$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa File: 3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa (raw, json) Hash identifier: Um7YNYBxTVjbF3M76ZtkS+WRPG6nd3aZ+YWjDA+f9zA= Subject key identifier: 7E:F4:77:74:9C:EB:08:37:E5:16:8C:71:F5:E5:7E:C2:3A:40:E1:11 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 06AD68BE43BA8C797C1D7E3DBF171812C45C666E Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa Signing time: Fri 02 May 2025 17:00:02 +0000 ROA not before: Fri 02 May 2025 16:55:02 +0000 ROA not after: Fri 01 May 2026 17:00:02 +0000 asID: 136840 IP address blocks: 103.100.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ad:68:be:43:ba:8c:79:7c:1d:7e:3d:bf:17:18:12:c4:5c:66:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: May 2 16:55:02 2025 GMT Not After : May 1 17:00:02 2026 GMT Subject: CN=7EF477749CEB0837E5168C71F5E57EC23A40E111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:cf:57:e7:d9:f8:f8:96:ce:4b:db:12:9f:10: 32:94:b1:4e:59:79:c1:93:94:d9:df:11:16:c0:aa: d6:e7:1f:e8:5c:16:3f:ea:f1:6b:0b:25:3e:5c:bc: d3:60:41:e9:c0:19:a7:23:bf:f2:c8:68:e0:b0:1f: 69:74:82:50:f6:55:8d:5a:14:3a:1b:d4:0f:96:f3: 86:2d:5e:7a:30:e3:49:cf:44:dc:69:67:24:cd:41: 82:6b:a2:0c:94:d3:b7:a8:7a:1b:ec:33:f5:fe:2b: c3:77:3e:a6:f8:e4:c0:1d:31:24:69:96:f3:38:90: 05:17:ba:d2:14:ee:2a:ff:ef:df:be:c3:32:fa:24: 7f:80:93:c6:33:ad:02:bc:4b:9a:43:99:98:75:59: 4d:15:af:b7:c5:2a:78:c3:c4:5d:9e:7f:11:85:28: 58:8b:b0:60:9b:73:f3:02:b9:9d:aa:03:df:93:52: 99:1d:54:7d:0a:af:df:55:d0:a7:53:4d:aa:a0:0f: 1c:fb:31:c1:b6:48:00:d3:4d:67:f3:df:6b:ab:3b: e0:41:d2:36:6d:bc:c5:38:b1:63:e1:03:f7:49:01: 30:d9:53:cd:3b:2c:28:32:d7:3d:83:7f:4b:c0:64: d7:3c:d9:59:e2:b2:ac:31:ba:aa:be:93:0b:8c:17: 23:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F4:77:74:9C:EB:08:37:E5:16:8C:71:F5:E5:7E:C2:3A:40:E1:11 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.180.0/22 Signature Algorithm: sha256WithRSAEncryption b3:26:d0:49:ff:ca:be:3a:ad:1a:b7:8e:85:47:a6:67:0d:44: 23:29:f6:25:28:03:66:50:c0:b9:4c:81:6a:c6:ba:a8:9f:f4: 5c:a8:f5:21:ee:13:cf:32:8b:b3:80:bb:56:10:60:c2:62:70: 87:44:60:b9:af:5d:80:83:2d:78:26:bb:fe:bc:4f:05:0d:88: 7b:d9:a3:11:08:26:39:c0:33:78:e1:93:ef:51:50:53:3c:b5: e1:23:44:8f:6b:c3:51:0d:3f:32:04:c2:6e:0a:35:a5:8f:4b: 90:1a:d8:c2:f5:80:ad:77:39:32:5e:17:9c:e6:13:57:44:a0: 19:14:c3:76:7a:fb:cf:87:26:26:f8:74:df:62:de:a9:e0:e8: 72:c5:2c:9d:19:54:12:ea:3f:fd:62:10:28:ee:7d:73:d5:d9: 91:86:07:66:47:59:1b:89:3f:6d:f3:90:d2:e9:bf:1e:37:b0: ce:cb:c4:99:bc:87:ee:12:ec:90:b4:cf:67:6e:02:d6:98:c2: d9:77:09:9d:4b:a1:36:36:38:de:d8:c5:81:4d:d3:b5:0e:6d: 08:93:5f:60:97:63:d6:b3:d3:4b:78:42:80:74:d6:43:cb:46: 61:73:92:05:3d:d6:6c:09:83:2f:53:ff:8b:48:3b:7d:6a:90: fe:c5:ef:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBq1ovkO6jHl8HX49vxcYEsRcZm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNTA1MDIxNjU1MDJaFw0yNjA1MDExNzAwMDJaMDMxMTAvBgNV BAMTKDdFRjQ3Nzc0OUNFQjA4MzdFNTE2OEM3MUY1RTU3RUMyM0E0MEUxMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxz1fn2fj4ls5L2xKfEDKUsU5Z ecGTlNnfERbAqtbnH+hcFj/q8WsLJT5cvNNgQenAGacjv/LIaOCwH2l0glD2VY1a FDob1A+W84YtXnow40nPRNxpZyTNQYJrogyU07eoehvsM/X+K8N3Pqb45MAdMSRp lvM4kAUXutIU7ir/79++wzL6JH+Ak8YzrQK8S5pDmZh1WU0Vr7fFKnjDxF2efxGF KFiLsGCbc/MCuZ2qA9+TUpkdVH0Kr99V0KdTTaqgDxz7McG2SADTTWfz32urO+BB 0jZtvMU4sWPhA/dJATDZU807LCgy1z2Df0vAZNc82Vnisqwxuqq+kwuMFyNJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfvR3dJzrCDflFoxx9eV+wjpA4REwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZLQwDQYJ KoZIhvcNAQELBQADggEBALMm0En/yr46rRq3joVHpmcNRCMp9iUoA2ZQwLlMgWrG uqif9Fyo9SHuE88yi7OAu1YQYMJicIdEYLmvXYCDLXgmu/68TwUNiHvZoxEIJjnA M3jhk+9RUFM8teEjRI9rw1ENPzIEwm4KNaWPS5Aa2ML1gK13OTJeF5zmE1dEoBkU w3Z6+8+HJib4dN9i3qng6HLFLJ0ZVBLqP/1iECjufXPV2ZGGB2ZHWRuJP23zkNLp vx43sM7LxJm8h+4S7JC0z2duAtaYwtl3CZ1LoTY2ON7YxYFN07UObQiTX2CXY9az 00t4QoB01kPLRmFzkgU91mwJgy9T/4tIO31qkP7F7w8= -----END CERTIFICATE-----Generated at Tue Oct 28 06:23:15 2025 by rpki-client