$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa File: 3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa (raw, json) Hash identifier: TnfoT+AdKSGr7UXr4YqTiMXEcQTr1SeRV0kGsqmqNns= Subject key identifier: 2E:00:D6:EC:AF:19:96:B4:9F:F4:32:6C:E3:9F:DA:6B:DF:FF:67:B8 Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 0CE1C9373A38D6E16371053062278160532C79C2 Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa Signing time: Sat 18 Oct 2025 08:02:28 +0000 ROA not before: Sat 18 Oct 2025 07:57:28 +0000 ROA not after: Sat 17 Oct 2026 08:02:28 +0000 asID: 133210 IP address blocks: 103.120.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 05:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e1:c9:37:3a:38:d6:e1:63:71:05:30:62:27:81:60:53:2c:79:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Oct 18 07:57:28 2025 GMT Not After : Oct 17 08:02:28 2026 GMT Subject: CN=2E00D6ECAF1996B49FF4326CE39FDA6BDFFF67B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:30:5e:10:ac:37:14:83:6c:1c:10:cb:36:30: 71:7f:49:9b:ea:3b:fa:67:e6:25:2a:90:76:c3:33: a2:ff:df:61:6f:d6:1e:41:96:bb:fe:16:77:68:dd: e1:5c:a9:6d:14:a6:20:1a:9d:df:f7:3e:04:fd:10: d4:ba:8c:0d:46:b9:aa:95:fd:dd:66:a3:03:c5:9e: 5f:20:a6:f8:79:28:08:67:80:6f:91:ca:08:92:21: f8:41:56:8e:fc:05:14:15:80:72:61:dc:c1:6a:d4: 7c:dd:f3:01:ba:aa:10:bb:e2:c5:55:eb:5d:5d:73: ee:7f:49:83:ab:07:2b:6a:cc:f6:00:91:12:1c:ec: a3:69:59:c7:17:ec:f2:1a:1a:db:ce:ed:eb:c0:5e: 1f:e6:1c:ea:00:88:70:57:77:7f:f3:ef:08:ed:a8: f2:46:ec:dd:c8:ff:e1:d1:7e:91:9f:da:fd:11:8b: c9:36:d3:55:24:4a:ab:5d:c0:ec:5b:d0:da:fb:61: 5e:1c:e0:b9:a8:e5:2e:f0:51:ae:a7:44:fa:a8:30: 17:af:b2:25:20:e6:02:f3:f9:95:60:07:1b:e3:8a: 76:bd:af:0f:87:87:0a:9b:dd:23:4a:5c:92:17:69: d9:54:f7:c5:69:a4:7e:79:ea:2e:e9:cc:24:ab:40: 57:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:00:D6:EC:AF:19:96:B4:9F:F4:32:6C:E3:9F:DA:6B:DF:FF:67:B8 X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.207.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:b4:5e:a4:99:03:ae:97:11:02:df:4f:6f:5d:73:54:39:ee: 5b:2b:cb:03:55:c3:52:5c:f4:2b:69:d9:b1:39:1f:48:68:46: 27:e9:06:57:03:71:25:f4:d0:19:2d:53:24:e7:c4:43:b3:e3: e5:2f:bc:c7:30:83:6e:8d:a8:4d:60:74:2c:c9:6b:ef:20:d7: c2:11:25:87:90:20:a6:f8:2b:eb:9a:bd:b8:95:da:ae:5f:cd: 29:ba:91:c7:ed:8d:d0:55:28:a7:bc:ac:4c:bb:00:a0:7e:ed: 57:9e:0d:c0:02:ed:37:f4:2e:76:29:58:13:18:34:ff:49:5d: 2a:67:aa:20:c4:04:04:02:35:28:45:b2:da:47:36:29:fa:6f: 6c:a5:82:ab:e5:51:17:50:70:3d:b7:56:e2:c9:cb:5e:36:aa: ee:03:da:b2:c0:93:77:33:99:de:51:d4:cf:93:7f:ed:50:2b: b8:3b:f9:3f:46:a7:3a:a7:cd:86:3e:f4:a3:be:46:c9:00:eb: e3:e8:40:b8:20:52:bd:d9:dd:a9:89:e5:67:41:7a:e1:43:ea: 82:3a:87:75:47:63:8a:29:f3:63:e8:6b:12:e5:ae:64:95:da: a9:ae:43:80:a9:7a:02:68:2f:df:24:fc:5e:86:8d:64:41:3f: 85:7c:67:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDOHJNzo41uFjcQUwYieBYFMsecIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yNTEwMTgwNzU3MjhaFw0yNjEwMTcwODAyMjhaMDMxMTAvBgNV BAMTKDJFMDBENkVDQUYxOTk2QjQ5RkY0MzI2Q0UzOUZEQTZCREZGRjY3QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3MF4QrDcUg2wcEMs2MHF/SZvq O/pn5iUqkHbDM6L/32Fv1h5Blrv+Fndo3eFcqW0UpiAand/3PgT9ENS6jA1GuaqV /d1mowPFnl8gpvh5KAhngG+RygiSIfhBVo78BRQVgHJh3MFq1Hzd8wG6qhC74sVV 611dc+5/SYOrBytqzPYAkRIc7KNpWccX7PIaGtvO7evAXh/mHOoAiHBXd3/z7wjt qPJG7N3I/+HRfpGf2v0Ri8k201UkSqtdwOxb0Nr7YV4c4Lmo5S7wUa6nRPqoMBev siUg5gLz+ZVgBxvjina9rw+Hhwqb3SNKXJIXadlU98VppH556i7pzCSrQFfxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULgDW7K8ZlrSf9DJs45/aa9//Z7gwHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMjMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneM8wDQYJ KoZIhvcNAQELBQADggEBAI60XqSZA66XEQLfT29dc1Q57lsrywNVw1Jc9Ctp2bE5 H0hoRifpBlcDcSX00BktUyTnxEOz4+UvvMcwg26NqE1gdCzJa+8g18IRJYeQIKb4 K+uavbiV2q5fzSm6kcftjdBVKKe8rEy7AKB+7VeeDcAC7Tf0LnYpWBMYNP9JXSpn qiDEBAQCNShFstpHNin6b2ylgqvlURdQcD23VuLJy142qu4D2rLAk3czmd5R1M+T f+1QK7g7+T9GpzqnzYY+9KO+RskA6+PoQLggUr3Z3amJ5WdBeuFD6oI6h3VHY4op 82PoaxLlrmSV2qmuQ4CpegJoL98k/F6GjWRBP4V8Z24= -----END CERTIFICATE-----Generated at Mon Oct 27 10:01:21 2025 by rpki-client