$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa File: 3130332e32342e37322e302f32322d3232203d3e203436303631.roa (raw, json) Hash identifier: yr0MNMuQ/IlUxBG9BJkWSvncA4WzNuZMrgeTlRsfQrw= Subject key identifier: D4:6B:43:56:FB:DA:4A:7C:FC:A7:74:FE:34:3B:8C:77:99:57:59:46 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 6D68E115288A044E9C618DAE9DE72242E9B16893 Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa Signing time: Wed 03 Sep 2025 09:01:07 +0000 ROA not before: Wed 03 Sep 2025 08:56:07 +0000 ROA not after: Wed 02 Sep 2026 09:01:07 +0000 asID: 46061 IP address blocks: 103.24.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 03:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:68:e1:15:28:8a:04:4e:9c:61:8d:ae:9d:e7:22:42:e9:b1:68:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Sep 3 08:56:07 2025 GMT Not After : Sep 2 09:01:07 2026 GMT Subject: CN=D46B4356FBDA4A7CFCA774FE343B8C7799575946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:93:cb:e2:26:62:0f:4b:cc:56:9f:98:39:9c: 6a:71:19:a2:3f:06:19:33:a2:5b:9b:e0:4f:9a:17: 97:78:e4:2e:14:fd:e9:cb:42:2a:1a:8d:60:ef:2f: e9:be:a2:84:60:b9:28:f7:d9:97:12:be:52:f0:4b: 2e:b5:d8:91:ee:3e:be:3f:0e:01:1a:6b:ba:03:36: 48:8d:7b:c0:a7:65:c0:a9:5f:ee:b3:aa:98:01:1b: 9e:b6:fc:ec:ee:8d:19:bb:63:48:6a:b0:1b:0f:ea: 4e:25:56:4e:6f:d1:0c:65:c2:e8:2b:21:e5:a0:e1: 09:e0:de:ad:1c:81:d7:6a:61:5f:10:0c:f6:1b:ec: e7:3b:50:08:9d:ba:c2:7e:e4:c5:38:75:1b:08:e4: 5e:a2:e4:45:6d:52:54:a4:ce:1b:0f:8e:17:3a:39: d9:1f:03:08:aa:8d:49:e9:9f:e8:02:4c:ca:a9:d4: 9a:13:26:ed:4e:75:42:38:65:89:dd:b2:37:0b:16: 43:45:76:ec:3e:7b:46:ba:f8:4d:54:4b:5f:38:3d: 02:77:2d:49:8d:2e:64:68:3e:d8:af:1e:d5:1f:c9: 9f:40:37:32:9d:8a:41:d3:9a:7c:8a:ee:58:56:6b: 23:f7:cc:41:6f:aa:41:42:85:99:8b:9d:09:cc:97: 2b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6B:43:56:FB:DA:4A:7C:FC:A7:74:FE:34:3B:8C:77:99:57:59:46 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.72.0/22 Signature Algorithm: sha256WithRSAEncryption 43:ab:3d:ae:6a:8b:f4:bd:41:70:8b:dd:f4:f0:e6:b5:b0:bb: de:08:89:8e:41:d7:e0:5f:47:8f:de:57:0a:79:3c:a3:ac:5d: 55:ce:91:a8:10:92:cc:8a:6e:27:4d:d8:b3:79:a4:e3:d6:e6: 12:7a:15:3e:60:3a:94:47:df:04:77:99:e9:be:09:3c:4f:6a: ce:a4:7a:93:63:bc:e5:d9:63:b3:92:8e:65:71:7c:0b:98:63: 70:ce:a1:ee:b6:69:43:31:cb:f9:5e:59:36:5e:e2:88:7a:5a: 89:bc:f9:d8:86:36:ea:ba:9d:ac:23:f1:42:2e:d3:2e:61:13: 4e:a9:fd:14:79:18:4d:5e:ee:a5:fd:1c:af:76:56:33:96:d0: 40:56:fd:8d:65:b2:8d:df:ea:26:ca:cb:bb:c4:8a:0d:6b:6a: 77:f4:4d:c8:8d:49:b7:86:4b:ef:46:c3:14:3d:88:80:34:21: 8e:27:c3:eb:ce:56:92:4d:8c:14:2e:c8:94:9b:44:55:b7:f6: 29:11:42:d7:b0:02:88:dd:fe:1f:63:9f:a2:73:34:18:cd:f8: af:56:ad:a6:9a:e6:86:b3:9f:dd:5b:11:40:c4:b3:8a:11:56: 95:62:22:15:0c:26:46:30:74:3f:d7:37:fa:f6:3d:d6:7c:b2: 22:0c:56:46 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbWjhFSiKBE6cYY2uneciQumxaJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNTA5MDMwODU2MDdaFw0yNjA5MDIwOTAxMDdaMDMxMTAvBgNV BAMTKEQ0NkI0MzU2RkJEQTRBN0NGQ0E3NzRGRTM0M0I4Qzc3OTk1NzU5NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCek8viJmIPS8xWn5g5nGpxGaI/ Bhkzolub4E+aF5d45C4U/enLQioajWDvL+m+ooRguSj32ZcSvlLwSy612JHuPr4/ DgEaa7oDNkiNe8CnZcCpX+6zqpgBG562/OzujRm7Y0hqsBsP6k4lVk5v0Qxlwugr IeWg4Qng3q0cgddqYV8QDPYb7Oc7UAidusJ+5MU4dRsI5F6i5EVtUlSkzhsPjhc6 OdkfAwiqjUnpn+gCTMqp1JoTJu1OdUI4ZYndsjcLFkNFduw+e0a6+E1US184PQJ3 LUmNLmRoPtivHtUfyZ9ANzKdikHTmnyK7lhWayP3zEFvqkFChZmLnQnMlyslAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1GtDVvvaSnz8p3T+NDuMd5lXWUYwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMxMzAzMzJlMzIzNDJlMzczMjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnGEgwDQYJKoZIhvcN AQELBQADggEBAEOrPa5qi/S9QXCL3fTw5rWwu94IiY5B1+BfR4/eVwp5PKOsXVXO kagQksyKbidN2LN5pOPW5hJ6FT5gOpRH3wR3mem+CTxPas6kepNjvOXZY7OSjmVx fAuYY3DOoe62aUMxy/leWTZe4oh6Wom8+diGNuq6nawj8UIu0y5hE06p/RR5GE1e 7qX9HK92VjOW0EBW/Y1lso3f6ibKy7vEig1ranf0TciNSbeGS+9GwxQ9iIA0IY4n w+vOVpJNjBQuyJSbRFW39ikRQtewAojd/h9jn6JzNBjN+K9Wraaa5oazn91bEUDE s4oRVpViIhUMJkYwdD/XN/r2PdZ8siIMVkY= -----END CERTIFICATE-----Generated at Mon Sep 8 12:14:47 2025 by rpki-client