$ rpki-client -vvf repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa File: 3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: UB8JtipfosdHlml62Xhk5sLTDI0owepm37Luu+44jy4= Subject key identifier: C8:C2:2D:7E:45:58:E8:5E:38:7E:4E:83:CF:E6:BC:D4:16:7E:D9:96 Certificate issuer: /CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Certificate serial: 76BBE593C4443DFAEA2A89432751404A8E6346F2 Authority key identifier: 77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa Signing time: Wed 07 May 2025 08:57:42 +0000 ROA not before: Wed 07 May 2025 08:52:42 +0000 ROA not after: Wed 06 May 2026 08:57:42 +0000 asID: 141607 IP address blocks: 103.220.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bb:e5:93:c4:44:3d:fa:ea:2a:89:43:27:51:40:4a:8e:63:46:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Validity Not Before: May 7 08:52:42 2025 GMT Not After : May 6 08:57:42 2026 GMT Subject: CN=C8C22D7E4558E85E387E4E83CFE6BCD4167ED996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ed:8b:2f:46:93:78:29:26:ce:ee:50:6f:56: a2:e9:21:59:48:6e:32:e9:4e:10:b1:32:65:2a:0c: 72:7e:7a:77:33:4d:e1:0e:58:42:bb:7b:60:19:0b: f8:59:cb:73:76:28:c2:96:9e:32:c5:39:9a:78:f7: 07:d6:28:af:64:a0:55:24:04:92:25:81:9f:6d:8c: b3:13:38:3c:72:93:74:e1:74:1a:5e:9c:36:d2:fc: 2f:f9:39:f6:e7:e5:da:65:32:b1:d1:0f:67:5f:a1: 7a:95:d5:98:ae:89:11:c6:e8:77:a9:a1:81:50:ee: b7:6d:dc:f2:6e:ae:3f:b7:e5:0a:59:93:ae:07:00: 7f:f6:72:49:71:14:4f:95:e5:79:be:45:05:50:c3: 93:50:4a:db:7f:c3:32:86:5c:87:a3:02:60:d3:77: c9:7f:31:d3:b8:b3:ed:41:41:cf:a4:44:c1:17:ba: 99:55:0b:22:c0:79:37:4f:51:85:6e:00:60:38:ce: 73:dc:10:0d:8f:d9:d4:59:17:fc:91:6c:ec:9e:f2: f7:d2:b7:18:19:e1:d7:2d:bb:6a:0f:55:7f:cc:bb: 32:be:05:ac:fa:ad:5c:fd:84:c3:3b:d3:f9:ad:59: 2b:ac:d5:db:b2:50:80:fa:5f:e2:2f:8a:0b:4e:57: cb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C2:2D:7E:45:58:E8:5E:38:7E:4E:83:CF:E6:BC:D4:16:7E:D9:96 X509v3 Authority Key Identifier: keyid:77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.23.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:f4:b0:4c:25:0c:25:9a:66:4a:75:f9:77:29:09:18:23:9d: 08:18:f3:39:2c:ce:07:e5:39:8b:4a:4f:4c:29:c9:1d:4c:d8: 90:0f:c6:df:49:96:a8:86:a5:7c:eb:a3:86:05:74:01:b1:bf: 06:dd:79:a8:d5:1c:9a:0e:b7:4d:5c:2a:2e:17:df:33:04:52: 4c:f7:83:e4:54:03:5a:af:4e:dc:5a:04:1b:dc:d6:55:ce:9b: bf:f1:c4:15:c1:7e:0e:42:2d:db:bd:b3:8e:7d:9a:a6:ad:74: a5:75:2e:f2:5d:3e:65:f8:a2:07:2c:c2:2e:c8:44:78:b4:b6: 3a:20:42:c8:33:ca:d1:15:d0:8c:37:36:a1:d2:43:a8:bd:1f: 0f:d5:44:88:b9:c0:13:3a:5d:0e:2a:e5:27:26:a8:8a:10:27: 10:ea:0a:f8:50:a1:ed:4b:90:7c:77:fd:a4:70:3c:56:ca:21: b1:bd:ee:a3:63:15:e5:97:46:a9:e7:14:74:dc:2c:d4:42:c1: ff:2f:fb:f1:c4:98:96:52:26:77:77:61:7d:55:81:75:41:ab: 55:44:9f:31:7d:e4:53:f0:4f:2f:25:b2:2e:47:ad:59:85:a0: 24:44:b1:c2:1d:53:ac:f0:9d:52:0d:82:cb:d7:92:6a:d6:46: ae:8a:dc:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdrvlk8REPfrqKolDJ1FASo5jRvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVE OEJBMzg2MjAeFw0yNTA1MDcwODUyNDJaFw0yNjA1MDYwODU3NDJaMDMxMTAvBgNV BAMTKEM4QzIyRDdFNDU1OEU4NUUzODdFNEU4M0NGRTZCQ0Q0MTY3RUQ5OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57YsvRpN4KSbO7lBvVqLpIVlI bjLpThCxMmUqDHJ+enczTeEOWEK7e2AZC/hZy3N2KMKWnjLFOZp49wfWKK9koFUk BJIlgZ9tjLMTODxyk3ThdBpenDbS/C/5Ofbn5dplMrHRD2dfoXqV1ZiuiRHG6Hep oYFQ7rdt3PJurj+35QpZk64HAH/2cklxFE+V5Xm+RQVQw5NQStt/wzKGXIejAmDT d8l/MdO4s+1BQc+kRMEXuplVCyLAeTdPUYVuAGA4znPcEA2P2dRZF/yRbOye8vfS txgZ4dctu2oPVX/MuzK+Baz6rVz9hMM70/mtWSus1duyUID6X+IvigtOV8v5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyMItfkVY6F44fk6Dz+a81BZ+2ZYwHwYDVR0j BBgwFoAUdx0KucRFsoyIf9e6GN7FFdi6OGIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWFkNmEzZi02Y2EwLTQ2NjktOThmNy02ZjM0ODM3ZmFhNjIvMC83NzFEMEFCOUM0 NDVCMjhDODg3RkQ3QkExOERFQzUxNUQ4QkEzODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVEOEJB Mzg2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWQ2YTNmLTZjYTAtNDY2OS05 OGY3LTZmMzQ4MzdmYWE2Mi8wLzMxMzAzMzJlMzIzMjMwMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wXMA0GCSqG SIb3DQEBCwUAA4IBAQAP9LBMJQwlmmZKdfl3KQkYI50IGPM5LM4H5TmLSk9MKckd TNiQD8bfSZaohqV866OGBXQBsb8G3Xmo1RyaDrdNXCouF98zBFJM94PkVANar07c WgQb3NZVzpu/8cQVwX4OQi3bvbOOfZqmrXSldS7yXT5l+KIHLMIuyER4tLY6IELI M8rRFdCMNzah0kOovR8P1USIucATOl0OKuUnJqiKECcQ6gr4UKHtS5B8d/2kcDxW yiGxve6jYxXll0ap5xR03CzUQsH/L/vxxJiWUiZ3d2F9VYF1QatVRJ8xfeRT8E8v JbIuR61ZhaAkRLHCHVOs8J1SDYLL15Jq1kauitxj -----END CERTIFICATE-----Generated at Tue Oct 28 13:39:55 2025 by rpki-client