d:30:bf:4f:73:e2:8a:09:35:d3: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1F:4E:4F:28:4A:70:B0:F0:CC:C2:E4:D3:55:DA:D9:E6:0D:F0:11 X509v3 Authority Key Identifier: keyid:4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/3130332e36362e35352e302f32342d3234203d3e20313335343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.55.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:0b:4a:f0:d0:98:ca:f4:f4:a5:1c:f0:76:f4:ed:94:58:30: c4:1c:fb:3c:0a:12:9e:89:04:be:e2:6b:8e:a8:fa:bc:ca:0a: 24:b4:7b:50:56:c9:32:10:58:9b:8c:cf:d7:8a:2e:17:df:f2: c0:98:84:c9:92:92:f1:e2:f9:c3:6c:1c:a7:4b:11:70:6a:98: c0:91:a8:27:8d:00:d4:79:f8:0d:bc:e8:4d:e8:6c:cc:4f:fb: 01:72:6b:eb:aa:07:f0:ea:d8:cb:b6:9f:ad:20:94:00:36:65: d1:6e:47:ec:2c:6a:d6:e4:fb:46:38:cd:0f:99:22:6a:13:32: c2:a0:7c:9a:b3:bc:0e:ec:5f:c1:ac:e0:04:85:d3:39:f8:56: 43:96:7e:de:6c:47:dc:13:f0:71:6e:c3:51:30:1a:8d:e0:57: 54:2d:89:37:0b:b4:35:68:c5:c0:b5:5a:9b:96:18:68:ce:ac: 8d:32:e8:95:85:98:d8:7e:1a:83:45:98:3b:fe:63:90:81:e9: 67:7d:6d:0b:08:05:45:2f:9f:cd:74:ba:64:e7:4d:4c:ee:f2: 9a:73:3c:21:b6:d7:f5:0f:22:d3:d2:81:a7:fa:08:2d:6f:ae: 7c:2c:37:61:95:0d:cd:30:ce:1c:a6:69:53:76:01:e9:90:a3: c3:30:45:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKWDDhqSpZ6fm3sc1fg+6rr1vb2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMURE MERDMTdGMjAeFw0yNTA4MjAwNTU3MjZaFw0yNjA4MTkwNjAyMjZaMDMxMTAvBgNV BAMTKEQ3MUY0RTRGMjg0QTcwQjBGMENDQzJFNEQzNTVEQUQ5RTYwREYwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT3ijEfD12CTmaMDAKhDk3JW0k 7yQpuqcR3CwMGAo7CwX0HJdBgV8ITZoW4LWmy0YoMw75sHJTtmcUymgoUUlrfYCW 1QNqre57Nm9vijYUnjZL3no/4/Q2rHskDrlXpje7LiV7X8pwlyMduxE0mdhiI/eQ fUOkjCUThxR7UJr5sPIvMtP1iTGA899guwDrCfGZLx9+Y1fkSO1limdpX7qw2+Oe xn1geLNCILRnU5fVxLKUr4g4YjSwRUfkJUvidE9DBfc57ut4L3b8gqnDX08I8ohT cAjdp9gXvsZ4L+bCapmsvr7H2ixxGKd9Y0yKy08lsatojTC/T3Piigk101XfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1x9OTyhKcLDwzMLk01Xa2eYN8BEwHwYDVR0j BBgwFoAUTdDJW0O4tlNgH+05qwEOHdDcF/IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Mjc4MGY4NS1lZjJmLTRjZjgtYTRiOC01MjI1YzQ1Yjk2YTEvMC80REQwQzk1QjQz QjhCNjUzNjAxRkVEMzlBQjAxMEUxREQwREMxN0YyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMUREMERD MTdGMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNzgwZjg1LWVmMmYtNGNmOC1h NGI4LTUyMjVjNDViOTZhMS8wLzMxMzAzMzJlMzYzNjJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCNzANBgkqhkiG 9w0BAQsFAAOCAQEAigtK8NCYyvT0pRzwdvTtlFgwxBz7PAoSnokEvuJrjqj6vMoK JLR7UFbJMhBYm4zP14ouF9/ywJiEyZKS8eL5w2wcp0sRcGqYwJGoJ40A1Hn4Dbzo TehszE/7AXJr66oH8OrYy7afrSCUADZl0W5H7Cxq1uT7RjjND5kiahMywqB8mrO8 DuxfwazgBIXTOfhWQ5Z+3mxH3BPwcW7DUTAajeBXVC2JNwu0NWjFwLVam5YYaM6s jTLolYWY2H4ag0WYO/5jkIHpZ31tCwgFRS+fzXS6ZOdNTO7ymnM8IbbX9Q8i09KB p/oILW+ufCw3YZUNzTDOHKZpU3YB6ZCjwzBFqg== -----END CERTIFICATE-----Generated at Mon Oct 20 21:21:02 2025 by rpki-client