$ rpki-client -vvf repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/3130332e3231352e36332e302f32342d3234203d3e20313531303130.roa File: 3130332e3231352e36332e302f32342d3234203d3e20313531303130.roa (raw, json) Hash identifier: zK90jmviS5skAn/jDcVMI3Aok7WFlX9b62aRW8Ax9FY= Subject key identifier: 41:07:45:94:48:65:35:B2:B0:B4:F9:39:F8:88:FE:AC:87:DA:E7:5F Certificate issuer: /CN=9F93097BE8B711227435ABF870C332F631C8D769 Certificate serial: 4E95E7E587BC23A2CB3E501EEC273D1DB00955FB Authority key identifier: 9F:93:09:7B:E8:B7:11:22:74:35:AB:F8:70:C3:32:F6:31:C8:D7:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F93097BE8B711227435ABF870C332F631C8D769.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/3130332e3231352e36332e302f32342d3234203d3e20313531303130.roa Signing time: Mon 21 Jul 2025 11:00:02 +0000 ROA not before: Mon 21 Jul 2025 10:55:02 +0000 ROA not after: Mon 20 Jul 2026 11:00:02 +0000 asID: 151010 IP address blocks: 103.215.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/9F93097BE8B711227435ABF870C332F631C8D769.crl rsync://repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/9F93097BE8B711227435ABF870C332F631C8D769.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F93097BE8B711227435ABF870C332F631C8D769.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 20:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:95:e7:e5:87:bc:23:a2:cb:3e:50:1e:ec:27:3d:1d:b0:09:55:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F93097BE8B711227435ABF870C332F631C8D769 Validity Not Before: Jul 21 10:55:02 2025 GMT Not After : Jul 20 11:00:02 2026 GMT Subject: CN=41074594486535B2B0B4F939F888FEAC87DAE75F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:32:81:15:ec:ed:49:6d:1d:3e:df:55:09:02: e0:3b:8f:a4:c6:64:f2:3a:db:d0:d2:80:44:90:9c: 84:22:e2:16:eb:4d:9a:e2:e3:e0:1b:72:1c:5f:98: b9:c0:d6:de:21:87:99:15:1e:8d:02:88:b9:1f:90: e5:3e:50:1a:d8:ab:3c:14:a3:7d:58:42:f8:9a:2b: d1:fb:72:a5:d8:39:b9:a1:60:9c:04:3a:01:f5:d6: b1:b0:9e:87:4d:03:73:a7:ff:81:31:51:71:c2:83: f7:1d:c4:e2:d1:c2:64:f2:8c:ca:21:91:35:9e:43: 2f:aa:b7:ff:ea:f2:a3:fb:7e:5a:47:95:35:f9:5b: ea:10:c0:f8:14:01:77:bf:63:ec:de:e3:7a:f6:57: 1e:5f:d3:03:58:e8:56:b5:1f:59:6c:00:19:5b:85: 82:76:36:0d:fe:96:98:b4:eb:12:7d:06:15:be:31: 49:25:c0:fb:e4:a7:de:a7:9e:3a:49:01:e9:0c:85: 9f:a5:7a:95:3d:96:fd:95:b0:b0:dd:54:a6:c5:de: 3b:6f:4b:3a:ec:ea:5f:e2:19:69:a9:61:fe:7a:f4: e0:b2:24:3b:0f:56:9d:09:5f:d8:56:f8:f7:19:e1: 87:ff:da:42:9b:de:d1:ef:a0:89:c9:b8:5d:6a:27: 4f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:07:45:94:48:65:35:B2:B0:B4:F9:39:F8:88:FE:AC:87:DA:E7:5F X509v3 Authority Key Identifier: keyid:9F:93:09:7B:E8:B7:11:22:74:35:AB:F8:70:C3:32:F6:31:C8:D7:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/9F93097BE8B711227435ABF870C332F631C8D769.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F93097BE8B711227435ABF870C332F631C8D769.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da0fbb55-1dd8-4f8b-b890-4a2c0a0111db/0/3130332e3231352e36332e302f32342d3234203d3e20313531303130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.63.0/24 Signature Algorithm: sha256WithRSAEncryption 24:0d:a5:99:f4:cc:d1:fe:95:06:2e:3f:75:1c:f4:e5:7a:33: 52:c4:ca:b5:19:48:79:51:ed:68:ca:73:4e:e8:01:c9:f4:5e: 09:3f:ec:64:29:6f:77:8d:ae:e7:58:44:f9:6b:cd:90:40:50: 50:3d:12:79:29:28:f5:7c:8b:fc:83:33:69:af:08:c5:26:8d: 36:6f:42:cb:a6:03:08:bb:74:25:2d:63:46:4f:08:32:55:b0: a6:85:6a:2a:fb:df:70:9d:ec:94:f5:86:cb:51:bd:8a:47:71: 8e:eb:f9:9e:6c:0c:20:0d:3b:7c:42:a6:5f:5d:e1:ff:04:f0: 19:4f:ad:59:f9:be:fb:f1:72:4f:73:79:39:fc:4e:fb:a7:e3: d3:83:3a:c7:4f:4e:d2:fc:51:cf:d1:78:05:5f:ea:ea:a5:ea: 11:14:c6:20:a0:99:aa:d4:af:8e:3e:fd:f9:b8:68:92:cc:b1: a1:3f:0b:46:0c:b2:3e:9b:43:b1:36:35:db:5b:6b:c8:3e:23: d1:e5:a6:fb:83:6c:2d:3d:10:b2:1e:f8:27:8a:1b:b1:62:74: 25:5a:d3:17:58:f3:56:14:ee:ae:a5:26:86:78:39:1e:16:78: 8b:59:30:7a:69:df:85:3c:b0:d0:a6:d7:54:b5:13:49:75:c4: a3:d9:e1:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTpXn5Ye8I6LLPlAe7Cc9HbAJVfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY5MzA5N0JFOEI3MTEyMjc0MzVBQkY4NzBDMzMyRjYz MUM4RDc2OTAeFw0yNTA3MjExMDU1MDJaFw0yNjA3MjAxMTAwMDJaMDMxMTAvBgNV BAMTKDQxMDc0NTk0NDg2NTM1QjJCMEI0RjkzOUY4ODhGRUFDODdEQUU3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiMoEV7O1JbR0+31UJAuA7j6TG ZPI629DSgESQnIQi4hbrTZri4+AbchxfmLnA1t4hh5kVHo0CiLkfkOU+UBrYqzwU o31YQviaK9H7cqXYObmhYJwEOgH11rGwnodNA3On/4ExUXHCg/cdxOLRwmTyjMoh kTWeQy+qt//q8qP7flpHlTX5W+oQwPgUAXe/Y+ze43r2Vx5f0wNY6Fa1H1lsABlb hYJ2Ng3+lpi06xJ9BhW+MUklwPvkp96nnjpJAekMhZ+lepU9lv2VsLDdVKbF3jtv Szrs6l/iGWmpYf569OCyJDsPVp0JX9hW+PcZ4Yf/2kKb3tHvoInJuF1qJ08nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQQdFlEhlNbKwtPk5+Ij+rIfa518wHwYDVR0j BBgwFoAUn5MJe+i3ESJ0Nav4cMMy9jHI12kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTBmYmI1NS0xZGQ4LTRmOGItYjg5MC00YTJjMGEwMTExZGIvMC85RjkzMDk3QkU4 QjcxMTIyNzQzNUFCRjg3MEMzMzJGNjMxQzhENzY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY5MzA5N0JFOEI3MTEyMjc0MzVBQkY4NzBDMzMyRjYzMUM4 RDc2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhMGZiYjU1LTFkZDgtNGY4Yi1i ODkwLTRhMmMwYTAxMTFkYi8wLzMxMzAzMzJlMzIzMTM1MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzAzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9c/MA0GCSqG SIb3DQEBCwUAA4IBAQAkDaWZ9MzR/pUGLj91HPTlejNSxMq1GUh5Ue1oynNO6AHJ 9F4JP+xkKW93ja7nWET5a82QQFBQPRJ5KSj1fIv8gzNprwjFJo02b0LLpgMIu3Ql LWNGTwgyVbCmhWoq+99wneyU9YbLUb2KR3GO6/mebAwgDTt8QqZfXeH/BPAZT61Z +b778XJPc3k5/E77p+PTgzrHT07S/FHP0XgFX+rqpeoRFMYgoJmq1K+OPv35uGiS zLGhPwtGDLI+m0OxNjXbW2vIPiPR5ab7g2wtPRCyHvgnihuxYnQlWtMXWPNWFO6u pSaGeDkeFniLWTB6ad+FPLDQptdUtRNJdcSj2eFD -----END CERTIFICATE-----Generated at Tue Jul 22 11:51:05 2025 by rpki-client