$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa File: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: HLjZFq4/Jnmag82Gv7W9QKBRIGp+gW90e9wOgTOi2PE= Subject key identifier: 27:C7:6D:0D:87:CC:34:A3:49:38:BB:85:53:36:55:B8:14:2A:F4:27 Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 64D369C2B5E2DC7520661D540D1C962D294CF661 Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa Signing time: Mon 11 Aug 2025 16:02:28 +0000 ROA not before: Mon 11 Aug 2025 15:57:28 +0000 ROA not after: Mon 10 Aug 2026 16:02:28 +0000 asID: 141607 IP address blocks: 103.160.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d3:69:c2:b5:e2:dc:75:20:66:1d:54:0d:1c:96:2d:29:4c:f6:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: Aug 11 15:57:28 2025 GMT Not After : Aug 10 16:02:28 2026 GMT Subject: CN=27C76D0D87CC34A34938BB85533655B8142AF427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:fb:54:ad:de:2e:90:a5:8d:08:64:1d:87: 21:bd:2b:94:7b:d2:ce:5a:ba:02:04:c6:9b:21:50: f3:28:c2:4d:a7:9e:57:45:cb:f4:90:ec:47:c0:ba: 1e:6d:d0:be:ca:b6:84:63:b2:3f:f7:8c:7d:8d:8b: 21:bc:14:7e:43:4c:5b:74:35:17:36:58:1b:e5:8e: 09:af:b0:32:ae:e7:c7:07:e7:15:8d:3a:9f:11:8c: 34:a1:20:31:c2:63:f7:ba:78:26:8f:6e:ca:bc:6d: b5:41:57:8e:f5:e4:c3:a0:f9:71:25:9e:f0:15:f0: 43:c9:d5:43:98:78:01:d9:2c:97:bd:79:cf:38:c0: 70:cf:f3:72:c1:cb:12:1e:0b:36:cc:16:ec:e1:96: 7e:11:d4:43:ae:f5:3b:d2:91:c3:1d:b9:56:82:2c: 95:b5:9e:84:10:64:3a:ae:ad:44:2a:45:22:16:0d: 3c:d4:89:cb:aa:9f:57:02:7b:1a:44:a0:08:e1:54: 44:e1:ce:9c:32:f7:15:db:2c:46:0a:c6:0e:97:38: d9:a6:bc:c0:b1:59:b7:4e:75:4d:c0:35:50:4f:e5: 7d:66:2c:a8:7a:4c:b8:0e:c6:45:df:54:06:75:11: 6f:cd:2a:68:46:8a:fc:7c:62:d1:cc:bc:d2:d9:64: a7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C7:6D:0D:87:CC:34:A3:49:38:BB:85:53:36:55:B8:14:2A:F4:27 X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.69.0/24 Signature Algorithm: sha256WithRSAEncryption 57:55:6a:84:75:6c:bb:02:27:b5:cf:9e:5f:38:13:cf:46:75: bc:f0:bb:da:1f:e4:37:67:34:1f:df:78:5c:b4:b3:79:66:d7: 78:71:10:b8:d7:aa:d3:e9:81:7c:db:8c:d1:fa:68:ff:3d:9f: a6:c3:7d:02:67:14:a8:9f:f8:27:27:53:df:bb:49:4f:1b:23: c5:2f:d0:70:f5:1a:0b:25:1d:28:cf:a1:05:17:78:58:c1:ed: 90:05:72:9c:38:6d:ee:2d:4e:17:42:ea:32:13:20:54:f2:5e: 1e:4b:64:b4:62:43:20:25:10:0f:61:2c:60:b5:cd:63:a6:3d: 03:3d:a1:2f:29:d9:87:ea:5c:0e:ec:50:17:3f:6a:a7:1c:0b: 69:6f:9e:5c:63:f5:32:90:9f:d3:83:1a:ff:f0:77:6b:e0:62: 24:ab:e0:c9:04:29:b8:cb:e4:29:68:96:3d:d8:6b:ce:cd:09: 2f:d7:75:fc:16:44:56:85:70:6b:82:5f:7c:ac:df:e1:7d:91: 2b:d0:18:21:ea:2b:68:91:6e:c9:5d:9c:1c:47:9b:fd:be:36: c8:c7:77:81:67:75:f2:88:47:26:45:89:d5:da:c6:30:4f:a0: 5f:80:10:29:1e:b5:4c:f6:17:d0:65:e5:14:87:76:5c:18:49: dc:31:ac:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZNNpwrXi3HUgZh1UDRyWLSlM9mEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNTA4MTExNTU3MjhaFw0yNjA4MTAxNjAyMjhaMDMxMTAvBgNV BAMTKDI3Qzc2RDBEODdDQzM0QTM0OTM4QkI4NTUzMzY1NUI4MTQyQUY0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4x/tUrd4ukKWNCGQdhyG9K5R7 0s5augIExpshUPMowk2nnldFy/SQ7EfAuh5t0L7KtoRjsj/3jH2NiyG8FH5DTFt0 NRc2WBvljgmvsDKu58cH5xWNOp8RjDShIDHCY/e6eCaPbsq8bbVBV4715MOg+XEl nvAV8EPJ1UOYeAHZLJe9ec84wHDP83LByxIeCzbMFuzhln4R1EOu9TvSkcMduVaC LJW1noQQZDqurUQqRSIWDTzUicuqn1cCexpEoAjhVEThzpwy9xXbLEYKxg6XONmm vMCxWbdOdU3ANVBP5X1mLKh6TLgOxkXfVAZ1EW/NKmhGivx8YtHMvNLZZKfJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ8dtDYfMNKNJOLuFUzZVuBQq9CcwHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhYzc5ZmJlLTQ3OTAtNDZiZS1i OWIyLTAzNTliMWExOGUzMy8wLzMxMzAzMzJlMzEzNjMwMmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6BFMA0GCSqG SIb3DQEBCwUAA4IBAQBXVWqEdWy7Aie1z55fOBPPRnW88LvaH+Q3ZzQf33hctLN5 Ztd4cRC416rT6YF824zR+mj/PZ+mw30CZxSon/gnJ1Pfu0lPGyPFL9Bw9RoLJR0o z6EFF3hYwe2QBXKcOG3uLU4XQuoyEyBU8l4eS2S0YkMgJRAPYSxgtc1jpj0DPaEv KdmH6lwO7FAXP2qnHAtpb55cY/UykJ/Tgxr/8Hdr4GIkq+DJBCm4y+QpaJY92GvO zQkv13X8FkRWhXBrgl98rN/hfZEr0Bgh6itokW7JXZwcR5v9vjbIx3eBZ3XyiEcm RYnV2sYwT6BfgBApHrVM9hfQZeUUh3ZcGEncMayh -----END CERTIFICATE-----Generated at Sun Aug 24 04:25:50 2025 by rpki-client