$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32342d3234203d3e203436303233.roa File: 3130332e32342e3130342e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: 9d4Ahybo//xTmpbdLHDqoyzgv8f31YhkbQoP7qL6aIQ= Subject key identifier: EF:70:5F:21:EE:B2:3F:3D:6B:22:74:E2:83:54:04:41:8A:F2:FB:5F Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 47F66BA54C25EE3D87A0A8670A7868E6F79757E3 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32342d3234203d3e203436303233.roa Signing time: Mon 14 Jul 2025 16:00:03 +0000 ROA not before: Mon 14 Jul 2025 15:55:03 +0000 ROA not after: Mon 13 Jul 2026 16:00:03 +0000 asID: 46023 IP address blocks: 103.24.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f6:6b:a5:4c:25:ee:3d:87:a0:a8:67:0a:78:68:e6:f7:97:57:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Jul 14 15:55:03 2025 GMT Not After : Jul 13 16:00:03 2026 GMT Subject: CN=EF705F21EEB23F3D6B2274E2835404418AF2FB5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:73:96:b9:a5:ff:9f:3a:d9:5d:1e:d6:c4: 2c:56:f8:a7:d6:82:44:ec:6a:93:90:ab:8f:85:52: 68:0a:78:83:43:13:c7:0f:17:01:dd:19:12:52:f3: 77:04:b3:fc:58:26:20:27:e4:55:85:1f:bb:60:4a: 5e:16:89:9f:64:68:1f:b3:f5:82:34:10:67:85:05: a5:49:0d:66:b8:35:85:01:c2:0b:c9:91:66:b7:84: e6:8f:18:d2:fe:b5:b2:05:7c:0a:16:c0:b4:18:04: c7:0f:0e:fc:78:85:7d:b6:ff:24:f9:c4:6e:58:11: ca:ed:50:a4:6a:ef:5e:3c:53:87:52:12:f2:a2:3f: 9c:8c:3d:2d:cd:0a:f8:8b:1b:b4:38:dd:fb:cb:0b: 86:92:10:cc:d2:0e:ad:c3:b4:27:3f:57:27:25:68: 94:a3:7d:32:e6:9e:f7:16:eb:8e:28:7c:3e:ed:0a: 64:65:cc:9f:80:6a:0f:67:70:fc:8d:6f:cf:84:f0: f5:3a:22:85:05:1b:3d:53:be:e1:c5:6e:8d:76:3d: 45:09:89:7c:7c:9f:8c:6d:9e:49:8b:3a:f1:48:51: 0d:42:26:6c:fc:d9:2b:8c:d0:b1:4c:98:d5:bf:4a: a3:48:ef:e9:94:42:2a:0e:b9:ec:6e:3c:c3:1f:c5: f9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:70:5F:21:EE:B2:3F:3D:6B:22:74:E2:83:54:04:41:8A:F2:FB:5F X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.104.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:02:db:fd:ae:31:65:6b:ea:37:53:8c:3b:5d:2a:2b:79:f3: a2:53:7b:f0:78:ca:ab:d4:e5:1a:5d:7c:df:5a:61:ab:52:74: 64:b9:fc:40:90:6e:5f:62:19:85:04:0d:b2:0d:a4:c0:64:b8: d9:fe:04:46:52:c7:db:ff:0f:de:04:8d:e3:2e:17:8a:70:aa: ee:9e:d0:e0:17:df:0f:ca:da:fe:7c:1e:ad:34:cd:e1:29:01: ba:f9:38:1c:01:87:74:22:86:58:a9:43:ed:0d:e7:a4:19:cc: c5:9d:4f:f5:93:f9:01:4a:9e:5c:e1:c7:37:74:24:b1:94:75: 8e:b7:f9:f5:07:02:a6:6f:5f:a5:40:30:42:41:bd:3f:29:b8: 93:fe:bb:24:78:64:92:c5:6b:40:0c:a5:90:4c:b8:53:1f:0d: a6:8b:25:cc:8f:20:15:03:54:05:20:77:7f:b2:4f:a3:82:b0: 20:b8:dc:41:4f:b1:91:c4:59:24:e1:c4:04:2f:5c:c5:29:7b: d6:50:f8:07:c4:90:08:22:47:f5:d5:96:f6:6a:9a:59:d2:cb: e7:c7:8b:86:80:53:6d:03:69:dd:6a:95:74:cd:b4:39:b2:c2: b2:ba:10:1b:7e:bd:b5:c9:72:c5:89:4f:4e:e6:09:c4:ee:f4: c2:35:b9:3f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR/ZrpUwl7j2HoKhnCnho5veXV+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTA3MTQxNTU1MDNaFw0yNjA3MTMxNjAwMDNaMDMxMTAvBgNV BAMTKEVGNzA1RjIxRUVCMjNGM0Q2QjIyNzRFMjgzNTQwNDQxOEFGMkZCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkxXOWuaX/nzrZXR7WxCxW+KfW gkTsapOQq4+FUmgKeINDE8cPFwHdGRJS83cEs/xYJiAn5FWFH7tgSl4WiZ9kaB+z 9YI0EGeFBaVJDWa4NYUBwgvJkWa3hOaPGNL+tbIFfAoWwLQYBMcPDvx4hX22/yT5 xG5YEcrtUKRq7148U4dSEvKiP5yMPS3NCviLG7Q43fvLC4aSEMzSDq3DtCc/Vycl aJSjfTLmnvcW644ofD7tCmRlzJ+Aag9ncPyNb8+E8PU6IoUFGz1TvuHFbo12PUUJ iXx8n4xtnkmLOvFIUQ1CJmz82SuM0LFMmNW/SqNI7+mUQioOuexuPMMfxfkhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU73BfIe6yPz1rInTig1QEQYry+18wHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzAzMzJlMzIzNDJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcYaDANBgkqhkiG 9w0BAQsFAAOCAQEAiwLb/a4xZWvqN1OMO10qK3nzolN78HjKq9TlGl1831phq1J0 ZLn8QJBuX2IZhQQNsg2kwGS42f4ERlLH2/8P3gSN4y4XinCq7p7Q4BffD8ra/nwe rTTN4SkBuvk4HAGHdCKGWKlD7Q3npBnMxZ1P9ZP5AUqeXOHHN3QksZR1jrf59QcC pm9fpUAwQkG9Pym4k/67JHhkksVrQAylkEy4Ux8NposlzI8gFQNUBSB3f7JPo4Kw ILjcQU+xkcRZJOHEBC9cxSl71lD4B8SQCCJH9dWW9mqaWdLL58eLhoBTbQNp3WqV dM20ObLCsroQG369tclyxYlPTuYJxO70wjW5Pw== -----END CERTIFICATE-----Generated at Mon Jul 21 08:02:03 2025 by rpki-client