$ rpki-client -vvf repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa File: 3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa (raw, json) Hash identifier: DxKIyMO6WjD2qxH8BuKIvj+fKDvOwuaoHadDVnwc7A0= Subject key identifier: A0:0F:6E:55:EA:A0:6F:D1:90:42:9E:4F:C2:9A:E2:9F:22:10:EA:BD Certificate issuer: /CN=42467B1885830A9908EAE67935311639B090AA77 Certificate serial: 2F8A1BB57F759C66FF823FF61F6426E841A6C17A Authority key identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa Signing time: Wed 20 Aug 2025 09:02:27 +0000 ROA not before: Wed 20 Aug 2025 08:57:27 +0000 ROA not after: Wed 19 Aug 2026 09:02:27 +0000 asID: 151577 IP address blocks: 103.76.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 05:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8a:1b:b5:7f:75:9c:66:ff:82:3f:f6:1f:64:26:e8:41:a6:c1:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42467B1885830A9908EAE67935311639B090AA77 Validity Not Before: Aug 20 08:57:27 2025 GMT Not After : Aug 19 09:02:27 2026 GMT Subject: CN=A00F6E55EAA06FD190429E4FC29AE29F2210EABD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ca:78:db:cc:b4:f8:cc:9f:5b:bd:d5:b1:25: 53:49:07:45:fd:3b:a5:07:ab:16:37:56:50:09:0c: ba:04:a2:1f:c6:c0:6f:b7:ef:99:0f:86:e6:4c:e2: d1:a6:ab:f8:e2:5d:8d:d4:eb:0d:c6:e3:11:6c:73: 53:f4:cc:65:37:ec:87:32:d9:46:d9:d0:0d:e6:24: 67:b1:d6:6d:d0:96:92:b5:7e:c3:0d:ed:ae:30:42: fc:c2:49:a7:e8:b9:a3:7a:74:30:6c:33:62:42:6b: c6:e9:c4:e5:77:aa:cb:3a:65:bb:4c:a3:bd:9b:42: 33:4e:1c:e0:05:20:46:33:8c:0e:36:a4:f7:62:40: 43:86:60:71:5a:55:dc:ad:40:c2:d3:73:65:65:dc: 64:c4:16:f0:4f:b7:4d:6c:26:78:1c:9f:db:00:22: f7:f6:a1:ca:21:b4:60:48:89:43:88:8a:1a:9f:4a: 58:79:bd:22:56:a1:26:81:52:e6:46:21:a7:8e:36: 27:32:d6:11:29:aa:21:8e:93:8a:a7:10:57:5f:a8: 08:f8:6a:a8:ec:6d:05:f1:84:16:00:18:2c:f9:2d: 8d:80:3b:18:39:bf:1d:dd:6c:27:74:8d:11:f6:88: 91:61:c9:44:99:e7:88:7b:f0:50:7a:ce:28:17:48: 9e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0F:6E:55:EA:A0:6F:D1:90:42:9E:4F:C2:9A:E2:9F:22:10:EA:BD X509v3 Authority Key Identifier: keyid:42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.106.0/23 Signature Algorithm: sha256WithRSAEncryption bd:63:3f:84:f6:9f:c3:f3:4c:4b:08:82:0f:b1:03:45:c1:12: cc:71:92:ea:22:a4:3c:f5:2d:29:5c:58:d1:b1:82:ec:47:9d: f0:fd:d5:d2:08:58:d5:ee:9d:53:84:1f:72:e2:5c:23:c3:f4: a1:50:c5:53:f3:a0:e8:dc:08:7c:6a:4b:09:03:76:98:5d:01: de:7e:a2:8c:20:8d:95:12:77:f0:f6:cb:aa:fa:54:9e:d5:f0: 50:46:64:ad:20:99:ca:d6:40:f3:53:51:bc:4f:a4:bc:49:e0: 2e:7f:8a:90:a1:28:9a:36:54:6c:95:62:5b:f9:93:63:f1:dd: 04:2e:b0:54:22:67:e5:52:fc:8a:f1:21:95:e8:d2:eb:4d:08: a0:93:11:c8:2b:f0:1c:93:e7:d2:8d:4f:bf:a6:3d:9c:7c:8f: 73:a5:56:36:b8:cb:55:16:7d:02:83:9b:98:12:7f:20:7f:9c: b4:1c:e4:16:c5:ff:22:98:3e:8d:d5:03:b4:b8:0a:fe:a5:c1: 84:79:9e:ef:b2:90:7c:8c:0c:3c:f4:34:16:35:ba:04:c5:03: 81:c6:27:54:9c:ae:3e:23:34:be:aa:aa:89:25:17:7b:e2:a7: 9d:35:17:8c:5e:bd:5e:3a:03:a2:99:2b:58:5c:04:3b:14:51: 04:60:bd:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL4obtX91nGb/gj/2H2Qm6EGmwXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlC MDkwQUE3NzAeFw0yNTA4MjAwODU3MjdaFw0yNjA4MTkwOTAyMjdaMDMxMTAvBgNV BAMTKEEwMEY2RTU1RUFBMDZGRDE5MDQyOUU0RkMyOUFFMjlGMjIxMEVBQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxynjbzLT4zJ9bvdWxJVNJB0X9 O6UHqxY3VlAJDLoEoh/GwG+375kPhuZM4tGmq/jiXY3U6w3G4xFsc1P0zGU37Icy 2UbZ0A3mJGex1m3QlpK1fsMN7a4wQvzCSafouaN6dDBsM2JCa8bpxOV3qss6ZbtM o72bQjNOHOAFIEYzjA42pPdiQEOGYHFaVdytQMLTc2Vl3GTEFvBPt01sJngcn9sA Ivf2ocohtGBIiUOIihqfSlh5vSJWoSaBUuZGIaeONicy1hEpqiGOk4qnEFdfqAj4 aqjsbQXxhBYAGCz5LY2AOxg5vx3dbCd0jRH2iJFhyUSZ54h78FB6zigXSJ79AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoA9uVeqgb9GQQp5PwprinyIQ6r0wHwYDVR0j BBgwFoAUQkZ7GIWDCpkI6uZ5NTEWObCQqncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWUyMDg4YS1jOWZmLTRkODQtYmU0ZS0xNDFkNWI4MGI1NDMvMC80MjQ2N0IxODg1 ODMwQTk5MDhFQUU2NzkzNTMxMTYzOUIwOTBBQTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlCMDkw QUE3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZTIwODhhLWM5ZmYtNGQ4NC1i ZTRlLTE0MWQ1YjgwYjU0My8wLzMxMzAzMzJlMzczNjJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0xqMA0GCSqG SIb3DQEBCwUAA4IBAQC9Yz+E9p/D80xLCIIPsQNFwRLMcZLqIqQ89S0pXFjRsYLs R53w/dXSCFjV7p1ThB9y4lwjw/ShUMVT86Do3Ah8aksJA3aYXQHefqKMII2VEnfw 9suq+lSe1fBQRmStIJnK1kDzU1G8T6S8SeAuf4qQoSiaNlRslWJb+ZNj8d0ELrBU ImflUvyK8SGV6NLrTQigkxHIK/Ack+fSjU+/pj2cfI9zpVY2uMtVFn0Cg5uYEn8g f5y0HOQWxf8imD6N1QO0uAr+pcGEeZ7vspB8jAw89DQWNboExQOBxidUnK4+IzS+ qqqJJRd74qedNReMXr1eOgOimStYXAQ7FFEEYL3G -----END CERTIFICATE-----Generated at Sat Aug 23 17:53:30 2025 by rpki-client