$ rpki-client -vvf repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: bN0O+3JGtIOaU62palp9MIrngagfeVADVprJx+0r0Fs= Subject key identifier: E6:30:1A:FE:06:31:94:04:73:0E:76:10:08:24:4F:D2:05:11:F3:9C Certificate issuer: /CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Certificate serial: 4C5235862AF639FD5BAFC6AE83644A62C85AE43C Authority key identifier: 29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 12:02:21 +0000 ROA not before: Fri 04 Jul 2025 11:57:21 +0000 ROA not after: Fri 03 Jul 2026 12:02:21 +0000 asID: 17995 IP address blocks: 103.166.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:52:35:86:2a:f6:39:fd:5b:af:c6:ae:83:64:4a:62:c8:5a:e4:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Validity Not Before: Jul 4 11:57:21 2025 GMT Not After : Jul 3 12:02:21 2026 GMT Subject: CN=E6301AFE06319404730E761008244FD20511F39C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e8:56:0c:21:94:f8:90:ec:37:88:17:d4:de: bf:01:f3:ce:b1:4f:73:de:27:53:0b:f6:ac:6b:b7: 2a:5c:ea:5c:8d:29:5a:9c:01:ae:5d:47:9c:39:20: 31:3b:52:57:1c:99:45:c6:93:c0:58:6a:5d:38:99: ce:3d:24:9c:70:f0:6d:b4:25:20:46:4a:d4:2b:1b: 4a:da:32:03:3c:bd:cd:a3:7e:ef:8a:a8:52:6d:0e: 24:26:de:4a:df:db:0e:98:64:b3:68:9a:f9:8d:be: fe:98:bc:18:57:94:bf:18:ca:cb:53:2c:2e:f3:9f: d7:50:31:38:52:1d:44:25:8f:bc:44:b1:dd:df:e9: e1:a7:1e:0e:51:0f:f8:c9:1f:9d:ad:32:f8:bf:30: 3e:b5:f0:4d:6e:1f:fa:8a:4a:8c:2e:55:60:db:cf: 22:31:3e:90:60:6f:8f:1e:c1:fe:61:70:77:93:77: 32:21:58:2c:3e:c5:70:30:e2:f5:96:bf:2a:b5:67: 8b:71:eb:ff:3c:42:50:48:c9:62:fb:e9:f8:b0:13: b0:26:ee:78:cd:3d:67:2e:30:02:39:ce:9c:bc:e0: e2:67:cb:39:60:18:bb:9e:f0:0e:d4:bd:d1:62:8b: a6:4e:e6:e9:8b:ed:8e:6c:c2:c4:21:da:37:b4:e9: 77:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:30:1A:FE:06:31:94:04:73:0E:76:10:08:24:4F:D2:05:11:F3:9C X509v3 Authority Key Identifier: keyid:29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.136.0/23 Signature Algorithm: sha256WithRSAEncryption 51:90:fd:5d:16:77:63:b0:be:b3:f7:d5:6d:30:44:99:ce:4e: b4:d2:80:57:13:5c:4a:b3:a1:f1:f2:4d:00:80:c4:86:7b:fd: 1c:90:ab:de:77:0a:ef:bf:b1:d8:ad:07:c9:b0:ae:b4:fb:e3: 24:3e:71:55:44:1e:83:a7:b8:f0:55:f9:d5:a7:75:c6:63:e2: 83:9e:a8:a8:84:63:ee:c4:a9:33:f2:56:35:0a:57:5e:3d:27: 8e:09:46:6c:90:e8:b1:86:aa:23:b3:4c:14:ee:53:6b:69:51: 13:c9:f3:e7:e0:08:86:4d:ff:7f:0e:b4:cd:c8:5c:9a:42:ae: 0f:00:d4:c3:f2:e7:9c:99:0c:b1:63:90:64:7a:ca:95:1a:7e: ef:51:2b:1e:fb:e3:b1:3f:f2:ca:33:f9:74:01:58:25:3a:51: 50:a9:66:30:15:b8:13:b7:60:b3:b1:51:41:e0:e9:b8:29:c9: f1:dc:03:b7:77:f4:30:df:b1:51:d0:53:fb:e7:9c:da:4c:c4: 21:ba:65:e8:36:06:8e:4b:ff:56:79:66:8e:cc:82:c3:b4:0a: 03:95:f9:83:83:77:e9:b3:7e:6f:4b:98:0c:20:03:c5:d3:d7: 6d:68:ce:7a:a4:d6:40:45:ef:c5:cd:f4:cc:db:0c:06:03:9b: a0:f5:34:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTFI1hir2Of1br8aug2RKYsha5DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMz Q0RDQTc2OTAeFw0yNTA3MDQxMTU3MjFaFw0yNjA3MDMxMjAyMjFaMDMxMTAvBgNV BAMTKEU2MzAxQUZFMDYzMTk0MDQ3MzBFNzYxMDA4MjQ0RkQyMDUxMUYzOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb6FYMIZT4kOw3iBfU3r8B886x T3PeJ1ML9qxrtypc6lyNKVqcAa5dR5w5IDE7UlccmUXGk8BYal04mc49JJxw8G20 JSBGStQrG0raMgM8vc2jfu+KqFJtDiQm3krf2w6YZLNomvmNvv6YvBhXlL8YystT LC7zn9dQMThSHUQlj7xEsd3f6eGnHg5RD/jJH52tMvi/MD618E1uH/qKSowuVWDb zyIxPpBgb48ewf5hcHeTdzIhWCw+xXAw4vWWvyq1Z4tx6/88QlBIyWL76fiwE7Am 7njNPWcuMAI5zpy84OJnyzlgGLue8A7UvdFii6ZO5umL7Y5swsQh2je06Xf7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5jAa/gYxlARzDnYQCCRP0gUR85wwHwYDVR0j BBgwFoAUKSxs9fM2zg11jkf135d4Yzzcp2kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM0YzhkYy04ODUzLTRmNjUtODIwOS00ZmJlZTdhYjQyNTIvMC8yOTJDNkNGNUYz MzZDRTBENzU4RTQ3RjVERjk3Nzg2MzNDRENBNzY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMzQ0RD QTc2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzRjOGRjLTg4NTMtNGY2NS04 MjA5LTRmYmVlN2FiNDI1Mi8wLzMxMzAzMzJlMzEzNjM2MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6aIMA0GCSqG SIb3DQEBCwUAA4IBAQBRkP1dFndjsL6z99VtMESZzk600oBXE1xKs6Hx8k0AgMSG e/0ckKvedwrvv7HYrQfJsK60++MkPnFVRB6Dp7jwVfnVp3XGY+KDnqiohGPuxKkz 8lY1CldePSeOCUZskOixhqojs0wU7lNraVETyfPn4AiGTf9/DrTNyFyaQq4PANTD 8uecmQyxY5BkesqVGn7vUSse++OxP/LKM/l0AVglOlFQqWYwFbgTt2CzsVFB4Om4 Kcnx3AO3d/Qw37FR0FP755zaTMQhumXoNgaOS/9WeWaOzILDtAoDlfmDg3fps35v S5gMIAPF09dtaM56pNZARe/FzfTM2wwGA5ug9TQt -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:44 2025 by rpki-client