$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: wJIxSydIcIK632aJu1sVcTgkjmEOfnhPh7sYYVJOybg= Subject key identifier: BE:2D:B6:B0:32:0B:C7:06:CF:AB:10:D0:7F:97:C7:0A:D0:03:26:DF Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 131FFF52232880B431A7F060B890B12AF93E8407 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa Signing time: Wed 23 Jul 2025 06:00:01 +0000 ROA not before: Wed 23 Jul 2025 05:55:01 +0000 ROA not after: Wed 22 Jul 2026 06:00:01 +0000 asID: 140407 IP address blocks: 103.122.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:1f:ff:52:23:28:80:b4:31:a7:f0:60:b8:90:b1:2a:f9:3e:84:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jul 23 05:55:01 2025 GMT Not After : Jul 22 06:00:01 2026 GMT Subject: CN=BE2DB6B0320BC706CFAB10D07F97C70AD00326DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:28:cd:aa:de:6e:83:62:fe:08:15:8a:3e:46: ce:95:90:bf:81:06:ed:88:ff:3b:b5:60:e7:50:4f: 6d:0f:15:df:b5:37:ff:04:fb:18:54:ca:33:35:28: 5b:0c:39:b3:86:65:82:9a:bf:e6:fd:c6:11:33:57: 1c:38:01:d3:e4:90:b3:c6:82:c4:e5:f0:5f:96:c5: 7e:bd:45:15:92:08:84:29:86:0f:1a:f8:82:64:2f: 2f:e0:5d:f8:ec:11:92:f4:fe:d3:cd:ed:6f:a2:ac: 55:99:e1:c5:e9:fe:0f:1f:fe:11:0e:50:b5:be:59: 03:eb:a7:a8:ce:e3:3d:5c:68:8f:23:13:a4:f2:46: e2:ed:eb:9b:6f:d4:11:41:3f:4d:cf:34:6e:d5:84: a0:69:90:ef:e4:fd:4a:0f:1a:dd:68:6e:3e:1d:f8: 3e:93:b0:1c:f4:cd:ec:d4:08:b7:39:ed:2b:58:8e: 8e:6c:53:26:a4:37:80:f6:5f:7e:12:f8:eb:0c:09: d1:70:dc:63:c3:c0:1f:fd:48:60:f1:9c:8e:c9:32: 3b:a0:61:71:de:2c:e0:e5:86:42:cb:30:8d:a2:fe: db:38:66:55:d3:cd:39:51:98:f9:7b:dc:ef:df:b2: c3:87:f2:27:7c:be:a7:0f:61:77:e4:27:6f:4b:88: 48:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:2D:B6:B0:32:0B:C7:06:CF:AB:10:D0:7F:97:C7:0A:D0:03:26:DF X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:79:d5:f0:5a:fc:43:69:f5:60:25:1f:4f:19:52:d6:c3:67: 2e:fe:60:cc:b7:18:f9:bc:41:16:9c:5c:4b:13:d6:47:61:a2: ea:85:79:b9:9d:ba:26:0c:b9:0e:dd:0d:d3:ce:c8:d7:bf:b6: b8:7c:b7:2d:c4:62:24:38:8c:70:ca:34:09:2e:ac:b2:2e:0d: 36:9c:41:1c:6b:36:d0:da:80:26:6b:f2:e3:7a:f4:da:32:17: 09:5d:7d:c5:1c:98:7b:c0:a0:63:db:4e:77:b9:a2:37:6a:de: c7:3c:b3:e4:ab:c4:03:32:87:0d:6e:d0:f2:18:32:59:76:d7: ca:c4:89:b5:f0:07:0b:20:91:af:9e:d4:c1:ef:01:cd:39:8a: 62:30:24:22:9b:4c:f1:2b:cd:b2:7b:bd:b4:0d:f1:8d:29:07: b7:13:9d:17:eb:c4:d8:02:d2:50:61:5f:15:49:cb:d7:68:a4: ce:60:1d:66:1b:3a:58:c6:47:21:1b:4f:51:09:8c:76:6b:50: 7f:50:94:25:81:2e:13:68:84:b6:82:c3:8f:45:5e:57:70:18: 49:fa:15:17:92:1e:75:a6:74:be:20:0e:91:61:79:8b:3f:40: aa:81:3c:1f:ea:11:46:fe:a1:99:b0:5e:09:2c:c8:7d:81:7d: 20:36:67:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEx//UiMogLQxp/BguJCxKvk+hAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNTA3MjMwNTU1MDFaFw0yNjA3MjIwNjAwMDFaMDMxMTAvBgNV BAMTKEJFMkRCNkIwMzIwQkM3MDZDRkFCMTBEMDdGOTdDNzBBRDAwMzI2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpKM2q3m6DYv4IFYo+Rs6VkL+B Bu2I/zu1YOdQT20PFd+1N/8E+xhUyjM1KFsMObOGZYKav+b9xhEzVxw4AdPkkLPG gsTl8F+WxX69RRWSCIQphg8a+IJkLy/gXfjsEZL0/tPN7W+irFWZ4cXp/g8f/hEO ULW+WQPrp6jO4z1caI8jE6TyRuLt65tv1BFBP03PNG7VhKBpkO/k/UoPGt1obj4d +D6TsBz0zezUCLc57StYjo5sUyakN4D2X34S+OsMCdFw3GPDwB/9SGDxnI7JMjug YXHeLODlhkLLMI2i/ts4ZlXTzTlRmPl73O/fssOH8id8vqcPYXfkJ29LiEjpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvi22sDILxwbPqxDQf5fHCtADJt8wHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepgwDQYJ KoZIhvcNAQELBQADggEBAD151fBa/ENp9WAlH08ZUtbDZy7+YMy3GPm8QRacXEsT 1kdhouqFebmduiYMuQ7dDdPOyNe/trh8ty3EYiQ4jHDKNAkurLIuDTacQRxrNtDa gCZr8uN69NoyFwldfcUcmHvAoGPbTne5ojdq3sc8s+SrxAMyhw1u0PIYMll218rE ibXwBwsgka+e1MHvAc05imIwJCKbTPErzbJ7vbQN8Y0pB7cTnRfrxNgC0lBhXxVJ y9dopM5gHWYbOljGRyEbT1EJjHZrUH9QlCWBLhNohLaCw49FXldwGEn6FReSHnWm dL4gDpFheYs/QKqBPB/qEUb+oZmwXgksyH2BfSA2Z6o= -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:47 2025 by rpki-client