$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/3130332e3137392e37332e302f32342d3234203d3e2039333431.roa File: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 36hFp4MNqRDgFjqepz99CP3U7evoSejJQb+GMWj9djo= Subject key identifier: A3:F2:3C:1F:4C:96:64:68:73:1E:0E:0F:DE:95:08:05:E2:A1:D3:0D Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 3B308300248BB59375FA8266DE38A8B9A2EB5E6A Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/3130332e3137392e37332e302f32342d3234203d3e2039333431.roa Signing time: Thu 05 Jun 2025 07:00:00 +0000 ROA not before: Thu 05 Jun 2025 06:55:00 +0000 ROA not after: Thu 04 Jun 2026 07:00:00 +0000 asID: 9341 IP address blocks: 103.179.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 10:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:30:83:00:24:8b:b5:93:75:fa:82:66:de:38:a8:b9:a2:eb:5e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Jun 5 06:55:00 2025 GMT Not After : Jun 4 07:00:00 2026 GMT Subject: CN=A3F23C1F4C966468731E0E0FDE950805E2A1D30D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:df:16:6b:aa:70:89:ed:25:6a:3d:38:52:5d: 67:f2:b7:c0:29:94:b6:da:22:7a:22:68:d9:28:6b: 57:59:7e:55:ba:3c:8e:a3:a5:4b:4e:d9:55:25:b4: b6:65:0c:8d:ee:1b:c5:f6:36:f4:ac:9d:b8:dc:43: 54:0a:92:01:56:91:37:54:55:f2:5c:42:ad:d0:7e: c8:75:2c:24:8c:ce:b5:29:86:a1:13:ef:4c:73:36: b8:34:ad:ba:38:1c:ed:12:dc:99:3c:ac:9d:89:fe: af:0d:3c:2b:73:5b:d2:57:77:e5:23:6b:b6:e3:a0: 92:03:9b:fd:eb:ad:3f:70:0d:46:d7:ce:3f:aa:f2: ca:15:40:25:1e:31:e7:ec:93:3f:79:f7:85:3d:97: f1:16:85:b7:dd:45:3f:4a:07:63:2a:88:80:34:98: ff:7a:47:0c:a3:40:bf:af:10:d5:9d:3c:30:53:6b: f3:56:b4:cc:24:dc:5e:0e:90:bd:ad:4e:bf:b4:45: 12:7f:db:f0:f4:7c:e4:11:13:61:d6:a1:cf:3c:4a: 55:09:ce:33:15:94:c9:ac:32:f2:71:ac:56:51:be: 23:d9:4c:cc:bc:f1:ab:89:34:8e:95:ce:4b:5d:84: 77:36:09:75:22:85:0a:50:f2:98:97:89:44:8f:80: 61:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F2:3C:1F:4C:96:64:68:73:1E:0E:0F:DE:95:08:05:E2:A1:D3:0D X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/3130332e3137392e37332e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.73.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:eb:49:f3:d2:41:06:45:53:9f:54:fa:dd:31:c6:0d:f9:d8: 9b:a5:d2:77:78:05:17:88:80:aa:58:9d:8a:d8:fd:e4:a5:21: 5e:89:fe:cc:84:66:51:6c:29:83:ce:7e:2b:70:50:8c:2d:58: 8c:b0:ef:c0:3d:10:ac:fd:09:94:35:d0:28:80:b7:c7:10:24: 17:75:e8:0f:19:1d:36:45:a9:b3:e7:8d:2d:9b:b9:eb:af:ed: 35:98:2e:b3:1f:34:48:e2:a3:37:6b:7a:02:72:60:65:e6:d0: fb:1c:46:34:a3:35:41:fa:65:78:63:09:21:f8:56:3f:ee:df: 56:49:b0:f9:73:5b:9c:29:81:ff:a5:ee:59:47:65:29:31:64: cd:28:3c:dc:f4:b8:f8:eb:26:4d:51:c9:8a:48:ff:23:79:27: 5c:83:77:27:63:e3:22:7c:e5:1c:b1:25:26:72:c9:93:02:77: dc:fc:05:b5:61:dd:77:92:f8:7c:86:e2:4f:48:39:cc:6b:95: 65:31:3a:a3:29:d6:73:0a:cc:bc:11:f5:48:93:2e:18:02:2e: 01:e4:bf:cf:a3:e4:5e:72:9d:5b:1d:5a:4b:db:69:2e:72:75: 08:8d:1a:04:61:d7:22:a8:d1:09:68:a2:17:37:07:7a:5b:bc: eb:50:21:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOzCDACSLtZN1+oJm3jiouaLrXmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTA2MDUwNjU1MDBaFw0yNjA2MDQwNzAwMDBaMDMxMTAvBgNV BAMTKEEzRjIzQzFGNEM5NjY0Njg3MzFFMEUwRkRFOTUwODA1RTJBMUQzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt3xZrqnCJ7SVqPThSXWfyt8Ap lLbaInoiaNkoa1dZflW6PI6jpUtO2VUltLZlDI3uG8X2NvSsnbjcQ1QKkgFWkTdU VfJcQq3Qfsh1LCSMzrUphqET70xzNrg0rbo4HO0S3Jk8rJ2J/q8NPCtzW9JXd+Uj a7bjoJIDm/3rrT9wDUbXzj+q8soVQCUeMefskz9594U9l/EWhbfdRT9KB2MqiIA0 mP96RwyjQL+vENWdPDBTa/NWtMwk3F4OkL2tTr+0RRJ/2/D0fOQRE2HWoc88SlUJ zjMVlMmsMvJxrFZRviPZTMy88auJNI6VzktdhHc2CXUihQpQ8piXiUSPgGFrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUo/I8H0yWZGhzHg4P3pUIBeKh0w0wHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxYWI4YTU4LWYxM2YtNGY3MS05 ZGRlLWFlZDU3ZWE2ZGNhNy8wLzMxMzAzMzJlMzEzNzM5MmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABns0kwDQYJKoZIhvcN AQELBQADggEBAArrSfPSQQZFU59U+t0xxg352Jul0nd4BReIgKpYnYrY/eSlIV6J /syEZlFsKYPOfitwUIwtWIyw78A9EKz9CZQ10CiAt8cQJBd16A8ZHTZFqbPnjS2b ueuv7TWYLrMfNEjiozdregJyYGXm0PscRjSjNUH6ZXhjCSH4Vj/u31ZJsPlzW5wp gf+l7llHZSkxZM0oPNz0uPjrJk1RyYpI/yN5J1yDdydj4yJ85RyxJSZyyZMCd9z8 BbVh3XeS+HyG4k9IOcxrlWUxOqMp1nMKzLwR9UiTLhgCLgHkv8+j5F5ynVsdWkvb aS5ydQiNGgRh1yKo0Qloohc3B3pbvOtQIVc= -----END CERTIFICATE-----Generated at Wed Oct 29 21:13:52 2025 by rpki-client