$ rpki-client -vvf repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa File: 3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa (raw, json) Hash identifier: ZWtRALMquKEFwYIWcUiF1poTwDnT8MPEPPx4FTc8PK0= Subject key identifier: BA:EC:32:BB:07:51:1D:31:A1:D3:42:FE:6D:54:D2:B1:F1:0A:BB:95 Certificate issuer: /CN=42467B1885830A9908EAE67935311639B090AA77 Certificate serial: 699AF2CC39B173CFF7F67F677D045D2C2811FAD3 Authority key identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa Signing time: Fri 22 Aug 2025 02:00:01 +0000 ROA not before: Fri 22 Aug 2025 01:55:01 +0000 ROA not after: Fri 21 Aug 2026 02:00:01 +0000 asID: 151577 IP address blocks: 103.76.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 05:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9a:f2:cc:39:b1:73:cf:f7:f6:7f:67:7d:04:5d:2c:28:11:fa:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42467B1885830A9908EAE67935311639B090AA77 Validity Not Before: Aug 22 01:55:01 2025 GMT Not After : Aug 21 02:00:01 2026 GMT Subject: CN=BAEC32BB07511D31A1D342FE6D54D2B1F10ABB95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:86:1e:e2:9b:d5:f8:16:c0:ca:ae:c4:ce: 2d:c8:3a:77:96:98:88:63:56:50:e9:a5:b1:24:16: 65:5b:d8:46:75:02:29:af:6d:01:43:bb:36:24:38: 7c:06:2a:9f:5f:9f:e2:1e:63:18:94:ce:4e:57:ad: ac:c4:52:09:8d:2d:af:d2:13:29:9d:27:9d:a5:81: ed:b5:49:1b:4b:92:51:d0:75:db:7b:80:e4:94:31: c4:c1:b0:7a:b2:52:e8:a4:fa:63:34:97:29:f0:d8: b6:ec:b7:be:2b:5d:96:e9:72:ff:d9:ba:56:bd:28: a6:8f:55:c8:c1:a2:69:55:36:34:23:27:5b:b6:d9: 60:66:e9:46:37:63:01:16:28:68:85:6b:c7:e7:27: 10:fa:1b:ff:8f:77:11:3c:71:a8:d2:9d:79:3c:4f: 46:ab:cb:fe:44:f4:a2:a0:5b:c0:08:e4:13:4a:8a: 7c:38:b9:df:73:c4:11:9c:8d:4b:c4:9c:b6:76:27: 9e:f1:70:d8:6f:48:6c:6e:26:e2:05:1a:9c:52:39: 48:f4:ad:76:c4:9d:4d:32:99:09:09:e1:25:8b:61: 79:df:80:29:7d:fe:74:4b:10:51:8f:81:cf:1e:70: e2:7b:94:b7:d5:48:65:f7:2d:0f:d8:3e:4e:e3:ee: 71:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EC:32:BB:07:51:1D:31:A1:D3:42:FE:6D:54:D2:B1:F1:0A:BB:95 X509v3 Authority Key Identifier: keyid:42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.107.0/24 Signature Algorithm: sha256WithRSAEncryption 17:8d:d9:b2:3d:d1:ee:34:a9:99:6d:08:60:8a:40:6f:98:b1: 22:a2:f0:81:76:73:c2:b5:ec:f2:be:47:50:3f:1c:4b:14:ad: 75:48:0d:21:97:66:5c:d9:df:6a:56:75:9f:3b:a0:0f:bc:fc: 51:92:72:72:1a:8b:71:d9:df:3d:68:76:7e:97:f8:51:a3:68: b1:9c:cb:4f:40:a2:72:7e:9e:19:cb:4c:03:63:dd:fe:28:94: 94:0e:1d:91:4a:d5:68:96:06:f5:38:51:bb:6c:ac:e2:66:5b: 1b:02:d5:53:1a:5a:6c:56:21:6f:20:6a:8b:f7:68:18:04:1b: fc:ab:c0:bd:81:1f:a4:d2:8d:5b:3b:ef:1b:50:37:ff:c1:cb: 21:a7:ab:06:3d:f9:0d:24:5a:aa:ee:4d:8e:9d:8f:f6:24:17: 1d:95:0b:d0:30:5e:93:2a:2d:35:5f:da:bc:5c:11:c1:6b:be: 82:ac:6d:d9:c2:79:27:80:4f:25:74:fd:78:f3:b7:82:f8:cf: dd:b5:e1:e5:a1:67:04:39:a7:c1:62:e6:d1:b3:5c:46:3c:64: 8b:20:70:e2:22:83:80:78:97:0a:d3:dd:92:d0:e1:dd:bd:df: f4:9d:e7:a4:ea:d3:8f:3e:16:c4:2f:e6:7c:31:72:4b:8d:9b: f3:52:29:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaZryzDmxc8/39n9nfQRdLCgR+tMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlC MDkwQUE3NzAeFw0yNTA4MjIwMTU1MDFaFw0yNjA4MjEwMjAwMDFaMDMxMTAvBgNV BAMTKEJBRUMzMkJCMDc1MTFEMzFBMUQzNDJGRTZENTREMkIxRjEwQUJCOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQYYe4pvV+BbAyq7Ezi3IOneW mIhjVlDppbEkFmVb2EZ1AimvbQFDuzYkOHwGKp9fn+IeYxiUzk5XrazEUgmNLa/S EymdJ52lge21SRtLklHQddt7gOSUMcTBsHqyUuik+mM0lynw2Lbst74rXZbpcv/Z ula9KKaPVcjBomlVNjQjJ1u22WBm6UY3YwEWKGiFa8fnJxD6G/+PdxE8cajSnXk8 T0ary/5E9KKgW8AI5BNKinw4ud9zxBGcjUvEnLZ2J57xcNhvSGxuJuIFGpxSOUj0 rXbEnU0ymQkJ4SWLYXnfgCl9/nRLEFGPgc8ecOJ7lLfVSGX3LQ/YPk7j7nHfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuuwyuwdRHTGh00L+bVTSsfEKu5UwHwYDVR0j BBgwFoAUQkZ7GIWDCpkI6uZ5NTEWObCQqncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWUyMDg4YS1jOWZmLTRkODQtYmU0ZS0xNDFkNWI4MGI1NDMvMC80MjQ2N0IxODg1 ODMwQTk5MDhFQUU2NzkzNTMxMTYzOUIwOTBBQTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlCMDkw QUE3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZTIwODhhLWM5ZmYtNGQ4NC1i ZTRlLTE0MWQ1YjgwYjU0My8wLzMxMzAzMzJlMzczNjJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0xrMA0GCSqG SIb3DQEBCwUAA4IBAQAXjdmyPdHuNKmZbQhgikBvmLEiovCBdnPCtezyvkdQPxxL FK11SA0hl2Zc2d9qVnWfO6APvPxRknJyGotx2d89aHZ+l/hRo2ixnMtPQKJyfp4Z y0wDY93+KJSUDh2RStVolgb1OFG7bKziZlsbAtVTGlpsViFvIGqL92gYBBv8q8C9 gR+k0o1bO+8bUDf/wcshp6sGPfkNJFqq7k2OnY/2JBcdlQvQMF6TKi01X9q8XBHB a76CrG3ZwnkngE8ldP1487eC+M/dteHloWcEOafBYubRs1xGPGSLIHDiIoOAeJcK 092S0OHdvd/0neek6tOPPhbEL+Z8MXJLjZvzUin7 -----END CERTIFICATE-----Generated at Sat Aug 23 15:42:22 2025 by rpki-client