$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa File: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (raw, json) Hash identifier: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g= Subject key identifier: 72:65:EA:69:C1:1D:C7:BE:CC:CD:17:FD:53:BC:B7:DC:82:B8:FB:D7 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 751D304C0F12B60FDEF6BFD7CFDBB5D8DFF9D6E1 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa Signing time: Fri 04 Jul 2025 12:02:24 +0000 ROA not before: Fri 04 Jul 2025 11:57:24 +0000 ROA not after: Fri 03 Jul 2026 12:02:24 +0000 asID: 141107 IP address blocks: 103.220.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1d:30:4c:0f:12:b6:0f:de:f6:bf:d7:cf:db:b5:d8:df:f9:d6:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Jul 4 11:57:24 2025 GMT Not After : Jul 3 12:02:24 2026 GMT Subject: CN=7265EA69C11DC7BECCCD17FD53BCB7DC82B8FBD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4c:5a:fd:36:a8:0f:94:aa:11:15:49:18:7e: a9:fc:e6:84:00:23:17:d4:23:74:d0:61:d5:e5:2e: bf:d4:11:b0:fc:69:09:69:4a:22:c7:06:a6:5a:bc: ed:4f:a3:42:34:da:11:53:2c:cb:5f:a3:f7:97:b5: 37:1a:c7:e1:06:71:95:67:19:9d:09:98:19:f4:43: 30:17:4d:ff:68:7e:2b:11:ae:9e:d8:7f:ab:dc:7f: 3d:10:5b:3e:5b:2f:9e:4a:68:2c:29:b1:12:11:83: ea:b0:f1:0d:e1:50:a9:41:b8:59:96:5b:73:11:c3: e7:44:f9:d7:03:6e:c0:38:16:9d:d2:d4:db:41:b5: 76:14:81:d1:d8:c1:da:81:d6:ab:7a:2f:23:12:6b: 83:d6:aa:59:a4:bb:46:65:1d:bc:49:21:92:b3:65: ae:55:c7:54:71:a2:7f:27:fd:69:1b:b0:fb:54:47: e7:bc:86:45:d1:1e:ce:33:4d:57:09:9f:1a:4a:26: f1:fe:57:64:4b:9e:2b:0c:29:e5:e8:21:1c:1f:ee: 32:82:40:0f:59:c4:db:28:9c:8a:fc:d5:d8:be:d7: 34:c8:65:b9:a9:ad:47:7c:14:cf:b4:6a:1c:46:bf: 39:68:a7:fc:f4:cb:8b:e0:47:d1:45:30:0e:35:55: e9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:65:EA:69:C1:1D:C7:BE:CC:CD:17:FD:53:BC:B7:DC:82:B8:FB:D7 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.47.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:c0:44:49:d7:c1:b3:ea:28:e5:9d:0f:78:66:db:18:e5:2f: a7:ac:d8:81:6d:dc:9b:a9:34:01:17:0b:04:b7:eb:d3:ec:e0: 7b:71:12:2e:bb:f5:19:1e:da:4e:30:ca:fb:e4:4e:5e:7f:ea: 4e:36:9b:c3:0c:a2:a3:d2:79:ad:6e:22:32:c9:aa:f7:94:c2: 8a:a0:52:c0:c5:0f:91:af:26:89:41:cf:be:20:2e:d2:2d:46: 86:f2:be:2d:f4:d5:03:f1:d1:85:72:ff:15:1b:fd:c7:7d:05: 4e:37:dd:ab:0d:5d:4c:c4:5d:82:fd:37:22:e3:e1:df:24:9f: 1d:9d:35:36:48:73:c5:e8:96:2b:bf:96:5c:b5:99:94:09:39: 5b:6f:8d:af:b3:38:64:07:d9:3b:fd:54:c4:c9:cb:fd:94:9a: ec:2f:f5:b4:1b:cc:a8:6d:e2:dc:64:8e:1d:1b:67:b0:a1:bd: 13:96:b0:81:eb:22:15:13:4e:61:67:40:90:6b:e5:b6:26:cf: d0:d8:b4:62:3f:cc:63:b6:e0:e3:ad:41:15:de:66:e9:54:ca: bc:1f:30:8b:a5:9f:66:6b:db:d0:e8:08:ea:b2:5c:f1:fa:e1: f7:fc:9d:e4:01:e4:4d:7f:d0:2c:81:c1:43:9f:3c:be:c7:1f: 35:45:1c:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdR0wTA8Stg/e9r/Xz9u12N/51uEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTA3MDQxMTU3MjRaFw0yNjA3MDMxMjAyMjRaMDMxMTAvBgNV BAMTKDcyNjVFQTY5QzExREM3QkVDQ0NEMTdGRDUzQkNCN0RDODJCOEZCRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnTFr9NqgPlKoRFUkYfqn85oQA IxfUI3TQYdXlLr/UEbD8aQlpSiLHBqZavO1Po0I02hFTLMtfo/eXtTcax+EGcZVn GZ0JmBn0QzAXTf9ofisRrp7Yf6vcfz0QWz5bL55KaCwpsRIRg+qw8Q3hUKlBuFmW W3MRw+dE+dcDbsA4Fp3S1NtBtXYUgdHYwdqB1qt6LyMSa4PWqlmku0ZlHbxJIZKz Za5Vx1Rxon8n/WkbsPtUR+e8hkXRHs4zTVcJnxpKJvH+V2RLnisMKeXoIRwf7jKC QA9ZxNsonIr81di+1zTIZbmprUd8FM+0ahxGvzlop/z0y4vgR9FFMA41VenxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcmXqacEdx77MzRf9U7y33IK4+9cwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OTRkMzc1LWZjN2QtNGRjNy1h MWYxLWUwYjNhNTlmZGY3OC8wLzMxMzAzMzJlMzIzMjMwMmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wvMA0GCSqG SIb3DQEBCwUAA4IBAQA9wERJ18Gz6ijlnQ94ZtsY5S+nrNiBbdybqTQBFwsEt+vT 7OB7cRIuu/UZHtpOMMr75E5ef+pONpvDDKKj0nmtbiIyyar3lMKKoFLAxQ+RryaJ Qc++IC7SLUaG8r4t9NUD8dGFcv8VG/3HfQVON92rDV1MxF2C/Tci4+HfJJ8dnTU2 SHPF6JYrv5ZctZmUCTlbb42vszhkB9k7/VTEycv9lJrsL/W0G8yobeLcZI4dG2ew ob0TlrCB6yIVE05hZ0CQa+W2Js/Q2LRiP8xjtuDjrUEV3mbpVMq8HzCLpZ9ma9vQ 6Ajqslzx+uH3/J3kAeRNf9AsgcFDnzy+xx81RRy5 -----END CERTIFICATE-----Generated at Mon Jul 21 02:06:45 2025 by rpki-client