$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa File: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (raw, json) Hash identifier: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ= Subject key identifier: 1A:4D:EB:49:B9:D1:BC:E9:D0:4F:60:6B:B3:03:55:8E:9E:1C:23:CC Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 736A0E2651EE1996F0DFE4BAFE1F29259B2E33ED Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa Signing time: Wed 09 Jul 2025 14:23:13 +0000 ROA not before: Wed 09 Jul 2025 14:18:13 +0000 ROA not after: Wed 08 Jul 2026 14:23:13 +0000 asID: 142341 IP address blocks: 103.169.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 04:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:6a:0e:26:51:ee:19:96:f0:df:e4:ba:fe:1f:29:25:9b:2e:33:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jul 9 14:18:13 2025 GMT Not After : Jul 8 14:23:13 2026 GMT Subject: CN=1A4DEB49B9D1BCE9D04F606BB303558E9E1C23CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:6f:17:86:9a:24:62:cb:4f:71:bf:0a:68: 92:b2:48:56:df:6e:50:51:d8:a3:46:b7:b2:3e:60: b9:eb:6f:79:53:41:87:21:7e:73:bb:8e:f3:75:14: 55:e0:9e:71:69:48:b8:cc:12:5f:56:3f:15:98:65: 11:9e:3c:b3:ef:f9:67:30:72:75:20:3d:63:19:51: 7c:9d:ee:8f:bc:dd:09:cf:3d:a5:17:ef:ea:12:63: 7d:0e:6f:cf:74:86:d3:7a:e9:fb:09:36:b7:57:34: b9:64:81:d5:1a:0a:74:38:ff:d2:46:be:a7:4c:df: f0:66:2f:83:2c:c7:19:67:9c:f6:e6:2b:00:9b:06: ca:d8:64:5e:a5:3e:6b:eb:52:ff:f2:52:be:1c:4c: 7f:74:7e:fa:62:a7:f7:61:b6:74:78:ff:cf:6b:2c: d6:4b:02:70:0a:c1:80:15:54:44:00:d0:cb:09:f7: 1c:ce:71:82:58:62:fb:09:4f:2c:ab:32:39:60:2d: 9d:f5:49:11:b5:7c:a1:cb:67:79:60:9d:49:65:fb: 49:45:c6:c6:34:b9:d2:11:d2:a4:57:d5:84:2d:26: 02:89:54:e5:aa:db:df:e0:2d:d7:94:64:db:bf:3d: 43:02:f3:2f:8d:a7:13:74:0b:a9:26:5c:af:5b:18: 52:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4D:EB:49:B9:D1:BC:E9:D0:4F:60:6B:B3:03:55:8E:9E:1C:23:CC X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.132.0/23 Signature Algorithm: sha256WithRSAEncryption e1:a8:55:c5:c2:ba:66:44:05:e1:95:e2:e0:9b:ed:1b:17:f4: 86:1e:15:36:a9:64:71:ad:e4:62:42:dd:0e:f4:0e:0b:fb:00: 70:8a:75:f3:65:e7:53:eb:be:f2:a9:29:36:12:1f:49:c4:df: 71:76:d0:f0:c5:4c:09:da:1f:f1:b1:81:fd:da:99:64:c2:18: b4:63:9b:fc:9c:d3:5b:a2:c3:7f:7b:90:52:07:0f:31:2c:b0: 1a:f7:8b:c7:d2:9a:2f:64:4f:c4:e8:1e:c0:5c:ea:3b:8b:82: ab:24:62:56:22:b4:a0:4c:a9:20:4b:cc:ff:4e:e6:15:61:9c: 3c:b7:01:8a:06:75:bc:e7:78:ed:3e:a9:c7:de:95:83:88:92: 05:25:24:25:fc:0d:70:fa:06:b0:99:cf:b0:1e:52:7a:5c:66: eb:0e:de:f3:9b:91:d2:43:ad:aa:24:10:10:50:dd:e2:cb:b5: 21:45:03:ea:69:3f:8c:9b:c4:10:2b:3d:0a:f5:5c:cf:46:a9: ca:46:3c:2a:27:3f:8a:14:c9:fc:58:88:af:c9:9f:28:1a:2d: d9:82:10:31:04:29:5b:4b:61:17:d4:e5:ae:74:7c:4d:cc:bb: f7:02:c7:d3:15:46:a9:48:49:ab:13:a3:a1:e3:b9:fc:5e:cb: 00:e5:8a:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc2oOJlHuGZbw3+S6/h8pJZsuM+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA3MDkxNDE4MTNaFw0yNjA3MDgxNDIzMTNaMDMxMTAvBgNV BAMTKDFBNERFQjQ5QjlEMUJDRTlEMDRGNjA2QkIzMDM1NThFOUUxQzIzQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1u28XhpokYstPcb8KaJKySFbf blBR2KNGt7I+YLnrb3lTQYchfnO7jvN1FFXgnnFpSLjMEl9WPxWYZRGePLPv+Wcw cnUgPWMZUXyd7o+83QnPPaUX7+oSY30Ob890htN66fsJNrdXNLlkgdUaCnQ4/9JG vqdM3/BmL4MsxxlnnPbmKwCbBsrYZF6lPmvrUv/yUr4cTH90fvpip/dhtnR4/89r LNZLAnAKwYAVVEQA0MsJ9xzOcYJYYvsJTyyrMjlgLZ31SRG1fKHLZ3lgnUll+0lF xsY0udIR0qRX1YQtJgKJVOWq29/gLdeUZNu/PUMC8y+NpxN0C6kmXK9bGFLdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGk3rSbnRvOnQT2BrswNVjp4cI8wwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFiLTI3NjEtNGMzNi1i NjkwLTViNjlkMTU2OWJhZS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYQwDQYJ KoZIhvcNAQELBQADggEBAOGoVcXCumZEBeGV4uCb7RsX9IYeFTapZHGt5GJC3Q70 Dgv7AHCKdfNl51PrvvKpKTYSH0nE33F20PDFTAnaH/Gxgf3amWTCGLRjm/yc01ui w397kFIHDzEssBr3i8fSmi9kT8ToHsBc6juLgqskYlYitKBMqSBLzP9O5hVhnDy3 AYoGdbzneO0+qcfelYOIkgUlJCX8DXD6BrCZz7AeUnpcZusO3vObkdJDraokEBBQ 3eLLtSFFA+ppP4ybxBArPQr1XM9GqcpGPConP4oUyfxYiK/JnygaLdmCEDEEKVtL YRfU5a50fE3Mu/cCx9MVRqlISasTo6HjufxeywDlioA= -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:37 2025 by rpki-client