$ rpki-client -vvf repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231392e302f32342d3234203d3e20313337333637.roa File: 3130332e3131362e3231392e302f32342d3234203d3e20313337333637.roa (raw, json) Hash identifier: 7MfETz0OOU0/EW0Af0KTT2gYnfzpkWj/UcRR+LXANfU= Subject key identifier: A9:B6:0E:3E:75:2B:8D:45:67:DD:B6:2D:DA:DF:BE:9E:E2:4B:B5:AF Certificate issuer: /CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Certificate serial: 6E1B2BB94D2FAF60D0CB3C2AEFE212FA418F2ABC Authority key identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231392e302f32342d3234203d3e20313337333637.roa Signing time: Sat 14 Jun 2025 13:00:01 +0000 ROA not before: Sat 14 Jun 2025 12:55:01 +0000 ROA not after: Sat 13 Jun 2026 13:00:01 +0000 asID: 137367 IP address blocks: 103.116.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:1b:2b:b9:4d:2f:af:60:d0:cb:3c:2a:ef:e2:12:fa:41:8f:2a:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Validity Not Before: Jun 14 12:55:01 2025 GMT Not After : Jun 13 13:00:01 2026 GMT Subject: CN=A9B60E3E752B8D4567DDB62DDADFBE9EE24BB5AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:0c:34:aa:68:50:97:88:fb:15:d6:2e:63: eb:5b:04:2f:ea:af:d8:7d:5a:a4:cf:2f:57:6d:da: 67:57:44:e8:2b:17:62:99:64:59:85:6d:0f:13:92: ca:3b:0c:14:38:11:aa:72:c7:5c:92:c9:00:71:5d: b2:2d:99:10:fb:dd:14:a3:ac:b8:c7:ed:11:aa:61: bf:bc:b4:7e:48:1d:4e:e2:86:8c:a8:6c:ee:cb:09: d4:12:a1:02:75:83:0b:17:b2:f4:e4:1b:a4:e0:8b: c9:97:58:82:d8:9b:01:f7:da:11:8f:12:cb:c5:2d: b2:30:c2:5f:0a:78:79:35:c8:d6:b1:a6:ab:34:e3: ba:7d:23:2e:d3:f5:0f:9f:c9:19:cc:b1:28:3a:a8: de:71:89:f0:8f:87:87:90:16:f8:82:0d:a6:d6:36: 9d:31:6e:d5:30:0d:af:0f:35:d6:35:81:f6:b8:80: 19:6a:d6:7d:b7:30:36:e3:26:ca:07:c8:43:ad:f2: 8e:ac:e5:11:2d:5a:9f:a8:80:8b:80:a8:54:84:d8: e4:d9:24:f4:b0:52:86:7f:62:60:05:b4:1e:4d:94: 24:1c:48:36:df:3a:b7:a1:cb:55:f3:0a:f5:ee:95: 9c:aa:30:01:96:c0:dc:c0:7d:ed:fd:10:fe:7f:f1: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B6:0E:3E:75:2B:8D:45:67:DD:B6:2D:DA:DF:BE:9E:E2:4B:B5:AF X509v3 Authority Key Identifier: keyid:DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231392e302f32342d3234203d3e20313337333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.219.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:6f:98:dd:3d:a9:eb:5c:b6:90:42:c1:ba:4d:b4:0c:34:2f: 22:8e:51:5f:15:6a:1b:5b:07:eb:b9:fe:61:aa:07:fe:26:09: 9a:a8:ec:b5:16:e9:7f:aa:3c:e8:a3:27:d3:2f:f2:34:27:f6: dc:22:7b:99:52:90:f4:1e:26:77:2a:5d:16:fe:d5:8c:57:85: 29:9b:9c:fc:eb:de:ba:2d:0d:4b:3b:14:15:d9:d8:de:e1:05: 85:61:35:7f:c4:0e:d7:89:48:af:da:a7:79:1c:67:91:32:07: 17:31:05:f8:44:ad:2f:29:47:92:db:3b:1d:dc:ce:03:a8:13: 9e:e2:b4:be:66:f8:ba:9d:75:29:6a:00:84:c8:27:be:cc:9b: 5c:a9:b7:60:34:4b:4f:e0:04:b0:a2:8c:86:3e:21:f3:75:9d: 67:41:1e:a5:49:41:64:ab:c4:7f:3e:30:74:04:07:bd:8b:17: c5:ac:79:83:b1:20:93:4c:98:1a:ba:2d:50:d7:8d:60:af:2c: 76:f5:94:5d:c5:09:dd:81:f7:6a:83:97:49:e9:58:39:16:07: 67:5a:a9:59:0c:ff:a9:df:df:24:aa:7d:a4:c1:a2:69:71:e5: 6a:81:4c:8f:9d:63:20:60:71:85:06:0d:63:cb:56:05:91:e3: ba:b5:66:b3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbhsruU0vr2DQyzwq7+IS+kGPKrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQy REMyRDdGMzAeFw0yNTA2MTQxMjU1MDFaFw0yNjA2MTMxMzAwMDFaMDMxMTAvBgNV BAMTKEE5QjYwRTNFNzUyQjhENDU2N0REQjYyRERBREZCRTlFRTI0QkI1QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCggw0qmhQl4j7FdYuY+tbBC/q r9h9WqTPL1dt2mdXROgrF2KZZFmFbQ8Tkso7DBQ4Eapyx1ySyQBxXbItmRD73RSj rLjH7RGqYb+8tH5IHU7ihoyobO7LCdQSoQJ1gwsXsvTkG6Tgi8mXWILYmwH32hGP EsvFLbIwwl8KeHk1yNaxpqs047p9Iy7T9Q+fyRnMsSg6qN5xifCPh4eQFviCDabW Np0xbtUwDa8PNdY1gfa4gBlq1n23MDbjJsoHyEOt8o6s5REtWp+ogIuAqFSE2OTZ JPSwUoZ/YmAFtB5NlCQcSDbfOrehy1XzCvXulZyqMAGWwNzAfe39EP5/8Z/5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqbYOPnUrjUVn3bYt2t++nuJLta8wHwYDVR0j BBgwFoAU22urlWFPaYEfKum0g3PnnS3C1/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmQ3MjBkNS1iN2Q0LTQzOTUtYTA2Yi0xOTkwNGE2M2Y5NDgvMC9EQjZCQUI5NTYx NEY2OTgxMUYyQUU5QjQ4MzczRTc5RDJEQzJEN0YzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQyREMy RDdGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZDcyMGQ1LWI3ZDQtNDM5NS1h MDZiLTE5OTA0YTYzZjk0OC8wLzMxMzAzMzJlMzEzMTM2MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndNswDQYJ KoZIhvcNAQELBQADggEBAB1vmN09qetctpBCwbpNtAw0LyKOUV8VahtbB+u5/mGq B/4mCZqo7LUW6X+qPOijJ9Mv8jQn9twie5lSkPQeJncqXRb+1YxXhSmbnPzr3rot DUs7FBXZ2N7hBYVhNX/EDteJSK/ap3kcZ5EyBxcxBfhErS8pR5LbOx3czgOoE57i tL5m+LqddSlqAITIJ77Mm1ypt2A0S0/gBLCijIY+IfN1nWdBHqVJQWSrxH8+MHQE B72LF8WseYOxIJNMmBq6LVDXjWCvLHb1lF3FCd2B92qDl0npWDkWB2daqVkM/6nf 3ySqfaTBomlx5WqBTI+dYyBgcYUGDWPLVgWR47q1ZrM= -----END CERTIFICATE-----Generated at Tue Nov 4 17:32:25 2025 by rpki-client