$ rpki-client -vvf repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235322e302f32342d3234203d3e203539323739.roa File: 3130332e3232372e3235322e302f32342d3234203d3e203539323739.roa (raw, json) Hash identifier: BC8Z+MI6o4DP9LRb47mfu8ZSMDubv7b1oYZliJpzfxs= Subject key identifier: F6:CF:E6:90:C5:AB:F7:E4:7E:D8:6C:79:CD:FF:4B:4A:D5:48:18:C7 Certificate issuer: /CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Certificate serial: 577AA5654850CEEAB95F739AB2DA64EC03F9FF10 Authority key identifier: A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235322e302f32342d3234203d3e203539323739.roa Signing time: Wed 16 Jul 2025 10:00:00 +0000 ROA not before: Wed 16 Jul 2025 09:55:00 +0000 ROA not after: Wed 15 Jul 2026 10:00:00 +0000 asID: 59279 IP address blocks: 103.227.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 21:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:7a:a5:65:48:50:ce:ea:b9:5f:73:9a:b2:da:64:ec:03:f9:ff:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Validity Not Before: Jul 16 09:55:00 2025 GMT Not After : Jul 15 10:00:00 2026 GMT Subject: CN=F6CFE690C5ABF7E47ED86C79CDFF4B4AD54818C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:3d:9b:02:32:b9:9c:06:53:2e:93:06:54: 0d:ee:e2:a8:ea:85:68:8b:aa:0f:64:1e:83:b9:73: 22:b3:f1:e1:75:47:7d:b7:1a:37:9c:cc:d6:18:6d: 85:52:0a:e8:77:58:8a:21:e2:1a:76:5b:33:ba:6f: 8b:3a:63:7c:7b:de:12:11:38:cb:8d:38:ed:40:1f: 4b:d5:fe:68:8d:58:bf:ef:2f:60:2c:0c:3e:68:db: 9c:d7:e4:f6:a7:e9:9f:7c:6c:ab:03:25:3f:4b:a3: dc:2c:62:b8:1f:dd:71:91:7b:1e:cf:09:6f:50:c4: f2:05:26:53:19:7b:0a:db:80:5f:23:96:36:04:6e: 4f:c6:81:40:6e:84:4e:c6:bc:7a:a4:e1:14:c3:f9: aa:b5:2f:53:48:73:90:e7:2c:87:2d:38:6b:f1:b0: 6c:18:ba:48:2d:6c:24:f3:d2:7e:3d:97:73:f6:67: 73:98:ea:f1:05:d5:38:ac:0a:4e:e0:2c:69:a3:a5: be:ce:ba:6f:1d:c2:61:ab:3b:1e:5c:dc:e6:a0:27: df:2a:aa:ed:92:52:e1:c3:18:b4:1e:9b:04:61:e5: e9:a7:5d:50:99:9b:22:74:a5:77:92:05:c4:50:53: 8d:9a:40:86:12:ee:dc:df:46:06:1c:6f:89:09:f4: 96:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CF:E6:90:C5:AB:F7:E4:7E:D8:6C:79:CD:FF:4B:4A:D5:48:18:C7 X509v3 Authority Key Identifier: keyid:A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235322e302f32342d3234203d3e203539323739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.252.0/24 Signature Algorithm: sha256WithRSAEncryption ab:04:93:06:04:3f:c5:b7:48:5a:15:b0:30:bd:e8:43:dd:23: 4e:e3:53:1b:cb:92:28:32:84:57:4e:97:c4:dd:1d:c3:a2:45: 58:32:e5:28:f8:2b:d4:46:aa:c4:3f:3d:c3:36:39:e1:13:63: c2:5d:a7:49:0c:19:60:ff:07:e9:c2:b9:03:86:2b:9d:a6:06: 71:de:73:11:a5:f2:e8:71:4d:b1:eb:f6:9e:0d:ef:46:f3:a7: 08:18:4f:10:06:52:e6:74:9b:b6:8f:c2:71:b3:22:72:30:55: e4:ff:10:b8:01:cc:d6:0e:fb:46:11:21:37:18:7e:23:1e:24: 76:52:73:13:88:a2:e2:cb:08:ae:dd:a6:ce:6a:24:48:e7:49: d2:8d:e4:29:d1:6d:53:95:06:42:78:e2:33:43:36:8d:d7:07: 82:b3:d4:30:94:d7:44:6d:bb:70:0c:14:1a:be:18:c8:e6:d3: d3:49:5d:92:0f:e8:ea:7c:9f:51:78:41:df:57:27:14:42:a5: c7:64:a3:66:d4:49:3a:52:c5:da:7b:7b:2d:7f:92:1c:1a:16: 86:bd:f9:22:e0:7b:cb:8f:44:7d:7b:0b:6d:54:2b:98:04:18: 95:9d:07:5b:e6:bb:57:d2:b2:d0:fb:51:a4:f7:6f:db:df:ac: d2:42:ea:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV3qlZUhQzuq5X3Oastpk7AP5/xAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcw QUU4NzY4MzAeFw0yNTA3MTYwOTU1MDBaFw0yNjA3MTUxMDAwMDBaMDMxMTAvBgNV BAMTKEY2Q0ZFNjkwQzVBQkY3RTQ3RUQ4NkM3OUNERkY0QjRBRDU0ODE4QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3wD2bAjK5nAZTLpMGVA3u4qjq hWiLqg9kHoO5cyKz8eF1R323GjeczNYYbYVSCuh3WIoh4hp2WzO6b4s6Y3x73hIR OMuNOO1AH0vV/miNWL/vL2AsDD5o25zX5Pan6Z98bKsDJT9Lo9wsYrgf3XGRex7P CW9QxPIFJlMZewrbgF8jljYEbk/GgUBuhE7GvHqk4RTD+aq1L1NIc5DnLIctOGvx sGwYukgtbCTz0n49l3P2Z3OY6vEF1TisCk7gLGmjpb7Oum8dwmGrOx5c3OagJ98q qu2SUuHDGLQemwRh5emnXVCZmyJ0pXeSBcRQU42aQIYS7tzfRgYcb4kJ9JYlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9s/mkMWr9+R+2Gx5zf9LStVIGMcwHwYDVR0j BBgwFoAUqevPgVjquxwW7+G4K055FwrodoMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWZmZmMyZC1jY2E3LTQ4ZTYtOWNkNi01NjVjMTFjNDU0NDAvMC9BOUVCQ0Y4MTU4 RUFCQjFDMTZFRkUxQjgyQjRFNzkxNzBBRTg3NjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcwQUU4 NzY4My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZmZmYzJkLWNjYTctNDhlNi05 Y2Q2LTU2NWMxMWM0NTQ0MC8wLzMxMzAzMzJlMzIzMjM3MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+P8MA0GCSqG SIb3DQEBCwUAA4IBAQCrBJMGBD/Ft0haFbAwvehD3SNO41Mby5IoMoRXTpfE3R3D okVYMuUo+CvURqrEPz3DNjnhE2PCXadJDBlg/wfpwrkDhiudpgZx3nMRpfLocU2x 6/aeDe9G86cIGE8QBlLmdJu2j8JxsyJyMFXk/xC4AczWDvtGESE3GH4jHiR2UnMT iKLiywiu3abOaiRI50nSjeQp0W1TlQZCeOIzQzaN1weCs9QwlNdEbbtwDBQavhjI 5tPTSV2SD+jqfJ9ReEHfVycUQqXHZKNm1Ek6UsXae3stf5IcGhaGvfki4HvLj0R9 ewttVCuYBBiVnQdb5rtX0rLQ+1Gk92/b36zSQupE -----END CERTIFICATE-----Generated at Fri Jul 25 01:02:03 2025 by rpki-client