$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa File: 3130332e31322e32382e302f32322d3234203d3e203438343635.roa (raw, json) Hash identifier: hq6fcTyLZ0Befnc7SCHGWV/VgoDOfnIfMb9/pRr7Usc= Subject key identifier: B7:DE:E1:B0:34:06:A5:90:ED:0A:FC:84:16:F1:70:CD:3E:1D:FA:A0 Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Certificate serial: 31044FE82F9DB82092A96D81433F5A5A2378BE46 Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa Signing time: Mon 16 Jun 2025 04:02:22 +0000 ROA not before: Mon 16 Jun 2025 03:57:22 +0000 ROA not after: Mon 15 Jun 2026 04:02:22 +0000 asID: 48465 IP address blocks: 103.12.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:04:4f:e8:2f:9d:b8:20:92:a9:6d:81:43:3f:5a:5a:23:78:be:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Validity Not Before: Jun 16 03:57:22 2025 GMT Not After : Jun 15 04:02:22 2026 GMT Subject: CN=B7DEE1B03406A590ED0AFC8416F170CD3E1DFAA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e6:ba:88:20:d4:ac:2a:ad:ed:de:35:28:1a: 6a:aa:de:b8:c7:2d:fd:9a:b8:ab:97:65:c1:6d:fc: 78:be:03:6a:85:02:2e:93:ee:ef:24:5e:bd:8e:5b: 06:a5:05:06:58:25:2e:78:72:67:d0:6b:d7:00:bb: 69:4c:df:6a:8b:01:eb:0b:87:33:b3:cc:94:2f:52: d0:00:13:40:bc:43:f4:12:27:ac:06:d9:5f:3b:42: 5f:38:60:26:a2:2e:ae:0a:45:81:85:cb:47:79:c3: aa:0a:61:37:95:ca:18:34:d0:eb:94:d1:86:59:cb: c1:dd:2b:ad:19:63:6a:9c:48:6e:3b:48:3b:d7:78: 4b:ee:80:ae:81:1b:ed:6d:55:7f:bd:0a:be:c3:80: 82:4c:67:1d:71:29:25:28:0a:32:19:ab:0b:4c:ce: cc:c8:b0:8b:aa:f9:93:60:98:50:25:0d:73:af:e6: 2a:75:ba:9d:7e:46:7f:d9:20:ca:ed:ef:63:ce:c3: 03:03:9a:f1:86:39:5a:a7:a7:89:87:8c:c9:b0:5b: 63:3e:bc:c6:41:3f:1b:de:a6:3f:64:42:36:88:6b: 7d:29:1b:71:d5:04:a3:fa:12:e9:47:eb:af:29:78: d7:d6:81:e7:9b:fb:25:5b:49:b6:51:c7:6f:fe:28: 6a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DE:E1:B0:34:06:A5:90:ED:0A:FC:84:16:F1:70:CD:3E:1D:FA:A0 X509v3 Authority Key Identifier: keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.28.0/22 Signature Algorithm: sha256WithRSAEncryption 47:b1:4a:ec:a4:92:49:d7:ff:32:a4:6a:24:44:4a:c5:57:86: f9:64:79:6c:7c:7b:4e:94:50:cd:26:13:fc:9b:0d:9f:7d:e0: 67:d3:c2:60:ec:d0:e5:de:50:bc:6b:00:6b:e7:c3:78:40:a3: 0a:ff:5c:e2:9c:a0:da:cf:a3:1f:35:5f:91:e9:94:b0:93:e1: e2:b8:15:48:22:f1:c1:15:87:46:54:71:68:cd:ae:80:0e:f1: 5d:2a:ea:69:43:22:26:85:3c:70:6f:dd:6f:49:e6:8d:67:98: 1c:b0:df:d3:b4:c9:0d:3d:5b:fc:e7:0f:15:83:8a:e2:f1:a4: 13:d4:7e:43:eb:74:10:bd:c9:22:5d:9f:59:20:c4:0f:e7:66: fa:11:79:aa:93:73:01:b5:be:f9:05:6f:37:83:d1:55:f1:40: 2d:d2:9c:d2:46:f6:50:60:42:ec:dc:57:bb:fc:6d:3a:4d:52: 7f:66:41:59:e2:a6:f5:bd:83:ff:f6:3f:32:8f:de:63:0f:59: 54:23:48:ad:98:13:61:fb:8e:8a:5b:c6:5c:4b:05:83:aa:70: 9c:30:d8:83:38:d1:c7:98:27:5a:31:1a:8e:a1:33:d8:f8:95: d8:3a:b5:09:da:9c:a0:4c:e5:8d:46:a9:54:4c:1e:f3:de:75: c9:01:3d:9b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMQRP6C+duCCSqW2BQz9aWiN4vkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVG RTNFN0MzRTAeFw0yNTA2MTYwMzU3MjJaFw0yNjA2MTUwNDAyMjJaMDMxMTAvBgNV BAMTKEI3REVFMUIwMzQwNkE1OTBFRDBBRkM4NDE2RjE3MENEM0UxREZBQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp5rqIINSsKq3t3jUoGmqq3rjH Lf2auKuXZcFt/Hi+A2qFAi6T7u8kXr2OWwalBQZYJS54cmfQa9cAu2lM32qLAesL hzOzzJQvUtAAE0C8Q/QSJ6wG2V87Ql84YCaiLq4KRYGFy0d5w6oKYTeVyhg00OuU 0YZZy8HdK60ZY2qcSG47SDvXeEvugK6BG+1tVX+9Cr7DgIJMZx1xKSUoCjIZqwtM zszIsIuq+ZNgmFAlDXOv5ip1up1+Rn/ZIMrt72POwwMDmvGGOVqnp4mHjMmwW2M+ vMZBPxvepj9kQjaIa30pG3HVBKP6EulH668peNfWgeeb+yVbSbZRx2/+KGrZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUt97hsDQGpZDtCvyEFvFwzT4d+qAwHwYDVR0j BBgwFoAUaWcBLvykNpjo4bckuR38Xv4+fD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDZlYTdmYS05NGQyLTRkZGMtYThlNi01ZGM2MjZjMjkxZDQvMC82OTY3MDEyRUZD QTQzNjk4RThFMUI3MjRCOTFERkM1RUZFM0U3QzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVGRTNF N0MzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNmVhN2ZhLTk0ZDItNGRkYy1h OGU2LTVkYzYyNmMyOTFkNC8wLzMxMzAzMzJlMzEzMjJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzgzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnDBwwDQYJKoZIhvcN AQELBQADggEBAEexSuykkknX/zKkaiRESsVXhvlkeWx8e06UUM0mE/ybDZ994GfT wmDs0OXeULxrAGvnw3hAowr/XOKcoNrPox81X5HplLCT4eK4FUgi8cEVh0ZUcWjN roAO8V0q6mlDIiaFPHBv3W9J5o1nmByw39O0yQ09W/znDxWDiuLxpBPUfkPrdBC9 ySJdn1kgxA/nZvoReaqTcwG1vvkFbzeD0VXxQC3SnNJG9lBgQuzcV7v8bTpNUn9m QVnipvW9g//2PzKP3mMPWVQjSK2YE2H7jopbxlxLBYOqcJww2IM40ceYJ1oxGo6h M9j4ldg6tQnanKBM5Y1GqVRMHvPedckBPZs= -----END CERTIFICATE-----Generated at Mon Oct 27 06:46:42 2025 by rpki-client