$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: ptZDC1QxEJ1qYR1JK+LpFE9hUdl4Mx+l7itGMa64wLk= Subject key identifier: CE:47:F7:C5:7C:57:86:CE:39:57:AA:3B:20:FE:C0:67:4E:8A:D0:0D Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 4E144EB20FE4E498C5574D5CE9C2692A96EF46C1 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa Signing time: Wed 23 Jul 2025 06:00:00 +0000 ROA not before: Wed 23 Jul 2025 05:55:00 +0000 ROA not after: Wed 22 Jul 2026 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:14:4e:b2:0f:e4:e4:98:c5:57:4d:5c:e9:c2:69:2a:96:ef:46:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jul 23 05:55:00 2025 GMT Not After : Jul 22 06:00:00 2026 GMT Subject: CN=CE47F7C57C5786CE3957AA3B20FEC0674E8AD00D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ec:1a:68:c7:fc:07:6c:f1:ff:0a:0b:c6:89: 58:71:de:13:1b:34:7f:a2:04:80:04:4c:bb:a8:ac: d7:23:5e:fb:03:12:98:2e:d1:36:8b:b9:52:5d:b8: ad:47:82:af:b1:15:76:60:a8:6b:11:dc:59:ee:10: 65:b5:1b:a2:23:b1:9f:c6:0e:91:b7:09:4e:a7:d1: e8:84:d0:fe:d2:37:53:a3:0d:71:07:a4:3c:6d:37: 7d:6e:75:ee:f9:e4:c1:fe:24:4f:b9:9e:8a:eb:5b: 34:81:82:ca:cc:d7:d3:27:64:9c:99:c5:b0:5f:ef: 22:78:4d:2b:56:06:b8:a6:4a:d4:43:45:24:32:9b: 73:82:86:f5:77:6f:13:62:96:a0:0e:00:8f:00:2e: cf:c2:04:c2:c8:b3:eb:61:b1:a6:8d:50:bf:2b:ef: 35:96:75:91:95:0b:ff:f6:50:77:7c:9d:4d:2a:5d: 55:f0:6d:17:1f:04:bb:c3:18:db:e1:7d:0a:b5:70: eb:31:20:d2:ff:31:bc:b6:83:b6:ed:c8:5a:ad:20: 15:68:ce:5e:52:1a:d0:cc:c4:2e:fe:9f:95:fd:64: f8:c3:b8:2a:99:15:ce:e3:fe:8c:6c:7a:ff:4e:70: 8a:b8:9a:84:5e:5e:d4:5d:fd:43:ac:5e:a3:13:3e: 23:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:47:F7:C5:7C:57:86:CE:39:57:AA:3B:20:FE:C0:67:4E:8A:D0:0D X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.154.0/24 Signature Algorithm: sha256WithRSAEncryption 43:88:07:80:c3:9e:9e:5e:76:d8:98:34:50:86:2d:41:9b:fd: 92:3c:7d:3f:44:5e:a1:b8:99:7f:8a:f5:5c:34:b3:d3:5e:d8: de:49:17:fe:dd:f7:e0:04:76:3c:6b:af:b2:85:f6:56:fd:d5: fb:ee:47:f3:bb:93:9c:c6:60:3f:d5:32:5d:56:dc:3a:e5:ff: da:90:a7:1a:78:6d:63:64:56:cd:37:d5:27:b0:8e:c4:63:e0: 51:05:11:50:a9:8e:8e:ec:96:e8:e4:73:5f:30:31:6d:b6:9b: 72:d9:ea:88:b4:a5:c5:ef:57:62:53:06:a8:c5:9e:e3:bb:4f: 88:c1:5f:ab:45:be:ea:f4:e0:33:6b:68:6a:e4:1f:3f:a6:21: 7f:b3:b5:c7:c1:ad:a1:ae:a5:02:bb:e7:60:54:42:a3:28:05: 2a:82:a8:5d:67:67:40:6f:51:f9:38:9a:d1:a3:55:cc:77:aa: 0b:66:88:4f:e8:a4:41:d5:10:17:b0:3f:53:75:ba:bb:38:a5: 60:fc:c9:9f:b9:32:a8:37:a6:bf:36:74:b2:07:0b:86:10:99: 03:e6:ff:68:4f:ee:b6:6e:4c:f8:1d:be:6c:ee:a1:2b:1d:fa: 96:d1:9f:ea:be:dc:73:ed:f9:78:03:bd:37:8e:26:1e:f7:63: 0c:a1:1f:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUThROsg/k5JjFV01c6cJpKpbvRsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNTA3MjMwNTU1MDBaFw0yNjA3MjIwNjAwMDBaMDMxMTAvBgNV BAMTKENFNDdGN0M1N0M1Nzg2Q0UzOTU3QUEzQjIwRkVDMDY3NEU4QUQwMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC7Bpox/wHbPH/CgvGiVhx3hMb NH+iBIAETLuorNcjXvsDEpgu0TaLuVJduK1Hgq+xFXZgqGsR3FnuEGW1G6IjsZ/G DpG3CU6n0eiE0P7SN1OjDXEHpDxtN31ude755MH+JE+5norrWzSBgsrM19MnZJyZ xbBf7yJ4TStWBrimStRDRSQym3OChvV3bxNilqAOAI8ALs/CBMLIs+thsaaNUL8r 7zWWdZGVC//2UHd8nU0qXVXwbRcfBLvDGNvhfQq1cOsxINL/Mby2g7btyFqtIBVo zl5SGtDMxC7+n5X9ZPjDuCqZFc7j/oxsev9OcIq4moReXtRd/UOsXqMTPiO5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzkf3xXxXhs45V6o7IP7AZ06K0A0wHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepowDQYJ KoZIhvcNAQELBQADggEBAEOIB4DDnp5edtiYNFCGLUGb/ZI8fT9EXqG4mX+K9Vw0 s9Ne2N5JF/7d9+AEdjxrr7KF9lb91fvuR/O7k5zGYD/VMl1W3Drl/9qQpxp4bWNk Vs031SewjsRj4FEFEVCpjo7slujkc18wMW22m3LZ6oi0pcXvV2JTBqjFnuO7T4jB X6tFvur04DNraGrkHz+mIX+ztcfBraGupQK752BUQqMoBSqCqF1nZ0BvUfk4mtGj Vcx3qgtmiE/opEHVEBewP1N1urs4pWD8yZ+5Mqg3pr82dLIHC4YQmQPm/2hP7rZu TPgdvmzuoSsd+pbRn+q+3HPt+XgDvTeOJh73YwyhH+Y= -----END CERTIFICATE-----Generated at Wed Jul 23 12:23:44 2025 by rpki-client