$ rpki-client -vvf repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/3130332e3137342e31382e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e31382e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: EPfbuzMbv4cF+h934ARntwSyGoDJC9dJTM001arffsg= Subject key identifier: EB:A3:79:4C:B0:29:81:54:2F:BD:81:0C:29:2F:ED:36:C2:A8:BC:C5 Certificate issuer: /CN=E118E8E6144A59677DB6D05BDF713DB23BC61342 Certificate serial: 749F8D1B6FA6EA876EA0CF4B00C558234366EA42 Authority key identifier: E1:18:E8:E6:14:4A:59:67:7D:B6:D0:5B:DF:71:3D:B2:3B:C6:13:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E118E8E6144A59677DB6D05BDF713DB23BC61342.cer Subject info access: rsync://repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/3130332e3137342e31382e302f32332d3234203d3e20313331313131.roa Signing time: Thu 03 Jul 2025 09:02:01 +0000 ROA not before: Thu 03 Jul 2025 08:57:01 +0000 ROA not after: Thu 02 Jul 2026 09:02:01 +0000 asID: 131111 IP address blocks: 103.174.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/E118E8E6144A59677DB6D05BDF713DB23BC61342.crl rsync://repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/E118E8E6144A59677DB6D05BDF713DB23BC61342.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E118E8E6144A59677DB6D05BDF713DB23BC61342.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 12:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9f:8d:1b:6f:a6:ea:87:6e:a0:cf:4b:00:c5:58:23:43:66:ea:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E118E8E6144A59677DB6D05BDF713DB23BC61342 Validity Not Before: Jul 3 08:57:01 2025 GMT Not After : Jul 2 09:02:01 2026 GMT Subject: CN=EBA3794CB02981542FBD810C292FED36C2A8BCC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:80:0e:44:06:b4:80:4d:c0:ea:8d:ee:8b:bc: 8d:f6:8b:1f:da:88:cb:17:67:25:14:4c:cb:0f:8c: 93:d1:e7:9d:e2:ec:c0:92:4c:f1:94:de:1f:75:17: 91:47:c3:0e:0e:b8:fb:a3:07:c5:8f:5a:db:04:95: 2b:c8:01:55:d0:c3:4e:35:7e:b2:b6:af:d8:93:1d: 35:28:e5:cc:97:72:24:1d:48:e0:94:13:db:b2:83: 67:35:b0:40:e2:4f:45:32:17:a3:e7:38:c0:71:8e: ca:03:15:b1:2f:3a:e8:25:c3:70:ca:78:25:dd:c6: 2d:d5:0c:dc:90:bb:5b:e1:b3:7b:80:e0:18:b9:33: a8:0e:61:8b:6f:66:06:91:01:a6:8d:e3:d6:76:db: 5e:a0:28:75:85:43:52:e9:29:7c:cc:35:26:72:e4: 51:e0:9d:bf:52:78:92:a6:22:8a:0a:ba:f8:b9:2f: 64:08:ec:ee:3c:ca:38:f4:f3:a6:b2:c1:46:71:e7: 42:ea:64:63:ab:ba:2b:f2:c4:5d:e1:3b:05:a2:ad: 51:96:3e:82:93:d6:d4:38:96:8b:74:fd:27:ad:00: 5f:ed:0d:00:ad:97:c0:60:71:05:7f:d7:6e:24:f4: e6:94:90:d8:c3:39:b3:85:29:27:b5:27:63:be:d8: ed:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A3:79:4C:B0:29:81:54:2F:BD:81:0C:29:2F:ED:36:C2:A8:BC:C5 X509v3 Authority Key Identifier: keyid:E1:18:E8:E6:14:4A:59:67:7D:B6:D0:5B:DF:71:3D:B2:3B:C6:13:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/E118E8E6144A59677DB6D05BDF713DB23BC61342.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E118E8E6144A59677DB6D05BDF713DB23BC61342.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/101dbafc-c0cc-496a-b5e0-4f48ba946cd3/0/3130332e3137342e31382e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.18.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:e3:12:e7:4d:f0:46:25:46:65:95:20:b9:95:21:a5:ca:94: 0f:0e:a4:46:65:36:05:62:94:17:0a:4a:6e:83:76:69:48:49: c9:2e:af:01:cd:f6:c9:6d:a7:99:28:81:ab:37:a7:19:47:98: a1:af:4b:0f:86:b9:71:3f:19:9d:91:e3:e6:e7:b0:78:ec:6a: 9c:02:f2:dd:60:62:91:4d:17:87:96:95:ae:7a:0e:85:78:67: 45:36:a2:c6:0e:d3:31:c8:22:38:d4:fb:57:1c:26:a1:92:c6: fc:8d:e1:46:b6:58:76:29:f1:53:26:b5:c7:2d:85:3e:d2:5d: 2b:21:83:06:2d:3e:af:d4:2a:25:39:9f:c4:90:4d:db:e7:56: 9d:92:7f:25:e7:65:11:23:cc:37:ae:39:da:25:b0:0b:de:41: 1d:8e:0f:f8:7d:44:b3:71:e4:d4:5d:58:24:c1:9e:6d:c0:56: 97:7d:9e:d9:69:38:43:12:4d:83:e2:1e:79:35:ed:ca:dc:02: 18:4f:4b:ea:86:67:af:c5:c6:65:23:39:ad:e6:08:e3:22:9f: f5:00:d3:e5:eb:c9:4e:3c:9a:f1:4a:ab:be:bc:ce:70:de:2b: 69:83:cc:2e:f1:8a:e9:97:e2:14:2f:f8:ae:bc:0a:f7:6b:19: 6f:a4:28:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdJ+NG2+m6oduoM9LAMVYI0Nm6kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTExOEU4RTYxNDRBNTk2NzdEQjZEMDVCREY3MTNEQjIz QkM2MTM0MjAeFw0yNTA3MDMwODU3MDFaFw0yNjA3MDIwOTAyMDFaMDMxMTAvBgNV BAMTKEVCQTM3OTRDQjAyOTgxNTQyRkJEODEwQzI5MkZFRDM2QzJBOEJDQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVgA5EBrSATcDqje6LvI32ix/a iMsXZyUUTMsPjJPR553i7MCSTPGU3h91F5FHww4OuPujB8WPWtsElSvIAVXQw041 frK2r9iTHTUo5cyXciQdSOCUE9uyg2c1sEDiT0UyF6PnOMBxjsoDFbEvOuglw3DK eCXdxi3VDNyQu1vhs3uA4Bi5M6gOYYtvZgaRAaaN49Z2216gKHWFQ1LpKXzMNSZy 5FHgnb9SeJKmIooKuvi5L2QI7O48yjj086aywUZx50LqZGOruivyxF3hOwWirVGW PoKT1tQ4lot0/SetAF/tDQCtl8BgcQV/124k9OaUkNjDObOFKSe1J2O+2O2dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU66N5TLApgVQvvYEMKS/tNsKovMUwHwYDVR0j BBgwFoAU4Rjo5hRKWWd9ttBb33E9sjvGE0IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MDFkYmFmYy1jMGNjLTQ5NmEtYjVlMC00ZjQ4YmE5NDZjZDMvMC9FMTE4RThFNjE0 NEE1OTY3N0RCNkQwNUJERjcxM0RCMjNCQzYxMzQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTExOEU4RTYxNDRBNTk2NzdEQjZEMDVCREY3MTNEQjIzQkM2 MTM0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMWRiYWZjLWMwY2MtNDk2YS1i NWUwLTRmNDhiYTk0NmNkMy8wLzMxMzAzMzJlMzEzNzM0MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64SMA0GCSqG SIb3DQEBCwUAA4IBAQCL4xLnTfBGJUZllSC5lSGlypQPDqRGZTYFYpQXCkpug3Zp SEnJLq8BzfbJbaeZKIGrN6cZR5ihr0sPhrlxPxmdkePm57B47GqcAvLdYGKRTReH lpWueg6FeGdFNqLGDtMxyCI41PtXHCahksb8jeFGtlh2KfFTJrXHLYU+0l0rIYMG LT6v1ColOZ/EkE3b51adkn8l52URI8w3rjnaJbAL3kEdjg/4fUSzceTUXVgkwZ5t wFaXfZ7ZaThDEk2D4h55Ne3K3AIYT0vqhmevxcZlIzmt5gjjIp/1ANPl68lOPJrx Squ+vM5w3itpg8wu8Yrpl+IUL/iuvAr3axlvpCiJ -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:42 2025 by rpki-client