$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: 4DXpIxqwUP2SHUxVghm+mTwAYqcISbPiOREbhlKDTQA= Subject key identifier: B7:73:D9:22:DB:B4:3F:3A:1D:3E:41:5D:6D:6B:4A:54:B4:EB:BB:2B Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 5CB70105351C9BCB8DF4E10A8326C6DCF09B3BE7 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa Signing time: Wed 23 Jul 2025 06:00:00 +0000 ROA not before: Wed 23 Jul 2025 05:55:00 +0000 ROA not after: Wed 22 Jul 2026 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b7:01:05:35:1c:9b:cb:8d:f4:e1:0a:83:26:c6:dc:f0:9b:3b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jul 23 05:55:00 2025 GMT Not After : Jul 22 06:00:00 2026 GMT Subject: CN=B773D922DBB43F3A1D3E415D6D6B4A54B4EBBB2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:77:39:46:c1:05:c4:0a:78:aa:5b:34:0d:aa: c3:eb:d2:ce:32:2b:1c:9c:07:ca:9c:24:63:ce:25: 95:33:9b:bf:02:ef:72:74:9a:8d:85:83:9d:83:81: 26:82:75:f1:d5:a5:e1:a7:4b:cf:51:bd:27:8d:93: 2c:2b:50:18:67:f8:d9:f6:0a:98:3e:cb:d4:0a:54: 6e:89:8f:fa:46:db:90:b6:a7:6b:56:65:48:88:45: 1d:37:59:97:5f:98:06:9c:8e:b6:0d:9b:64:2e:d5: 9f:a1:2c:67:84:ec:75:69:df:1e:2e:d4:ea:b9:3a: 93:36:36:06:8e:48:e1:17:8d:9a:99:e8:0b:f6:38: b5:a7:2e:21:50:c6:52:2d:10:6b:37:72:b5:79:66: 11:84:bf:f6:02:86:48:20:d1:7c:19:e5:02:a3:ab: d7:eb:06:88:3d:64:9b:e4:0a:e5:59:1b:c2:d0:07: 49:b6:49:6e:ea:26:e1:fd:d4:f6:97:aa:d7:80:b8: cc:60:2f:41:47:15:62:18:c3:ad:88:c4:69:59:3c: 73:b5:6d:58:ea:07:77:9b:8c:de:ac:e0:30:8f:9c: 42:30:6a:b1:2e:35:27:82:ef:00:b6:42:89:5f:23: be:95:09:06:43:9b:ea:d3:95:d3:be:3f:f9:56:b2: bb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:73:D9:22:DB:B4:3F:3A:1D:3E:41:5D:6D:6B:4A:54:B4:EB:BB:2B X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.154.0/23 Signature Algorithm: sha256WithRSAEncryption a6:56:11:06:47:42:68:0f:9a:59:ea:61:bb:d6:8e:ed:28:a6: 8c:d7:f1:64:b6:cd:ff:99:54:b6:1f:ab:fe:20:a9:79:e2:1d: 3b:88:8f:8c:e7:6f:9c:bb:89:74:2f:f6:25:33:ec:0e:b7:78: 76:f2:fc:48:d2:9a:2e:56:3d:96:a6:a6:cf:6a:57:3a:11:9a: d4:e3:bf:b4:36:66:59:d1:f0:58:da:44:ad:78:60:32:75:7d: 6b:0b:f5:dd:7e:bc:af:9f:67:28:28:85:e9:89:f7:b3:17:69: 8b:f6:2e:f0:d5:0d:c5:04:e1:e3:87:c6:ad:78:91:32:f4:1a: 53:f2:f4:ae:e7:bb:6d:cc:fe:8b:17:c9:49:51:cc:57:71:39: 9d:cf:3c:5c:d3:b1:c7:98:36:32:0f:eb:1d:c7:6b:33:72:9e: 55:b0:a9:bd:ea:1c:97:c9:bf:87:a6:d9:88:10:27:c0:8e:5b: 96:c1:be:77:50:90:0c:aa:7f:ca:b4:1b:7e:83:36:17:76:67: 6c:54:db:e6:dd:c8:99:09:3e:2d:c7:7c:ba:e1:62:53:2a:f0: 16:e0:5b:19:b8:42:63:6e:66:da:31:f2:fb:2e:76:81:bf:a1: c4:64:71:8b:39:fd:74:27:b9:80:2d:d1:a3:9c:c1:ed:de:78: fa:be:fa:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXLcBBTUcm8uN9OEKgybG3PCbO+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNTA3MjMwNTU1MDBaFw0yNjA3MjIwNjAwMDBaMDMxMTAvBgNV BAMTKEI3NzNEOTIyREJCNDNGM0ExRDNFNDE1RDZENkI0QTU0QjRFQkJCMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdzlGwQXECniqWzQNqsPr0s4y KxycB8qcJGPOJZUzm78C73J0mo2Fg52DgSaCdfHVpeGnS89RvSeNkywrUBhn+Nn2 Cpg+y9QKVG6Jj/pG25C2p2tWZUiIRR03WZdfmAacjrYNm2Qu1Z+hLGeE7HVp3x4u 1Oq5OpM2NgaOSOEXjZqZ6Av2OLWnLiFQxlItEGs3crV5ZhGEv/YChkgg0XwZ5QKj q9frBog9ZJvkCuVZG8LQB0m2SW7qJuH91PaXqteAuMxgL0FHFWIYw62IxGlZPHO1 bVjqB3ebjN6s4DCPnEIwarEuNSeC7wC2QolfI76VCQZDm+rTldO+P/lWsruxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUt3PZItu0PzodPkFdbWtKVLTruyswHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepowDQYJ KoZIhvcNAQELBQADggEBAKZWEQZHQmgPmlnqYbvWju0opozX8WS2zf+ZVLYfq/4g qXniHTuIj4znb5y7iXQv9iUz7A63eHby/EjSmi5WPZamps9qVzoRmtTjv7Q2ZlnR 8FjaRK14YDJ1fWsL9d1+vK+fZygohemJ97MXaYv2LvDVDcUE4eOHxq14kTL0GlPy 9K7nu23M/osXyUlRzFdxOZ3PPFzTsceYNjIP6x3HazNynlWwqb3qHJfJv4em2YgQ J8COW5bBvndQkAyqf8q0G36DNhd2Z2xU2+bdyJkJPi3HfLrhYlMq8BbgWxm4QmNu Ztox8vsudoG/ocRkcYs5/XQnuYAt0aOcwe3eePq++tQ= -----END CERTIFICATE-----Generated at Wed Jul 23 12:11:39 2025 by rpki-client