$ rpki-client -vvf repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e302e302f32342d3234203d3e203338333230.roa File: 3130332e3133352e302e302f32342d3234203d3e203338333230.roa (raw, json) Hash identifier: ldrGJsy+/TLnpHhOovohV+mReZwkU+jIEX++pOvvnkI= Subject key identifier: FA:55:40:DA:15:F7:C5:99:37:B7:A4:10:1D:A8:64:6B:F3:87:02:8E Certificate issuer: /CN=3C3C868A5674B425FAE567426BCB238E23AE20AC Certificate serial: 6FDF6262BA78C3A6397715AC0714B739326A20C6 Authority key identifier: 3C:3C:86:8A:56:74:B4:25:FA:E5:67:42:6B:CB:23:8E:23:AE:20:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e302e302f32342d3234203d3e203338333230.roa Signing time: Mon 07 Jul 2025 04:02:25 +0000 ROA not before: Mon 07 Jul 2025 03:57:25 +0000 ROA not after: Mon 06 Jul 2026 04:02:25 +0000 asID: 38320 IP address blocks: 103.135.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.crl rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 02:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:df:62:62:ba:78:c3:a6:39:77:15:ac:07:14:b7:39:32:6a:20:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C3C868A5674B425FAE567426BCB238E23AE20AC Validity Not Before: Jul 7 03:57:25 2025 GMT Not After : Jul 6 04:02:25 2026 GMT Subject: CN=FA5540DA15F7C59937B7A4101DA8646BF387028E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:56:0f:05:5e:28:9b:49:49:dc:96:9a:6c:33: 28:48:f0:81:15:5a:58:cd:b3:c5:d4:35:c6:2a:f9: d3:9e:96:38:5c:22:9f:0d:91:98:58:41:cb:b6:b8: 29:10:f2:7c:bb:18:73:cf:8c:31:5d:97:25:58:23: 8c:d8:97:b9:10:8c:68:1d:44:2a:3e:0d:ca:1f:11: 26:fb:ee:15:53:55:bd:da:a9:ca:cc:77:f1:8b:f3: 5e:ae:97:a6:6f:ac:3a:d9:da:6e:33:87:9e:00:8b: 1f:59:de:4a:48:bd:7e:66:6b:16:81:65:0f:1e:ba: 7b:3b:79:c9:4b:ab:3b:e5:ce:61:65:66:52:d7:9e: 4c:15:54:d5:b3:38:9c:bd:11:a7:d7:3b:54:5f:e8: 3f:93:bd:d9:8e:b5:83:10:77:64:64:47:4e:8e:9a: d9:25:f1:23:ba:20:7d:22:fb:c2:9e:49:39:9d:36: 0d:25:17:69:91:27:ed:2d:29:75:96:5e:69:2e:44: a2:4f:b2:e3:31:3c:76:de:97:22:18:8f:3a:31:5c: 87:13:d4:57:47:d1:5c:e0:14:02:e8:84:f8:b1:ec: 87:ef:8d:43:86:ec:f5:16:fa:ee:24:b4:48:32:31: be:6a:72:bf:73:79:16:b8:dc:a8:c5:f8:c2:d4:1c: d9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:55:40:DA:15:F7:C5:99:37:B7:A4:10:1D:A8:64:6B:F3:87:02:8E X509v3 Authority Key Identifier: keyid:3C:3C:86:8A:56:74:B4:25:FA:E5:67:42:6B:CB:23:8E:23:AE:20:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e302e302f32342d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.0.0/24 Signature Algorithm: sha256WithRSAEncryption 03:76:7c:63:b1:27:8a:7b:a5:65:31:65:64:62:31:d4:fb:09: c2:e2:f1:d9:47:d9:0a:eb:22:f6:61:23:93:e3:37:35:24:6b: bb:87:c3:27:e5:68:48:d3:31:32:79:79:df:78:66:0b:2c:76: 0f:c9:49:d4:12:41:74:c2:17:31:60:6f:9d:10:8e:3b:1f:b4: 2c:c8:23:73:15:3a:1b:9b:89:90:a0:a4:bb:d7:0c:eb:97:e5: af:a8:a6:c7:55:51:e5:bd:9d:bc:ea:df:1e:78:d7:b3:f4:80: 93:62:11:2a:0e:5f:84:61:f0:99:fe:61:a6:0c:8a:2c:8f:f9: f7:67:fd:1d:82:d1:91:2b:97:bc:d9:b3:96:87:ee:bf:51:75: f8:76:84:13:31:ff:c7:1d:0a:8c:b3:a4:31:a6:a9:5f:cb:2d: f5:a0:0c:d4:94:b1:62:c3:ca:c5:6a:d0:e2:2f:2e:fc:f5:d6: a1:ae:06:07:ec:95:be:78:0b:be:11:b6:70:3c:07:1e:c8:31: 13:52:df:b7:0b:81:c9:0b:9d:9f:29:aa:bc:56:ca:71:8e:75: 0d:cd:4f:42:13:39:d4:35:16:c4:2f:03:d2:7b:9c:4e:61:60: 94:12:b7:c3:66:5d:c6:7a:fd:fb:bc:ee:1a:b8:c0:f1:db:13: 4f:f4:75:12 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUb99iYrp4w6Y5dxWsBxS3OTJqIMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MzQzg2OEE1Njc0QjQyNUZBRTU2NzQyNkJDQjIzOEUy M0FFMjBBQzAeFw0yNTA3MDcwMzU3MjVaFw0yNjA3MDYwNDAyMjVaMDMxMTAvBgNV BAMTKEZBNTU0MERBMTVGN0M1OTkzN0I3QTQxMDFEQTg2NDZCRjM4NzAyOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXVg8FXiibSUnclppsMyhI8IEV WljNs8XUNcYq+dOeljhcIp8NkZhYQcu2uCkQ8ny7GHPPjDFdlyVYI4zYl7kQjGgd RCo+DcofESb77hVTVb3aqcrMd/GL816ul6ZvrDrZ2m4zh54Aix9Z3kpIvX5maxaB ZQ8euns7eclLqzvlzmFlZlLXnkwVVNWzOJy9EafXO1Rf6D+TvdmOtYMQd2RkR06O mtkl8SO6IH0i+8KeSTmdNg0lF2mRJ+0tKXWWXmkuRKJPsuMxPHbelyIYjzoxXIcT 1FdH0VzgFALohPix7IfvjUOG7PUW+u4ktEgyMb5qcr9zeRa43KjF+MLUHNkBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+lVA2hX3xZk3t6QQHahka/OHAo4wHwYDVR0j BBgwFoAUPDyGilZ0tCX65WdCa8sjjiOuIKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Mjk5ZTZmMC1mMjNjLTQxZmYtYjY3Yy00MWFmMDUxMzM5ZDEvMC8zQzNDODY4QTU2 NzRCNDI1RkFFNTY3NDI2QkNCMjM4RTIzQUUyMEFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0MzQzg2OEE1Njc0QjQyNUZBRTU2NzQyNkJDQjIzOEUyM0FF MjBBQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyOTllNmYwLWYyM2MtNDFmZi1i NjdjLTQxYWYwNTEzMzlkMS8wLzMxMzAzMzJlMzEzMzM1MmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhwAwDQYJKoZIhvcN AQELBQADggEBAAN2fGOxJ4p7pWUxZWRiMdT7CcLi8dlH2QrrIvZhI5PjNzUka7uH wyflaEjTMTJ5ed94Zgssdg/JSdQSQXTCFzFgb50QjjsftCzII3MVOhubiZCgpLvX DOuX5a+opsdVUeW9nbzq3x5417P0gJNiESoOX4Rh8Jn+YaYMiiyP+fdn/R2C0ZEr l7zZs5aH7r9Rdfh2hBMx/8cdCoyzpDGmqV/LLfWgDNSUsWLDysVq0OIvLvz11qGu Bgfslb54C74RtnA8Bx7IMRNS37cLgckLnZ8pqrxWynGOdQ3NT0ITOdQ1FsQvA9J7 nE5hYJQSt8NmXcZ6/fu87hq4wPHbE0/0dRI= -----END CERTIFICATE-----Generated at Mon Jul 21 08:01:50 2025 by rpki-client