$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3130332e38302e39322e302f32342d3234203d3e203634333133.roa File: 3130332e38302e39322e302f32342d3234203d3e203634333133.roa (raw, json) Hash identifier: 28hnDSQ50fMtdwHNMOxqNlnav8oyNefeKiHHgKdFgtQ= Subject key identifier: F8:82:AF:D6:42:E5:F6:E5:D9:37:8A:6E:7A:63:AC:9C:4C:8A:A5:3A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3423C538954FF9C8F9EB88D5F5E995939FB2F6D1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3130332e38302e39322e302f32342d3234203d3e203634333133.roa Signing time: Sun 31 Aug 2025 08:00:02 +0000 ROA not before: Sun 31 Aug 2025 07:55:02 +0000 ROA not after: Sun 30 Aug 2026 08:00:02 +0000 asID: 64313 IP address blocks: 103.80.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:23:c5:38:95:4f:f9:c8:f9:eb:88:d5:f5:e9:95:93:9f:b2:f6:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Aug 31 07:55:02 2025 GMT Not After : Aug 30 08:00:02 2026 GMT Subject: CN=F882AFD642E5F6E5D9378A6E7A63AC9C4C8AA53A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:72:74:63:75:31:c2:36:ff:44:3b:6e:5c:37: 4e:00:b0:00:1f:05:2e:d6:2c:51:29:d4:cc:c4:19: 34:fa:17:9a:59:48:d6:f5:14:c9:0d:61:41:b3:78: 2e:25:d1:a8:9f:ac:ff:5a:a9:dd:92:1f:c5:e8:c3: f9:64:88:dc:79:84:59:e8:92:72:72:aa:ca:cf:55: 48:40:02:24:29:02:0b:7d:ff:c6:15:17:f3:6a:26: af:bc:2d:c1:fa:09:b8:be:a8:b4:0f:78:3f:88:64: 91:62:f8:71:59:93:01:21:ea:3e:cf:04:f9:30:ca: 30:0f:3d:c4:88:7f:35:5f:53:b6:11:70:cc:4e:7b: 1f:a3:f9:03:53:24:b2:8d:ca:cd:22:d8:1f:44:6f: fe:ba:49:26:08:f3:66:b6:3e:4c:ed:32:76:1f:9d: 9a:18:52:71:3a:39:0b:d0:cd:29:61:07:a2:1a:6c: e8:14:9f:8e:21:0a:b9:31:b0:e2:e9:73:39:ca:fc: 28:91:4d:1d:c8:48:76:87:06:00:a7:4f:28:d7:62: b3:04:27:07:7d:7e:e7:94:df:f0:51:b1:9a:41:c8: 39:28:aa:ad:bf:1f:5a:6f:26:a8:df:5c:64:60:1e: e5:ef:5a:59:06:3d:4b:2f:2e:e5:00:b3:6d:9b:64: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:82:AF:D6:42:E5:F6:E5:D9:37:8A:6E:7A:63:AC:9C:4C:8A:A5:3A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3130332e38302e39322e302f32342d3234203d3e203634333133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.92.0/24 Signature Algorithm: sha256WithRSAEncryption 85:2f:ab:8f:79:a1:84:e0:84:f1:6b:4f:a0:0b:41:96:13:66: 3c:98:f7:8b:ce:1b:00:ce:b3:dc:87:82:bb:83:4f:fb:15:a5: 33:be:1e:74:4b:02:e5:22:d9:1e:04:ae:68:21:99:82:a7:0a: 0a:a7:e4:a9:08:e1:34:6a:57:e2:7c:18:01:11:47:03:78:c0: 81:03:a6:79:c0:45:6a:ab:40:4c:69:19:6b:f6:c0:b5:39:1d: 6b:fa:92:bc:56:51:ba:7d:bc:06:c3:42:8b:ca:d2:41:95:44: d5:10:fc:ae:3f:2e:4b:40:7c:78:d8:18:5f:1a:52:ad:22:2f: 24:04:16:f9:55:ce:10:2d:c1:ff:83:ac:71:b3:c2:98:b4:86: 83:57:0a:b2:68:58:74:23:2b:ba:e5:ce:80:b9:81:6a:76:5e: 02:fb:04:07:46:93:94:fb:a4:32:c1:3c:97:99:88:dd:44:73: 56:14:64:82:fb:0a:8b:7b:65:ab:a9:0e:c7:81:d5:9b:68:40: 4e:4a:52:46:10:e6:d6:33:d6:1b:b9:73:f6:7b:10:d8:95:42: 04:89:82:2a:ef:ee:47:87:09:49:a8:05:e7:b9:8b:16:67:8a: f6:16:a0:05:bd:05:f5:e3:2d:9a:33:f7:82:2a:83:a1:73:8b: 85:d5:7a:1d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNCPFOJVP+cj564jV9emVk5+y9tEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA4MzEwNzU1MDJaFw0yNjA4MzAwODAwMDJaMDMxMTAvBgNV BAMTKEY4ODJBRkQ2NDJFNUY2RTVEOTM3OEE2RTdBNjNBQzlDNEM4QUE1M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZcnRjdTHCNv9EO25cN04AsAAf BS7WLFEp1MzEGTT6F5pZSNb1FMkNYUGzeC4l0aifrP9aqd2SH8Xow/lkiNx5hFno knJyqsrPVUhAAiQpAgt9/8YVF/NqJq+8LcH6Cbi+qLQPeD+IZJFi+HFZkwEh6j7P BPkwyjAPPcSIfzVfU7YRcMxOex+j+QNTJLKNys0i2B9Eb/66SSYI82a2PkztMnYf nZoYUnE6OQvQzSlhB6IabOgUn44hCrkxsOLpcznK/CiRTR3ISHaHBgCnTyjXYrME Jwd9fueU3/BRsZpByDkoqq2/H1pvJqjfXGRgHuXvWlkGPUsvLuUAs22bZCNZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+IKv1kLl9uXZN4puemOsnEyKpTowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMxMzAzMzJlMzgzMDJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMzMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnUFwwDQYJKoZIhvcN AQELBQADggEBAIUvq495oYTghPFrT6ALQZYTZjyY94vOGwDOs9yHgruDT/sVpTO+ HnRLAuUi2R4ErmghmYKnCgqn5KkI4TRqV+J8GAERRwN4wIEDpnnARWqrQExpGWv2 wLU5HWv6krxWUbp9vAbDQovK0kGVRNUQ/K4/LktAfHjYGF8aUq0iLyQEFvlVzhAt wf+DrHGzwpi0hoNXCrJoWHQjK7rlzoC5gWp2XgL7BAdGk5T7pDLBPJeZiN1Ec1YU ZIL7Cot7ZaupDseB1ZtoQE5KUkYQ5tYz1hu5c/Z7ENiVQgSJgirv7keHCUmoBee5 ixZnivYWoAW9BfXjLZoz94Iqg6Fzi4XVeh0= -----END CERTIFICATE-----Generated at Mon Sep 8 09:36:02 2025 by rpki-client