$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa File: 3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa (raw, json) Hash identifier: YsQ/6eOY7UY889dueTFqI5fZ9jzbm6RP7AZHDvdYNjo= Subject key identifier: 55:D5:FE:0A:2B:6A:92:FF:64:AC:A4:84:A5:D3:F8:4D:C5:AD:F0:6A Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 7C620AF3E865178D54A4FF925E9433B916F8F7C7 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa Signing time: Wed 18 Jun 2025 16:16:40 +0000 ROA not before: Wed 18 Jun 2025 16:11:40 +0000 ROA not after: Wed 17 Jun 2026 16:16:40 +0000 asID: 131736 IP address blocks: 103.132.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:62:0a:f3:e8:65:17:8d:54:a4:ff:92:5e:94:33:b9:16:f8:f7:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 18 16:11:40 2025 GMT Not After : Jun 17 16:16:40 2026 GMT Subject: CN=55D5FE0A2B6A92FF64ACA484A5D3F84DC5ADF06A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:87:75:eb:a5:b9:fd:4e:64:b2:56:21:87:74: 54:46:70:66:98:95:ac:a8:2b:7a:1e:fb:03:a8:2a: 32:7c:af:a4:82:8c:18:77:f3:e1:7d:6e:03:6e:d1: 37:37:4d:88:28:80:a3:6b:cd:c4:7a:f8:9a:a4:9c: b5:57:ac:19:fb:93:61:12:2d:aa:0d:6d:c1:ae:e5: 70:6c:14:30:b0:e6:16:3e:c7:37:0d:d4:49:ba:72: 6c:d4:07:1d:d5:7b:66:1f:25:ea:38:6c:a2:bd:93: 2e:b1:61:00:c8:f2:a1:db:80:5b:a0:50:20:0c:73: 2f:cb:3d:98:10:94:9d:ad:83:b1:c4:c3:e7:84:ca: 1d:c2:09:f4:84:2a:e6:bc:51:4c:23:e3:f6:6f:f1: 43:fb:11:48:ba:0c:79:14:f4:55:9e:a0:5b:6f:bd: fe:f9:ee:4e:0a:21:db:71:6f:dd:61:41:fa:99:5e: 93:0b:91:35:82:ce:01:b9:45:b3:5f:1e:1d:ae:96: 59:33:e9:47:36:45:82:05:36:fe:6b:b2:6c:f2:42: 58:66:f2:06:5d:3c:ad:a0:1d:45:03:96:8b:26:da: 62:3a:fa:04:27:26:b5:05:f3:9d:1e:e1:06:c5:c2: bb:34:35:01:f6:52:4f:08:dd:f0:bd:10:5f:83:78: 29:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D5:FE:0A:2B:6A:92:FF:64:AC:A4:84:A5:D3:F8:4D:C5:AD:F0:6A X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31352e302f32342d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.15.0/24 Signature Algorithm: sha256WithRSAEncryption 93:c4:72:0a:14:61:c6:c3:dc:6e:7a:4d:cb:7c:ae:73:49:13: 16:87:9e:49:66:d5:29:5b:0d:f0:50:e1:a9:0b:5c:98:e3:58: ac:64:d1:e1:41:3e:c2:4e:e0:1d:c4:2f:e5:2d:8c:04:e7:71: 05:3b:6c:6b:a3:e0:21:cd:45:a9:fa:40:13:f2:5a:fc:a8:99: a8:f6:76:87:9b:ab:55:da:7e:2e:98:95:06:fa:00:e3:9b:91: 8e:50:ed:cf:66:4f:84:c5:1c:5b:f5:97:c0:df:b2:04:ad:a3: b1:3c:49:92:77:4e:80:fd:e0:e9:dd:aa:f9:d6:cf:f2:f1:3f: c9:17:99:5b:ca:3e:94:84:3f:7e:f7:06:18:ea:5c:c6:9c:43: 1b:0b:b3:d2:0b:b6:5e:3d:6d:2a:ce:be:6e:43:63:59:c0:8a: d2:e1:a9:0d:a6:c7:ff:07:34:e1:be:d4:81:ff:a3:b5:40:98: 99:f6:35:54:42:d6:e1:dc:dd:ca:dc:7e:67:2e:b6:a8:21:02: 2d:b3:94:bb:6d:c5:df:ea:24:b5:a1:4e:82:34:72:55:7e:0f: 5e:4e:a2:a7:d5:a0:39:6b:f6:8a:37:af:bb:5a:44:d9:3f:a0: ae:45:b0:8a:f2:42:02:db:2c:4e:51:f0:8a:19:b7:8d:47:ee: ef:c0:09:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfGIK8+hlF41UpP+SXpQzuRb498cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA2MTgxNjExNDBaFw0yNjA2MTcxNjE2NDBaMDMxMTAvBgNV BAMTKDU1RDVGRTBBMkI2QTkyRkY2NEFDQTQ4NEE1RDNGODREQzVBREYwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPh3Xrpbn9TmSyViGHdFRGcGaY layoK3oe+wOoKjJ8r6SCjBh38+F9bgNu0Tc3TYgogKNrzcR6+JqknLVXrBn7k2ES LaoNbcGu5XBsFDCw5hY+xzcN1Em6cmzUBx3Ve2YfJeo4bKK9ky6xYQDI8qHbgFug UCAMcy/LPZgQlJ2tg7HEw+eEyh3CCfSEKua8UUwj4/Zv8UP7EUi6DHkU9FWeoFtv vf757k4KIdtxb91hQfqZXpMLkTWCzgG5RbNfHh2ullkz6Uc2RYIFNv5rsmzyQlhm 8gZdPK2gHUUDlosm2mI6+gQnJrUF850e4QbFwrs0NQH2Uk8I3fC9EF+DeCnfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVdX+Citqkv9krKSEpdP4TcWt8GowHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QPMA0GCSqG SIb3DQEBCwUAA4IBAQCTxHIKFGHGw9xuek3LfK5zSRMWh55JZtUpWw3wUOGpC1yY 41isZNHhQT7CTuAdxC/lLYwE53EFO2xro+AhzUWp+kAT8lr8qJmo9naHm6tV2n4u mJUG+gDjm5GOUO3PZk+ExRxb9ZfA37IEraOxPEmSd06A/eDp3ar51s/y8T/JF5lb yj6UhD9+9wYY6lzGnEMbC7PSC7ZePW0qzr5uQ2NZwIrS4akNpsf/BzThvtSB/6O1 QJiZ9jVUQtbh3N3K3H5nLraoIQIts5S7bcXf6iS1oU6CNHJVfg9eTqKn1aA5a/aK N6+7WkTZP6CuRbCK8kIC2yxOUfCKGbeNR+7vwAk0 -----END CERTIFICATE-----Generated at Mon Jul 21 06:56:13 2025 by rpki-client