$ rpki-client -vvf repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31332e302f32342d3234203d3e20313335363336.roa File: 3130332e3132352e31332e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: 9YIt3S9f2TckOIHLJingGQoR7QpEu3PnRMAwc6NgmOA= Subject key identifier: 0E:1C:BE:15:F5:D1:01:87:E1:F7:61:2B:FC:B0:15:8D:07:C0:2C:F7 Certificate issuer: /CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Certificate serial: 48836003310AF51778C3B525B519DA917B2C4185 Authority key identifier: 07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31332e302f32342d3234203d3e20313335363336.roa Signing time: Mon 07 Jul 2025 04:00:00 +0000 ROA not before: Mon 07 Jul 2025 03:55:00 +0000 ROA not after: Mon 06 Jul 2026 04:00:00 +0000 asID: 135636 IP address blocks: 103.125.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 06:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:83:60:03:31:0a:f5:17:78:c3:b5:25:b5:19:da:91:7b:2c:41:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Validity Not Before: Jul 7 03:55:00 2025 GMT Not After : Jul 6 04:00:00 2026 GMT Subject: CN=0E1CBE15F5D10187E1F7612BFCB0158D07C02CF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:db:12:3f:6f:fd:99:ad:1e:ec:0d:31:42:e6: a0:a9:66:a3:6a:1b:f4:55:70:90:bb:b0:e2:5f:8f: 94:d1:83:b9:4e:cf:76:85:a7:30:d7:bf:5d:e0:54: a7:2e:90:2f:b7:8e:5a:ac:f5:47:6d:b9:dd:af:cb: 5b:8a:1c:d6:44:55:cf:fb:63:55:01:5b:f8:de:44: 5d:c3:cf:b7:a7:f4:2b:27:06:76:eb:b0:8f:18:b0: 6c:24:05:0c:6f:73:6d:10:c3:d7:25:0b:3e:52:3e: bf:c4:8a:30:99:8b:96:50:23:35:73:41:db:35:b2: 01:03:fd:88:0a:fb:77:0d:7d:a7:b9:ed:d3:02:e9: 82:e0:31:72:4e:c6:2a:7a:44:8b:5a:a6:c6:dd:16: 4a:09:5a:85:73:47:4a:29:87:da:4c:a6:b1:77:e6: 02:5c:08:e1:2a:72:60:51:a7:fc:8b:eb:a1:8b:78: df:dc:d2:9a:fc:8e:69:4a:cd:84:2e:55:e9:eb:a6: 91:08:3e:be:33:b6:a0:08:64:ef:54:9d:b0:f1:fb: 01:ff:83:56:69:6a:11:f7:f8:a4:42:00:aa:23:5c: 77:c4:6f:55:f8:bb:a9:e8:ff:c9:46:1e:7c:3a:6c: ff:a2:20:d6:d9:51:e7:86:3a:df:8f:ae:38:f6:7b: ff:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1C:BE:15:F5:D1:01:87:E1:F7:61:2B:FC:B0:15:8D:07:C0:2C:F7 X509v3 Authority Key Identifier: keyid:07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31332e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.13.0/24 Signature Algorithm: sha256WithRSAEncryption ae:ba:0b:9a:d2:ef:ca:56:99:69:50:f9:a3:1d:aa:04:63:3f: 6c:82:07:55:d4:30:54:45:83:4d:d2:72:67:53:7f:ad:6d:48: 8f:8d:10:23:ab:6b:c9:4b:cc:90:c5:1f:25:88:a9:ee:b9:63: 36:7e:87:b2:76:ce:b8:41:63:c1:44:38:ab:e5:3b:f0:59:14: 92:3d:fd:a0:16:8f:dd:71:1e:fa:fc:ee:24:cb:f2:51:98:22: c3:50:ed:03:c9:37:c5:70:02:e3:95:5f:a2:52:9f:c4:ee:7e: 19:f4:36:84:0a:10:15:0c:f7:10:fa:fe:ed:46:4c:94:76:cd: b7:13:f7:b0:9e:28:21:8e:2f:a0:87:8f:5b:1e:db:49:36:6a: 81:a2:a5:11:b9:15:2f:cc:dc:30:18:b6:0d:d0:56:e8:ab:6d: f5:64:24:e3:a2:b7:7e:b3:bd:46:65:67:d9:f1:a7:b2:28:51: cd:d7:7b:b9:fd:ea:2f:15:c2:27:72:76:d5:9e:44:b6:3c:c7: 50:58:9a:e1:5d:24:4e:48:37:b4:7e:79:c0:3b:b7:bf:0d:80: b5:67:09:90:64:47:ae:49:32:5b:fc:ca:83:84:f3:87:3d:c5: 8d:50:03:4d:76:4b:77:0a:4e:dc:74:51:66:2a:12:da:5a:f9: 9b:35:7a:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSINgAzEK9Rd4w7UltRnakXssQYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMw MTQ5MzdFODAeFw0yNTA3MDcwMzU1MDBaFw0yNjA3MDYwNDAwMDBaMDMxMTAvBgNV BAMTKDBFMUNCRTE1RjVEMTAxODdFMUY3NjEyQkZDQjAxNThEMDdDMDJDRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv2xI/b/2ZrR7sDTFC5qCpZqNq G/RVcJC7sOJfj5TRg7lOz3aFpzDXv13gVKcukC+3jlqs9Udtud2vy1uKHNZEVc/7 Y1UBW/jeRF3Dz7en9CsnBnbrsI8YsGwkBQxvc20Qw9clCz5SPr/EijCZi5ZQIzVz Qds1sgED/YgK+3cNfae57dMC6YLgMXJOxip6RItapsbdFkoJWoVzR0oph9pMprF3 5gJcCOEqcmBRp/yL66GLeN/c0pr8jmlKzYQuVenrppEIPr4ztqAIZO9UnbDx+wH/ g1ZpahH3+KRCAKojXHfEb1X4u6no/8lGHnw6bP+iINbZUeeGOt+Prjj2e///AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDhy+FfXRAYfh92Er/LAVjQfALPcwHwYDVR0j BBgwFoAUBwQ/9rZgmfLL+7tkZygi8wFJN+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzU0YmU5YS05YjVkLTRjNjQtYjRlOC02MWM3NGU5ZWNlZGMvMC8wNzA0M0ZGNkI2 NjA5OUYyQ0JGQkJCNjQ2NzI4MjJGMzAxNDkzN0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMwMTQ5 MzdFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNTRiZTlhLTliNWQtNGM2NC1i NGU4LTYxYzc0ZTllY2VkYy8wLzMxMzAzMzJlMzEzMjM1MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30NMA0GCSqG SIb3DQEBCwUAA4IBAQCuugua0u/KVplpUPmjHaoEYz9sggdV1DBURYNN0nJnU3+t bUiPjRAjq2vJS8yQxR8liKnuuWM2foeyds64QWPBRDir5TvwWRSSPf2gFo/dcR76 /O4ky/JRmCLDUO0DyTfFcALjlV+iUp/E7n4Z9DaEChAVDPcQ+v7tRkyUds23E/ew nighji+gh49bHttJNmqBoqURuRUvzNwwGLYN0Fboq231ZCTjord+s71GZWfZ8aey KFHN13u5/eovFcIncnbVnkS2PMdQWJrhXSROSDe0fnnAO7e/DYC1ZwmQZEeuSTJb /MqDhPOHPcWNUANNdkt3Ck7cdFFmKhLaWvmbNXql -----END CERTIFICATE-----Generated at Mon Jul 21 23:21:59 2025 by rpki-client