$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa File: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (raw, json) Hash identifier: RNQYxKN0Nubn/ygqO8rH37j/P4lI+9FQ1kXn5iYtC0w= Subject key identifier: 04:FA:B7:3B:2B:34:35:0C:C7:EF:EA:93:FB:52:16:C0:6E:F9:78:49 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 6BD1A560049221545887DB0A1FE7073B242712BC Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa Signing time: Wed 03 Sep 2025 20:00:01 +0000 ROA not before: Wed 03 Sep 2025 19:55:01 +0000 ROA not after: Wed 02 Sep 2026 20:00:01 +0000 asID: 141596 IP address blocks: 103.160.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 06:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d1:a5:60:04:92:21:54:58:87:db:0a:1f:e7:07:3b:24:27:12:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Sep 3 19:55:01 2025 GMT Not After : Sep 2 20:00:01 2026 GMT Subject: CN=04FAB73B2B34350CC7EFEA93FB5216C06EF97849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bb:e9:88:38:e0:60:2b:a8:f5:c5:d0:cc:53: e7:c7:88:97:8b:d8:7a:f4:18:f7:0e:8c:55:18:ad: 9f:ac:c5:62:0b:4e:40:79:54:4b:e0:a9:83:c9:d9: 9e:58:d6:7f:94:ad:1b:a4:65:ef:ec:bf:6f:d8:ec: a1:e7:71:82:54:9d:d7:a4:41:ac:43:78:86:3d:7b: d6:00:50:22:75:1a:28:13:d6:c1:d6:d3:7c:46:16: dc:e4:44:3a:f6:27:85:03:c7:73:28:10:68:0b:2d: ae:04:ae:cc:3c:56:73:31:32:42:36:15:ce:e6:6a: 6e:5f:ca:80:d9:a9:73:86:9c:67:64:d9:8b:46:2a: 43:06:d0:b4:e6:62:e8:6e:7b:3e:06:d6:8e:21:1b: 62:e7:bb:07:e8:81:f8:8b:1a:cb:e2:32:89:3e:70: 6c:49:13:4e:88:bd:23:c0:f4:10:8c:b6:6f:f6:98: d3:eb:14:47:a8:09:13:7b:b0:b1:51:a8:3f:a0:7c: bb:69:47:fc:5a:54:7c:d2:25:a4:5f:76:6b:c5:cb: ea:45:c4:01:84:5b:ea:32:ee:43:59:3a:14:07:dc: 2e:88:95:b3:b1:e9:3a:ea:e3:01:6a:2f:ca:67:5e: 38:f7:e2:2d:ca:2d:8f:8b:60:6f:e5:c3:63:6b:55: f0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FA:B7:3B:2B:34:35:0C:C7:EF:EA:93:FB:52:16:C0:6E:F9:78:49 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/23 Signature Algorithm: sha256WithRSAEncryption 93:99:e8:cc:36:e0:c6:d3:35:96:90:6c:84:a5:46:7e:1d:33: 99:04:75:e4:f9:1b:a4:82:2c:25:d9:fc:13:28:dd:d6:94:f5: 47:22:71:58:ed:eb:f2:72:5e:d0:c1:9c:dd:4d:22:8d:29:a1: e4:f1:60:5f:c8:7f:35:2f:6b:43:fd:c3:ab:fe:ef:3e:da:2d: c1:b1:28:95:55:5d:e1:39:8b:5e:5f:0d:6a:8f:2c:74:0c:09: b1:79:cd:d5:b1:88:58:a3:b1:ff:17:c3:e1:20:71:4f:91:be: 27:16:24:29:2e:e6:fa:e5:fd:26:19:dc:3a:66:68:aa:c6:a2: 92:ca:2c:43:77:9e:a0:8a:23:ab:91:d5:e9:55:4c:af:88:17: 64:43:0f:4a:86:e9:6d:fb:50:54:d7:b2:f3:79:94:87:40:d4: e3:e3:f4:bb:19:5a:9b:3c:cd:9e:e9:8e:5e:2e:fe:b2:2e:da: a9:8a:3b:87:41:61:34:e4:94:6a:c7:14:43:2e:64:85:4d:dd: 85:1e:a7:db:5c:04:da:5f:9c:b9:ef:36:39:5d:a7:a3:8d:ea: 9d:c2:7a:2a:db:22:d3:37:b9:74:ab:63:11:72:19:44:ce:5c: b8:9e:f6:1e:84:19:8a:fd:43:69:fd:1f:87:bc:37:62:bb:66: a7:6c:36:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa9GlYASSIVRYh9sKH+cHOyQnErwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTA5MDMxOTU1MDFaFw0yNjA5MDIyMDAwMDFaMDMxMTAvBgNV BAMTKDA0RkFCNzNCMkIzNDM1MENDN0VGRUE5M0ZCNTIxNkMwNkVGOTc4NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWu+mIOOBgK6j1xdDMU+fHiJeL 2Hr0GPcOjFUYrZ+sxWILTkB5VEvgqYPJ2Z5Y1n+UrRukZe/sv2/Y7KHncYJUndek QaxDeIY9e9YAUCJ1GigT1sHW03xGFtzkRDr2J4UDx3MoEGgLLa4Ersw8VnMxMkI2 Fc7mam5fyoDZqXOGnGdk2YtGKkMG0LTmYuhuez4G1o4hG2LnuwfogfiLGsviMok+ cGxJE06IvSPA9BCMtm/2mNPrFEeoCRN7sLFRqD+gfLtpR/xaVHzSJaRfdmvFy+pF xAGEW+oy7kNZOhQH3C6IlbOx6Trq4wFqL8pnXjj34i3KLY+LYG/lw2NrVfAfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBPq3Oys0NQzH7+qT+1IWwG75eEkwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6AoMA0GCSqG SIb3DQEBCwUAA4IBAQCTmejMNuDG0zWWkGyEpUZ+HTOZBHXk+Rukgiwl2fwTKN3W lPVHInFY7evycl7QwZzdTSKNKaHk8WBfyH81L2tD/cOr/u8+2i3BsSiVVV3hOYte Xw1qjyx0DAmxec3VsYhYo7H/F8PhIHFPkb4nFiQpLub65f0mGdw6ZmiqxqKSyixD d56giiOrkdXpVUyviBdkQw9Khult+1BU17LzeZSHQNTj4/S7GVqbPM2e6Y5eLv6y LtqpijuHQWE05JRqxxRDLmSFTd2FHqfbXATaX5y57zY5Xaejjeqdwnoq2yLTN7l0 q2MRchlEzly4nvYehBmK/UNp/R+HvDdiu2anbDbw -----END CERTIFICATE-----Generated at Sun Sep 7 16:15:29 2025 by rpki-client