$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa (raw, json) Hash identifier: TB81RW09cSXgrXgJAYPXKsxvmNEuOM4iVijZs/dW40o= Subject key identifier: 99:B1:69:EC:21:66:B6:52:99:DC:81:18:29:9B:5E:33:40:89:B4:39 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 7809625518E3EE5565A0312EFBF2861B020F47E5 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa Signing time: Wed 23 Jul 2025 06:00:00 +0000 ROA not before: Wed 23 Jul 2025 05:55:00 +0000 ROA not after: Wed 22 Jul 2026 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:09:62:55:18:e3:ee:55:65:a0:31:2e:fb:f2:86:1b:02:0f:47:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jul 23 05:55:00 2025 GMT Not After : Jul 22 06:00:00 2026 GMT Subject: CN=99B169EC2166B65299DC8118299B5E334089B439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:54:87:5a:f9:45:a7:66:9a:ac:2b:8f:22:98: 4f:c3:a9:de:5e:44:a2:1b:d3:e2:23:1b:09:55:78: 0d:de:be:bb:e1:27:32:9a:8b:0c:58:02:97:2c:d4: ee:31:6e:f2:b6:56:0e:3e:ad:b2:17:f6:6a:e5:e4: 1d:c2:71:1c:1b:c7:69:6e:b4:c5:b6:5f:ec:94:9b: c7:35:0d:63:ac:b0:43:c3:c8:e6:d9:8a:0a:77:b8: 37:89:40:30:0c:82:69:50:41:40:02:40:ff:6b:e2: 73:e0:3c:1d:22:30:60:89:6b:39:bc:a3:04:b3:20: bc:9c:94:ad:35:22:7d:fa:18:f4:93:de:fe:d9:01: fb:97:bc:e4:cb:06:f2:a3:b0:0d:73:11:55:9d:3c: 42:eb:28:b5:56:3c:b3:ac:44:c7:97:90:5a:73:66: a9:34:4e:5a:46:6a:3d:6b:68:8e:a8:e0:e9:f1:f4: 69:ea:8f:4a:71:62:59:15:65:13:7b:51:c6:01:e3: fe:6d:15:12:29:3a:e6:06:6b:d4:8a:e2:70:72:3e: 3c:05:ac:76:ea:5d:15:a7:63:64:ed:dd:36:14:fc: bb:68:ec:d4:ba:52:18:84:8d:07:f0:c4:7e:be:cb: b3:43:16:e3:7c:56:86:0d:33:82:28:63:ac:96:2b: 1c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B1:69:EC:21:66:B6:52:99:DC:81:18:29:9B:5E:33:40:89:B4:39 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32322d3232203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/22 Signature Algorithm: sha256WithRSAEncryption 99:81:f5:57:54:fb:69:26:3d:61:90:a8:37:43:bf:9c:f0:b4: bc:a6:54:87:93:cb:20:01:db:6a:4b:49:5c:46:5e:76:d9:da: 1a:e5:c2:62:b0:d8:67:03:7f:b3:33:a8:31:2d:9b:ab:e4:59: de:7c:a7:8f:8b:77:a8:37:a1:06:1d:6b:db:5f:3d:16:7e:96: 21:5f:ef:35:e5:0f:ed:06:7b:c6:c6:07:b3:96:19:c6:e4:b3: 1e:97:ce:d5:75:3f:65:2c:5d:f6:f4:c8:88:ca:23:af:ca:f4: bb:2e:44:b0:5f:f2:cd:4e:28:2b:2c:99:a3:25:95:67:92:cc: c2:11:68:e7:73:79:7e:24:a3:06:d8:ec:b5:13:15:60:13:c9: 83:dd:d8:ba:d7:d3:1e:32:56:d0:7a:ec:82:e9:1d:1e:b0:60: 50:0f:90:eb:08:64:ad:97:a6:38:8b:5b:6d:81:ec:3f:e3:90: 60:aa:f2:fe:ce:d7:9b:f6:38:a0:d9:e1:8c:69:0f:6e:79:41: 80:9b:ca:34:ec:2d:1e:05:d0:fb:c8:b8:3b:81:17:17:3c:ce: 4f:04:78:ed:6d:1b:a7:88:37:11:67:f0:a2:8a:90:1b:a4:93: 19:a8:76:16:f5:24:5b:06:9d:d2:46:2c:16:bc:57:7d:3d:05: f3:8e:e1:fd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeAliVRjj7lVloDEu+/KGGwIPR+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNTA3MjMwNTU1MDBaFw0yNjA3MjIwNjAwMDBaMDMxMTAvBgNV BAMTKDk5QjE2OUVDMjE2NkI2NTI5OURDODExODI5OUI1RTMzNDA4OUI0MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuVIda+UWnZpqsK48imE/Dqd5e RKIb0+IjGwlVeA3evrvhJzKaiwxYApcs1O4xbvK2Vg4+rbIX9mrl5B3CcRwbx2lu tMW2X+yUm8c1DWOssEPDyObZigp3uDeJQDAMgmlQQUACQP9r4nPgPB0iMGCJazm8 owSzILyclK01In36GPST3v7ZAfuXvOTLBvKjsA1zEVWdPELrKLVWPLOsRMeXkFpz Zqk0TlpGaj1raI6o4Onx9Gnqj0pxYlkVZRN7UcYB4/5tFRIpOuYGa9SK4nByPjwF rHbqXRWnY2Tt3TYU/Lto7NS6UhiEjQfwxH6+y7NDFuN8VoYNM4IoY6yWKxwJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmbFp7CFmtlKZ3IEYKZteM0CJtDkwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnepgwDQYJ KoZIhvcNAQELBQADggEBAJmB9VdU+2kmPWGQqDdDv5zwtLymVIeTyyAB22pLSVxG XnbZ2hrlwmKw2GcDf7MzqDEtm6vkWd58p4+Ld6g3oQYda9tfPRZ+liFf7zXlD+0G e8bGB7OWGcbksx6XztV1P2UsXfb0yIjKI6/K9LsuRLBf8s1OKCssmaMllWeSzMIR aOdzeX4kowbY7LUTFWATyYPd2LrX0x4yVtB67ILpHR6wYFAPkOsIZK2XpjiLW22B 7D/jkGCq8v7O15v2OKDZ4YxpD255QYCbyjTsLR4F0PvIuDuBFxc8zk8EeO1tG6eI NxFn8KKKkBukkxmodhb1JFsGndJGLBa8V309BfOO4f0= -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:25 2025 by rpki-client