$ rpki-client -vvf repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/3130332e3235352e3130382e302f32342d3234203d3e20313430343233.roa File: 3130332e3235352e3130382e302f32342d3234203d3e20313430343233.roa (raw, json) Hash identifier: T67cFQRpQ2o+KvKKY7X8jJEZZaWi3BjcQFaxTHAd6yo= Subject key identifier: F7:CB:11:CA:8C:49:02:F1:EC:79:B9:10:B5:C1:24:0A:0E:B9:60:01 Certificate issuer: /CN=802B50E70791398C3EA43DDCECAA739EA01A638B Certificate serial: 5DAB64766052CE62685904E94B864313C7C25A1E Authority key identifier: 80:2B:50:E7:07:91:39:8C:3E:A4:3D:DC:EC:AA:73:9E:A0:1A:63:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/802B50E70791398C3EA43DDCECAA739EA01A638B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/3130332e3235352e3130382e302f32342d3234203d3e20313430343233.roa Signing time: Fri 18 Jul 2025 05:55:25 +0000 ROA not before: Fri 18 Jul 2025 05:50:25 +0000 ROA not after: Fri 17 Jul 2026 05:55:25 +0000 asID: 140423 IP address blocks: 103.255.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/802B50E70791398C3EA43DDCECAA739EA01A638B.crl rsync://repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/802B50E70791398C3EA43DDCECAA739EA01A638B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/802B50E70791398C3EA43DDCECAA739EA01A638B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 20:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ab:64:76:60:52:ce:62:68:59:04:e9:4b:86:43:13:c7:c2:5a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=802B50E70791398C3EA43DDCECAA739EA01A638B Validity Not Before: Jul 18 05:50:25 2025 GMT Not After : Jul 17 05:55:25 2026 GMT Subject: CN=F7CB11CA8C4902F1EC79B910B5C1240A0EB96001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e3:1a:83:9e:ce:99:4b:e7:e5:13:44:43:57: 21:f7:3e:bc:12:21:28:7d:fa:80:8a:f0:00:4b:09: 4f:7c:27:c1:8a:67:ca:51:f0:86:dc:e7:bd:5c:20: f2:0e:da:6e:a5:01:e3:13:67:58:e1:7f:6d:50:99: 23:1b:41:16:54:a3:bf:18:aa:d3:7c:d4:0f:c1:9f: c9:92:82:08:5c:06:43:31:0a:0a:04:0c:6e:39:9a: a2:21:7d:79:fb:85:c4:f4:a8:d9:4b:38:44:af:12: ea:02:61:16:f9:63:bf:f8:b3:c7:f9:f9:a9:93:69: d3:a9:99:e3:85:67:6c:85:2a:2c:47:f8:f7:1f:3b: fc:1a:bf:24:df:72:26:e3:27:29:41:ca:6d:b8:81: 02:e7:57:4d:4b:33:43:68:ba:08:0d:8d:9b:6e:5b: 6b:75:fe:59:69:93:72:d6:0f:bf:b7:ee:be:c8:27: 29:f0:3f:30:b2:78:60:b2:fc:70:cd:92:37:b7:6a: 2a:00:71:4c:6f:bc:0f:47:e2:bd:27:13:83:7b:26: 3d:fb:a2:ff:6b:42:68:35:ad:07:29:92:0e:f5:eb: 69:52:c2:cc:a5:cb:68:87:d1:e1:38:48:14:ee:3d: 5a:6a:a0:e7:bd:a5:7e:15:8c:73:7e:7c:8f:29:6a: dc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:CB:11:CA:8C:49:02:F1:EC:79:B9:10:B5:C1:24:0A:0E:B9:60:01 X509v3 Authority Key Identifier: keyid:80:2B:50:E7:07:91:39:8C:3E:A4:3D:DC:EC:AA:73:9E:A0:1A:63:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/802B50E70791398C3EA43DDCECAA739EA01A638B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/802B50E70791398C3EA43DDCECAA739EA01A638B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa11e6d7-57a1-4936-b7a7-de093525cb27/0/3130332e3235352e3130382e302f32342d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.108.0/24 Signature Algorithm: sha256WithRSAEncryption 73:19:22:8c:1f:de:48:13:b5:0b:2c:7e:f7:07:14:a8:89:c0: ed:87:9a:f9:19:8f:95:6a:bd:27:c8:65:7d:54:6f:3e:af:2a: 22:e8:b5:06:c1:29:82:6a:14:a1:d5:56:82:d5:43:c8:7b:2f: a9:86:3e:b8:15:01:53:95:fb:91:ce:a8:06:25:fc:3c:4d:eb: ef:33:3b:4f:ac:b9:9f:f0:4c:69:97:4a:2e:0c:68:13:85:d6: 91:16:f3:1c:a1:21:ff:cc:7e:a7:08:97:fa:a5:0b:08:cb:29: 00:5b:0b:95:d6:85:54:66:a4:18:68:63:20:ea:cb:50:21:15: e1:3b:f7:74:d1:5a:60:93:3c:e2:8e:17:b1:2e:ff:60:21:22: f7:60:82:d9:24:5f:84:42:1f:27:78:da:9a:ec:4f:aa:b4:41: a7:4f:95:6b:e0:fd:e8:94:90:1f:37:90:94:14:25:03:ec:31: 76:5e:ab:c0:64:a9:41:f0:e7:64:8c:cf:50:2f:ce:e6:4f:9d: 4d:c5:f8:53:96:1d:9a:62:8f:29:3a:dc:ce:a1:1c:8b:7e:7f: fa:05:1c:2d:36:ca:5b:7e:78:08:7e:a9:0b:e8:b1:99:a2:ad: 7a:aa:22:f9:59:0b:29:e3:a2:d5:e7:f6:a1:68:bd:3b:59:b5: 34:c9:80:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXatkdmBSzmJoWQTpS4ZDE8fCWh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODAyQjUwRTcwNzkxMzk4QzNFQTQzRERDRUNBQTczOUVB MDFBNjM4QjAeFw0yNTA3MTgwNTUwMjVaFw0yNjA3MTcwNTU1MjVaMDMxMTAvBgNV BAMTKEY3Q0IxMUNBOEM0OTAyRjFFQzc5QjkxMEI1QzEyNDBBMEVCOTYwMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT4xqDns6ZS+flE0RDVyH3PrwS ISh9+oCK8ABLCU98J8GKZ8pR8Ibc571cIPIO2m6lAeMTZ1jhf21QmSMbQRZUo78Y qtN81A/Bn8mSgghcBkMxCgoEDG45mqIhfXn7hcT0qNlLOESvEuoCYRb5Y7/4s8f5 +amTadOpmeOFZ2yFKixH+PcfO/wavyTfcibjJylBym24gQLnV01LM0NouggNjZtu W2t1/llpk3LWD7+37r7IJynwPzCyeGCy/HDNkje3aioAcUxvvA9H4r0nE4N7Jj37 ov9rQmg1rQcpkg7162lSwsyly2iH0eE4SBTuPVpqoOe9pX4VjHN+fI8patyzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU98sRyoxJAvHsebkQtcEkCg65YAEwHwYDVR0j BBgwFoAUgCtQ5weROYw+pD3c7KpznqAaY4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTExZTZkNy01N2ExLTQ5MzYtYjdhNy1kZTA5MzUyNWNiMjcvMC84MDJCNTBFNzA3 OTEzOThDM0VBNDNERENFQ0FBNzM5RUEwMUE2MzhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODAyQjUwRTcwNzkxMzk4QzNFQTQzRERDRUNBQTczOUVBMDFB NjM4Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhMTFlNmQ3LTU3YTEtNDkzNi1i N2E3LWRlMDkzNTI1Y2IyNy8wLzMxMzAzMzJlMzIzNTM1MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/2wwDQYJ KoZIhvcNAQELBQADggEBAHMZIowf3kgTtQssfvcHFKiJwO2HmvkZj5VqvSfIZX1U bz6vKiLotQbBKYJqFKHVVoLVQ8h7L6mGPrgVAVOV+5HOqAYl/DxN6+8zO0+suZ/w TGmXSi4MaBOF1pEW8xyhIf/MfqcIl/qlCwjLKQBbC5XWhVRmpBhoYyDqy1AhFeE7 93TRWmCTPOKOF7Eu/2AhIvdggtkkX4RCHyd42prsT6q0QadPlWvg/eiUkB83kJQU JQPsMXZeq8BkqUHw52SMz1AvzuZPnU3F+FOWHZpijyk63M6hHIt+f/oFHC02ylt+ eAh+qQvosZmirXqqIvlZCynjotXn9qFovTtZtTTJgL4= -----END CERTIFICATE-----Generated at Mon Jul 21 15:00:41 2025 by rpki-client