$ rpki-client -vvf repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa File: 3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: KS9w1B5P8a3jbKsmFzr3W5flDVbhE11L0B9cjjDxpnE= Subject key identifier: 23:1F:27:33:E6:4C:C9:6E:D3:25:60:03:51:25:10:B0:9A:26:B7:64 Certificate issuer: /CN=FB3FCC1A69B1BD92D6A319D7FD820EEECE674245 Certificate serial: 2B5F206F5E206F63893E557B94E3580638F92B15 Authority key identifier: FB:3F:CC:1A:69:B1:BD:92:D6:A3:19:D7:FD:82:0E:EE:CE:67:42:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa Signing time: Fri 04 Jul 2025 11:02:21 +0000 ROA not before: Fri 04 Jul 2025 10:57:21 +0000 ROA not after: Fri 03 Jul 2026 11:02:21 +0000 asID: 17995 IP address blocks: 103.164.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.crl rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5f:20:6f:5e:20:6f:63:89:3e:55:7b:94:e3:58:06:38:f9:2b:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3FCC1A69B1BD92D6A319D7FD820EEECE674245 Validity Not Before: Jul 4 10:57:21 2025 GMT Not After : Jul 3 11:02:21 2026 GMT Subject: CN=231F2733E64CC96ED3256003512510B09A26B764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:80:06:a1:24:5e:21:f3:3b:97:0c:03:b5:42: 57:67:7b:ec:6b:2c:c9:97:9b:93:50:9e:1a:d1:26: ac:d3:61:28:3e:0f:40:53:7b:c1:98:7c:f4:ad:bb: 69:c5:2c:34:4d:e3:4d:3b:5e:ba:b8:62:cb:7b:d3: 59:45:38:3e:a1:57:c3:5d:b1:2d:be:0b:2b:18:49: da:6f:5b:b9:b7:06:2a:f0:fe:8a:39:ab:b1:94:32: 77:6f:f7:67:8a:eb:e0:65:e0:62:a6:85:34:f9:3f: 74:05:09:f4:69:0e:05:5e:32:72:74:c6:21:db:5d: a3:c7:ba:fd:8c:cb:9a:10:d4:e7:9e:6b:c6:86:e8: ea:b2:66:17:31:bb:1d:c6:79:62:d3:26:7a:bc:4a: 6b:a9:62:d0:16:48:0c:f9:a9:7c:c8:0c:e1:08:f1: c4:30:75:aa:8f:d8:95:0b:30:2a:30:2b:c9:a1:6d: 79:bc:24:58:50:06:08:79:9e:ca:59:69:77:e8:28: 18:35:1a:0a:06:35:4c:9d:ab:1c:a7:ed:9e:9a:5f: 2e:24:68:8c:b5:4f:c2:84:83:6c:3d:d4:58:0e:95: 05:ab:82:02:60:e7:03:0e:a9:4b:89:59:2c:78:80: 2d:f9:0b:77:e5:f5:9b:04:ac:46:14:55:2e:e2:a4: a1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1F:27:33:E6:4C:C9:6E:D3:25:60:03:51:25:10:B0:9A:26:B7:64 X509v3 Authority Key Identifier: keyid:FB:3F:CC:1A:69:B1:BD:92:D6:A3:19:D7:FD:82:0E:EE:CE:67:42:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3FCC1A69B1BD92D6A319D7FD820EEECE674245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad87beed-6330-4f33-9105-87722cdf2dd0/0/3130332e3136342e3137302e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.170.0/23 Signature Algorithm: sha256WithRSAEncryption a7:a9:9f:25:2d:0a:7c:e5:d1:41:69:73:2a:dd:d1:55:10:67: 13:a3:af:5d:ba:fb:42:15:bd:78:67:41:27:85:aa:04:59:71: 12:69:fa:58:c7:57:0c:1e:d3:a9:08:e3:8c:32:92:f3:80:00: 3f:f1:a0:24:c2:9f:4b:ad:62:19:87:80:e1:f6:66:65:1d:4e: 80:a6:88:05:c3:84:53:50:1b:cb:75:b3:de:c8:be:32:71:40: dd:57:1b:38:00:05:40:c0:e1:94:aa:db:71:ae:19:e2:f1:d6: 9a:4e:9b:8d:09:6a:3f:c1:a5:08:1d:ef:4b:91:44:0e:88:3f: e5:a9:95:22:84:d4:2c:81:80:3e:65:c8:c9:e5:86:3c:8e:2f: 42:62:4e:49:19:01:aa:f0:d0:ca:9b:b1:35:5f:f0:cf:30:6f: 08:8b:4a:48:8f:04:e9:1b:dc:6c:40:15:64:8d:f2:59:a4:33: 49:d9:10:e2:55:ef:d8:ac:2f:c6:ae:36:a9:39:11:78:c0:d6: 21:49:89:18:f0:a7:ce:5f:bb:83:90:ca:f1:89:1e:ee:2d:39: 72:b2:cc:d1:d1:a1:6d:0a:ba:5c:cf:61:b6:3e:2f:44:cc:fb: 24:7c:72:ce:d0:95:8a:2e:6b:68:10:d5:76:91:1a:75:c0:40: 5e:25:cb:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK18gb14gb2OJPlV7lONYBjj5KxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzRkNDMUE2OUIxQkQ5MkQ2QTMxOUQ3RkQ4MjBFRUVD RTY3NDI0NTAeFw0yNTA3MDQxMDU3MjFaFw0yNjA3MDMxMTAyMjFaMDMxMTAvBgNV BAMTKDIzMUYyNzMzRTY0Q0M5NkVEMzI1NjAwMzUxMjUxMEIwOUEyNkI3NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5gAahJF4h8zuXDAO1Qldne+xr LMmXm5NQnhrRJqzTYSg+D0BTe8GYfPStu2nFLDRN4007Xrq4Yst701lFOD6hV8Nd sS2+CysYSdpvW7m3Birw/oo5q7GUMndv92eK6+Bl4GKmhTT5P3QFCfRpDgVeMnJ0 xiHbXaPHuv2My5oQ1Oeea8aG6OqyZhcxux3GeWLTJnq8SmupYtAWSAz5qXzIDOEI 8cQwdaqP2JULMCowK8mhbXm8JFhQBgh5nspZaXfoKBg1GgoGNUydqxyn7Z6aXy4k aIy1T8KEg2w91FgOlQWrggJg5wMOqUuJWSx4gC35C3fl9ZsErEYUVS7ipKHfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIx8nM+ZMyW7TJWADUSUQsJomt2QwHwYDVR0j BBgwFoAU+z/MGmmxvZLWoxnX/YIO7s5nQkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDg3YmVlZC02MzMwLTRmMzMtOTEwNS04NzcyMmNkZjJkZDAvMC9GQjNGQ0MxQTY5 QjFCRDkyRDZBMzE5RDdGRDgyMEVFRUNFNjc0MjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkIzRkNDMUE2OUIxQkQ5MkQ2QTMxOUQ3RkQ4MjBFRUVDRTY3 NDI0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkODdiZWVkLTYzMzAtNGYzMy05 MTA1LTg3NzIyY2RmMmRkMC8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6SqMA0GCSqG SIb3DQEBCwUAA4IBAQCnqZ8lLQp85dFBaXMq3dFVEGcTo69duvtCFb14Z0EnhaoE WXESafpYx1cMHtOpCOOMMpLzgAA/8aAkwp9LrWIZh4Dh9mZlHU6ApogFw4RTUBvL dbPeyL4ycUDdVxs4AAVAwOGUqttxrhni8daaTpuNCWo/waUIHe9LkUQOiD/lqZUi hNQsgYA+ZcjJ5YY8ji9CYk5JGQGq8NDKm7E1X/DPMG8Ii0pIjwTpG9xsQBVkjfJZ pDNJ2RDiVe/YrC/GrjapORF4wNYhSYkY8KfOX7uDkMrxiR7uLTlysszR0aFtCrpc z2G2Pi9EzPskfHLO0JWKLmtoENV2kRp1wEBeJcs0 -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:59 2025 by rpki-client