$ rpki-client -vvf repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa File: 3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa (raw, json) Hash identifier: Z1/0hxtcuucuwACdWQq+JfghAHLR9fBRu9+nQ76ie1Y= Subject key identifier: A0:9A:9D:78:AB:A8:FD:7A:2D:AB:CF:3E:BC:69:E8:09:C5:81:05:C2 Certificate issuer: /CN=D2EA420344F486935839E03DF1B3C237F295C2DE Certificate serial: 190F3166882A51A4058D69EC69C69829C1D63F7F Authority key identifier: D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa Signing time: Sun 06 Jul 2025 10:00:01 +0000 ROA not before: Sun 06 Jul 2025 09:55:01 +0000 ROA not after: Sun 05 Jul 2026 10:00:01 +0000 asID: 137320 IP address blocks: 103.110.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 13:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0f:31:66:88:2a:51:a4:05:8d:69:ec:69:c6:98:29:c1:d6:3f:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EA420344F486935839E03DF1B3C237F295C2DE Validity Not Before: Jul 6 09:55:01 2025 GMT Not After : Jul 5 10:00:01 2026 GMT Subject: CN=A09A9D78ABA8FD7A2DABCF3EBC69E809C58105C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:03:d1:79:0a:43:79:3e:1e:d0:8b:72:32: d5:0b:55:fc:e8:2c:24:ba:db:cb:8c:37:0b:80:4c: a9:1d:e0:00:d1:33:45:6f:e0:9a:6d:d6:c3:9e:2b: c7:f2:51:09:8f:aa:9f:a0:df:90:ac:1c:15:ba:e7: b0:8c:81:af:e7:0c:42:bc:31:4d:13:31:f3:02:f5: 09:26:3c:78:aa:ec:87:22:4a:00:3e:65:e9:72:a9: 33:24:9b:16:33:d8:d2:b3:de:63:70:ec:ce:63:cd: 2c:53:14:9b:02:d3:e3:33:5e:ba:48:9a:ac:34:6b: 72:f8:fd:71:e3:7f:e5:e1:03:ea:d8:80:b1:6b:63: f1:fe:1e:81:34:53:02:5a:1a:6c:1d:c1:5b:bd:c1: 74:db:a8:6b:51:2c:4f:57:3f:62:66:20:74:45:ea: ab:81:73:47:d8:54:7e:e3:28:6f:eb:ea:53:4f:23: 6f:a8:28:4f:e6:5f:e8:2d:d5:07:79:ed:cb:38:57: ee:69:33:47:ec:9b:d9:0f:c2:ef:88:ef:8a:1c:d8: 6e:48:9f:d3:93:af:80:a6:2f:99:63:93:fd:d9:2b: 03:0a:f1:b9:87:0d:3c:0e:f7:39:10:ae:45:d6:c0: a3:7a:09:6f:4a:32:ca:c1:72:82:8b:6c:72:92:73: dc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:9A:9D:78:AB:A8:FD:7A:2D:AB:CF:3E:BC:69:E8:09:C5:81:05:C2 X509v3 Authority Key Identifier: keyid:D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.120.0/22 Signature Algorithm: sha256WithRSAEncryption 29:3f:d4:ad:29:51:56:13:b0:90:73:30:64:81:1a:5e:c0:8a: 9d:18:95:c1:b1:89:25:02:67:2f:c2:f5:35:f5:fd:2a:9f:2d: 21:62:e1:3f:5d:02:21:26:5d:36:a6:65:b5:45:0a:46:dd:31: e0:e3:23:af:36:c1:d1:af:70:f8:9f:ae:a0:a4:c9:62:ce:62: 82:0d:ae:76:1f:42:80:1d:e6:92:24:7c:c8:ec:4d:4f:18:dd: e1:e6:6d:08:73:86:28:53:82:a4:22:ba:60:e0:b9:92:0d:b6: 77:35:bf:e0:d3:08:29:2f:18:81:51:dc:26:c1:2c:e2:6f:2f: 09:eb:b7:d8:23:72:7c:60:b1:3a:aa:09:48:2e:e9:ff:f2:b8: 88:aa:d7:49:e5:a7:fa:1f:90:b5:0f:07:68:7f:cf:9e:c7:57: d9:c8:92:2b:1f:af:db:82:ed:48:03:9f:6b:dc:21:56:7f:ef: d2:1e:7f:af:2b:10:87:b6:29:53:67:af:d9:f4:da:e3:b8:8e: 95:d9:e6:e9:83:64:58:83:bb:4b:5f:3b:e8:42:cc:64:62:47: fe:5b:d3:7b:07:34:da:93:e2:f3:fc:e3:90:a3:db:f1:68:48: e7:d0:ae:8b:0e:74:e0:9e:f3:26:3e:68:0e:1e:1a:48:e2:45: 74:5d:d2:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGQ8xZogqUaQFjWnsacaYKcHWP38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdG Mjk1QzJERTAeFw0yNTA3MDYwOTU1MDFaFw0yNjA3MDUxMDAwMDFaMDMxMTAvBgNV BAMTKEEwOUE5RDc4QUJBOEZEN0EyREFCQ0YzRUJDNjlFODA5QzU4MTA1QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jQPReQpDeT4e0ItyMtULVfzo LCS628uMNwuATKkd4ADRM0Vv4Jpt1sOeK8fyUQmPqp+g35CsHBW657CMga/nDEK8 MU0TMfMC9QkmPHiq7IciSgA+ZelyqTMkmxYz2NKz3mNw7M5jzSxTFJsC0+MzXrpI mqw0a3L4/XHjf+XhA+rYgLFrY/H+HoE0UwJaGmwdwVu9wXTbqGtRLE9XP2JmIHRF 6quBc0fYVH7jKG/r6lNPI2+oKE/mX+gt1Qd57cs4V+5pM0fsm9kPwu+I74oc2G5I n9OTr4CmL5ljk/3ZKwMK8bmHDTwO9zkQrkXWwKN6CW9KMsrBcoKLbHKSc9wLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoJqdeKuo/Xotq88+vGnoCcWBBcIwHwYDVR0j BBgwFoAU0upCA0T0hpNYOeA98bPCN/KVwt4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDA4ODNmMy00NTdhLTRjMTQtOTU3Ny02N2UxNTBhMmIxMmEvMC9EMkVBNDIwMzQ0 RjQ4NjkzNTgzOUUwM0RGMUIzQzIzN0YyOTVDMkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdGMjk1 QzJERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0MDg4M2YzLTQ1N2EtNGMxNC05 NTc3LTY3ZTE1MGEyYjEyYS8wLzMxMzAzMzJlMzEzMTMwMmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbngwDQYJ KoZIhvcNAQELBQADggEBACk/1K0pUVYTsJBzMGSBGl7Aip0YlcGxiSUCZy/C9TX1 /SqfLSFi4T9dAiEmXTamZbVFCkbdMeDjI682wdGvcPifrqCkyWLOYoINrnYfQoAd 5pIkfMjsTU8Y3eHmbQhzhihTgqQiumDguZINtnc1v+DTCCkvGIFR3CbBLOJvLwnr t9gjcnxgsTqqCUgu6f/yuIiq10nlp/ofkLUPB2h/z57HV9nIkisfr9uC7UgDn2vc IVZ/79Ief68rEIe2KVNnr9n02uO4jpXZ5umDZFiDu0tfO+hCzGRiR/5b03sHNNqT 4vP845Cj2/FoSOfQrosOdOCe8yY+aA4eGkjiRXRd0tE= -----END CERTIFICATE-----Generated at Mon Jul 21 18:45:34 2025 by rpki-client