$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa File: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (raw, json) Hash identifier: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM= Subject key identifier: 0D:B9:1E:94:88:B0:2F:62:5B:43:82:EA:F2:4D:F5:5E:B9:E2:07:E9 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 3566C517AC9A587800D36E062F820EDF3714E240 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa Signing time: Wed 20 Aug 2025 12:00:00 +0000 ROA not before: Wed 20 Aug 2025 11:55:00 +0000 ROA not after: Wed 19 Aug 2026 12:00:00 +0000 asID: 141081 IP address blocks: 103.156.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:66:c5:17:ac:9a:58:78:00:d3:6e:06:2f:82:0e:df:37:14:e2:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Aug 20 11:55:00 2025 GMT Not After : Aug 19 12:00:00 2026 GMT Subject: CN=0DB91E9488B02F625B4382EAF24DF55EB9E207E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6e:b1:08:03:ca:e5:d7:8c:a9:22:99:56:d4: a9:46:62:19:2c:2c:86:b0:77:33:77:39:49:97:c6: b5:f1:06:d3:c5:6d:34:53:1b:72:c8:3f:63:b3:44: f9:3b:b9:0e:b8:85:db:ef:ea:16:67:4f:dd:8b:85: c9:16:b5:08:f0:8f:fc:1f:3e:d2:c4:ae:40:15:c0: af:38:16:4d:f7:c1:e4:a0:2e:f9:8a:0c:6a:ae:28: 04:33:0e:aa:50:95:96:89:8b:a1:4e:95:f6:ec:e0: 92:19:46:37:30:a0:91:10:3f:1b:fe:fa:7a:39:15: ac:a5:13:f6:b9:44:dd:d3:34:5f:70:db:32:bc:8e: 94:db:65:12:47:68:87:a6:1b:ad:98:88:ee:33:fc: 29:61:9a:67:12:02:ec:3e:07:68:bc:ad:da:22:51: d4:21:8f:2e:23:2c:ae:21:8e:44:2a:bd:5e:06:9f: 0c:e4:53:5f:e5:4a:2e:54:b2:fa:a5:6d:f2:e0:d8: d4:4a:6c:97:55:61:73:2f:07:3d:e0:89:65:db:0e: f3:54:d4:52:3c:39:00:9f:ac:31:98:f9:77:90:c5: 7e:05:c7:b1:15:b8:a3:05:45:15:bf:f3:b5:4d:d3: 3c:99:e5:e0:bc:eb:7a:b4:e9:7a:56:e4:9b:e5:cf: f1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B9:1E:94:88:B0:2F:62:5B:43:82:EA:F2:4D:F5:5E:B9:E2:07:E9 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:57:65:a7:88:ee:44:3d:08:8c:95:9f:3d:38:26:1f:47:b4: 3c:db:75:c2:e4:e1:ad:cd:42:05:82:9d:19:99:78:c4:9b:0e: b3:00:93:8e:54:66:73:f3:1b:5d:ab:29:0c:76:d6:25:2a:a2: 34:da:c6:fd:c0:3f:a2:4c:ef:56:c6:00:8e:9b:df:89:d9:82: bf:1d:fa:c7:fa:f3:2c:be:25:e8:c0:ea:c3:ba:30:23:36:db: 68:84:4e:c5:0f:8f:d0:d3:b7:ef:ac:2e:d6:b2:1b:45:a0:78: c2:56:ef:3f:6a:79:41:f5:7d:6c:cc:68:ab:9c:9e:0a:84:58: dd:92:dd:b8:da:58:f3:b3:a5:10:48:34:6d:47:f0:68:ea:3e: 73:7a:d0:04:5b:8b:1c:c2:83:ff:a2:f4:22:02:e5:08:89:32: dd:79:4c:b7:19:7a:18:3c:32:06:fe:3c:3f:69:dd:dc:96:79: 74:0b:63:9a:7c:04:22:23:49:df:a8:d0:8b:41:cf:4b:f1:47: 4e:07:89:dd:e1:66:f2:66:ee:c8:8c:8f:62:b1:1d:27:d9:ec: 25:0c:1d:e3:e1:51:2a:44:01:71:ac:d9:5d:b1:68:08:4d:b3: a8:c5:91:a5:de:78:a4:02:0f:0f:fb:3f:c9:81:81:21:0f:15: 6b:93:a1:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNWbFF6yaWHgA024GL4IO3zcU4kAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA4MjAxMTU1MDBaFw0yNjA4MTkxMjAwMDBaMDMxMTAvBgNV BAMTKDBEQjkxRTk0ODhCMDJGNjI1QjQzODJFQUYyNERGNTVFQjlFMjA3RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJbrEIA8rl14ypIplW1KlGYhks LIawdzN3OUmXxrXxBtPFbTRTG3LIP2OzRPk7uQ64hdvv6hZnT92LhckWtQjwj/wf PtLErkAVwK84Fk33weSgLvmKDGquKAQzDqpQlZaJi6FOlfbs4JIZRjcwoJEQPxv+ +no5FaylE/a5RN3TNF9w2zK8jpTbZRJHaIemG62YiO4z/ClhmmcSAuw+B2i8rdoi UdQhjy4jLK4hjkQqvV4GnwzkU1/lSi5UsvqlbfLg2NRKbJdVYXMvBz3giWXbDvNU 1FI8OQCfrDGY+XeQxX4Fx7EVuKMFRRW/87VN0zyZ5eC863q06XpW5Jvlz/GDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDbkelIiwL2JbQ4Lq8k31XrniB+kwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQB6V2WniO5EPQiMlZ89OCYfR7Q823XC5OGtzUIFgp0ZmXjE mw6zAJOOVGZz8xtdqykMdtYlKqI02sb9wD+iTO9WxgCOm9+J2YK/HfrH+vMsviXo wOrDujAjNttohE7FD4/Q07fvrC7WshtFoHjCVu8/anlB9X1szGirnJ4KhFjdkt24 2ljzs6UQSDRtR/Bo6j5zetAEW4scwoP/ovQiAuUIiTLdeUy3GXoYPDIG/jw/ad3c lnl0C2OafAQiI0nfqNCLQc9L8UdOB4nd4WbyZu7IjI9isR0n2ewlDB3j4VEqRAFx rNldsWgITbOoxZGl3nikAg8P+z/JgYEhDxVrk6Gh -----END CERTIFICATE-----Generated at Sat Aug 23 20:11:11 2025 by rpki-client