$ rpki-client -vvf repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa File: 3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa (raw, json) Hash identifier: gE+l6BtwnE696koy6eWA+mSXnnRQKbYtsxfkWucx8c8= Subject key identifier: 15:4E:CE:94:D8:95:7E:61:0B:FA:9D:96:D9:91:1E:6B:32:D9:6E:A8 Certificate issuer: /CN=C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585 Certificate serial: 079698650F2BD97A9EED1B7214C8A142E648CFB8 Authority key identifier: C1:F7:CC:0C:8D:5E:31:55:96:AF:10:F6:EC:F4:6F:2C:75:E4:F5:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa Signing time: Fri 11 Jul 2025 07:21:26 +0000 ROA not before: Fri 11 Jul 2025 07:16:26 +0000 ROA not after: Fri 10 Jul 2026 07:21:26 +0000 asID: 133800 IP address blocks: 103.103.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.crl rsync://repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 19:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:96:98:65:0f:2b:d9:7a:9e:ed:1b:72:14:c8:a1:42:e6:48:cf:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585 Validity Not Before: Jul 11 07:16:26 2025 GMT Not After : Jul 10 07:21:26 2026 GMT Subject: CN=154ECE94D8957E610BFA9D96D9911E6B32D96EA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:e5:1c:85:64:22:b3:b2:39:c9:a4:2e:ec: cb:cd:f2:40:07:5d:d9:f4:0f:86:ad:f6:0b:ec:7d: 5e:03:6b:4b:8d:19:2c:a6:c7:c4:28:50:0a:61:81: 1b:17:d4:47:91:2e:db:f8:b1:34:dd:d8:38:52:d7: 33:4d:f7:bb:af:a6:b9:80:92:1d:55:be:01:68:d4: a1:33:1c:b4:c1:27:b8:80:62:51:4c:d6:5b:eb:cd: d9:aa:05:36:1a:e9:a6:d8:97:ad:33:2f:f4:c7:9d: cd:e6:11:eb:5a:a5:28:fe:86:7e:5a:fd:c1:fe:15: 45:4d:20:12:9a:33:c8:85:71:7b:fc:ad:d3:3e:0e: 0d:c1:3a:8f:b3:e5:ba:6c:82:69:1a:c3:60:7b:e2: 57:77:72:30:47:57:d9:7c:67:c4:0e:f1:e6:d6:5b: 77:58:9b:31:e6:d3:fc:be:c5:a7:d9:a9:2f:af:69: 09:eb:cf:b6:59:89:d1:8e:54:76:93:ea:0e:87:f3: 32:79:ae:ca:83:0f:57:e0:7c:99:c4:43:d4:89:6e: 96:b1:47:69:aa:7a:d5:02:98:ad:ef:72:13:1c:2f: e6:cf:cf:93:e6:fe:96:86:72:11:cd:69:98:b3:9d: b4:d6:a9:f9:79:61:59:6a:28:14:fe:93:09:8f:b0: e8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4E:CE:94:D8:95:7E:61:0B:FA:9D:96:D9:91:1E:6B:32:D9:6E:A8 X509v3 Authority Key Identifier: keyid:C1:F7:CC:0C:8D:5E:31:55:96:AF:10:F6:EC:F4:6F:2C:75:E4:F5:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1F7CC0C8D5E315596AF10F6ECF46F2C75E4F585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/866247f9-1eec-4901-ba42-9df26424f5b8/0/3130332e3130332e32302e302f32322d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.20.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:bc:0c:80:af:1f:24:d5:81:f7:cb:21:f0:7d:30:fc:57:7b: b2:05:13:c4:4a:88:04:2d:fd:66:c0:27:07:ec:16:89:35:d3: d2:6e:52:15:36:39:fb:53:eb:7d:12:ec:be:32:52:f6:42:41: f3:53:d3:24:fc:15:e6:0f:f3:6e:16:d7:19:af:11:a7:07:27: 6f:14:3c:36:7d:96:9e:5d:4d:19:9a:c0:a2:fe:d7:2b:06:7d: e5:42:82:20:aa:4a:ae:7f:a9:53:a1:76:1e:a2:ea:86:c0:ce: 89:54:78:6d:41:7a:2d:98:ef:b1:9b:f7:93:a4:b7:84:b0:a9: 95:26:7b:9f:d8:bf:67:85:78:6b:75:67:0e:41:6d:bb:b8:00: 5d:a4:44:78:0f:29:72:af:6e:04:c2:ee:f9:a8:4d:cf:41:7c: 04:3d:59:20:59:d8:52:1b:a7:b5:00:5f:5d:58:41:3b:84:c5: a5:86:c1:db:4c:87:40:bb:fc:1f:f7:b4:88:ed:63:22:de:6d: fe:07:0e:73:c8:f4:06:1e:e0:5b:ce:76:4a:f2:95:7e:d3:45: 68:e3:2f:c9:03:09:35:69:34:ac:84:5e:e3:94:6d:e7:9e:f6: f9:64:30:59:61:7b:df:a0:41:f8:57:bb:dc:2f:6c:a8:b7:02: 62:ba:bf:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB5aYZQ8r2Xqe7RtyFMihQuZIz7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFGN0NDMEM4RDVFMzE1NTk2QUYxMEY2RUNGNDZGMkM3 NUU0RjU4NTAeFw0yNTA3MTEwNzE2MjZaFw0yNjA3MTAwNzIxMjZaMDMxMTAvBgNV BAMTKDE1NEVDRTk0RDg5NTdFNjEwQkZBOUQ5NkQ5OTExRTZCMzJEOTZFQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgeuUchWQis7I5yaQu7MvN8kAH Xdn0D4at9gvsfV4Da0uNGSymx8QoUAphgRsX1EeRLtv4sTTd2DhS1zNN97uvprmA kh1VvgFo1KEzHLTBJ7iAYlFM1lvrzdmqBTYa6abYl60zL/THnc3mEetapSj+hn5a /cH+FUVNIBKaM8iFcXv8rdM+Dg3BOo+z5bpsgmkaw2B74ld3cjBHV9l8Z8QO8ebW W3dYmzHm0/y+xafZqS+vaQnrz7ZZidGOVHaT6g6H8zJ5rsqDD1fgfJnEQ9SJbpax R2mqetUCmK3vchMcL+bPz5Pm/paGchHNaZiznbTWqfl5YVlqKBT+kwmPsOgDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFU7OlNiVfmEL+p2W2ZEeazLZbqgwHwYDVR0j BBgwFoAUwffMDI1eMVWWrxD27PRvLHXk9YUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjYyNDdmOS0xZWVjLTQ5MDEtYmE0Mi05ZGYyNjQyNGY1YjgvMC9DMUY3Q0MwQzhE NUUzMTU1OTZBRjEwRjZFQ0Y0NkYyQzc1RTRGNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFGN0NDMEM4RDVFMzE1NTk2QUYxMEY2RUNGNDZGMkM3NUU0 RjU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2NjI0N2Y5LTFlZWMtNDkwMS1i YTQyLTlkZjI2NDI0ZjViOC8wLzMxMzAzMzJlMzEzMDMzMmUzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2cUMA0GCSqG SIb3DQEBCwUAA4IBAQB9vAyArx8k1YH3yyHwfTD8V3uyBRPESogELf1mwCcH7BaJ NdPSblIVNjn7U+t9Euy+MlL2QkHzU9Mk/BXmD/NuFtcZrxGnBydvFDw2fZaeXU0Z msCi/tcrBn3lQoIgqkquf6lToXYeouqGwM6JVHhtQXotmO+xm/eTpLeEsKmVJnuf 2L9nhXhrdWcOQW27uABdpER4Dylyr24Ewu75qE3PQXwEPVkgWdhSG6e1AF9dWEE7 hMWlhsHbTIdAu/wf97SI7WMi3m3+Bw5zyPQGHuBbznZK8pV+00Vo4y/JAwk1aTSs hF7jlG3nnvb5ZDBZYXvfoEH4V7vcL2yotwJiur9L -----END CERTIFICATE-----Generated at Mon Jul 21 05:52:38 2025 by rpki-client