$ rpki-client -vvf repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa File: 3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: 3t8POxW2mcQ/nvjJPU9gXim41a5qa0GKDf3HQqW/V6Y= Subject key identifier: 3A:20:DE:FE:FC:5E:AE:55:2C:8F:ED:36:46:8A:61:75:59:4E:3D:D6 Certificate issuer: /CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Certificate serial: 4FBC72FD8001477E804A963AF08F157A8E6A2E54 Authority key identifier: A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa Signing time: Mon 23 Jun 2025 05:02:53 +0000 ROA not before: Mon 23 Jun 2025 04:57:53 +0000 ROA not after: Mon 22 Jun 2026 05:02:53 +0000 asID: 9341 IP address blocks: 103.245.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 14:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bc:72:fd:80:01:47:7e:80:4a:96:3a:f0:8f:15:7a:8e:6a:2e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Validity Not Before: Jun 23 04:57:53 2025 GMT Not After : Jun 22 05:02:53 2026 GMT Subject: CN=3A20DEFEFC5EAE552C8FED36468A6175594E3DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:40:cf:ec:ef:14:4e:60:f5:27:28:7c:5a: f1:33:aa:6d:af:0a:81:c5:1f:1e:9a:7b:fb:8f:ba: 56:1b:db:b2:14:de:c6:79:a4:33:9d:ca:ee:86:9e: f5:6d:7f:dc:ee:e7:6b:48:7d:f8:68:a3:17:c1:09: e9:e1:47:6b:36:b7:5a:0f:06:05:ea:e8:8d:79:fb: 80:3a:0c:e2:58:86:9b:c7:ef:2e:f4:50:fe:c4:55: df:fb:7d:3b:69:b2:c0:25:0d:2a:2e:d5:47:b5:df: 50:b5:c2:f2:f7:0a:ce:c3:99:3e:dc:33:6c:27:14: 5a:61:f3:2a:b8:be:96:58:3c:5f:52:02:42:21:8a: c0:20:11:34:38:3f:cd:a4:9a:20:da:5b:9c:9e:b2: 89:72:bb:e9:aa:12:43:c0:77:8f:84:74:f7:69:2d: 90:54:66:1f:42:d0:f5:81:10:cc:fd:2b:c1:4d:e7: f8:9d:80:e1:d9:83:b4:8f:8c:14:59:50:14:e7:e1: 08:4f:8e:19:30:5c:03:42:1b:c0:c2:dc:28:64:7d: 07:e0:27:36:9b:41:56:e8:c4:3b:ed:69:60:59:db: 21:5e:e1:fa:88:a3:80:8e:07:ae:18:3d:ab:fd:18: 36:ea:23:2e:fb:99:bf:bc:2c:75:7a:47:85:76:ae: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:20:DE:FE:FC:5E:AE:55:2C:8F:ED:36:46:8A:61:75:59:4E:3D:D6 X509v3 Authority Key Identifier: keyid:A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.178.0/23 Signature Algorithm: sha256WithRSAEncryption 98:7b:3e:5c:93:0a:82:f4:f3:23:43:93:29:e7:1a:df:96:ac: 2d:ce:3d:3a:09:c5:33:b2:7a:bc:a5:8e:8f:19:e0:21:6d:45: e4:d6:d1:98:a3:3c:d1:70:2e:25:e0:28:76:9d:9d:0b:f6:df: 4a:36:3a:fe:76:87:f8:73:c4:76:ba:04:66:53:3b:c9:25:cc: 1a:15:dc:1b:c4:f9:da:91:38:44:09:09:5e:91:94:f1:b0:5f: ce:99:2a:0c:ff:26:57:b2:97:d5:8b:16:e8:d0:86:32:82:5e: 89:e5:5c:c0:54:cb:d4:09:f8:3f:82:08:d3:3b:7e:b9:17:9a: 11:e6:47:e6:ee:be:d3:ce:56:96:3c:e0:f1:e0:4c:74:03:b5: a2:44:87:7b:9f:c6:75:58:5e:8f:c6:38:31:94:80:a6:4b:91: 7f:e9:46:0b:07:96:9a:48:ff:32:20:c3:cc:17:06:14:59:ec: 57:14:ba:f7:07:8c:2e:1d:87:b1:ca:b8:23:30:ae:c5:22:19: 95:cc:99:96:5d:e5:c8:17:9e:cb:02:c4:d6:de:bd:ad:41:0f: 91:09:6c:f8:9b:ce:54:c3:f1:70:11:84:99:14:e9:f9:bd:f3: 3c:be:b8:07:80:a4:d2:1d:d7:e8:87:52:84:ec:7c:eb:29:b4: 57:90:b8:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT7xy/YABR36ASpY68I8Veo5qLlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVE Mjg2RkRDOTAeFw0yNTA2MjMwNDU3NTNaFw0yNjA2MjIwNTAyNTNaMDMxMTAvBgNV BAMTKDNBMjBERUZFRkM1RUFFNTUyQzhGRUQzNjQ2OEE2MTc1NTk0RTNERDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ5EDP7O8UTmD1Jyh8WvEzqm2v CoHFHx6ae/uPulYb27IU3sZ5pDOdyu6GnvVtf9zu52tIffhooxfBCenhR2s2t1oP BgXq6I15+4A6DOJYhpvH7y70UP7EVd/7fTtpssAlDSou1Ue131C1wvL3Cs7DmT7c M2wnFFph8yq4vpZYPF9SAkIhisAgETQ4P82kmiDaW5yesolyu+mqEkPAd4+EdPdp LZBUZh9C0PWBEMz9K8FN5/idgOHZg7SPjBRZUBTn4QhPjhkwXANCG8DC3ChkfQfg JzabQVboxDvtaWBZ2yFe4fqIo4COB64YPav9GDbqIy77mb+8LHV6R4V2rhThAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOiDe/vxerlUsj+02RophdVlOPdYwHwYDVR0j BBgwFoAUphWFh0cpxYu2J0BpK6j6btKG/ckwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzBjNDc1OS00M2I4LTRlODAtYmU4Yy04M2NiZTlmODIzMWIvMC9BNjE1ODU4NzQ3 MjlDNThCQjYyNzQwNjkyQkE4RkE2RUQyODZGREM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVEMjg2 RkRDOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MGM0NzU5LTQzYjgtNGU4MC1i ZThjLTgzY2JlOWY4MjMxYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1sjANBgkqhkiG 9w0BAQsFAAOCAQEAmHs+XJMKgvTzI0OTKeca35asLc49OgnFM7J6vKWOjxngIW1F 5NbRmKM80XAuJeAodp2dC/bfSjY6/naH+HPEdroEZlM7ySXMGhXcG8T52pE4RAkJ XpGU8bBfzpkqDP8mV7KX1YsW6NCGMoJeieVcwFTL1An4P4II0zt+uReaEeZH5u6+ 085Wljzg8eBMdAO1okSHe5/GdVhej8Y4MZSApkuRf+lGCweWmkj/MiDDzBcGFFns VxS69weMLh2Hscq4IzCuxSIZlcyZll3lyBeeywLE1t69rUEPkQls+JvOVMPxcBGE mRTp+b3zPL64B4Ck0h3X6IdShOx86ym0V5C4NA== -----END CERTIFICATE-----Generated at Wed Oct 29 21:13:51 2025 by rpki-client