$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32332d3233203d3e203436303631.roa File: 3130332e32342e37322e302f32332d3233203d3e203436303631.roa (raw, json) Hash identifier: 4EhIBVtTUnA2NsufqUE56qVJQ8W9fy5ksrwQzL7c16E= Subject key identifier: 66:0C:BA:77:CA:B9:68:D5:86:39:DC:34:D8:3B:6B:3F:7A:62:8C:09 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 42A203F82164ABFDCD29CC663C946F1EB6CEF084 Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32332d3233203d3e203436303631.roa Signing time: Wed 03 Sep 2025 16:00:03 +0000 ROA not before: Wed 03 Sep 2025 15:55:03 +0000 ROA not after: Wed 02 Sep 2026 16:00:03 +0000 asID: 46061 IP address blocks: 103.24.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 03:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a2:03:f8:21:64:ab:fd:cd:29:cc:66:3c:94:6f:1e:b6:ce:f0:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Sep 3 15:55:03 2025 GMT Not After : Sep 2 16:00:03 2026 GMT Subject: CN=660CBA77CAB968D58639DC34D83B6B3F7A628C09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5f:de:0a:96:f0:97:06:09:4e:da:78:08:69: 31:5a:fb:b0:b2:eb:72:7b:05:05:cb:fd:91:33:7d: b4:1f:2f:5b:f3:ae:ff:89:30:43:ff:33:58:97:a6: 04:9e:37:83:81:49:e5:b5:45:35:3f:2a:c4:9d:92: 40:4c:db:ad:96:ea:a7:a4:38:d0:7b:3e:70:69:ff: df:3f:71:69:31:89:ff:aa:d7:23:b7:e6:62:08:87: 73:8d:8a:70:76:35:e8:39:a3:33:1b:d3:75:b7:1e: e7:4b:4e:38:6d:5c:42:bd:b4:a4:e3:c3:8a:fd:60: 9b:50:b0:f9:99:c2:87:b7:29:dc:e8:6a:26:1c:25: c1:0c:40:97:11:a0:b6:6e:aa:18:9b:27:5f:ce:42: 3c:2d:c6:db:5b:23:a8:a7:56:92:78:2a:2d:33:12: 79:0d:bb:d3:12:66:53:4a:4b:e8:1b:da:9e:ae:cb: 3f:4f:3b:83:15:2b:ee:ae:35:df:ea:87:49:eb:28: 44:8e:20:5f:e7:58:86:8f:95:d9:bf:c5:27:f8:80: d2:d8:1d:48:5d:d5:97:e4:fc:c9:a2:56:1f:f9:25: 87:15:76:25:8d:15:2e:92:15:e8:44:4a:5d:39:80: 74:ff:d6:1a:fa:60:9e:ce:5c:8f:9f:20:be:6b:07: b9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0C:BA:77:CA:B9:68:D5:86:39:DC:34:D8:3B:6B:3F:7A:62:8C:09 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32332d3233203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.72.0/23 Signature Algorithm: sha256WithRSAEncryption 61:71:7a:ad:19:13:29:72:72:1b:74:48:bb:df:3c:ae:a5:b4: 32:ec:e9:dc:d6:45:e5:7c:84:1e:0e:56:41:bb:b5:cf:94:23: 59:b0:31:32:93:6b:5d:75:94:35:1b:0c:54:a9:ba:76:b3:1b: 18:2e:60:24:3f:0b:25:e9:58:78:4d:9f:a6:0b:b7:0a:25:7e: b0:2e:20:40:c2:bd:06:d5:1e:cb:e5:15:7d:9e:4c:73:6a:c0: c1:98:f8:f4:cc:06:64:d2:e0:d9:90:7e:dc:f8:23:d9:59:19: c0:75:0d:55:60:fe:9e:e1:b6:28:d0:41:f3:eb:65:66:f4:2c: 7c:ac:ac:52:ce:ab:85:fa:6a:5c:93:9b:2e:ef:a2:d3:29:64: 18:aa:e5:55:2b:91:c5:33:a6:a1:27:67:1b:8c:8f:1b:ee:f8: 0c:b5:34:73:6c:5d:8e:82:48:7c:24:e4:26:d5:75:fe:9f:db: 1e:f1:1c:b0:dd:c8:4c:2b:bd:0c:68:fe:41:a4:7f:24:11:46: a6:0e:02:21:da:ef:91:4c:43:84:94:5f:e3:ab:cd:97:16:e7: e0:b0:7d:21:3c:50:b1:e5:aa:fa:e5:d5:7b:52:2c:90:9a:b3: 7d:65:ee:82:9e:34:9d:04:20:5c:90:52:4f:77:f3:41:21:3e: d6:c2:03:ae -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQqID+CFkq/3NKcxmPJRvHrbO8IQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNTA5MDMxNTU1MDNaFw0yNjA5MDIxNjAwMDNaMDMxMTAvBgNV BAMTKDY2MENCQTc3Q0FCOTY4RDU4NjM5REMzNEQ4M0I2QjNGN0E2MjhDMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVX94KlvCXBglO2ngIaTFa+7Cy 63J7BQXL/ZEzfbQfL1vzrv+JMEP/M1iXpgSeN4OBSeW1RTU/KsSdkkBM262W6qek ONB7PnBp/98/cWkxif+q1yO35mIIh3ONinB2Neg5ozMb03W3HudLTjhtXEK9tKTj w4r9YJtQsPmZwoe3KdzoaiYcJcEMQJcRoLZuqhibJ1/OQjwtxttbI6inVpJ4Ki0z EnkNu9MSZlNKS+gb2p6uyz9PO4MVK+6uNd/qh0nrKESOIF/nWIaPldm/xSf4gNLY HUhd1Zfk/MmiVh/5JYcVdiWNFS6SFehESl05gHT/1hr6YJ7OXI+fIL5rB7mBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZgy6d8q5aNWGOdw02DtrP3pijAkwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMxMzAzMzJlMzIzNDJlMzczMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnGEgwDQYJKoZIhvcN AQELBQADggEBAGFxeq0ZEylycht0SLvfPK6ltDLs6dzWReV8hB4OVkG7tc+UI1mw MTKTa111lDUbDFSpunazGxguYCQ/CyXpWHhNn6YLtwolfrAuIEDCvQbVHsvlFX2e THNqwMGY+PTMBmTS4NmQftz4I9lZGcB1DVVg/p7htijQQfPrZWb0LHysrFLOq4X6 alyTmy7votMpZBiq5VUrkcUzpqEnZxuMjxvu+Ay1NHNsXY6CSHwk5CbVdf6f2x7x HLDdyEwrvQxo/kGkfyQRRqYOAiHa75FMQ4SUX+OrzZcW5+CwfSE8ULHlqvrl1XtS LJCas31l7oKeNJ0EIFyQUk9380EhPtbCA64= -----END CERTIFICATE-----Generated at Mon Sep 8 12:14:45 2025 by rpki-client