$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa File: 3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: lSdKlmg8VaiTsptOJOzn4R87X+laef4xO9z7q04zGC8= Subject key identifier: D7:C2:BE:1E:2C:4F:F7:C3:50:C3:85:E3:83:BF:C8:3E:8B:8C:23:A6 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 60A8D8C89158825030021E9A7785D32384BC54C2 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa Signing time: Fri 18 Jul 2025 14:00:01 +0000 ROA not before: Fri 18 Jul 2025 13:55:01 +0000 ROA not after: Fri 17 Jul 2026 14:00:01 +0000 asID: 137316 IP address blocks: 103.109.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:a8:d8:c8:91:58:82:50:30:02:1e:9a:77:85:d3:23:84:bc:54:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Jul 18 13:55:01 2025 GMT Not After : Jul 17 14:00:01 2026 GMT Subject: CN=D7C2BE1E2C4FF7C350C385E383BFC83E8B8C23A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:52:27:27:38:84:b2:4e:f1:16:52:f0:14:28: 9a:dc:a3:00:8c:d5:1e:ab:6f:9d:b5:7d:b9:63:84: a6:48:ba:65:8d:11:73:9c:11:9c:93:a9:38:2b:b1: a3:db:aa:d9:22:71:90:b2:dd:43:11:a7:26:1c:25: 35:b6:42:87:06:40:5a:cc:bf:be:2b:df:78:7f:f6: d4:00:c2:be:42:4f:17:6a:19:55:5b:69:9a:e4:b7: fd:30:8c:9e:13:bd:d5:25:b3:25:bb:92:5e:5b:54: 19:9c:f8:4a:a0:a5:64:b3:3d:5a:9d:ce:64:5d:09: 50:19:50:f3:30:73:f3:a9:6b:13:3e:41:89:2b:fe: 52:13:2f:e0:cb:8c:d5:55:7b:d8:0b:e3:bf:d1:1b: 97:f1:74:79:60:e7:c0:76:39:78:22:a4:e6:73:74: 47:34:f8:df:2b:e0:e9:7a:89:c9:ec:6a:36:19:bf: 44:55:59:fa:f5:c3:02:aa:a1:01:3b:c2:4f:bf:90: d1:ed:e3:30:25:72:c3:ff:35:87:79:12:9b:b5:e5: db:5f:71:fe:c8:93:a5:1a:5a:c9:f9:5a:0c:27:a8: a7:3a:8b:15:c2:b4:bd:64:0e:c5:8f:48:78:c4:d1: 7b:41:b3:52:ea:32:c1:b2:64:12:aa:17:f4:19:72: 4e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C2:BE:1E:2C:4F:F7:C3:50:C3:85:E3:83:BF:C8:3E:8B:8C:23:A6 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.126.0/24 Signature Algorithm: sha256WithRSAEncryption b6:5a:f7:e9:03:49:32:04:3a:8c:01:af:c6:d5:c2:1d:a3:c1: 73:5f:8e:22:53:24:5b:21:01:d3:7c:cf:3d:34:f6:c0:b8:ea: be:ec:0f:d2:de:ec:9c:65:ff:03:40:41:fa:0e:cb:2d:f7:c1: 75:91:9d:62:8a:66:1e:af:74:18:7f:2c:09:cf:8d:95:64:63: 45:ea:aa:23:8c:ee:25:e0:2e:10:8b:f0:74:40:f6:40:ed:f0: 02:0c:f8:96:6a:c6:f6:61:ec:43:0a:c6:94:39:84:9e:e9:b1: 15:96:9b:d7:06:a5:6e:18:b6:f5:83:32:c8:8b:cb:21:ee:fd: 94:90:d1:1b:1b:26:6b:04:ef:22:85:5b:09:ac:31:2b:c9:06: 42:36:ba:6e:98:80:5e:97:5c:61:de:f7:ec:3d:ff:f7:80:21: 39:ff:8a:a3:34:e3:73:31:4d:b8:7e:97:af:a9:d7:0e:04:82: 71:89:0f:1f:48:de:1f:9e:9d:7b:7f:05:94:ef:b8:50:9b:67: c2:d1:5b:0b:57:17:ce:92:b4:f3:72:23:e4:47:6b:48:8b:cd: 3f:ba:a9:d1:18:cd:ef:74:de:ed:af:88:d5:4e:19:64:48:73: 6e:5a:35:93:06:70:77:63:89:d6:00:bc:18:15:57:5d:19:37: e3:b7:e3:13 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYKjYyJFYglAwAh6ad4XTI4S8VMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTA3MTgxMzU1MDFaFw0yNjA3MTcxNDAwMDFaMDMxMTAvBgNV BAMTKEQ3QzJCRTFFMkM0RkY3QzM1MEMzODVFMzgzQkZDODNFOEI4QzIzQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOUicnOISyTvEWUvAUKJrcowCM 1R6rb521fbljhKZIumWNEXOcEZyTqTgrsaPbqtkicZCy3UMRpyYcJTW2QocGQFrM v74r33h/9tQAwr5CTxdqGVVbaZrkt/0wjJ4TvdUlsyW7kl5bVBmc+EqgpWSzPVqd zmRdCVAZUPMwc/OpaxM+QYkr/lITL+DLjNVVe9gL47/RG5fxdHlg58B2OXgipOZz dEc0+N8r4Ol6icnsajYZv0RVWfr1wwKqoQE7wk+/kNHt4zAlcsP/NYd5Epu15dtf cf7Ik6UaWsn5WgwnqKc6ixXCtL1kDsWPSHjE0XtBs1LqMsGyZBKqF/QZck6NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU18K+HixP98NQw4Xjg7/IPouMI6YwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbX4wDQYJ KoZIhvcNAQELBQADggEBALZa9+kDSTIEOowBr8bVwh2jwXNfjiJTJFshAdN8zz00 9sC46r7sD9Le7Jxl/wNAQfoOyy33wXWRnWKKZh6vdBh/LAnPjZVkY0XqqiOM7iXg LhCL8HRA9kDt8AIM+JZqxvZh7EMKxpQ5hJ7psRWWm9cGpW4YtvWDMsiLyyHu/ZSQ 0RsbJmsE7yKFWwmsMSvJBkI2um6YgF6XXGHe9+w9//eAITn/iqM043MxTbh+l6+p 1w4EgnGJDx9I3h+enXt/BZTvuFCbZ8LRWwtXF86StPNyI+RHa0iLzT+6qdEYze90 3u2viNVOGWRIc25aNZMGcHdjidYAvBgVV10ZN+O34xM= -----END CERTIFICATE-----Generated at Thu Jul 24 00:24:35 2025 by rpki-client