$ rpki-client -vvf repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa File: 3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: gOoZfgSIZIk3IBqctpdE6ERoqLaD97A4ApFjnTt/tAE= Subject key identifier: 76:31:7F:7B:C4:C6:1B:F2:CF:8C:4C:87:69:36:F9:A3:29:A6:AA:D0 Certificate issuer: /CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Certificate serial: 741319F8FD9AB21D506AFA11178E1B30D889A04E Authority key identifier: AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa Signing time: Fri 04 Jul 2025 12:02:23 +0000 ROA not before: Fri 04 Jul 2025 11:57:23 +0000 ROA not after: Fri 03 Jul 2026 12:02:23 +0000 asID: 131740 IP address blocks: 103.21.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:13:19:f8:fd:9a:b2:1d:50:6a:fa:11:17:8e:1b:30:d8:89:a0:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Validity Not Before: Jul 4 11:57:23 2025 GMT Not After : Jul 3 12:02:23 2026 GMT Subject: CN=76317F7BC4C61BF2CF8C4C876936F9A329A6AAD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:41:07:84:aa:8e:39:7f:86:41:b9:b3:ea: e4:94:21:38:ad:5b:06:c7:da:fc:3b:8c:7f:da:93: a4:20:f4:f4:e5:d8:54:a5:4f:ba:ea:3c:1b:87:c0: 27:56:22:f0:bd:cb:fa:c4:ea:c9:1d:2d:00:bb:07: d0:63:b9:64:b1:f9:f9:3e:97:be:69:82:b6:86:91: 14:be:ea:45:4a:0b:ba:3c:6b:58:f9:1c:d8:91:04: 7a:50:41:ec:2d:c9:72:39:92:4e:bb:21:77:ad:82: 2e:5d:d3:38:74:d8:2b:be:7d:03:f4:2a:14:fe:c7: 0b:41:c3:3d:e3:09:c5:3f:13:49:bb:37:45:ae:4c: 7d:35:f8:0c:32:04:57:8b:a8:2c:5f:6f:1d:0e:55: ac:4c:f8:2f:90:96:c6:69:aa:fc:bb:19:d5:e4:14: 21:56:2e:59:b5:dc:38:13:2f:b3:82:21:dd:74:a8: 43:2b:34:81:02:d1:81:50:eb:40:81:7b:15:55:0f: d9:6f:e9:a9:9c:f3:56:60:f8:57:f6:7e:0e:1f:90: 41:53:ae:a5:61:b8:a1:9b:0b:dd:85:e7:59:da:de: 6a:60:1c:a3:42:fa:f5:94:7a:2b:03:15:6e:3e:9c: d4:34:e8:2c:bc:12:7d:ff:07:68:55:dd:55:a1:17: 64:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:31:7F:7B:C4:C6:1B:F2:CF:8C:4C:87:69:36:F9:A3:29:A6:AA:D0 X509v3 Authority Key Identifier: keyid:AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.224.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ce:7a:a8:a8:8b:bb:78:65:64:74:ff:d1:64:e7:a8:36:ab: 30:19:65:2b:a0:a2:e5:22:a4:7a:ba:bf:92:72:7e:87:76:75: 11:cb:53:c9:f7:26:17:99:eb:06:1b:5d:bd:ad:45:c1:52:77: 44:99:8d:75:0d:08:ed:7b:5c:f4:9c:ec:0b:40:1e:59:da:2e: 28:b9:d9:94:fa:ab:4d:fb:7f:3b:18:bb:3f:69:14:66:9c:a4: 02:ee:d3:18:33:f8:36:e6:40:8c:de:1c:75:16:68:ba:65:43: 07:60:db:91:b8:f4:e5:48:1b:1d:24:11:73:d8:2f:f0:38:b6: 75:6f:d2:ec:44:e6:b9:57:46:28:5e:3e:d1:e8:49:3c:31:b6: d6:9a:14:79:ea:d2:0a:64:b3:79:da:0f:dc:91:bb:6a:e8:0f: ab:1c:45:97:76:c2:27:de:58:9d:64:54:8f:9c:1c:7b:65:cc: 42:03:6e:c3:45:07:6c:49:16:ce:2d:1c:95:12:da:46:35:d5: 3c:60:39:90:aa:9d:18:47:d7:5c:99:2f:7f:eb:1f:06:49:28: b0:87:f3:f3:cc:89:0d:8b:71:fa:59:d5:fb:63:00:62:0b:61: 87:db:a3:11:66:9b:33:81:85:68:64:56:b3:4e:ad:79:ed:27: c0:bd:eb:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdBMZ+P2ash1QavoRF44bMNiJoE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5 MjMxMDUwNDAeFw0yNTA3MDQxMTU3MjNaFw0yNjA3MDMxMjAyMjNaMDMxMTAvBgNV BAMTKDc2MzE3RjdCQzRDNjFCRjJDRjhDNEM4NzY5MzZGOUEzMjlBNkFBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKWkEHhKqOOX+GQbmz6uSUITit WwbH2vw7jH/ak6Qg9PTl2FSlT7rqPBuHwCdWIvC9y/rE6skdLQC7B9BjuWSx+fk+ l75pgraGkRS+6kVKC7o8a1j5HNiRBHpQQewtyXI5kk67IXetgi5d0zh02Cu+fQP0 KhT+xwtBwz3jCcU/E0m7N0WuTH01+AwyBFeLqCxfbx0OVaxM+C+QlsZpqvy7GdXk FCFWLlm13DgTL7OCId10qEMrNIEC0YFQ60CBexVVD9lv6amc81Zg+Ff2fg4fkEFT rqVhuKGbC92F51na3mpgHKNC+vWUeisDFW4+nNQ06Cy8En3/B2hV3VWhF2TTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdjF/e8TGG/LPjEyHaTb5oymmqtAwHwYDVR0j BBgwFoAUrrMv+gAHwKBn+4zp3XfP75IxBQQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzZmODMyYi01YTllLTRjYWEtYmRkNC0yNjM0NzI3YTllZDQvMC9BRUIzMkZGQTAw MDdDMEEwNjdGQjhDRTlERDc3Q0ZFRjkyMzEwNTA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5MjMx MDUwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzMxMzAzMzJlMzIzMTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXgMA0GCSqG SIb3DQEBCwUAA4IBAQCVznqoqIu7eGVkdP/RZOeoNqswGWUroKLlIqR6ur+Scn6H dnURy1PJ9yYXmesGG129rUXBUndEmY11DQjte1z0nOwLQB5Z2i4oudmU+qtN+387 GLs/aRRmnKQC7tMYM/g25kCM3hx1Fmi6ZUMHYNuRuPTlSBsdJBFz2C/wOLZ1b9Ls ROa5V0YoXj7R6Ek8MbbWmhR56tIKZLN52g/ckbtq6A+rHEWXdsIn3lidZFSPnBx7 ZcxCA27DRQdsSRbOLRyVEtpGNdU8YDmQqp0YR9dcmS9/6x8GSSiwh/PzzIkNi3H6 WdX7YwBiC2GH26MRZpszgYVoZFazTq157SfAvevl -----END CERTIFICATE-----Generated at Wed Jul 23 23:23:13 2025 by rpki-client