$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa File: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (raw, json) Hash identifier: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ= Subject key identifier: 28:EF:B7:4D:D4:6E:94:66:9F:64:5E:F3:C2:45:A6:22:A2:00:0D:2C Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 3AF71C443BE1EA17BCB5C82417F84AB9BBAAEC4E Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa Signing time: Wed 20 Aug 2025 13:00:00 +0000 ROA not before: Wed 20 Aug 2025 12:55:00 +0000 ROA not after: Wed 19 Aug 2026 13:00:00 +0000 asID: 141081 IP address blocks: 103.156.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f7:1c:44:3b:e1:ea:17:bc:b5:c8:24:17:f8:4a:b9:bb:aa:ec:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Aug 20 12:55:00 2025 GMT Not After : Aug 19 13:00:00 2026 GMT Subject: CN=28EFB74DD46E94669F645EF3C245A622A2000D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:90:0a:28:a2:ed:9b:a0:e4:5b:97:1f:ed: bb:e3:94:1d:6e:ea:e6:47:e1:98:57:58:56:bf:ce: ca:b7:60:89:53:41:4b:c3:04:86:ca:0b:1a:46:9b: 23:25:3e:cb:df:63:d3:4a:09:0f:c1:52:4e:b8:fd: da:92:fd:dd:23:44:d9:77:41:1e:f5:6e:37:54:0f: b1:1c:ea:f2:03:59:03:29:18:b2:83:bd:31:57:ce: 4b:6a:8e:30:93:89:63:98:53:5c:2b:92:67:0c:d3: 28:f7:99:c0:05:6b:25:ba:54:2d:46:ed:d0:33:b3: 42:99:13:d9:e7:cb:fc:fe:b4:f3:be:da:5f:33:70: f3:d5:a2:d2:b6:5d:75:48:5d:97:46:19:ab:83:1c: d0:76:24:78:74:f0:2d:6b:a9:4d:bb:67:4a:4b:ef: d8:a9:b4:71:9d:5a:cf:e5:1a:ca:ea:87:64:0f:72: 00:3c:4b:e5:2e:d9:74:e8:40:23:13:fa:1a:18:bb: 9d:e8:09:f0:9f:fe:36:42:fe:b7:16:96:e4:1f:e5: 23:54:a4:4c:d6:77:e9:b5:b3:d3:2b:37:90:3b:67: 8d:7e:67:aa:79:41:5c:4b:8e:54:21:60:bd:61:e7: 0b:77:96:46:cf:b8:54:c0:fa:4d:ac:71:23:dd:88: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EF:B7:4D:D4:6E:94:66:9F:64:5E:F3:C2:45:A6:22:A2:00:0D:2C X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/23 Signature Algorithm: sha256WithRSAEncryption 55:74:5f:24:bb:d1:7c:24:03:c4:9f:23:e3:c7:30:07:c9:67: a4:51:8b:bf:d9:11:a3:4d:b3:76:bb:fc:8b:c1:ab:15:a4:08: c6:b7:8a:f8:b2:c2:68:a8:7d:39:de:ad:b2:fa:91:85:1f:50: 9c:50:c0:03:95:70:c6:18:3b:23:d6:1b:20:bc:80:e8:ab:5b: 53:40:0d:4e:45:a1:62:ff:77:85:e3:01:ba:68:b2:6c:34:48: a9:37:ed:0c:c5:c6:79:88:72:62:b4:db:18:6e:99:ca:fe:11: 99:e9:e2:6a:12:f6:1d:3f:34:54:79:8f:19:b3:e1:1c:da:1a: 3f:9e:ea:78:25:9a:d9:ab:ae:71:90:4b:e5:b5:e2:bf:c2:88: 6d:b7:ea:ce:a8:93:54:b2:2a:c5:2b:12:07:99:4e:7f:76:78: 4b:e8:81:fb:6f:27:fc:b0:7a:a9:22:86:a6:c1:8a:b9:40:04: e0:32:b8:cf:e1:d6:70:f6:e3:f2:a3:1e:36:be:ce:20:df:de: 5c:47:bb:f8:6d:3a:00:57:c5:80:0d:83:8b:a1:42:a1:15:3c: 07:2d:1a:f0:ed:58:e9:b4:42:8c:fe:eb:05:a5:80:e5:ef:bb: d2:fe:63:ff:1d:52:10:9d:73:a1:bd:47:27:8f:26:92:c8:b3: 51:4e:4e:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOvccRDvh6he8tcgkF/hKubuq7E4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA4MjAxMjU1MDBaFw0yNjA4MTkxMzAwMDBaMDMxMTAvBgNV BAMTKDI4RUZCNzRERDQ2RTk0NjY5RjY0NUVGM0MyNDVBNjIyQTIwMDBEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC64pAKKKLtm6DkW5cf7bvjlB1u 6uZH4ZhXWFa/zsq3YIlTQUvDBIbKCxpGmyMlPsvfY9NKCQ/BUk64/dqS/d0jRNl3 QR71bjdUD7Ec6vIDWQMpGLKDvTFXzktqjjCTiWOYU1wrkmcM0yj3mcAFayW6VC1G 7dAzs0KZE9nny/z+tPO+2l8zcPPVotK2XXVIXZdGGauDHNB2JHh08C1rqU27Z0pL 79iptHGdWs/lGsrqh2QPcgA8S+Uu2XToQCMT+hoYu53oCfCf/jZC/rcWluQf5SNU pEzWd+m1s9MrN5A7Z41+Z6p5QVxLjlQhYL1h5wt3lkbPuFTA+k2scSPdiL5JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKO+3TdRulGafZF7zwkWmIqIADSwwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQBVdF8ku9F8JAPEnyPjxzAHyWekUYu/2RGjTbN2u/yLwasV pAjGt4r4ssJoqH053q2y+pGFH1CcUMADlXDGGDsj1hsgvIDoq1tTQA1ORaFi/3eF 4wG6aLJsNEipN+0MxcZ5iHJitNsYbpnK/hGZ6eJqEvYdPzRUeY8Zs+Ec2ho/nup4 JZrZq65xkEvlteK/wohtt+rOqJNUsirFKxIHmU5/dnhL6IH7byf8sHqpIoamwYq5 QATgMrjP4dZw9uPyox42vs4g395cR7v4bToAV8WADYOLoUKhFTwHLRrw7VjptEKM /usFpYDl77vS/mP/HVIQnXOhvUcnjyaSyLNRTk5l -----END CERTIFICATE-----Generated at Sat Aug 23 20:09:25 2025 by rpki-client