$ rpki-client -vvf repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa File: 3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: KlJ7xe9jxJPv2ghljBXv+XqaG+xdsmEYctXqZgRhERI= Subject key identifier: A7:A6:24:C5:5F:20:DC:E2:E3:30:FD:B9:BC:FD:09:27:83:DF:54:28 Certificate issuer: /CN=6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567 Certificate serial: 662DCDE319E602989A70DD339C4B4A5B84AB4A41 Authority key identifier: 6C:FA:BB:BC:88:D3:9C:7F:78:09:5D:A7:D3:D3:5D:D3:AA:2E:95:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa Signing time: Thu 17 Jul 2025 07:00:01 +0000 ROA not before: Thu 17 Jul 2025 06:55:01 +0000 ROA not after: Thu 16 Jul 2026 07:00:01 +0000 asID: 131111 IP address blocks: 103.175.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.crl rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 18:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2d:cd:e3:19:e6:02:98:9a:70:dd:33:9c:4b:4a:5b:84:ab:4a:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567 Validity Not Before: Jul 17 06:55:01 2025 GMT Not After : Jul 16 07:00:01 2026 GMT Subject: CN=A7A624C55F20DCE2E330FDB9BCFD092783DF5428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:18:4a:0b:ff:ac:f5:4e:65:7e:52:fc:00: b1:66:75:8f:da:e0:cb:b4:07:f1:31:3a:6c:a4:eb: 1a:51:f4:e7:c6:33:e5:4e:f4:4c:14:17:e4:61:e5: 53:a6:34:e4:3f:83:5c:b9:1c:62:f4:8d:a9:bc:c4: f5:73:f4:f9:57:5b:78:83:e5:35:a3:21:a6:e5:01: 91:f1:25:6e:73:7d:1b:36:7f:af:f8:61:73:b5:95: 94:1d:d6:f1:5a:d7:68:f1:4a:8e:2e:4f:c7:2b:46: 48:6e:65:01:4d:9b:eb:bc:7c:24:c7:46:2c:df:7b: 11:98:b3:9f:2a:8a:85:f5:f5:c8:d1:b2:75:22:ff: 78:a9:b4:b3:62:e0:a4:ae:1d:1d:4d:c3:d8:d1:d4: 52:8c:d0:a3:4c:8d:b6:b7:71:c3:bf:a7:d5:ae:8c: fd:35:6e:38:fd:af:dc:b2:dd:ea:c0:46:ba:09:8d: 0b:c3:f5:fe:44:43:89:98:74:b9:11:21:45:a5:27: a2:2e:ea:4c:80:20:a9:55:ce:ec:e7:e8:f8:27:8f: c5:b7:35:7b:df:fd:89:3b:99:be:29:35:94:59:db: f0:c0:5b:bb:65:8d:72:0b:c9:47:5c:93:7d:9e:ca: 7c:c8:c1:8c:ce:5d:96:e9:55:17:57:2b:7d:57:38: 98:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A6:24:C5:5F:20:DC:E2:E3:30:FD:B9:BC:FD:09:27:83:DF:54:28 X509v3 Authority Key Identifier: keyid:6C:FA:BB:BC:88:D3:9C:7F:78:09:5D:A7:D3:D3:5D:D3:AA:2E:95:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CFABBBC88D39C7F78095DA7D3D35DD3AA2E9567.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73874cf3-adb1-4947-a7e4-a2d32c54ed1f/0/3130332e3137352e3135382e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.158.0/23 Signature Algorithm: sha256WithRSAEncryption 12:3f:8b:38:95:bc:a1:b9:94:a6:a4:c8:00:94:3e:82:26:a6: 5a:5d:07:31:2a:4a:9b:24:ff:75:b4:84:f6:dc:58:69:28:0f: 29:79:05:58:98:e3:9c:9b:d5:c1:33:48:0e:f4:12:35:c1:8c: 4a:4e:16:51:16:ef:6b:7a:ec:1e:ca:45:c5:4d:93:7a:8e:e5: fe:6e:a9:36:e9:2c:5b:09:be:c2:fb:e2:7f:3a:28:45:e9:e3: 69:11:13:df:ee:9a:07:21:c0:c3:27:8e:16:e3:84:6a:ad:fa: 73:61:06:df:e9:07:07:52:54:ac:44:3d:d5:64:8f:71:2c:32: 03:12:42:5a:d7:24:d3:e5:cb:82:eb:c7:b7:bf:89:24:f6:e2: ff:7f:50:21:f4:ce:63:68:ae:85:3c:f5:52:b3:bc:07:e1:ea: a1:80:da:a5:2d:9f:26:cb:d7:05:f8:ee:4e:c6:2b:79:68:9e: 87:cb:e2:d6:1b:24:9c:b3:a9:59:57:97:dd:59:53:15:3b:fe: bc:55:28:46:51:47:d4:79:db:97:2b:c1:16:f7:84:35:20:13: ea:01:00:95:e8:0a:98:68:f7:3e:9f:2d:c9:91:4e:7e:88:bc: 19:39:8b:4a:2a:db:60:dc:7e:99:3c:56:3e:1f:14:16:f6:b6: 48:32:54:42 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZi3N4xnmApiacN0znEtKW4SrSkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNGQUJCQkM4OEQzOUM3Rjc4MDk1REE3RDNEMzVERDNB QTJFOTU2NzAeFw0yNTA3MTcwNjU1MDFaFw0yNjA3MTYwNzAwMDFaMDMxMTAvBgNV BAMTKEE3QTYyNEM1NUYyMERDRTJFMzMwRkRCOUJDRkQwOTI3ODNERjU0MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9BhKC/+s9U5lflL8ALFmdY/a 4Mu0B/ExOmyk6xpR9OfGM+VO9EwUF+Rh5VOmNOQ/g1y5HGL0jam8xPVz9PlXW3iD 5TWjIablAZHxJW5zfRs2f6/4YXO1lZQd1vFa12jxSo4uT8crRkhuZQFNm+u8fCTH RizfexGYs58qioX19cjRsnUi/3iptLNi4KSuHR1Nw9jR1FKM0KNMjba3ccO/p9Wu jP01bjj9r9yy3erARroJjQvD9f5EQ4mYdLkRIUWlJ6Iu6kyAIKlVzuzn6Pgnj8W3 NXvf/Yk7mb4pNZRZ2/DAW7tljXILyUdck32eynzIwYzOXZbpVRdXK31XOJgtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUp6YkxV8g3OLjMP25vP0JJ4PfVCgwHwYDVR0j BBgwFoAUbPq7vIjTnH94CV2n09Nd06oulWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Mzg3NGNmMy1hZGIxLTQ5NDctYTdlNC1hMmQzMmM1NGVkMWYvMC82Q0ZBQkJCQzg4 RDM5QzdGNzgwOTVEQTdEM0QzNUREM0FBMkU5NTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNGQUJCQkM4OEQzOUM3Rjc4MDk1REE3RDNEMzVERDNBQTJF OTU2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczODc0Y2YzLWFkYjEtNDk0Ny1h N2U0LWEyZDMyYzU0ZWQxZi8wLzMxMzAzMzJlMzEzNzM1MmUzMTM1MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr54wDQYJ KoZIhvcNAQELBQADggEBABI/iziVvKG5lKakyACUPoImplpdBzEqSpsk/3W0hPbc WGkoDyl5BViY45yb1cEzSA70EjXBjEpOFlEW72t67B7KRcVNk3qO5f5uqTbpLFsJ vsL74n86KEXp42kRE9/umgchwMMnjhbjhGqt+nNhBt/pBwdSVKxEPdVkj3EsMgMS QlrXJNPly4Lrx7e/iST24v9/UCH0zmNoroU89VKzvAfh6qGA2qUtnybL1wX47k7G K3lonofL4tYbJJyzqVlXl91ZUxU7/rxVKEZRR9R525crwRb3hDUgE+oBAJXoCpho 9z6fLcmRTn6IvBk5i0oq22Dcfpk8Vj4fFBb2tkgyVEI= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:38 2025 by rpki-client