$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa File: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (raw, json) Hash identifier: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE= Subject key identifier: 95:C0:A1:0A:22:0E:94:4F:09:87:02:F2:B3:E7:8B:1D:5E:E4:C6:4C Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 50DF1D9B2E1E130E3464D5B91AEEC9141FE1F826 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa Signing time: Wed 20 Aug 2025 11:00:00 +0000 ROA not before: Wed 20 Aug 2025 10:55:00 +0000 ROA not after: Wed 19 Aug 2026 11:00:00 +0000 asID: 141081 IP address blocks: 103.156.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:df:1d:9b:2e:1e:13:0e:34:64:d5:b9:1a:ee:c9:14:1f:e1:f8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Aug 20 10:55:00 2025 GMT Not After : Aug 19 11:00:00 2026 GMT Subject: CN=95C0A10A220E944F098702F2B3E78B1D5EE4C64C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a1:a2:5c:40:3b:58:7d:bc:59:5e:26:64:1e: 71:3f:5c:ac:c2:1a:76:fe:23:ab:68:9c:94:a3:c8: 41:59:02:1f:85:c5:27:0c:a7:d4:a9:3b:c6:f0:36: c7:b8:ba:b5:e1:6b:4d:95:da:7a:5d:e7:58:59:52: 52:8c:36:e5:d3:19:61:78:a8:57:9c:08:0c:e8:05: 9e:1c:dc:f0:00:9f:32:f0:99:f1:d3:14:10:83:d6: 4c:ee:f1:7b:ee:f0:a1:72:58:28:dd:9b:08:bb:81: 7d:92:fa:43:ee:57:fb:ae:3e:8c:75:31:f1:6e:16: 9e:df:6f:f5:8a:a2:31:16:14:0b:0a:2b:9f:1c:56: 16:25:48:a4:1a:18:50:c0:7e:dc:e0:83:08:4c:d7: e9:84:e6:42:57:bd:72:67:90:39:e4:6e:a2:4a:31: 32:69:c7:6d:a1:16:58:be:01:b4:f9:c9:16:42:17: 6e:30:64:0f:6e:f2:75:75:ff:af:4f:dd:bb:fb:71: 9f:23:1c:00:cc:1f:8a:98:b6:ad:73:5d:13:b6:59: e8:91:89:07:3f:ca:5b:04:16:33:2a:9c:ee:51:4f: e7:90:ba:09:46:4c:f8:22:f2:08:a2:2a:1b:7e:86: 4f:e0:87:32:94:74:cb:b5:ca:9b:2e:af:1a:90:09: 45:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C0:A1:0A:22:0E:94:4F:09:87:02:F2:B3:E7:8B:1D:5E:E4:C6:4C X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.71.0/24 Signature Algorithm: sha256WithRSAEncryption 94:8a:76:32:ec:20:cc:67:66:79:d7:c9:39:68:a9:3b:29:d7: 2f:0f:2b:08:a7:ba:8c:5d:94:60:37:5d:91:11:30:ea:42:51: 7c:5a:66:d0:2e:fb:1e:eb:e8:da:cf:35:94:86:9f:8a:d8:04: 7f:a4:46:2f:7b:20:ab:cb:52:db:a1:7d:71:e3:9f:8e:b1:6a: ec:74:f1:a0:63:44:5b:7e:8b:59:24:3f:4e:6c:0a:81:a1:b3: 5d:73:14:fb:67:85:40:ef:17:0a:e6:02:8f:f5:1a:04:10:4f: 8d:60:d3:80:81:f8:d8:c7:9b:f1:86:b6:99:85:57:fd:22:ca: fb:4b:b9:9e:04:b3:66:b5:8d:89:86:77:e4:b0:44:e2:a4:43: b6:a7:2d:4e:76:c8:53:f7:4b:d1:6f:35:e5:30:90:53:f9:ff: 4a:8e:6e:9d:82:5e:db:66:49:cf:2e:6f:90:2c:da:1f:1f:c6: d0:c2:ff:ab:25:d0:9e:50:06:08:ec:01:a3:c8:73:7d:b1:46: cf:3e:3c:20:20:a6:fd:ab:1c:0f:4f:34:a0:5c:62:5f:21:3d: 2b:cd:89:44:38:16:ff:01:d6:ae:8f:79:47:b9:16:57:fb:0a: cd:ff:eb:bd:cf:8c:1f:d8:f7:9d:e2:9d:79:b9:05:20:b1:c0: b3:ae:0f:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUN8dmy4eEw40ZNW5Gu7JFB/h+CYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA4MjAxMDU1MDBaFw0yNjA4MTkxMTAwMDBaMDMxMTAvBgNV BAMTKDk1QzBBMTBBMjIwRTk0NEYwOTg3MDJGMkIzRTc4QjFENUVFNEM2NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUoaJcQDtYfbxZXiZkHnE/XKzC Gnb+I6tonJSjyEFZAh+FxScMp9SpO8bwNse4urXha02V2npd51hZUlKMNuXTGWF4 qFecCAzoBZ4c3PAAnzLwmfHTFBCD1kzu8Xvu8KFyWCjdmwi7gX2S+kPuV/uuPox1 MfFuFp7fb/WKojEWFAsKK58cVhYlSKQaGFDAftzggwhM1+mE5kJXvXJnkDnkbqJK MTJpx22hFli+AbT5yRZCF24wZA9u8nV1/69P3bv7cZ8jHADMH4qYtq1zXRO2WeiR iQc/ylsEFjMqnO5RT+eQuglGTPgi8giiKht+hk/ghzKUdMu1ypsurxqQCUXtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlcChCiIOlE8JhwLys+eLHV7kxkwwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xHMA0GCSqG SIb3DQEBCwUAA4IBAQCUinYy7CDMZ2Z518k5aKk7KdcvDysIp7qMXZRgN12RETDq QlF8WmbQLvse6+jazzWUhp+K2AR/pEYveyCry1LboX1x45+OsWrsdPGgY0RbfotZ JD9ObAqBobNdcxT7Z4VA7xcK5gKP9RoEEE+NYNOAgfjYx5vxhraZhVf9Isr7S7me BLNmtY2JhnfksETipEO2py1OdshT90vRbzXlMJBT+f9Kjm6dgl7bZknPLm+QLNof H8bQwv+rJdCeUAYI7AGjyHN9sUbPPjwgIKb9qxwPTzSgXGJfIT0rzYlEOBb/Adau j3lHuRZX+wrN/+u9z4wf2Ped4p15uQUgscCzrg+E -----END CERTIFICATE-----Generated at Sat Aug 23 20:10:57 2025 by rpki-client