$ rpki-client -vvf repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/3130332e3131372e3138332e302f32342d3234203d3e20313338383833.roa File: 3130332e3131372e3138332e302f32342d3234203d3e20313338383833.roa (raw, json) Hash identifier: ixRJi1MWGC1okPSFiKG/jBrV/vpTa13AlLkEe20yP98= Subject key identifier: 0A:91:84:E3:DD:91:A3:33:7C:97:19:E6:3D:6A:1E:F8:2B:88:69:FE Certificate issuer: /CN=F999F87E868383FB5DA974A732B21FA770F1AC5C Certificate serial: 18BA66941983C982E736406091D296922545D016 Authority key identifier: F9:99:F8:7E:86:83:83:FB:5D:A9:74:A7:32:B2:1F:A7:70:F1:AC:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F999F87E868383FB5DA974A732B21FA770F1AC5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/3130332e3131372e3138332e302f32342d3234203d3e20313338383833.roa Signing time: Wed 09 Jul 2025 10:00:00 +0000 ROA not before: Wed 09 Jul 2025 09:55:00 +0000 ROA not after: Wed 08 Jul 2026 10:00:00 +0000 asID: 138883 IP address blocks: 103.117.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/F999F87E868383FB5DA974A732B21FA770F1AC5C.crl rsync://repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/F999F87E868383FB5DA974A732B21FA770F1AC5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F999F87E868383FB5DA974A732B21FA770F1AC5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ba:66:94:19:83:c9:82:e7:36:40:60:91:d2:96:92:25:45:d0:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F999F87E868383FB5DA974A732B21FA770F1AC5C Validity Not Before: Jul 9 09:55:00 2025 GMT Not After : Jul 8 10:00:00 2026 GMT Subject: CN=0A9184E3DD91A3337C9719E63D6A1EF82B8869FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:20:5c:03:ef:bb:e2:2c:b4:f0:9f:6c:9e:4d: a1:de:a7:22:c3:d1:c9:bc:bf:f9:a3:2e:03:ce:1d: 61:4e:3a:ff:fc:c2:b1:19:31:bf:46:aa:23:db:1a: 6c:87:28:40:dc:b5:6a:2e:d6:64:dd:71:16:16:70: 78:8c:9a:1a:06:7b:05:5b:b8:91:cd:4b:59:36:55: b0:88:c6:5c:78:36:4a:c9:8d:08:69:9c:77:d3:e0: df:ca:cf:e7:c8:6b:6b:95:54:05:1f:25:4a:13:9f: 15:ad:48:dc:8e:6f:4d:b6:51:ba:4e:2b:54:8d:6c: c2:a4:4b:c9:06:65:76:fc:b3:d9:56:09:51:10:f8: ff:9b:73:1b:62:7d:69:96:c3:8c:25:21:ac:76:e1: ab:7a:f0:b3:eb:1c:f7:f3:6f:78:6b:50:ba:1d:97: 4e:91:b9:c9:67:54:3c:19:f7:aa:a4:18:3c:b3:1e: 5d:cd:48:f9:21:f0:3a:f3:e4:21:26:b3:90:9c:84: 30:35:49:50:07:88:ce:f8:2f:6c:94:c0:2e:56:e8: 2e:72:20:59:9e:1d:d0:eb:0d:ad:07:c4:fc:21:2e: 9f:a3:66:3f:f5:54:29:3b:33:03:21:23:79:2a:6a: 14:38:c8:bb:6f:70:22:1a:4e:63:99:ed:5a:41:5b: 99:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:91:84:E3:DD:91:A3:33:7C:97:19:E6:3D:6A:1E:F8:2B:88:69:FE X509v3 Authority Key Identifier: keyid:F9:99:F8:7E:86:83:83:FB:5D:A9:74:A7:32:B2:1F:A7:70:F1:AC:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/F999F87E868383FB5DA974A732B21FA770F1AC5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F999F87E868383FB5DA974A732B21FA770F1AC5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a8db428-195c-490a-abc2-3cb6f0d560a3/0/3130332e3131372e3138332e302f32342d3234203d3e20313338383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.183.0/24 Signature Algorithm: sha256WithRSAEncryption ad:ba:05:4a:39:4d:5b:82:c3:00:18:98:fd:0f:05:29:56:dd: 86:62:e0:bf:73:42:44:25:26:04:2a:0b:7d:8c:e6:b5:72:52: ac:b5:3f:78:0d:a2:42:3f:fd:15:e1:d2:4f:ab:27:ec:44:55: 89:d0:cd:fb:21:fe:07:c7:75:68:85:a2:41:31:56:42:58:5d: 81:e4:be:ac:a4:f3:68:c2:f1:e1:ed:92:94:15:52:07:a9:c2: fc:12:7e:8f:93:79:72:1a:a4:cd:b7:de:76:8f:55:31:72:95: fe:b0:6a:6a:37:6c:c0:cb:3d:6f:ae:f9:92:16:0d:66:d1:41: 8f:54:04:4a:ba:73:b6:fe:b8:3a:01:bb:1b:f8:e4:e8:83:d6: 65:75:cf:ef:7c:49:59:e5:37:3b:e4:bc:1c:90:36:cb:fe:16: 3f:04:45:c6:7f:5e:b6:8e:92:27:c3:9d:a5:3b:e8:c5:ad:16: a1:9d:4e:09:9f:ff:37:8d:a2:4d:06:0e:87:2b:80:14:cc:d3: 5e:6d:5a:8a:b3:01:71:62:8f:9d:a7:ba:9d:f0:f8:46:27:df: ff:ce:df:67:c3:f2:8e:0f:59:3f:38:8a:b7:25:87:65:0d:91: db:06:0a:43:67:04:55:dd:c0:d6:4a:4d:61:13:a9:e7:86:12: 04:64:a4:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGLpmlBmDyYLnNkBgkdKWkiVF0BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk5OUY4N0U4NjgzODNGQjVEQTk3NEE3MzJCMjFGQTc3 MEYxQUM1QzAeFw0yNTA3MDkwOTU1MDBaFw0yNjA3MDgxMDAwMDBaMDMxMTAvBgNV BAMTKDBBOTE4NEUzREQ5MUEzMzM3Qzk3MTlFNjNENkExRUY4MkI4ODY5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkIFwD77viLLTwn2yeTaHepyLD 0cm8v/mjLgPOHWFOOv/8wrEZMb9GqiPbGmyHKEDctWou1mTdcRYWcHiMmhoGewVb uJHNS1k2VbCIxlx4NkrJjQhpnHfT4N/Kz+fIa2uVVAUfJUoTnxWtSNyOb022UbpO K1SNbMKkS8kGZXb8s9lWCVEQ+P+bcxtifWmWw4wlIax24at68LPrHPfzb3hrULod l06RuclnVDwZ96qkGDyzHl3NSPkh8Drz5CEms5CchDA1SVAHiM74L2yUwC5W6C5y IFmeHdDrDa0HxPwhLp+jZj/1VCk7MwMhI3kqahQ4yLtvcCIaTmOZ7VpBW5lxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCpGE492RozN8lxnmPWoe+CuIaf4wHwYDVR0j BBgwFoAU+Zn4foaDg/tdqXSnMrIfp3DxrFwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YThkYjQyOC0xOTVjLTQ5MGEtYWJjMi0zY2I2ZjBkNTYwYTMvMC9GOTk5Rjg3RTg2 ODM4M0ZCNURBOTc0QTczMkIyMUZBNzcwRjFBQzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjk5OUY4N0U4NjgzODNGQjVEQTk3NEE3MzJCMjFGQTc3MEYx QUM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhOGRiNDI4LTE5NWMtNDkwYS1h YmMyLTNjYjZmMGQ1NjBhMy8wLzMxMzAzMzJlMzEzMTM3MmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndbcwDQYJ KoZIhvcNAQELBQADggEBAK26BUo5TVuCwwAYmP0PBSlW3YZi4L9zQkQlJgQqC32M 5rVyUqy1P3gNokI//RXh0k+rJ+xEVYnQzfsh/gfHdWiFokExVkJYXYHkvqyk82jC 8eHtkpQVUgepwvwSfo+TeXIapM233naPVTFylf6wamo3bMDLPW+u+ZIWDWbRQY9U BEq6c7b+uDoBuxv45OiD1mV1z+98SVnlNzvkvByQNsv+Fj8ERcZ/XraOkifDnaU7 6MWtFqGdTgmf/zeNok0GDocrgBTM015tWoqzAXFij52nup3w+EYn3//O32fD8o4P WT84irclh2UNkdsGCkNnBFXdwNZKTWETqeeGEgRkpMM= -----END CERTIFICATE-----Generated at Tue Jul 22 20:06:22 2025 by rpki-client