$ rpki-client -vvf repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/3130332e3137352e32342e302f32342d3234203d3e20313339393532.roa File: 3130332e3137352e32342e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: Vl/OOphd8TYP/hah6fsBqUcpI92+W6WBwIY9PUcjWfo= Subject key identifier: 55:5B:6D:D1:53:C1:03:86:4D:B4:1D:07:2D:99:17:D5:AF:AD:97:98 Certificate issuer: /CN=E07D333345CD7D30F1DC10D98F6E73457739DF18 Certificate serial: 2EFA3B92F45BD0138C8E4F7494A5A50C17D6AD1C Authority key identifier: E0:7D:33:33:45:CD:7D:30:F1:DC:10:D9:8F:6E:73:45:77:39:DF:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E07D333345CD7D30F1DC10D98F6E73457739DF18.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/3130332e3137352e32342e302f32342d3234203d3e20313339393532.roa Signing time: Sun 31 Aug 2025 18:00:01 +0000 ROA not before: Sun 31 Aug 2025 17:55:01 +0000 ROA not after: Sun 30 Aug 2026 18:00:01 +0000 asID: 139952 IP address blocks: 103.175.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/E07D333345CD7D30F1DC10D98F6E73457739DF18.crl rsync://repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/E07D333345CD7D30F1DC10D98F6E73457739DF18.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E07D333345CD7D30F1DC10D98F6E73457739DF18.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 22:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:fa:3b:92:f4:5b:d0:13:8c:8e:4f:74:94:a5:a5:0c:17:d6:ad:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E07D333345CD7D30F1DC10D98F6E73457739DF18 Validity Not Before: Aug 31 17:55:01 2025 GMT Not After : Aug 30 18:00:01 2026 GMT Subject: CN=555B6DD153C103864DB41D072D9917D5AFAD9798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:85:5f:75:f9:2b:36:6a:02:39:20:04:1f:e9: bb:54:1c:33:ae:8a:f8:6f:e9:60:50:9e:ff:c4:db: 21:16:61:e5:d5:46:48:0a:17:82:b1:59:13:ec:4e: 43:ac:cc:dc:66:d2:18:73:ed:1d:d7:10:4b:25:b7: 32:28:8d:db:d9:01:6b:80:e1:7b:55:73:53:51:e9: 34:8e:8b:40:bd:f9:26:95:64:f1:ca:b4:fe:bb:d4: 8d:00:40:ad:01:84:da:89:cd:75:b6:ae:92:b7:53: 5c:e6:f6:6a:17:f3:34:44:d2:47:bb:04:93:4b:72: 7e:9c:e7:39:17:4f:33:b8:91:4e:5b:81:f1:93:44: 1d:ee:01:26:9f:7d:78:c7:7e:af:90:26:6a:4e:19: 71:b8:17:93:e0:92:62:3d:a1:78:ec:66:73:5a:8f: ed:bb:c0:97:71:d4:f8:7d:5b:23:77:fa:c6:ef:94: 3c:c7:ad:ea:cf:1d:51:66:cb:fb:b6:3a:ab:b2:0e: e3:b5:3a:79:f1:40:d1:12:08:5d:e2:1e:f3:85:ae: 6a:84:fc:6a:f7:57:9c:c2:b7:e1:88:cf:6c:eb:99: e9:9b:c1:92:d2:08:97:0d:b4:30:13:50:25:8c:1b: d6:a1:06:6d:e0:a6:7a:72:4c:e8:80:d3:fc:6d:5d: 79:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5B:6D:D1:53:C1:03:86:4D:B4:1D:07:2D:99:17:D5:AF:AD:97:98 X509v3 Authority Key Identifier: keyid:E0:7D:33:33:45:CD:7D:30:F1:DC:10:D9:8F:6E:73:45:77:39:DF:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/E07D333345CD7D30F1DC10D98F6E73457739DF18.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E07D333345CD7D30F1DC10D98F6E73457739DF18.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e62880e-d5f2-4069-88ff-1267b7cc01c5/0/3130332e3137352e32342e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.24.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:e0:d6:2b:94:d9:bc:31:70:2c:0a:f3:e6:eb:e7:f2:c1:a9: 7e:38:07:49:fe:d7:48:bc:99:08:07:67:d9:a5:86:d0:0d:6b: 53:ef:42:df:24:49:27:0c:fa:a9:f3:81:c8:2f:45:bb:c8:de: bf:9c:56:6b:a5:0c:f9:e9:f6:fa:e6:b3:75:b8:aa:7c:1d:70: 02:ab:01:59:5e:4f:bf:32:2d:69:9f:5c:5e:49:ca:3d:5f:12: 90:5a:68:c1:25:6a:ed:04:7b:15:68:ec:f8:47:f3:a4:d9:c0: 23:66:45:07:24:d4:9a:1d:62:38:a7:40:db:18:5c:ca:c4:c1: 13:ba:0b:c4:75:69:2b:2f:7f:ae:df:76:31:e1:ed:da:73:fc: 89:d1:32:37:99:f7:7c:91:8c:10:e4:3b:6c:25:a4:5c:21:ea: f0:03:9e:26:7d:d1:b0:b5:08:e2:9c:8a:e3:96:77:cc:2f:7e: f0:fe:52:b1:43:a1:f3:75:3a:4f:53:7e:5e:73:67:66:bd:10: 53:fb:c0:1a:d7:d3:44:42:f8:d5:17:c4:ee:e1:65:40:a6:9a: 50:e9:a0:67:df:76:fb:dd:23:a6:e2:b1:64:46:66:8e:ff:4d: c8:c2:b6:a7:13:fc:5d:e2:e7:18:7d:1c:65:33:ff:76:ef:de: 86:d9:6b:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULvo7kvRb0BOMjk90lKWlDBfWrRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA3RDMzMzM0NUNEN0QzMEYxREMxMEQ5OEY2RTczNDU3 NzM5REYxODAeFw0yNTA4MzExNzU1MDFaFw0yNjA4MzAxODAwMDFaMDMxMTAvBgNV BAMTKDU1NUI2REQxNTNDMTAzODY0REI0MUQwNzJEOTkxN0Q1QUZBRDk3OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYhV91+Ss2agI5IAQf6btUHDOu ivhv6WBQnv/E2yEWYeXVRkgKF4KxWRPsTkOszNxm0hhz7R3XEEsltzIojdvZAWuA 4XtVc1NR6TSOi0C9+SaVZPHKtP671I0AQK0BhNqJzXW2rpK3U1zm9moX8zRE0ke7 BJNLcn6c5zkXTzO4kU5bgfGTRB3uASaffXjHfq+QJmpOGXG4F5PgkmI9oXjsZnNa j+27wJdx1Ph9WyN3+sbvlDzHrerPHVFmy/u2OquyDuO1OnnxQNESCF3iHvOFrmqE /Gr3V5zCt+GIz2zrmembwZLSCJcNtDATUCWMG9ahBm3gpnpyTOiA0/xtXXnvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVVtt0VPBA4ZNtB0HLZkX1a+tl5gwHwYDVR0j BBgwFoAU4H0zM0XNfTDx3BDZj25zRXc53xgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTYyODgwZS1kNWYyLTQwNjktODhmZi0xMjY3YjdjYzAxYzUvMC9FMDdEMzMzMzQ1 Q0Q3RDMwRjFEQzEwRDk4RjZFNzM0NTc3MzlERjE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTA3RDMzMzM0NUNEN0QzMEYxREMxMEQ5OEY2RTczNDU3NzM5 REYxOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNjI4ODBlLWQ1ZjItNDA2OS04 OGZmLTEyNjdiN2NjMDFjNS8wLzMxMzAzMzJlMzEzNzM1MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ68YMA0GCSqG SIb3DQEBCwUAA4IBAQB74NYrlNm8MXAsCvPm6+fywal+OAdJ/tdIvJkIB2fZpYbQ DWtT70LfJEknDPqp84HIL0W7yN6/nFZrpQz56fb65rN1uKp8HXACqwFZXk+/Mi1p n1xeSco9XxKQWmjBJWrtBHsVaOz4R/Ok2cAjZkUHJNSaHWI4p0DbGFzKxMETugvE dWkrL3+u33Yx4e3ac/yJ0TI3mfd8kYwQ5DtsJaRcIerwA54mfdGwtQjinIrjlnfM L37w/lKxQ6HzdTpPU35ec2dmvRBT+8Aa19NEQvjVF8Tu4WVApppQ6aBn33b73SOm 4rFkRmaO/03IwranE/xd4ucYfRxlM/92796G2Wvm -----END CERTIFICATE-----Generated at Mon Sep 8 10:30:44 2025 by rpki-client