$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa File: 3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa (raw, json) Hash identifier: t0Vruq6Bebds9v5l8uxecejF/a/jD2OLoFvWrnd+8qs= Subject key identifier: 0A:82:D2:05:79:12:A0:84:E5:52:45:40:3B:EB:C2:8C:05:A3:25:6C Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 1EECB50366CAF60E4F4AF244255A112D67295FC7 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa Signing time: Fri 11 Jul 2025 09:00:48 +0000 ROA not before: Fri 11 Jul 2025 08:55:48 +0000 ROA not after: Fri 10 Jul 2026 09:00:48 +0000 asID: 133823 IP address blocks: 103.104.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 21:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ec:b5:03:66:ca:f6:0e:4f:4a:f2:44:25:5a:11:2d:67:29:5f:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Jul 11 08:55:48 2025 GMT Not After : Jul 10 09:00:48 2026 GMT Subject: CN=0A82D2057912A084E55245403BEBC28C05A3256C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6c:4f:38:1b:49:d7:18:e9:7e:50:c7:11:b4: de:eb:25:7c:d1:b2:e7:6b:3f:8c:ae:07:9f:10:f2: 19:2f:08:8a:98:33:59:c4:37:93:ad:42:2e:cd:21: a7:b3:87:ee:12:ae:ea:19:0f:1e:85:13:87:22:59: b3:6e:43:f9:68:88:92:99:e2:ff:d5:a9:c9:5b:9a: b3:18:16:cd:f9:d6:07:d0:d6:e4:e0:ef:74:dd:81: cc:a8:d4:40:9f:8a:e6:fa:69:58:ae:4c:14:22:c8: d1:d4:c0:1e:3b:ca:a1:ee:24:b5:e3:cd:d2:ac:4d: f9:fd:f0:73:40:4b:b3:1b:7a:12:a2:b8:a9:a2:56: 12:50:92:d4:9d:4f:aa:21:0f:ec:05:89:ac:da:6d: 09:87:c3:0e:8d:e6:25:42:cd:11:dc:01:c7:2a:0e: 9c:e5:a8:1b:0a:d6:6b:13:41:a0:4b:bb:cc:29:0e: b8:0b:74:67:a1:68:d5:6a:a8:c4:f7:f1:a2:bf:e4: 89:ed:57:7e:6d:87:b7:f1:fe:50:1b:1b:f9:6d:39: 7f:e4:9e:62:06:11:67:17:01:7e:31:58:1a:47:e2: 1a:3f:1e:f2:ac:e4:a0:5d:8b:99:9d:cd:98:87:96: 5a:e5:6c:d0:05:04:0f:83:14:0d:e0:e1:30:02:aa: aa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:82:D2:05:79:12:A0:84:E5:52:45:40:3B:EB:C2:8C:05:A3:25:6C X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.132.0/22 Signature Algorithm: sha256WithRSAEncryption c9:63:66:12:75:3e:69:b3:98:73:31:7e:8a:83:e4:50:25:c3: 64:e7:e5:2d:64:0b:48:f0:f8:42:7a:49:71:9c:01:1c:9e:64: 6f:b0:37:da:83:9f:c2:09:d4:b0:5d:28:96:e7:5b:b0:eb:68: 10:94:d0:8d:a2:79:24:c6:90:dd:ca:99:38:ab:6e:21:da:0b: df:9c:23:f5:38:09:4a:ad:40:27:72:dd:39:97:35:84:ac:d3: 65:aa:5a:05:f5:ca:9c:7e:0f:34:96:e2:93:4f:fe:e0:86:2b: a6:d0:f0:40:57:23:0e:6d:61:11:cd:c1:e0:fd:06:7e:9c:02: 2f:38:04:c9:ba:6e:3a:26:d3:91:72:c9:55:96:27:e4:7d:c3: f4:35:a7:b5:ae:c9:c5:4c:b6:59:0a:b8:9b:de:f3:22:c4:ef: 80:60:29:2f:bd:39:e1:fb:14:47:be:b4:83:2b:b9:8c:85:17: 91:ec:d2:6a:14:fd:a7:66:60:ac:ae:5a:e3:f4:78:59:f1:41: 43:41:31:06:e7:4f:ca:1d:da:7c:0e:a6:a4:56:13:f6:9a:f9: 92:9a:2f:ab:54:7d:c7:78:4d:66:af:f3:4f:15:da:2c:04:37: b6:12:4b:a7:28:60:67:95:34:67:9c:12:f2:00:a9:44:8a:54: 36:54:52:fd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHuy1A2bK9g5PSvJEJVoRLWcpX8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTA3MTEwODU1NDhaFw0yNjA3MTAwOTAwNDhaMDMxMTAvBgNV BAMTKDBBODJEMjA1NzkxMkEwODRFNTUyNDU0MDNCRUJDMjhDMDVBMzI1NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgbE84G0nXGOl+UMcRtN7rJXzR sudrP4yuB58Q8hkvCIqYM1nEN5OtQi7NIaezh+4SruoZDx6FE4ciWbNuQ/loiJKZ 4v/VqclbmrMYFs351gfQ1uTg73Tdgcyo1ECfiub6aViuTBQiyNHUwB47yqHuJLXj zdKsTfn98HNAS7MbehKiuKmiVhJQktSdT6ohD+wFiazabQmHww6N5iVCzRHcAccq DpzlqBsK1msTQaBLu8wpDrgLdGehaNVqqMT38aK/5IntV35th7fx/lAbG/ltOX/k nmIGEWcXAX4xWBpH4ho/HvKs5KBdi5mdzZiHllrlbNAFBA+DFA3g4TACqqpjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCoLSBXkSoITlUkVAO+vCjAWjJWwwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnaIQwDQYJ KoZIhvcNAQELBQADggEBAMljZhJ1PmmzmHMxfoqD5FAlw2Tn5S1kC0jw+EJ6SXGc ARyeZG+wN9qDn8IJ1LBdKJbnW7DraBCU0I2ieSTGkN3KmTirbiHaC9+cI/U4CUqt QCdy3TmXNYSs02WqWgX1ypx+DzSW4pNP/uCGK6bQ8EBXIw5tYRHNweD9Bn6cAi84 BMm6bjom05FyyVWWJ+R9w/Q1p7WuycVMtlkKuJve8yLE74BgKS+9OeH7FEe+tIMr uYyFF5Hs0moU/admYKyuWuP0eFnxQUNBMQbnT8od2nwOpqRWE/aa+ZKaL6tUfcd4 TWav808V2iwEN7YSS6coYGeVNGecEvIAqUSKVDZUUv0= -----END CERTIFICATE-----Generated at Mon Jul 21 14:34:02 2025 by rpki-client