$ rpki-client -vvf repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235352e302f32342d3234203d3e203539323739.roa File: 3130332e3232372e3235352e302f32342d3234203d3e203539323739.roa (raw, json) Hash identifier: e07PmHoYuSOEnNmpljeQQaCWbAh9p56585zgbUkdq90= Subject key identifier: E7:42:24:BF:6F:18:61:2B:6D:28:7E:26:88:48:F6:2A:A6:F9:27:C0 Certificate issuer: /CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Certificate serial: 67311FB3E29A339FF55EC09524EAFFF26C91F99E Authority key identifier: A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235352e302f32342d3234203d3e203539323739.roa Signing time: Wed 16 Jul 2025 10:00:01 +0000 ROA not before: Wed 16 Jul 2025 09:55:01 +0000 ROA not after: Wed 15 Jul 2026 10:00:01 +0000 asID: 59279 IP address blocks: 103.227.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 21:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:31:1f:b3:e2:9a:33:9f:f5:5e:c0:95:24:ea:ff:f2:6c:91:f9:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683 Validity Not Before: Jul 16 09:55:01 2025 GMT Not After : Jul 15 10:00:01 2026 GMT Subject: CN=E74224BF6F18612B6D287E268848F62AA6F927C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:1e:e7:00:85:ee:0d:5a:e3:34:03:a2:15: 21:73:1d:1e:01:c3:d5:26:a4:99:73:af:72:eb:ac: e1:6f:ce:8a:3f:03:c6:17:d2:f6:24:8d:53:8f:f1: 4d:46:46:6a:3f:53:05:36:ca:28:30:cb:44:6f:4e: bc:90:fb:99:c6:70:18:49:ba:5b:3e:8a:20:02:2a: dc:05:53:7d:70:a4:8f:43:61:d2:19:38:ec:9b:d6: 16:c2:f2:b4:2f:27:74:32:15:b8:ee:c3:1b:63:d7: 8f:81:9a:00:2d:d4:28:cc:3f:5a:73:d1:46:61:be: 97:64:a4:8d:09:03:09:43:9b:75:b7:73:e2:16:17: 42:69:da:47:65:f0:96:bc:23:25:51:d3:8b:60:29: 8e:ad:50:a8:0f:78:19:10:da:22:94:89:7e:89:54: 29:68:8a:fb:aa:a8:65:6d:7b:1d:c8:f0:2a:4b:33: 60:ee:71:da:5e:58:45:c9:7b:54:d3:a9:96:18:96: ea:45:eb:82:70:ed:f0:e5:f3:74:7e:8a:f1:04:16: ee:f4:23:c7:a2:97:94:22:4a:fc:7f:2f:95:2a:e1: 82:31:ca:f8:ba:54:95:c4:9c:76:ad:d1:2e:cc:b6: 49:5a:70:07:d9:b4:56:51:a8:fe:88:1f:db:63:26: 71:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:42:24:BF:6F:18:61:2B:6D:28:7E:26:88:48:F6:2A:A6:F9:27:C0 X509v3 Authority Key Identifier: keyid:A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235352e302f32342d3234203d3e203539323739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.255.0/24 Signature Algorithm: sha256WithRSAEncryption 09:29:81:0f:c7:1f:c1:88:59:8c:aa:b3:22:93:d4:af:ad:01: 74:57:31:f7:6e:18:2f:70:bb:83:21:78:36:d5:c6:a3:5e:fc: 53:d3:17:b0:9c:68:87:f2:1f:cd:db:1a:ef:10:54:b7:ee:ae: f9:9d:44:5d:25:29:70:cc:ab:55:83:1b:ad:13:56:58:53:73: dd:3d:23:54:a0:17:52:e7:33:48:cb:d9:0e:4a:86:b0:db:b6: 32:e3:a1:60:c8:75:8a:5c:92:bd:26:21:b1:be:42:33:56:bb: 2e:ff:87:23:fa:6f:d8:3e:96:04:ae:d3:5f:9b:d4:4c:11:a1: 3c:1a:28:77:7d:3f:99:bc:c6:08:a1:d1:77:c6:61:e6:1f:b0: 07:6c:f0:ad:dc:1a:6d:8b:01:7a:86:2a:f6:7d:07:6c:12:df: e7:76:98:3e:a6:2e:59:86:5b:e6:59:f1:6a:52:9d:c6:03:29: 8b:86:c7:7b:f5:b9:f2:1e:96:9a:63:07:7a:50:4c:a4:a2:9e: 98:b0:ed:19:87:46:6d:ac:00:38:f9:3d:35:77:0f:c3:46:d4: f9:b9:fa:4f:eb:66:40:fa:07:85:4d:f2:e7:a8:d1:91:f0:47: b8:9d:7b:7e:b2:09:2c:3e:1f:55:dc:f3:23:3c:66:f7:1b:c7: 43:02:ff:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZzEfs+KaM5/1XsCVJOr/8myR+Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcw QUU4NzY4MzAeFw0yNTA3MTYwOTU1MDFaFw0yNjA3MTUxMDAwMDFaMDMxMTAvBgNV BAMTKEU3NDIyNEJGNkYxODYxMkI2RDI4N0UyNjg4NDhGNjJBQTZGOTI3QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7xR7nAIXuDVrjNAOiFSFzHR4B w9UmpJlzr3LrrOFvzoo/A8YX0vYkjVOP8U1GRmo/UwU2yigwy0RvTryQ+5nGcBhJ uls+iiACKtwFU31wpI9DYdIZOOyb1hbC8rQvJ3QyFbjuwxtj14+BmgAt1CjMP1pz 0UZhvpdkpI0JAwlDm3W3c+IWF0Jp2kdl8Ja8IyVR04tgKY6tUKgPeBkQ2iKUiX6J VCloivuqqGVtex3I8CpLM2DucdpeWEXJe1TTqZYYlupF64Jw7fDl83R+ivEEFu70 I8eil5QiSvx/L5Uq4YIxyvi6VJXEnHat0S7MtklacAfZtFZRqP6IH9tjJnGtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU50Ikv28YYSttKH4miEj2Kqb5J8AwHwYDVR0j BBgwFoAUqevPgVjquxwW7+G4K055FwrodoMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWZmZmMyZC1jY2E3LTQ4ZTYtOWNkNi01NjVjMTFjNDU0NDAvMC9BOUVCQ0Y4MTU4 RUFCQjFDMTZFRkUxQjgyQjRFNzkxNzBBRTg3NjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFQkNGODE1OEVBQkIxQzE2RUZFMUI4MkI0RTc5MTcwQUU4 NzY4My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZmZmYzJkLWNjYTctNDhlNi05 Y2Q2LTU2NWMxMWM0NTQ0MC8wLzMxMzAzMzJlMzIzMjM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+P/MA0GCSqG SIb3DQEBCwUAA4IBAQAJKYEPxx/BiFmMqrMik9SvrQF0VzH3bhgvcLuDIXg21caj XvxT0xewnGiH8h/N2xrvEFS37q75nURdJSlwzKtVgxutE1ZYU3PdPSNUoBdS5zNI y9kOSoaw27Yy46FgyHWKXJK9JiGxvkIzVrsu/4cj+m/YPpYErtNfm9RMEaE8Gih3 fT+ZvMYIodF3xmHmH7AHbPCt3BptiwF6hir2fQdsEt/ndpg+pi5ZhlvmWfFqUp3G AymLhsd79bnyHpaaYwd6UEykop6YsO0Zh0ZtrAA4+T01dw/DRtT5ufpP62ZA+geF TfLnqNGR8Ee4nXt+sgksPh9V3PMjPGb3G8dDAv9d -----END CERTIFICATE-----Generated at Wed Jul 23 23:54:56 2025 by rpki-client