$ rpki-client -vvf repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32342d3234203d3e20313437303933.roa File: 3130332e3137342e31362e302f32342d3234203d3e20313437303933.roa (raw, json) Hash identifier: KF7nH5pW5/ZblyJqWbcvRko2OuzeK910SdQ0o3we0k8= Subject key identifier: 33:0C:AD:18:42:13:65:86:A0:9F:D9:28:98:E4:2D:B3:EB:3B:25:9E Certificate issuer: /CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Certificate serial: 4B86C7DFD4ACD9B8DD1FE640227890692F23B093 Authority key identifier: 6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32342d3234203d3e20313437303933.roa Signing time: Sat 12 Jul 2025 23:32:20 +0000 ROA not before: Sat 12 Jul 2025 23:27:20 +0000 ROA not after: Sat 11 Jul 2026 23:32:20 +0000 asID: 147093 IP address blocks: 103.174.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 19:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:86:c7:df:d4:ac:d9:b8:dd:1f:e6:40:22:78:90:69:2f:23:b0:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Validity Not Before: Jul 12 23:27:20 2025 GMT Not After : Jul 11 23:32:20 2026 GMT Subject: CN=330CAD1842136586A09FD92898E42DB3EB3B259E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:df:22:de:94:30:09:11:49:ab:25:73:82:be: ba:0d:f2:e2:e7:22:7b:12:42:15:6e:09:a3:b8:ad: 12:a6:f7:54:9d:3c:53:3b:54:e4:24:99:fc:c6:f3: 21:70:83:37:f5:02:0f:06:f5:e8:6f:56:3e:c8:f7: 48:c7:63:93:77:55:41:a8:14:4a:29:97:05:89:dc: 6b:61:0c:64:ca:45:c0:59:6e:68:f4:26:8a:90:ee: 0d:a7:b9:ed:b4:24:b8:c3:55:f1:e7:68:2d:69:5c: 60:dd:81:c4:cf:a9:b1:da:13:00:a9:00:b6:6b:69: 00:f3:01:42:91:1f:da:09:08:2f:68:97:41:5f:e7: c9:f5:de:02:24:5b:41:04:30:b7:56:2e:fa:b9:e2: 29:33:04:be:ec:e5:28:7e:1c:7e:6c:ee:62:4b:67: 56:82:58:4f:98:8a:0b:04:f9:13:ed:77:61:07:f9: ca:20:aa:ef:76:be:b0:36:4d:98:af:6a:ea:87:93: 31:4e:15:d3:d9:a4:fd:13:78:ef:ac:0f:71:c4:1d: 5e:75:cd:e6:d1:f1:83:3f:31:7d:f4:91:79:60:64: f6:c8:ae:0a:c7:e7:f0:6a:ba:e0:ae:05:92:1f:ab: 69:2a:c3:4c:56:bb:e8:b6:9a:6e:35:d5:2c:a8:fa: 6a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0C:AD:18:42:13:65:86:A0:9F:D9:28:98:E4:2D:B3:EB:3B:25:9E X509v3 Authority Key Identifier: keyid:6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32342d3234203d3e20313437303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.16.0/24 Signature Algorithm: sha256WithRSAEncryption 14:2f:1c:fb:b1:43:18:43:c2:33:16:f3:08:41:6f:de:64:11: f4:29:d0:0f:de:ed:db:e3:61:c5:64:09:3a:37:f0:d9:61:b0: 6f:af:34:19:e0:4a:aa:ab:27:4c:9d:10:8a:a7:62:6f:85:03: 33:d2:5a:1b:b3:2f:e3:5e:fc:48:27:7a:e9:28:f3:ee:19:30: 68:a1:37:f2:be:76:04:e6:f3:21:8b:18:87:cb:c4:03:5d:6e: 91:40:99:48:3e:c7:07:57:99:f8:ad:51:28:b9:f9:23:13:77: ec:c2:dd:12:77:b2:5a:9d:7e:67:7b:ef:b4:cb:13:2d:c9:7c: 99:11:8a:7a:af:e2:4d:e5:3b:15:d2:4e:4a:86:44:1e:f0:ac: 9b:4e:4b:0f:05:56:f2:b0:b3:00:66:4b:00:8a:01:01:f1:1e: 4d:b1:cb:93:52:5b:a5:aa:c1:66:ae:06:2d:3a:e2:9a:1d:fe: 3a:2b:f3:c0:7e:f6:cc:8a:97:21:9a:23:c2:af:a3:7c:35:db: 47:26:22:2b:c4:b5:81:83:38:6a:16:7e:26:3b:e9:7e:a7:9e: c3:c7:00:c5:43:81:1f:26:99:2a:3c:82:b7:ea:d6:f4:b4:15: 68:f4:ab:3d:02:de:ce:5d:64:d0:50:61:c4:81:6f:96:ae:75: 8e:0b:cf:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS4bH39Ss2bjdH+ZAIniQaS8jsJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdG RTVCRTVGNDAeFw0yNTA3MTIyMzI3MjBaFw0yNjA3MTEyMzMyMjBaMDMxMTAvBgNV BAMTKDMzMENBRDE4NDIxMzY1ODZBMDlGRDkyODk4RTQyREIzRUIzQjI1OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc3yLelDAJEUmrJXOCvroN8uLn InsSQhVuCaO4rRKm91SdPFM7VOQkmfzG8yFwgzf1Ag8G9ehvVj7I90jHY5N3VUGo FEoplwWJ3GthDGTKRcBZbmj0JoqQ7g2nue20JLjDVfHnaC1pXGDdgcTPqbHaEwCp ALZraQDzAUKRH9oJCC9ol0Ff58n13gIkW0EEMLdWLvq54ikzBL7s5Sh+HH5s7mJL Z1aCWE+YigsE+RPtd2EH+cogqu92vrA2TZivauqHkzFOFdPZpP0TeO+sD3HEHV51 zebR8YM/MX30kXlgZPbIrgrH5/BquuCuBZIfq2kqw0xWu+i2mm411Syo+mpZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMwytGEITZYagn9komOQts+s7JZ4wHwYDVR0j BBgwFoAUbTkFCM4mIsW6qjvulaphJ/5b5fQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTQ4MmFkYS1kMGM4LTQ2NGItYTAwNy04NTE5NDg5Y2IxYzQvMC82RDM5MDUwOENF MjYyMkM1QkFBQTNCRUU5NUFBNjEyN0ZFNUJFNUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdGRTVC RTVGNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlNDgyYWRhLWQwYzgtNDY0Yi1h MDA3LTg1MTk0ODljYjFjNC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64QMA0GCSqG SIb3DQEBCwUAA4IBAQAULxz7sUMYQ8IzFvMIQW/eZBH0KdAP3u3b42HFZAk6N/DZ YbBvrzQZ4EqqqydMnRCKp2JvhQMz0lobsy/jXvxIJ3rpKPPuGTBooTfyvnYE5vMh ixiHy8QDXW6RQJlIPscHV5n4rVEoufkjE3fswt0Sd7JanX5ne++0yxMtyXyZEYp6 r+JN5TsV0k5KhkQe8KybTksPBVbysLMAZksAigEB8R5NscuTUlulqsFmrgYtOuKa Hf46K/PAfvbMipchmiPCr6N8NdtHJiIrxLWBgzhqFn4mO+l+p57DxwDFQ4EfJpkq PIK36tb0tBVo9Ks9At7OXWTQUGHEgW+WrnWOC89n -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:32 2025 by rpki-client