$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: yz7KoAXsbF5ZqTXQr0wN32L4YkceTPCN36RTUDHDNIE= Subject key identifier: 7F:91:F3:3A:9B:6B:5C:97:35:3A:21:A2:5A:EE:CD:43:7D:89:41:AF Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 21BA9851C5C080F5449B27284C1D94F819220954 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa Signing time: Mon 02 Jun 2025 02:04:38 +0000 ROA not before: Mon 02 Jun 2025 01:59:38 +0000 ROA not after: Mon 01 Jun 2026 02:04:38 +0000 asID: 136840 IP address blocks: 103.100.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ba:98:51:c5:c0:80:f5:44:9b:27:28:4c:1d:94:f8:19:22:09:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jun 2 01:59:38 2025 GMT Not After : Jun 1 02:04:38 2026 GMT Subject: CN=7F91F33A9B6B5C97353A21A25AEECD437D8941AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ec:bd:4b:1b:ad:96:9e:d3:f2:7d:28:b3:cd: cb:03:2d:e0:80:b2:a6:4e:44:52:4c:14:28:9e:e5: e6:61:40:dd:7b:60:ba:33:b3:b9:60:c4:bb:57:04: 9f:8a:27:3f:0e:ec:6f:58:80:56:00:15:3b:a2:7f: 3d:e6:63:aa:71:fb:e4:d1:eb:d8:19:31:a8:5e:5b: 99:a8:23:f3:1f:f6:f6:52:b6:ce:29:c4:1f:ea:2c: bc:13:44:5b:b8:eb:7b:bd:aa:12:28:1a:d2:42:89: cb:5c:31:34:9a:b0:9e:7e:52:aa:49:3b:db:a7:93: d9:90:d8:4c:af:ae:ca:22:79:ec:4a:23:de:c2:25: d8:1c:cb:2c:17:83:2e:a8:40:b3:1d:90:4b:5b:a2: 0c:64:92:f6:af:a1:00:5f:a2:ba:b3:b3:f6:ad:30: 87:66:73:81:cd:10:10:90:d5:86:67:60:cf:8c:3e: 8c:32:dd:ff:25:fa:ae:e4:b3:e4:6a:97:c8:d9:e9: f6:2b:68:a7:62:97:c7:e8:12:15:0e:2a:88:42:c9: 0b:94:0d:3b:90:ad:79:d0:49:68:8b:89:39:ce:04: 3a:18:e2:2c:3c:a4:9e:cd:4c:73:c5:7b:15:1b:ce: bb:b3:ca:45:0b:ad:cd:bd:5b:09:dd:3c:99:a0:4d: 37:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:91:F3:3A:9B:6B:5C:97:35:3A:21:A2:5A:EE:CD:43:7D:89:41:AF X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.180.0/24 Signature Algorithm: sha256WithRSAEncryption 03:93:0a:e6:14:23:3f:10:fa:74:38:83:47:d8:1f:f2:1c:bf: d7:67:a4:2c:de:49:4f:70:41:b6:ba:37:ad:f3:bf:2a:ba:10: f0:6d:2e:c2:3a:40:3e:d1:7c:5d:f7:96:8c:af:08:42:79:0b: 83:dd:96:70:b3:e5:e2:ff:f3:a2:c9:32:7f:b9:b3:f7:d6:5b: 19:99:3f:6a:0c:83:15:50:71:a9:0a:31:5d:6f:11:be:aa:72: f0:52:3c:a2:bb:65:f2:2e:75:97:8e:83:08:37:b9:6f:9a:e8: 18:ed:6e:bd:81:40:13:6b:ab:40:3a:d5:3e:ab:8a:ea:54:b3: 75:25:3f:0e:37:8b:2b:0c:80:3a:56:8f:8e:1c:1d:1f:75:c9: 29:43:65:20:12:d5:13:a7:fe:0f:b2:71:24:84:3a:7d:1b:f7: 19:4d:a7:90:bf:2d:d9:35:0f:7d:6e:35:48:b5:35:f2:c3:e7: 07:75:f8:ab:a4:35:5e:10:ec:45:cf:52:4d:4a:38:08:c9:1d: 2f:2e:ef:05:7c:f5:54:3c:51:cd:80:60:e6:7b:4f:54:81:57: a3:80:52:38:69:46:e8:2e:a8:0b:8f:c1:f9:98:0a:6c:ff:34: f4:14:90:34:3d:70:48:c4:93:a6:6c:e7:0f:40:cd:4a:a2:52: 46:f7:a2:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIbqYUcXAgPVEmycoTB2U+BkiCVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNTA2MDIwMTU5MzhaFw0yNjA2MDEwMjA0MzhaMDMxMTAvBgNV BAMTKDdGOTFGMzNBOUI2QjVDOTczNTNBMjFBMjVBRUVDRDQzN0Q4OTQxQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk7L1LG62WntPyfSizzcsDLeCA sqZORFJMFCie5eZhQN17YLozs7lgxLtXBJ+KJz8O7G9YgFYAFTuifz3mY6px++TR 69gZMaheW5moI/Mf9vZSts4pxB/qLLwTRFu463u9qhIoGtJCictcMTSasJ5+UqpJ O9unk9mQ2EyvrsoieexKI97CJdgcyywXgy6oQLMdkEtbogxkkvavoQBforqzs/at MIdmc4HNEBCQ1YZnYM+MPowy3f8l+q7ks+Rql8jZ6fYraKdil8foEhUOKohCyQuU DTuQrXnQSWiLiTnOBDoY4iw8pJ7NTHPFexUbzruzykULrc29WwndPJmgTTe5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUf5HzOptrXJc1OiGiWu7NQ32JQa8wHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLQwDQYJ KoZIhvcNAQELBQADggEBAAOTCuYUIz8Q+nQ4g0fYH/Icv9dnpCzeSU9wQba6N63z vyq6EPBtLsI6QD7RfF33loyvCEJ5C4PdlnCz5eL/86LJMn+5s/fWWxmZP2oMgxVQ cakKMV1vEb6qcvBSPKK7ZfIudZeOgwg3uW+a6Bjtbr2BQBNrq0A61T6riupUs3Ul Pw43iysMgDpWj44cHR91ySlDZSAS1ROn/g+ycSSEOn0b9xlNp5C/Ldk1D31uNUi1 NfLD5wd1+KukNV4Q7EXPUk1KOAjJHS8u7wV89VQ8Uc2AYOZ7T1SBV6OAUjhpRugu qAuPwfmYCmz/NPQUkDQ9cEjEk6Zs5w9AzUqiUkb3oqM= -----END CERTIFICATE-----Generated at Tue Oct 28 06:23:09 2025 by rpki-client