$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130372e302f32342d3234203d3e203436303233.roa File: 3130332e32342e3130372e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: 1ubegA0v0Yo9muCttBAys2d8VRGial77vQAMM/VReBM= Subject key identifier: 94:C8:E8:2D:C3:E0:7D:CA:F1:FC:1F:CA:F1:44:B3:F0:83:65:5E:29 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 5C6F35F48EAD8BBB3B1E550FD2148D303638AAE6 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130372e302f32342d3234203d3e203436303233.roa Signing time: Mon 14 Jul 2025 16:00:03 +0000 ROA not before: Mon 14 Jul 2025 15:55:03 +0000 ROA not after: Mon 13 Jul 2026 16:00:03 +0000 asID: 46023 IP address blocks: 103.24.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:6f:35:f4:8e:ad:8b:bb:3b:1e:55:0f:d2:14:8d:30:36:38:aa:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Jul 14 15:55:03 2025 GMT Not After : Jul 13 16:00:03 2026 GMT Subject: CN=94C8E82DC3E07DCAF1FC1FCAF144B3F083655E29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:48:b7:5a:d4:ce:a8:33:3c:c1:88:83:f4: 7e:68:92:a4:3e:1e:11:5c:ff:4a:cc:e9:ee:eb:bd: a7:c3:5c:1b:8b:20:8a:c0:df:66:fe:22:11:bc:36: 2d:bc:83:53:28:93:bb:c8:1e:01:16:f6:89:04:49: 76:9b:45:5a:8a:e1:66:c2:d1:b3:4e:3a:1b:74:9a: ed:ba:6c:e3:a1:b5:fe:7e:b0:32:e6:6d:8b:df:aa: 86:e2:f5:a6:68:4b:39:c9:27:b2:4d:94:43:ae:4d: e4:75:1b:5a:15:3c:27:b7:e0:f9:3f:e1:d2:df:7b: 29:7d:a6:86:d0:0b:cb:04:60:f7:30:b6:5c:51:ee: 5f:e8:d7:c1:d4:94:4c:ff:a7:10:07:bf:e5:43:42: 05:04:a3:c6:90:3f:e4:ac:cc:52:3d:1a:61:e0:5e: 8f:02:40:5e:0b:78:6e:50:3a:32:d0:72:1a:29:c9: 88:e5:4e:05:b8:6b:73:a2:83:6b:9d:b0:a8:83:26: cb:21:d2:05:44:0b:da:4d:1b:e4:dd:9b:66:3d:24: b2:cb:d6:20:32:86:4b:a6:53:b8:84:31:20:e5:a6: d8:de:e2:50:bd:a6:33:0c:aa:3f:4c:e7:14:2c:a2: e9:fd:53:48:f5:92:f1:56:45:17:55:66:6f:fd:9a: fa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C8:E8:2D:C3:E0:7D:CA:F1:FC:1F:CA:F1:44:B3:F0:83:65:5E:29 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130372e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.107.0/24 Signature Algorithm: sha256WithRSAEncryption a6:65:4a:26:48:0f:9d:64:27:11:ad:06:43:a8:48:bd:70:30: b9:6b:18:5b:9b:a8:06:99:04:81:14:62:12:f5:c4:ac:1b:26: 07:11:ae:a9:70:32:9d:8a:e0:80:83:7b:e8:64:6b:0c:7b:10: 36:13:34:25:70:eb:71:61:e6:5d:2d:e8:ec:80:b0:eb:de:73: 7d:36:bb:e0:7f:09:ef:5e:5c:74:83:0c:f7:d6:18:e4:a9:42: a1:34:f6:49:51:db:7f:a8:21:43:8d:72:68:78:1e:8e:8a:fe: bf:dd:94:eb:34:1d:f2:d0:e7:da:92:c0:ee:3f:ad:ef:6f:b9: 69:a8:19:c7:3e:7c:f1:13:39:45:cd:dc:1b:41:4b:2a:a0:a6: 3c:b2:26:af:92:ca:6c:f9:60:22:85:7e:93:bb:79:21:ec:ce: 8d:7a:c0:a9:d3:4d:97:46:b4:0a:51:cb:ba:8c:a4:5e:23:ab: 62:97:ee:2e:a0:26:0a:8a:00:0c:e3:67:83:6f:76:9c:a2:ab: 74:16:57:8e:bb:0d:cd:25:58:7d:cc:23:d9:20:ca:0a:d6:f7: de:93:44:e4:53:8d:38:35:2b:27:a1:21:ae:16:50:be:0e:92: 63:3f:df:1b:17:84:35:84:3f:dc:81:55:75:f1:dd:73:29:9f: 03:d0:c4:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXG819I6ti7s7HlUP0hSNMDY4quYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTA3MTQxNTU1MDNaFw0yNjA3MTMxNjAwMDNaMDMxMTAvBgNV BAMTKDk0QzhFODJEQzNFMDdEQ0FGMUZDMUZDQUYxNDRCM0YwODM2NTVFMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2SEi3WtTOqDM8wYiD9H5okqQ+ HhFc/0rM6e7rvafDXBuLIIrA32b+IhG8Ni28g1Mok7vIHgEW9okESXabRVqK4WbC 0bNOOht0mu26bOOhtf5+sDLmbYvfqobi9aZoSznJJ7JNlEOuTeR1G1oVPCe34Pk/ 4dLfeyl9pobQC8sEYPcwtlxR7l/o18HUlEz/pxAHv+VDQgUEo8aQP+SszFI9GmHg Xo8CQF4LeG5QOjLQchopyYjlTgW4a3Oig2udsKiDJssh0gVEC9pNG+Tdm2Y9JLLL 1iAyhkumU7iEMSDlptje4lC9pjMMqj9M5xQsoun9U0j1kvFWRRdVZm/9mvplAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlMjoLcPgfcrx/B/K8USz8INlXikwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzAzMzJlMzIzNDJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcYazANBgkqhkiG 9w0BAQsFAAOCAQEApmVKJkgPnWQnEa0GQ6hIvXAwuWsYW5uoBpkEgRRiEvXErBsm BxGuqXAynYrggIN76GRrDHsQNhM0JXDrcWHmXS3o7ICw695zfTa74H8J715cdIMM 99YY5KlCoTT2SVHbf6ghQ41yaHgejor+v92U6zQd8tDn2pLA7j+t72+5aagZxz58 8RM5Rc3cG0FLKqCmPLImr5LKbPlgIoV+k7t5IezOjXrAqdNNl0a0ClHLuoykXiOr YpfuLqAmCooADONng292nKKrdBZXjrsNzSVYfcwj2SDKCtb33pNE5FONODUrJ6Eh rhZQvg6SYz/fGxeENYQ/3IFVdfHdcymfA9DE9Q== -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:34 2025 by rpki-client