$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132342e302f32342d3234203d3e20313337333136.roa File: 3130332e3130392e3132342e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: pmjdQUctdTSPtYfCAz821w5APHDbOv2faGyrFQg8W7s= Subject key identifier: AD:BD:74:8B:61:BF:C9:E5:34:6C:A8:60:B0:58:D0:3E:33:77:C2:FB Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 13CAE01697AA7AFA485C352D59E05E2976DD3778 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132342e302f32342d3234203d3e20313337333136.roa Signing time: Fri 18 Jul 2025 15:00:01 +0000 ROA not before: Fri 18 Jul 2025 14:55:01 +0000 ROA not after: Fri 17 Jul 2026 15:00:01 +0000 asID: 137316 IP address blocks: 103.109.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ca:e0:16:97:aa:7a:fa:48:5c:35:2d:59:e0:5e:29:76:dd:37:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Jul 18 14:55:01 2025 GMT Not After : Jul 17 15:00:01 2026 GMT Subject: CN=ADBD748B61BFC9E5346CA860B058D03E3377C2FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c2:3b:91:c8:5f:95:02:ca:e6:aa:9d:53:8e: 63:43:7a:af:cc:7a:be:8f:ab:ce:81:0b:f6:d9:ba: 62:72:e6:ec:f9:3a:2d:47:7e:59:68:22:56:0e:09: 24:2e:ff:45:b8:aa:7f:e5:97:d1:27:1c:81:47:a2: fd:9f:5b:0e:6f:3e:d1:de:82:27:fa:59:05:5d:f7: 7e:91:4f:55:bb:fc:15:73:1d:fc:2b:71:3c:a5:ae: f8:9b:58:a6:6a:03:05:39:3d:62:5d:08:40:cc:12: 32:7c:c9:67:0a:40:fc:64:ff:89:ca:05:f4:d1:44: 22:86:62:0a:25:ef:6a:18:97:0e:b2:aa:f9:ca:24: 68:88:ce:10:c5:b2:de:05:32:5b:3d:bb:4a:33:f9: 54:ec:98:59:e3:5b:5e:83:5b:c0:59:4a:0d:6b:e4: 31:f0:44:d4:6a:b5:0e:0a:b4:f2:b5:56:38:4f:ce: 7b:b4:61:8d:81:bb:cd:60:f5:ba:66:3d:e4:2b:dc: e4:54:3f:dd:cc:93:16:62:56:5c:34:6f:cf:cc:8e: ff:e2:d0:15:e1:48:32:5b:28:2a:9b:67:1f:29:85: fa:55:6e:b1:23:09:86:28:97:9f:be:66:4b:02:c2: 7e:b0:c6:93:05:98:cd:c8:e8:0c:88:69:6a:30:e5: 82:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BD:74:8B:61:BF:C9:E5:34:6C:A8:60:B0:58:D0:3E:33:77:C2:FB X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132342e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.124.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:fe:65:82:1e:75:57:45:09:84:f3:e6:6b:af:50:9b:04:b5: 62:cd:1a:5b:34:77:91:3b:da:87:ad:bf:83:6c:d2:e6:b7:b9: 74:6c:88:b7:b7:58:16:30:cd:d7:d5:a4:74:e4:41:92:6f:54: 7b:4c:69:b9:73:cc:9c:32:fc:a8:a7:3f:3b:4b:74:2e:59:a9: e1:bd:87:57:12:2a:94:c8:f0:0e:60:57:74:50:ad:90:90:08: 21:16:b6:c1:fb:23:93:bc:d5:a5:2a:76:50:3d:c9:bd:34:77: 8f:25:bb:ad:f9:8e:59:84:6e:6a:fd:75:1f:81:d4:95:f1:13: a4:18:b0:b4:87:f6:5d:c9:95:b3:ad:83:03:d7:cf:2a:c9:61: 2c:01:b1:fc:64:29:36:5c:37:cb:71:1b:55:4b:e5:08:7c:0d: c4:c1:b3:0f:0a:cf:2e:f3:54:bf:78:e3:f2:aa:1b:e2:fb:9c: da:c7:51:e0:13:06:1a:30:61:76:68:11:2d:79:17:85:d8:c9: 67:60:ab:3d:8c:a9:f3:3e:2d:19:c3:00:2a:f0:b4:c4:10:2b: 21:46:31:0e:0a:96:95:6a:a6:ed:fa:2b:6b:68:6c:fb:fa:e8: be:ef:a6:14:41:3d:61:c9:21:b4:13:9e:39:bc:e4:fe:12:2a: 56:e1:93:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUE8rgFpeqevpIXDUtWeBeKXbdN3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTA3MTgxNDU1MDFaFw0yNjA3MTcxNTAwMDFaMDMxMTAvBgNV BAMTKEFEQkQ3NDhCNjFCRkM5RTUzNDZDQTg2MEIwNThEMDNFMzM3N0MyRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQwjuRyF+VAsrmqp1TjmNDeq/M er6Pq86BC/bZumJy5uz5Oi1HflloIlYOCSQu/0W4qn/ll9EnHIFHov2fWw5vPtHe gif6WQVd936RT1W7/BVzHfwrcTylrvibWKZqAwU5PWJdCEDMEjJ8yWcKQPxk/4nK BfTRRCKGYgol72oYlw6yqvnKJGiIzhDFst4FMls9u0oz+VTsmFnjW16DW8BZSg1r 5DHwRNRqtQ4KtPK1VjhPznu0YY2Bu81g9bpmPeQr3ORUP93MkxZiVlw0b8/Mjv/i 0BXhSDJbKCqbZx8phfpVbrEjCYYol5++ZksCwn6wxpMFmM3I6AyIaWow5YJNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrb10i2G/yeU0bKhgsFjQPjN3wvswHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbXwwDQYJ KoZIhvcNAQELBQADggEBAB/+ZYIedVdFCYTz5muvUJsEtWLNGls0d5E72oetv4Ns 0ua3uXRsiLe3WBYwzdfVpHTkQZJvVHtMablzzJwy/KinPztLdC5ZqeG9h1cSKpTI 8A5gV3RQrZCQCCEWtsH7I5O81aUqdlA9yb00d48lu635jlmEbmr9dR+B1JXxE6QY sLSH9l3JlbOtgwPXzyrJYSwBsfxkKTZcN8txG1VL5Qh8DcTBsw8Kzy7zVL944/Kq G+L7nNrHUeATBhowYXZoES15F4XYyWdgqz2MqfM+LRnDACrwtMQQKyFGMQ4KlpVq pu36K2tobPv66L7vphRBPWHJIbQTnjm85P4SKlbhk8E= -----END CERTIFICATE-----Generated at Thu Jul 24 00:25:17 2025 by rpki-client