$ rpki-client -vvf repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230332e302f32342d3234203d3e20313338303733.roa File: 3130332e3132322e3230332e302f32342d3234203d3e20313338303733.roa (raw, json) Hash identifier: AgqjVLKjSfvO+SiShKkK/If4lCtGPtmV+I3QbG/of4g= Subject key identifier: C8:0B:65:34:08:06:AE:32:AC:46:3E:E5:60:AE:B5:52:47:F1:62:D5 Certificate issuer: /CN=92602F1E83161157794444495C715B352240982F Certificate serial: 623C7B104DF62B15ADA86E3AED5265E0DA4FF7BE Authority key identifier: 92:60:2F:1E:83:16:11:57:79:44:44:49:5C:71:5B:35:22:40:98:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230332e302f32342d3234203d3e20313338303733.roa Signing time: Wed 03 Sep 2025 09:00:01 +0000 ROA not before: Wed 03 Sep 2025 08:55:01 +0000 ROA not after: Wed 02 Sep 2026 09:00:01 +0000 asID: 138073 IP address blocks: 103.122.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.crl rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 22:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:3c:7b:10:4d:f6:2b:15:ad:a8:6e:3a:ed:52:65:e0:da:4f:f7:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92602F1E83161157794444495C715B352240982F Validity Not Before: Sep 3 08:55:01 2025 GMT Not After : Sep 2 09:00:01 2026 GMT Subject: CN=C80B65340806AE32AC463EE560AEB55247F162D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:77:f7:c9:57:81:7a:cf:c9:ee:55:9f:bd: 34:3a:79:9b:dc:2f:ef:ba:bb:c0:e7:e1:44:87:d8: 4a:b4:c7:93:d0:27:b4:f9:e7:1a:ac:ea:e1:af:a8: d3:2d:87:b8:21:ed:c4:58:9b:7c:c1:a4:8b:0f:66: 89:9e:e9:ba:d8:47:66:b0:b9:b6:4e:96:4a:d7:4c: 91:3e:b1:b1:4e:83:24:86:ba:53:6c:13:85:6a:31: bb:34:f4:80:d2:70:e6:47:7f:b6:c2:f6:a5:9f:54: b2:6c:b0:cb:55:8c:9e:ac:c5:a1:f0:e3:9d:12:2d: 1d:09:72:ca:27:1f:42:cb:08:d8:d3:e6:50:de:48: a2:35:db:4d:3e:e4:b8:93:5f:ba:02:db:7d:96:df: cc:e3:04:57:66:9a:a2:c6:b6:bf:16:3a:c0:37:68: 6e:8e:0c:70:0b:8e:9f:ac:b2:c2:37:0f:a7:5a:06: eb:f6:f2:f1:9e:86:b9:dd:31:20:ae:00:7c:1a:a6: 6a:bc:e6:7e:84:1e:33:5f:a4:30:84:1c:89:02:a4: 69:b2:15:60:03:2f:b3:cc:af:1e:16:99:c9:e9:c7: 5b:4f:03:cf:d5:61:de:fb:20:42:7a:53:7e:6e:d9: fe:7c:93:6f:19:59:e9:ad:21:68:d1:d7:96:1d:f6: c9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0B:65:34:08:06:AE:32:AC:46:3E:E5:60:AE:B5:52:47:F1:62:D5 X509v3 Authority Key Identifier: keyid:92:60:2F:1E:83:16:11:57:79:44:44:49:5C:71:5B:35:22:40:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/92602F1E83161157794444495C715B352240982F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92602F1E83161157794444495C715B352240982F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d4f63e4-6fb3-4b03-b210-b5686cd5b397/0/3130332e3132322e3230332e302f32342d3234203d3e20313338303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.203.0/24 Signature Algorithm: sha256WithRSAEncryption 31:31:88:41:20:52:ff:e5:07:23:7c:17:9f:00:ba:29:93:39: e9:44:c2:99:a4:b0:e6:9f:a8:3c:b3:cc:eb:59:0e:98:b0:a9: 05:32:05:94:92:16:ee:ff:a3:04:86:ea:3a:18:15:d8:57:d7: e7:bf:d0:5e:ea:10:64:22:ad:25:e6:0a:3e:26:2d:4f:34:d0: 70:f6:4e:98:12:d6:4a:79:d4:f6:09:56:68:50:ba:83:86:29: 27:f1:3c:20:5c:8c:91:57:f1:88:f7:3a:39:cd:2c:f8:5b:db: 83:64:03:68:fb:1f:86:47:da:f3:ba:3b:8b:fb:4e:49:87:1a: bb:24:03:61:16:96:35:ed:02:61:3b:2f:d7:bd:44:30:f2:d1: d9:d5:dc:21:f7:b8:30:4e:cb:5b:88:4d:8e:f5:64:09:49:d6: 65:74:71:13:2e:05:3b:47:10:53:d9:f5:0e:56:14:ae:70:0f: ac:6e:91:d8:ad:4c:1f:7f:44:7a:8d:e5:4d:8b:75:f8:f9:c6: 6b:3d:a7:c4:11:b8:aa:38:d3:31:1a:05:4d:91:d8:7e:05:67: 84:e9:01:b4:d3:0c:ce:0e:5f:32:a6:ad:42:d0:25:50:a4:10: 44:38:a0:1c:6e:cd:0c:a2:3b:d1:28:2c:e6:cc:60:84:78:f1: 91:0b:2c:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYjx7EE32KxWtqG467VJl4NpP974wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI2MDJGMUU4MzE2MTE1Nzc5NDQ0NDQ5NUM3MTVCMzUy MjQwOTgyRjAeFw0yNTA5MDMwODU1MDFaFw0yNjA5MDIwOTAwMDFaMDMxMTAvBgNV BAMTKEM4MEI2NTM0MDgwNkFFMzJBQzQ2M0VFNTYwQUVCNTUyNDdGMTYyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7G3f3yVeBes/J7lWfvTQ6eZvc L++6u8Dn4USH2Eq0x5PQJ7T55xqs6uGvqNMth7gh7cRYm3zBpIsPZome6brYR2aw ubZOlkrXTJE+sbFOgySGulNsE4VqMbs09IDScOZHf7bC9qWfVLJssMtVjJ6sxaHw 450SLR0JcsonH0LLCNjT5lDeSKI1200+5LiTX7oC232W38zjBFdmmqLGtr8WOsA3 aG6ODHALjp+sssI3D6daBuv28vGehrndMSCuAHwapmq85n6EHjNfpDCEHIkCpGmy FWADL7PMrx4Wmcnpx1tPA8/VYd77IEJ6U35u2f58k28ZWemtIWjR15Yd9slrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyAtlNAgGrjKsRj7lYK61UkfxYtUwHwYDVR0j BBgwFoAUkmAvHoMWEVd5RERJXHFbNSJAmC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDRmNjNlNC02ZmIzLTRiMDMtYjIxMC1iNTY4NmNkNWIzOTcvMC85MjYwMkYxRTgz MTYxMTU3Nzk0NDQ0NDk1QzcxNUIzNTIyNDA5ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTI2MDJGMUU4MzE2MTE1Nzc5NDQ0NDQ5NUM3MTVCMzUyMjQw OTgyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkNGY2M2U0LTZmYjMtNGIwMy1i MjEwLWI1Njg2Y2Q1YjM5Ny8wLzMxMzAzMzJlMzEzMjMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnesswDQYJ KoZIhvcNAQELBQADggEBADExiEEgUv/lByN8F58AuimTOelEwpmksOafqDyzzOtZ DpiwqQUyBZSSFu7/owSG6joYFdhX1+e/0F7qEGQirSXmCj4mLU800HD2TpgS1kp5 1PYJVmhQuoOGKSfxPCBcjJFX8Yj3OjnNLPhb24NkA2j7H4ZH2vO6O4v7TkmHGrsk A2EWljXtAmE7L9e9RDDy0dnV3CH3uDBOy1uITY71ZAlJ1mV0cRMuBTtHEFPZ9Q5W FK5wD6xukditTB9/RHqN5U2Ldfj5xms9p8QRuKo40zEaBU2R2H4FZ4TpAbTTDM4O XzKmrULQJVCkEEQ4oBxuzQyiO9EoLObMYIR48ZELLNc= -----END CERTIFICATE-----Generated at Sun Sep 7 15:44:58 2025 by rpki-client