$ rpki-client -vvf repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa File: 3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa (raw, json) Hash identifier: YV5y0yJ3U9p9cvlNvG3FnXx2SHMj2wa+fG9Y04B6wcg= Subject key identifier: FE:6D:80:81:A1:E2:F6:2E:91:0F:5C:A7:2D:31:A1:AC:AE:DB:42:38 Certificate issuer: /CN=255AA179563123A815C2B4073AD84B69F0967F4D Certificate serial: 337A5B475A2179AB2FEF307140EBDCFCDEB62A85 Authority key identifier: 25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa Signing time: Sun 06 Jul 2025 07:00:01 +0000 ROA not before: Sun 06 Jul 2025 06:55:01 +0000 ROA not after: Sun 05 Jul 2026 07:00:01 +0000 asID: 138112 IP address blocks: 103.126.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.crl rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 15:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7a:5b:47:5a:21:79:ab:2f:ef:30:71:40:eb:dc:fc:de:b6:2a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255AA179563123A815C2B4073AD84B69F0967F4D Validity Not Before: Jul 6 06:55:01 2025 GMT Not After : Jul 5 07:00:01 2026 GMT Subject: CN=FE6D8081A1E2F62E910F5CA72D31A1ACAEDB4238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c9:48:a4:a9:f8:a7:ac:d9:58:41:ef:1f:f5: 2a:3e:e8:66:30:7d:8c:0c:d4:6e:5f:b7:93:d3:94: e8:43:e4:17:6d:b6:ed:32:11:b7:6b:ee:3c:81:1c: 52:6a:3d:f1:5e:88:9a:91:c5:72:b9:06:7e:a3:51: bc:78:6f:07:01:ec:b8:42:14:2a:2f:b8:ce:05:0d: f2:45:e7:d2:64:f6:e3:4e:80:63:2e:22:a2:94:5d: 52:ac:a0:6e:9b:cc:f2:4e:5f:55:51:1e:94:8a:66: 71:9e:6a:ef:8c:fa:5d:53:9c:e1:86:59:31:b6:c4: 9c:fa:42:29:9e:c7:36:96:43:5c:28:db:4b:f7:f0: a6:11:8f:62:86:da:c2:97:13:5e:0c:9c:b5:ed:5f: 19:9e:35:35:14:2a:55:5d:08:55:2b:94:0b:c1:51: 76:21:c8:4e:3d:90:e0:f8:83:ed:c3:68:ec:68:cf: 54:f0:fb:8f:50:02:72:2b:a4:5e:26:be:53:c6:12: 51:88:f2:cd:5d:26:46:80:fd:54:c4:24:dc:41:fb: 35:c8:9e:56:59:ef:16:61:84:12:d4:6e:e8:04:2d: 7c:c1:a8:8f:6b:02:b4:2c:72:20:17:00:28:f9:5f: cc:00:88:4e:0e:72:8a:61:17:7c:95:f9:b8:8f:c7: 3e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6D:80:81:A1:E2:F6:2E:91:0F:5C:A7:2D:31:A1:AC:AE:DB:42:38 X509v3 Authority Key Identifier: keyid:25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.172.0/24 Signature Algorithm: sha256WithRSAEncryption 05:a0:79:87:32:a3:dd:d7:ce:c4:17:9b:4d:a4:dd:15:d5:40: 2e:ef:6b:15:d6:c8:95:78:7b:78:1d:3e:5b:1f:91:63:da:b1: 43:95:e1:fb:3f:de:06:00:f3:ec:56:9f:41:97:41:0c:60:4d: 42:10:8c:c3:65:60:cf:f8:09:5f:70:4f:70:ca:bc:f2:2a:8f: b7:df:18:25:8d:b3:1a:63:9c:c2:30:77:00:6b:04:6d:08:6c: e5:cd:cd:87:6f:f3:eb:b9:c7:3a:09:b9:51:c5:3b:94:91:f5: c1:a5:d3:bb:42:86:7e:55:80:97:8b:92:63:99:9a:63:34:ec: 67:df:28:ce:dc:17:3a:32:e8:3d:b6:32:3d:99:2d:d4:26:9a: ab:f2:64:dd:44:18:5a:cb:42:75:70:89:d1:a3:08:fb:24:82: d1:63:20:6e:2d:27:94:40:c5:5b:88:4b:a6:b6:f6:6b:08:21: 81:bc:e5:14:be:50:a4:1d:c0:3b:78:bd:e1:be:30:fa:21:2f: c7:f2:81:30:3a:67:98:96:7d:d7:76:84:1e:cf:d6:fa:e4:9d: f7:80:73:54:96:1b:98:47:2d:dd:6f:92:e0:98:c3:73:5b:96: 51:ce:7d:15:5b:e3:42:f2:43:82:57:9d:db:e5:21:1a:ed:f8: d2:11:52:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM3pbR1oheasv7zBxQOvc/N62KoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1QUExNzk1NjMxMjNBODE1QzJCNDA3M0FEODRCNjlG MDk2N0Y0RDAeFw0yNTA3MDYwNjU1MDFaFw0yNjA3MDUwNzAwMDFaMDMxMTAvBgNV BAMTKEZFNkQ4MDgxQTFFMkY2MkU5MTBGNUNBNzJEMzFBMUFDQUVEQjQyMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVyUikqfinrNlYQe8f9So+6GYw fYwM1G5ft5PTlOhD5Bdttu0yEbdr7jyBHFJqPfFeiJqRxXK5Bn6jUbx4bwcB7LhC FCovuM4FDfJF59Jk9uNOgGMuIqKUXVKsoG6bzPJOX1VRHpSKZnGeau+M+l1TnOGG WTG2xJz6QimexzaWQ1wo20v38KYRj2KG2sKXE14MnLXtXxmeNTUUKlVdCFUrlAvB UXYhyE49kOD4g+3DaOxoz1Tw+49QAnIrpF4mvlPGElGI8s1dJkaA/VTEJNxB+zXI nlZZ7xZhhBLUbugELXzBqI9rArQsciAXACj5X8wAiE4OcophF3yV+biPxz5HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/m2AgaHi9i6RD1ynLTGhrK7bQjgwHwYDVR0j BBgwFoAUJVqheVYxI6gVwrQHOthLafCWf00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGI4ZDkwOC0xYjk5LTQ1NWMtYWM3Ni04ZDYyNGRmYTQzYjYvMC8yNTVBQTE3OTU2 MzEyM0E4MTVDMkI0MDczQUQ4NEI2OUYwOTY3RjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1QUExNzk1NjMxMjNBODE1QzJCNDA3M0FEODRCNjlGMDk2 N0Y0RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkYjhkOTA4LTFiOTktNDU1Yy1h Yzc2LThkNjI0ZGZhNDNiNi8wLzMxMzAzMzJlMzEzMjM2MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfqwwDQYJ KoZIhvcNAQELBQADggEBAAWgeYcyo93XzsQXm02k3RXVQC7vaxXWyJV4e3gdPlsf kWPasUOV4fs/3gYA8+xWn0GXQQxgTUIQjMNlYM/4CV9wT3DKvPIqj7ffGCWNsxpj nMIwdwBrBG0IbOXNzYdv8+u5xzoJuVHFO5SR9cGl07tChn5VgJeLkmOZmmM07Gff KM7cFzoy6D22Mj2ZLdQmmqvyZN1EGFrLQnVwidGjCPskgtFjIG4tJ5RAxVuIS6a2 9msIIYG85RS+UKQdwDt4veG+MPohL8fygTA6Z5iWfdd2hB7P1vrknfeAc1SWG5hH Ld1vkuCYw3NbllHOfRVb40LyQ4JXndvlIRrt+NIRUlw= -----END CERTIFICATE-----Generated at Tue Jul 22 04:13:47 2025 by rpki-client