$ rpki-client -vvf repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132382e302f32342d3234203d3e203633383637.roa File: 3130332e3134332e3132382e302f32342d3234203d3e203633383637.roa (raw, json) Hash identifier: iEynAd8edmDilxxRp6PQ7HvUf3aQL4wzddXX37EKekI= Subject key identifier: 9E:B3:6B:04:33:FC:81:13:C3:8A:10:68:7D:C5:CC:33:0C:17:2B:F3 Certificate issuer: /CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Certificate serial: 0D9CD462DBBBB65F91A010145A2B7D499B48F6F9 Authority key identifier: 29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132382e302f32342d3234203d3e203633383637.roa Signing time: Mon 07 Jul 2025 20:44:09 +0000 ROA not before: Mon 07 Jul 2025 20:39:09 +0000 ROA not after: Mon 06 Jul 2026 20:44:09 +0000 asID: 63867 IP address blocks: 103.143.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 07:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9c:d4:62:db:bb:b6:5f:91:a0:10:14:5a:2b:7d:49:9b:48:f6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Validity Not Before: Jul 7 20:39:09 2025 GMT Not After : Jul 6 20:44:09 2026 GMT Subject: CN=9EB36B0433FC8113C38A10687DC5CC330C172BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3c:81:01:74:4e:0e:26:36:b8:33:cb:0f:e6: 49:10:c7:38:81:6a:74:d4:77:f1:70:14:35:42:46: a8:45:10:29:91:a9:d5:b1:ce:39:ca:3a:8d:fe:4e: 05:6f:60:2f:58:34:1e:0f:ac:4b:d3:ba:7c:ca:ab: 3f:73:f9:87:48:70:b4:1b:aa:57:a3:06:7e:aa:f3: 0c:79:a4:94:d2:b3:f3:07:0d:05:5d:04:44:50:36: ee:90:93:10:aa:c1:b6:57:8c:27:ce:fe:9b:90:20: 97:65:11:38:92:4c:b3:75:84:52:d1:b7:88:12:74: ba:3d:b2:59:d8:18:66:49:e6:15:94:73:7e:ee:26: ca:05:3c:9d:14:df:19:21:c9:90:71:dc:45:68:e8: 07:13:7f:b0:44:f0:4a:7c:45:cd:10:72:d5:c9:81: 06:47:d8:99:d2:77:c3:d5:91:ad:9a:3f:27:31:06: aa:8f:1d:04:43:f2:39:44:49:2c:44:d5:4d:ec:e0: a8:e5:b8:a7:25:83:d5:f0:6c:92:b0:51:c2:04:9d: a1:1e:79:99:83:9a:75:97:a6:84:d3:11:d6:5c:f9: d0:10:b8:cc:b2:4a:95:03:a7:5c:f2:6f:5c:bb:1f: 94:53:5d:7a:6c:c6:e7:fd:7b:dd:4c:af:0b:1f:df: a8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B3:6B:04:33:FC:81:13:C3:8A:10:68:7D:C5:CC:33:0C:17:2B:F3 X509v3 Authority Key Identifier: keyid:29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/3130332e3134332e3132382e302f32342d3234203d3e203633383637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.128.0/24 Signature Algorithm: sha256WithRSAEncryption 67:3b:ab:3d:ec:79:a6:e9:29:a8:d6:a2:d3:74:fa:ec:77:69: 06:e6:b0:2f:1f:7a:d9:42:d6:48:7d:d3:0e:59:9b:17:dd:67: a4:d9:1a:36:3c:dd:f7:b5:25:1a:e3:ca:95:2a:f3:a1:92:10: 6c:83:58:d2:17:50:71:fa:6d:9f:07:2c:7a:8c:81:8f:90:6e: 22:f6:a4:51:b7:01:2c:b1:46:00:24:cc:7a:1a:f5:6b:f3:35: 5b:ce:4e:2e:da:dd:f9:b8:f6:7d:6f:f4:5c:d4:80:46:46:2f: 66:ae:2a:8b:89:59:41:a4:ae:6e:5b:6b:12:3d:f9:f2:d3:b0: a2:b6:cf:d2:91:75:f2:f8:f6:b2:1a:53:9b:ff:92:d9:16:5e: f0:55:86:1a:ac:69:e5:b4:d1:33:5a:0d:e6:94:ff:c4:73:b1: 65:57:73:ee:ed:7c:91:5e:2c:d7:05:00:3c:d0:87:2c:1d:a3: 53:a2:24:fd:30:91:2f:95:25:52:7e:90:d7:b2:7a:f5:fb:ce: a0:68:57:fc:6b:d7:fe:81:a2:d5:38:0e:3b:c5:ee:7e:bf:5e: 50:58:d5:38:40:c4:2d:84:11:d6:f4:c3:82:f5:dd:c7:bf:e5: 35:dd:47:9a:45:fa:d4:c7:72:11:1a:57:38:82:6a:60:11:65: 8b:cb:6c:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDZzUYtu7tl+RoBAUWit9SZtI9vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURG QjQzRERCMjAeFw0yNTA3MDcyMDM5MDlaFw0yNjA3MDYyMDQ0MDlaMDMxMTAvBgNV BAMTKDlFQjM2QjA0MzNGQzgxMTNDMzhBMTA2ODdEQzVDQzMzMEMxNzJCRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmPIEBdE4OJja4M8sP5kkQxziB anTUd/FwFDVCRqhFECmRqdWxzjnKOo3+TgVvYC9YNB4PrEvTunzKqz9z+YdIcLQb qlejBn6q8wx5pJTSs/MHDQVdBERQNu6QkxCqwbZXjCfO/puQIJdlETiSTLN1hFLR t4gSdLo9slnYGGZJ5hWUc37uJsoFPJ0U3xkhyZBx3EVo6AcTf7BE8Ep8Rc0QctXJ gQZH2JnSd8PVka2aPycxBqqPHQRD8jlESSxE1U3s4KjluKclg9XwbJKwUcIEnaEe eZmDmnWXpoTTEdZc+dAQuMyySpUDp1zyb1y7H5RTXXpsxuf9e91Mrwsf36iPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnrNrBDP8gRPDihBofcXMMwwXK/MwHwYDVR0j BBgwFoAUKb53H+bXiMpQnnh3h/IYrftD3bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmU5NmJmMy1kMDIxLTRkODQtOTBkNS1jMjQ1NThhYTQ5NWYvMC8yOUJFNzcxRkU2 RDc4OENBNTA5RTc4Nzc4N0YyMThBREZCNDNEREIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURGQjQz RERCMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTk2YmYzLWQwMjEtNGQ4NC05 MGQ1LWMyNDU1OGFhNDk1Zi8wLzMxMzAzMzJlMzEzNDMzMmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4+AMA0GCSqG SIb3DQEBCwUAA4IBAQBnO6s97Hmm6Smo1qLTdPrsd2kG5rAvH3rZQtZIfdMOWZsX 3Wek2Ro2PN33tSUa48qVKvOhkhBsg1jSF1Bx+m2fByx6jIGPkG4i9qRRtwEssUYA JMx6GvVr8zVbzk4u2t35uPZ9b/Rc1IBGRi9mriqLiVlBpK5uW2sSPfny07Cits/S kXXy+PayGlOb/5LZFl7wVYYarGnltNEzWg3mlP/Ec7FlV3Pu7XyRXizXBQA80Ics HaNToiT9MJEvlSVSfpDXsnr1+86gaFf8a9f+gaLVOA47xe5+v15QWNU4QMQthBHW 9MOC9d3Hv+U13UeaRfrUx3IRGlc4gmpgEWWLy2yT -----END CERTIFICATE-----Generated at Mon Jul 21 07:29:28 2025 by rpki-client