$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa File: 3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: lIUh0f7VnXIYpBOBjqROmYbGyVBkSoUl0CEhdWYr/S8= Subject key identifier: 1E:0F:13:F6:79:9B:50:27:87:39:44:60:B5:BD:78:87:15:F0:E1:51 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 23B8B535ADD6301A1BCE406078D74A2EB14F6F3B Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa Signing time: Fri 18 Jul 2025 16:00:01 +0000 ROA not before: Fri 18 Jul 2025 15:55:01 +0000 ROA not after: Fri 17 Jul 2026 16:00:01 +0000 asID: 137316 IP address blocks: 103.109.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b8:b5:35:ad:d6:30:1a:1b:ce:40:60:78:d7:4a:2e:b1:4f:6f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Jul 18 15:55:01 2025 GMT Not After : Jul 17 16:00:01 2026 GMT Subject: CN=1E0F13F6799B502787394460B5BD788715F0E151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:aa:7a:f0:a6:83:2c:90:40:a1:fd:d6:c3:b7: ef:84:3a:06:d0:90:65:e8:59:5f:1a:ed:14:c5:b4: 7b:39:04:83:80:5c:ce:43:be:3d:96:9b:a3:ee:48: 79:70:ab:fc:aa:c2:1e:5c:26:bd:04:b4:d2:f4:4a: 76:9a:67:01:e4:c0:d8:d1:7d:23:c8:c6:d6:6f:05: cd:cb:62:b5:94:ad:ed:08:d2:d3:c9:0a:d9:fa:db: 05:64:40:50:e8:6a:0a:3b:25:e4:f3:97:2d:ca:70: d0:9e:bd:52:55:92:b5:06:74:40:22:e2:2d:99:b4: a4:36:19:e8:d6:84:01:63:7f:c3:d4:88:ae:d8:0c: 65:cc:21:0f:ba:77:53:24:c3:3c:7e:9b:46:63:fe: 49:65:f2:7a:00:82:9c:98:99:8e:e8:4f:06:82:82: d6:57:ae:b0:eb:1e:75:7e:23:32:cb:79:e6:3b:39: 78:f3:fa:93:b0:fa:cc:8b:c4:eb:47:6c:a7:93:af: a5:46:56:f4:38:08:a9:c6:7e:b0:c0:d7:01:92:9b: a4:c3:42:45:cd:dd:55:7a:d5:51:22:25:13:5b:7b: 3c:61:5e:fa:78:e8:25:47:0f:1d:a7:8f:ea:cb:a9: 07:3e:66:c1:ef:d5:dc:e2:15:d9:ac:38:86:24:21: 2a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0F:13:F6:79:9B:50:27:87:39:44:60:B5:BD:78:87:15:F0:E1:51 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.125.0/24 Signature Algorithm: sha256WithRSAEncryption a6:36:7a:33:ae:4b:25:44:7f:84:84:f4:a8:fb:81:9d:48:fd: b0:1d:e0:98:07:9a:18:3d:72:67:c1:9c:e1:ba:a7:68:85:18: 79:3a:17:0b:ef:cd:16:f3:81:2b:c6:59:9e:5b:fb:8c:37:54: d0:dc:e0:ee:86:7f:40:dd:86:92:19:fb:94:14:fa:85:0d:fc: cb:fd:09:49:39:36:a9:4e:bf:50:c5:a0:a1:3e:5d:96:5c:4a: 36:b1:ea:8f:a8:4b:cd:d7:b8:ca:d4:14:93:69:65:11:56:1b: 38:62:77:9e:3d:91:c8:d0:98:91:2b:60:b4:00:2a:d4:84:54: 95:fc:64:20:4b:96:68:a9:47:b0:39:de:9a:7b:1c:72:63:4a: 62:93:a6:5b:7e:d6:44:71:c0:32:43:eb:db:49:42:61:30:3b: 02:0e:82:eb:f5:8d:48:df:c8:01:6e:7f:16:62:c6:c1:7a:45: c8:67:72:6a:22:93:80:2a:b3:d9:ad:06:7e:03:54:56:0e:4c: b4:6b:6c:c7:9d:50:5d:b9:34:a0:87:d3:da:6b:25:35:6a:ec: ac:da:b5:3f:61:de:ea:22:48:d8:f5:89:4b:a3:b3:00:17:28: 7d:17:88:a9:f0:f4:4b:d0:2a:13:f4:f4:06:8a:9c:34:96:cb: 40:72:e2:4e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI7i1Na3WMBobzkBgeNdKLrFPbzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTA3MTgxNTU1MDFaFw0yNjA3MTcxNjAwMDFaMDMxMTAvBgNV BAMTKDFFMEYxM0Y2Nzk5QjUwMjc4NzM5NDQ2MEI1QkQ3ODg3MTVGMEUxNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgqnrwpoMskECh/dbDt++EOgbQ kGXoWV8a7RTFtHs5BIOAXM5Dvj2Wm6PuSHlwq/yqwh5cJr0EtNL0SnaaZwHkwNjR fSPIxtZvBc3LYrWUre0I0tPJCtn62wVkQFDoago7JeTzly3KcNCevVJVkrUGdEAi 4i2ZtKQ2GejWhAFjf8PUiK7YDGXMIQ+6d1Mkwzx+m0Zj/kll8noAgpyYmY7oTwaC gtZXrrDrHnV+IzLLeeY7OXjz+pOw+syLxOtHbKeTr6VGVvQ4CKnGfrDA1wGSm6TD QkXN3VV61VEiJRNbezxhXvp46CVHDx2nj+rLqQc+ZsHv1dziFdmsOIYkISpdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHg8T9nmbUCeHOURgtb14hxXw4VEwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbX0wDQYJ KoZIhvcNAQELBQADggEBAKY2ejOuSyVEf4SE9Kj7gZ1I/bAd4JgHmhg9cmfBnOG6 p2iFGHk6FwvvzRbzgSvGWZ5b+4w3VNDc4O6Gf0DdhpIZ+5QU+oUN/Mv9CUk5NqlO v1DFoKE+XZZcSjax6o+oS83XuMrUFJNpZRFWGzhid549kcjQmJErYLQAKtSEVJX8 ZCBLlmipR7A53pp7HHJjSmKTplt+1kRxwDJD69tJQmEwOwIOguv1jUjfyAFufxZi xsF6Rchncmoik4Aqs9mtBn4DVFYOTLRrbMedUF25NKCH09prJTVq7KzatT9h3uoi SNj1iUujswAXKH0XiKnw9EvQKhP09AaKnDSWy0By4k4= -----END CERTIFICATE-----Generated at Thu Jul 24 00:25:14 2025 by rpki-client