$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130312e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130312e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: vtrYPFcybkmKbw9RZMYXPUfTz3LO/v9B/HIV4T8BsWE= Subject key identifier: 7C:24:7A:14:EE:85:55:EA:EC:75:45:05:49:C2:BF:44:4B:B9:AB:6B Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Certificate serial: 5DA6E4437D13E4E15CF6E90232AFC9A941779F76 Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130312e302f32342d3234203d3e20313334363438.roa Signing time: Mon 02 Jun 2025 02:01:44 +0000 ROA not before: Mon 02 Jun 2025 01:56:44 +0000 ROA not after: Mon 01 Jun 2026 02:01:44 +0000 asID: 134648 IP address blocks: 103.208.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a6:e4:43:7d:13:e4:e1:5c:f6:e9:02:32:af:c9:a9:41:77:9f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Validity Not Before: Jun 2 01:56:44 2025 GMT Not After : Jun 1 02:01:44 2026 GMT Subject: CN=7C247A14EE8555EAEC75450549C2BF444BB9AB6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:29:0b:7b:fa:94:7e:ca:c4:66:0f:a6:35: 15:03:e3:44:72:fd:58:1d:dd:ff:8e:d7:dc:3e:5d: c3:aa:31:27:4a:71:86:16:cb:d6:01:93:4d:a2:74: b2:84:9b:af:b6:56:99:60:da:b5:55:6d:af:f8:63: 79:96:75:b8:3d:e0:e3:ef:e7:c7:6f:13:3c:94:1a: 35:d7:f9:33:69:5d:31:37:62:a8:7f:76:c6:7b:4d: b0:be:f3:6d:04:7f:fc:b4:d0:6d:be:57:e3:40:5b: 48:30:75:be:3a:5a:d5:d2:57:14:e7:d2:49:f3:64: e1:76:4e:28:3b:b5:2d:e2:88:e1:d3:da:ac:4e:3e: ab:97:2e:54:1b:66:8b:e1:d9:46:3f:ea:07:6f:a0: 32:d1:77:05:2e:cd:a0:68:67:d2:12:16:59:8d:17: 10:27:00:15:e2:9e:86:36:0d:4d:b2:cf:61:1e:1f: eb:7c:d9:e7:47:39:b7:3b:e3:a5:39:65:95:60:14: ff:a4:9f:a7:61:49:ad:74:94:ff:73:27:98:2c:be: 28:9c:af:34:7a:4c:1c:05:56:a1:34:69:6c:e0:1f: 77:ba:e4:68:f5:71:89:6d:a4:05:35:1a:a9:b3:f8: d8:33:aa:9e:ae:0c:fc:cd:10:85:15:f6:65:76:5d: ca:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:24:7A:14:EE:85:55:EA:EC:75:45:05:49:C2:BF:44:4B:B9:AB:6B X509v3 Authority Key Identifier: keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130312e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.101.0/24 Signature Algorithm: sha256WithRSAEncryption 39:9d:dd:5b:66:9c:1d:7c:a7:01:f0:4a:72:19:dc:5e:cc:81: 80:34:d2:12:93:01:f4:63:8f:4f:20:06:21:38:04:06:aa:7c: fb:d9:79:92:c9:e6:fe:97:2e:22:82:4d:02:86:d1:cc:ac:26: 1d:1d:2e:0d:39:2d:48:48:22:1c:fd:ae:4b:9f:a1:6b:5c:7c: c1:3c:65:3e:76:86:d4:bd:94:b2:5f:d8:b8:df:75:0a:13:52: e2:2b:56:8c:a7:d4:e7:cb:53:01:c2:56:5d:f2:23:cf:b0:e1: 30:ce:f3:2b:64:bf:1a:02:60:b3:e4:54:db:d0:1f:e3:c4:04: c8:02:85:57:f0:a0:dc:a6:8b:74:96:00:39:4a:23:57:c6:5e: d6:d8:2b:82:d4:d2:ee:cf:6d:07:0c:41:09:f9:86:62:83:0d: da:1c:a5:a1:e6:ef:eb:8a:51:f8:56:8b:9a:b4:86:1b:62:72: a3:6a:11:43:ad:5c:9f:b3:b2:8c:4b:61:f3:42:bb:e5:e2:eb: de:38:55:e7:ca:fd:2c:eb:40:2b:d8:18:58:65:79:a2:2c:be: c4:94:17:8e:3d:54:ef:20:80:9e:01:b6:c4:58:d1:a0:f1:42: 88:32:d0:52:33:26:a1:3d:37:94:51:bf:85:34:9a:28:99:5e: fc:1f:a6:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXabkQ30T5OFc9ukCMq/JqUF3n3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURD QUM2MkM5RjAeFw0yNTA2MDIwMTU2NDRaFw0yNjA2MDEwMjAxNDRaMDMxMTAvBgNV BAMTKDdDMjQ3QTE0RUU4NTU1RUFFQzc1NDUwNTQ5QzJCRjQ0NEJCOUFCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEoSkLe/qUfsrEZg+mNRUD40Ry /Vgd3f+O19w+XcOqMSdKcYYWy9YBk02idLKEm6+2Vplg2rVVba/4Y3mWdbg94OPv 58dvEzyUGjXX+TNpXTE3Yqh/dsZ7TbC+820Ef/y00G2+V+NAW0gwdb46WtXSVxTn 0knzZOF2Tig7tS3iiOHT2qxOPquXLlQbZovh2UY/6gdvoDLRdwUuzaBoZ9ISFlmN FxAnABXinoY2DU2yz2EeH+t82edHObc746U5ZZVgFP+kn6dhSa10lP9zJ5gsviic rzR6TBwFVqE0aWzgH3e65Gj1cYltpAU1Gqmz+Ngzqp6uDPzNEIUV9mV2Xcp7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfCR6FO6FVersdUUFScK/REu5q2swHwYDVR0j BBgwFoAUl9d/CGafuU5OmfeVUZ+2HcrGLJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmM2OTQ0MC04YjE3LTRhNjgtYTBmYS02NjE1OWUyMTYyZTAvMC85N0Q3N0YwODY2 OUZCOTRFNEU5OUY3OTU1MTlGQjYxRENBQzYyQzlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURDQUM2 MkM5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GUwDQYJ KoZIhvcNAQELBQADggEBADmd3VtmnB18pwHwSnIZ3F7MgYA00hKTAfRjj08gBiE4 BAaqfPvZeZLJ5v6XLiKCTQKG0cysJh0dLg05LUhIIhz9rkufoWtcfME8ZT52htS9 lLJf2LjfdQoTUuIrVoyn1OfLUwHCVl3yI8+w4TDO8ytkvxoCYLPkVNvQH+PEBMgC hVfwoNymi3SWADlKI1fGXtbYK4LU0u7PbQcMQQn5hmKDDdocpaHm7+uKUfhWi5q0 hhticqNqEUOtXJ+zsoxLYfNCu+Xi6944VefK/SzrQCvYGFhleaIsvsSUF449VO8g gJ4BtsRY0aDxQogy0FIzJqE9N5RRv4U0miiZXvwfpro= -----END CERTIFICATE-----Generated at Fri Oct 24 09:10:00 2025 by rpki-client