$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa File: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (raw, json) Hash identifier: /26G7paj90BYpA/7obbRkQ0e5IpXJm+V8bRm2IMmu/M= Subject key identifier: 85:E0:C4:7A:71:71:4A:51:92:4A:90:0D:92:D9:CD:09:E3:4D:10:36 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 3DAA561E7AC3AE12BBCBE1AB2CC12FD9BAD33446 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa Signing time: Wed 03 Sep 2025 06:00:01 +0000 ROA not before: Wed 03 Sep 2025 05:55:01 +0000 ROA not after: Wed 02 Sep 2026 06:00:01 +0000 asID: 141596 IP address blocks: 103.160.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 06:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:aa:56:1e:7a:c3:ae:12:bb:cb:e1:ab:2c:c1:2f:d9:ba:d3:34:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Sep 3 05:55:01 2025 GMT Not After : Sep 2 06:00:01 2026 GMT Subject: CN=85E0C47A71714A51924A900D92D9CD09E34D1036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:34:24:b5:a0:33:25:cd:18:b5:5e:46:93:fd: b8:ed:a3:7d:45:44:61:eb:e5:c0:ef:35:fb:b0:a3: 08:12:30:82:0a:f3:7d:9f:12:f5:09:15:9d:d8:b9: c4:f0:2a:09:3c:1e:68:fc:50:32:68:85:4e:f5:5c: ef:5a:86:d8:ee:2e:bf:30:ef:bd:8a:12:92:d2:db: 59:1f:60:4f:2f:9e:3a:e2:84:9d:4b:a4:69:7b:53: d3:08:84:53:fb:d6:d2:e0:10:2d:7c:c8:2a:fe:3b: 80:d5:08:a8:ac:1e:1e:cd:4e:aa:24:84:cc:fb:d3: e0:95:12:02:68:b8:f0:3b:82:8d:3e:8b:59:5e:66: 49:e9:66:2b:f6:ca:a2:62:09:a1:ea:de:23:32:fa: cc:70:4c:31:c7:40:1f:d7:d0:6b:5a:09:a9:0c:91: dc:17:98:a2:f9:e7:19:85:af:7a:88:c7:f6:ec:bc: c8:36:68:ba:b0:a2:e0:5c:68:e8:23:9a:b3:2b:c2: 8c:eb:a0:1d:ce:12:e3:d4:e5:0a:59:25:d4:cd:11: e1:14:e2:4f:20:a2:55:23:a9:16:1a:3f:95:12:e7: b7:2d:ca:7e:2e:e1:bb:4d:85:a9:8b:af:08:8d:e0: 83:16:71:e7:95:0e:4d:cd:e6:5f:09:1f:bd:34:c9: 79:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E0:C4:7A:71:71:4A:51:92:4A:90:0D:92:D9:CD:09:E3:4D:10:36 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/24 Signature Algorithm: sha256WithRSAEncryption 68:c5:02:10:6c:8b:ca:d3:71:22:77:74:fe:c1:86:10:9e:fe: 6f:d8:33:c0:2d:ab:6c:68:92:6b:37:c2:48:fc:ef:91:b5:39: cc:79:31:f4:09:ed:a3:dd:04:6e:8c:dc:f8:97:fa:a9:b2:6f: 35:27:f0:c9:33:06:90:5c:c2:57:4b:3e:36:4b:06:f1:01:71: e4:fa:9f:7b:b7:7a:ee:f8:ac:47:e1:c4:1c:63:17:c1:52:88: 76:6b:8e:37:33:ea:e5:1f:d6:84:77:72:17:a5:86:54:b7:eb: af:1e:1b:73:25:e2:ac:5e:0a:21:64:3c:b0:c8:93:b8:4b:39: 99:6b:c7:fc:dd:db:79:07:a8:52:6c:27:5d:49:c2:10:6f:5a: 09:58:59:76:12:98:2c:55:a0:af:e7:72:d0:5e:5f:44:57:37: 6e:80:be:26:e9:82:85:ee:56:b3:fd:97:d6:bd:1b:42:ba:56: 42:7f:44:bc:7e:c3:f4:fd:15:1b:ad:84:95:56:14:42:92:2c: 1d:ab:03:77:1d:32:39:a0:cb:da:8e:55:23:fb:ff:10:59:53: 62:4a:6d:97:44:43:11:16:a0:76:44:46:12:25:cb:bb:d2:84: 4f:e6:62:6e:ad:85:5e:aa:62:86:68:22:cf:c0:7c:6c:e6:4a: c4:d5:a0:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPapWHnrDrhK7y+GrLMEv2brTNEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTA5MDMwNTU1MDFaFw0yNjA5MDIwNjAwMDFaMDMxMTAvBgNV BAMTKDg1RTBDNDdBNzE3MTRBNTE5MjRBOTAwRDkyRDlDRDA5RTM0RDEwMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXNCS1oDMlzRi1XkaT/bjto31F RGHr5cDvNfuwowgSMIIK832fEvUJFZ3YucTwKgk8Hmj8UDJohU71XO9ahtjuLr8w 772KEpLS21kfYE8vnjrihJ1LpGl7U9MIhFP71tLgEC18yCr+O4DVCKisHh7NTqok hMz70+CVEgJouPA7go0+i1leZknpZiv2yqJiCaHq3iMy+sxwTDHHQB/X0GtaCakM kdwXmKL55xmFr3qIx/bsvMg2aLqwouBcaOgjmrMrwozroB3OEuPU5QpZJdTNEeEU 4k8golUjqRYaP5US57ctyn4u4btNhamLrwiN4IMWceeVDk3N5l8JH700yXmjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUheDEenFxSlGSSpANktnNCeNNEDYwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6AoMA0GCSqG SIb3DQEBCwUAA4IBAQBoxQIQbIvK03Eid3T+wYYQnv5v2DPALatsaJJrN8JI/O+R tTnMeTH0Ce2j3QRujNz4l/qpsm81J/DJMwaQXMJXSz42SwbxAXHk+p97t3ru+KxH 4cQcYxfBUoh2a443M+rlH9aEd3IXpYZUt+uvHhtzJeKsXgohZDywyJO4SzmZa8f8 3dt5B6hSbCddScIQb1oJWFl2EpgsVaCv53LQXl9EVzdugL4m6YKF7laz/ZfWvRtC ulZCf0S8fsP0/RUbrYSVVhRCkiwdqwN3HTI5oMvajlUj+/8QWVNiSm2XREMRFqB2 REYSJcu70oRP5mJurYVeqmKGaCLPwHxs5krE1aDW -----END CERTIFICATE-----Generated at Sun Sep 7 16:24:48 2025 by rpki-client