$ rpki-client -vvf repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/3130332e3137352e34342e302f32332d3234203d3e20313331313131.roa File: 3130332e3137352e34342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: TY8TkomaykZ0zGgKDRDg1fDMn5MYQ0XJuAyZNqy9elE= Subject key identifier: FE:3C:09:03:A8:F1:3A:AD:0B:3F:40:51:AC:E7:37:48:7F:3F:34:B5 Certificate issuer: /CN=510FD91435B7E93052B386D2A1ABB0125A05B1B7 Certificate serial: 34D3D51C0F8FA452DCA014C7F18950F992C71893 Authority key identifier: 51:0F:D9:14:35:B7:E9:30:52:B3:86:D2:A1:AB:B0:12:5A:05:B1:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510FD91435B7E93052B386D2A1ABB0125A05B1B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/3130332e3137352e34342e302f32332d3234203d3e20313331313131.roa Signing time: Sat 12 Jul 2025 04:00:02 +0000 ROA not before: Sat 12 Jul 2025 03:55:02 +0000 ROA not after: Sat 11 Jul 2026 04:00:02 +0000 asID: 131111 IP address blocks: 103.175.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/510FD91435B7E93052B386D2A1ABB0125A05B1B7.crl rsync://repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/510FD91435B7E93052B386D2A1ABB0125A05B1B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510FD91435B7E93052B386D2A1ABB0125A05B1B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d3:d5:1c:0f:8f:a4:52:dc:a0:14:c7:f1:89:50:f9:92:c7:18:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=510FD91435B7E93052B386D2A1ABB0125A05B1B7 Validity Not Before: Jul 12 03:55:02 2025 GMT Not After : Jul 11 04:00:02 2026 GMT Subject: CN=FE3C0903A8F13AAD0B3F4051ACE737487F3F34B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:43:a4:3b:3e:36:1d:b0:89:e1:d2:a9:3d: 0f:72:07:92:04:6c:49:dc:4e:62:04:e3:48:cc:a8: 0b:3c:ea:9a:8a:b0:ad:6b:0e:e2:ab:6b:39:b7:3a: 71:28:23:c2:dd:83:0e:50:e8:ef:ae:ab:26:c5:4f: c0:31:76:b1:fd:00:7e:bf:cb:6d:e7:21:dc:49:f7: bb:c5:f5:61:27:1c:93:f1:18:be:e5:de:6b:85:9a: bc:9f:54:5f:10:1c:9d:4b:de:c2:ea:28:47:57:89: e9:f2:c0:04:b5:c2:f3:05:90:eb:f7:77:7b:be:9d: 65:43:2d:d1:5c:3a:81:2d:a6:e1:d1:b4:4e:5a:a3: e9:0b:12:16:6e:a5:95:fb:90:af:97:81:2d:6a:e7: ad:0f:b1:14:87:92:fc:3b:79:d6:e8:60:e5:cf:cd: 2f:aa:11:94:b9:07:cc:7f:8b:76:d5:18:5d:3b:21: 63:32:fa:62:81:39:be:c9:95:55:1d:4d:4b:2a:70: 37:4e:25:cd:d1:b6:89:61:ee:79:2a:36:04:92:fd: 4e:4f:12:0a:b9:f4:b4:fb:c3:36:43:99:41:c2:93: 0b:53:2b:9d:e6:3c:35:ef:17:fc:e8:29:e2:ad:c4: 00:d7:b9:6b:3d:29:f0:81:be:55:db:c5:ef:96:5c: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3C:09:03:A8:F1:3A:AD:0B:3F:40:51:AC:E7:37:48:7F:3F:34:B5 X509v3 Authority Key Identifier: keyid:51:0F:D9:14:35:B7:E9:30:52:B3:86:D2:A1:AB:B0:12:5A:05:B1:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/510FD91435B7E93052B386D2A1ABB0125A05B1B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510FD91435B7E93052B386D2A1ABB0125A05B1B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/063054f6-8d09-4d12-b19b-500d6d921fc1/0/3130332e3137352e34342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.44.0/23 Signature Algorithm: sha256WithRSAEncryption 38:e4:7d:19:2e:15:5f:e1:8e:82:4a:ce:46:77:b1:80:fe:4e: 3f:4e:88:e3:a4:a3:d6:5a:cf:77:84:db:dc:9a:b4:fa:d9:bd: 46:39:92:91:63:d6:3a:55:e4:a0:dd:db:f6:6e:9e:a6:9b:9d: af:35:0f:70:63:5c:df:c9:7d:96:af:58:84:13:0e:97:03:05: 9c:51:44:04:5c:ae:a4:21:89:f4:d2:1f:30:15:50:60:fc:cc: 29:13:b4:16:0a:00:34:af:a8:2a:dd:15:4f:19:7a:5a:1a:07: 03:df:65:fc:bb:d9:0c:a0:7c:cd:98:b1:a8:2d:60:93:17:b7: 3a:3e:ad:bf:dd:a8:1f:52:d3:9b:95:d3:00:37:4f:ce:73:03: 32:c4:2a:4b:25:c8:e4:f1:ea:72:47:ab:e8:71:b8:b9:12:a7: 82:37:9b:6a:49:a6:60:52:46:f6:13:f3:c0:03:e8:53:89:79: 36:9e:26:2e:74:80:50:e3:13:c4:14:a4:e2:e2:ac:8a:95:89: 67:f8:f1:33:e9:6d:07:e8:63:39:14:56:b3:c9:fa:45:f3:f3: e7:2a:9a:ef:81:35:b3:06:9f:93:7e:43:85:0c:ae:13:67:67: b8:05:db:d2:fb:a4:8f:51:8e:c8:29:8b:26:21:a3:6c:7f:a3: 94:32:22:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNNPVHA+PpFLcoBTH8YlQ+ZLHGJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEwRkQ5MTQzNUI3RTkzMDUyQjM4NkQyQTFBQkIwMTI1 QTA1QjFCNzAeFw0yNTA3MTIwMzU1MDJaFw0yNjA3MTEwNDAwMDJaMDMxMTAvBgNV BAMTKEZFM0MwOTAzQThGMTNBQUQwQjNGNDA1MUFDRTczNzQ4N0YzRjM0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUXkOkOz42HbCJ4dKpPQ9yB5IE bEncTmIE40jMqAs86pqKsK1rDuKrazm3OnEoI8Ldgw5Q6O+uqybFT8AxdrH9AH6/ y23nIdxJ97vF9WEnHJPxGL7l3muFmryfVF8QHJ1L3sLqKEdXienywAS1wvMFkOv3 d3u+nWVDLdFcOoEtpuHRtE5ao+kLEhZupZX7kK+XgS1q560PsRSHkvw7edboYOXP zS+qEZS5B8x/i3bVGF07IWMy+mKBOb7JlVUdTUsqcDdOJc3Rtolh7nkqNgSS/U5P Egq59LT7wzZDmUHCkwtTK53mPDXvF/zoKeKtxADXuWs9KfCBvlXbxe+WXGLHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/jwJA6jxOq0LP0BRrOc3SH8/NLUwHwYDVR0j BBgwFoAUUQ/ZFDW36TBSs4bSoauwEloFsbcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjMwNTRmNi04ZDA5LTRkMTItYjE5Yi01MDBkNmQ5MjFmYzEvMC81MTBGRDkxNDM1 QjdFOTMwNTJCMzg2RDJBMUFCQjAxMjVBMDVCMUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTEwRkQ5MTQzNUI3RTkzMDUyQjM4NkQyQTFBQkIwMTI1QTA1 QjFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MzA1NGY2LThkMDktNGQxMi1i MTliLTUwMGQ2ZDkyMWZjMS8wLzMxMzAzMzJlMzEzNzM1MmUzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ68sMA0GCSqG SIb3DQEBCwUAA4IBAQA45H0ZLhVf4Y6CSs5Gd7GA/k4/TojjpKPWWs93hNvcmrT6 2b1GOZKRY9Y6VeSg3dv2bp6mm52vNQ9wY1zfyX2Wr1iEEw6XAwWcUUQEXK6kIYn0 0h8wFVBg/MwpE7QWCgA0r6gq3RVPGXpaGgcD32X8u9kMoHzNmLGoLWCTF7c6Pq2/ 3agfUtObldMAN0/OcwMyxCpLJcjk8epyR6vocbi5EqeCN5tqSaZgUkb2E/PAA+hT iXk2niYudIBQ4xPEFKTi4qyKlYln+PEz6W0H6GM5FFazyfpF8/PnKprvgTWzBp+T fkOFDK4TZ2e4BdvS+6SPUY7IKYsmIaNsf6OUMiIF -----END CERTIFICATE-----Generated at Wed Jul 23 23:37:37 2025 by rpki-client