$ rpki-client -vvf repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa File: 3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa (raw, json) Hash identifier: SA4jtW4MamCTfZtBnVJuWRU56DDkBtSVfuwzHUHzgZQ= Subject key identifier: 37:5A:7C:CA:EF:5C:BF:61:B3:81:E3:68:87:9B:9F:0F:37:55:51:EE Certificate issuer: /CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Certificate serial: 79967B1118CAE504ADBBE6CFA654ABAEF5083DC6 Authority key identifier: 69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa Signing time: Fri 29 Aug 2025 03:00:02 +0000 ROA not before: Fri 29 Aug 2025 02:55:02 +0000 ROA not after: Fri 28 Aug 2026 03:00:02 +0000 asID: 150211 IP address blocks: 103.196.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:96:7b:11:18:ca:e5:04:ad:bb:e6:cf:a6:54:ab:ae:f5:08:3d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Validity Not Before: Aug 29 02:55:02 2025 GMT Not After : Aug 28 03:00:02 2026 GMT Subject: CN=375A7CCAEF5CBF61B381E368879B9F0F375551EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:07:d7:dd:99:57:cc:fa:90:28:57:7e:19: 81:e1:9d:af:46:fe:35:d2:79:ed:9f:d6:da:ed:b4: c3:6b:e2:f1:45:82:60:49:16:14:6e:0d:b9:73:ed: 46:87:84:6d:27:34:ea:31:a2:68:7b:02:12:45:a2: 3e:76:2f:e1:90:7a:06:97:3f:70:a2:77:82:2c:58: f4:8f:17:21:a1:80:7a:5a:17:c6:27:a6:2a:37:a5: 4d:60:56:bc:bc:c8:24:6c:20:9a:68:9b:34:6e:90: bc:40:bd:fb:7e:5e:7a:c9:2d:bc:01:d7:7c:1b:d6: f4:19:db:24:a9:b2:57:dd:8b:fd:5a:63:94:61:d0: ea:af:9b:c8:ea:4b:3f:1c:2d:17:4d:38:cd:41:51: 1d:9d:5b:6c:67:2d:58:dc:7c:81:c5:3c:22:4a:00: 53:df:99:2a:26:f6:b7:94:ad:5e:41:3d:ad:e9:d0: 2a:f7:14:d0:b5:e0:7d:cd:35:02:8a:02:9f:d2:bb: 05:e9:e4:76:10:0f:12:84:c9:bb:7e:6f:50:c0:7d: 75:98:29:4c:37:69:8b:32:df:56:ed:d3:3e:dd:d3: ed:be:e0:07:46:9b:ad:9b:d3:ba:78:48:c9:1f:0d: 1e:3e:0f:75:d0:1c:97:79:94:f3:3b:2e:33:de:49: fc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5A:7C:CA:EF:5C:BF:61:B3:81:E3:68:87:9B:9F:0F:37:55:51:EE X509v3 Authority Key Identifier: keyid:69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.118.0/23 Signature Algorithm: sha256WithRSAEncryption 26:f9:d8:0f:5b:d2:39:fd:72:4b:54:fc:04:19:ac:cc:fc:3f: 98:59:9b:b7:50:5c:77:ad:36:f6:a9:31:cf:2b:f4:8e:70:99: 45:72:95:fa:db:5a:ec:d4:96:70:d8:93:08:d4:ea:c3:22:f5: 5e:38:e5:24:42:76:ae:ce:8f:95:c5:54:08:5e:85:76:5d:64: a6:0a:44:09:72:9c:16:f7:56:a8:15:19:6d:46:d7:82:73:29: 4e:70:16:ac:5e:9e:56:09:eb:e6:b3:29:05:98:1a:a7:b3:30: 43:f9:d7:67:b8:6e:cc:fa:6d:74:be:90:b2:fe:75:cf:a6:64: 79:1f:56:0b:7f:68:a9:5f:d1:7f:15:93:ea:56:11:fa:fa:0b: e3:e1:0b:8e:a6:5f:a2:69:35:57:ec:22:45:f1:2d:d6:ef:82: 89:41:5c:55:50:91:12:f4:6a:2a:09:f7:b3:9b:82:9b:fc:e4: e5:94:e7:b7:8b:a0:8c:1b:3b:14:c9:16:78:ff:60:da:29:a7: 10:d4:fe:e9:8a:28:8d:24:7c:48:0d:82:32:ea:66:33:5f:02: 32:cb:df:66:4b:cc:ca:d3:13:07:c7:42:2a:0d:d5:5a:69:bd: f7:0f:38:57:c9:49:0d:67:1f:3c:70:dc:be:f4:5d:c7:01:17: 6e:f5:7b:6b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeZZ7ERjK5QStu+bPplSrrvUIPcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2 QTU5QjVFNzAeFw0yNTA4MjkwMjU1MDJaFw0yNjA4MjgwMzAwMDJaMDMxMTAvBgNV BAMTKDM3NUE3Q0NBRUY1Q0JGNjFCMzgxRTM2ODg3OUI5RjBGMzc1NTUxRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5yAfX3ZlXzPqQKFd+GYHhna9G /jXSee2f1trttMNr4vFFgmBJFhRuDblz7UaHhG0nNOoxomh7AhJFoj52L+GQegaX P3Cid4IsWPSPFyGhgHpaF8Ynpio3pU1gVry8yCRsIJpomzRukLxAvft+XnrJLbwB 13wb1vQZ2ySpslfdi/1aY5Rh0Oqvm8jqSz8cLRdNOM1BUR2dW2xnLVjcfIHFPCJK AFPfmSom9reUrV5BPa3p0Cr3FNC14H3NNQKKAp/SuwXp5HYQDxKEybt+b1DAfXWY KUw3aYsy31bt0z7d0+2+4AdGm62b07p4SMkfDR4+D3XQHJd5lPM7LjPeSfyTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUN1p8yu9cv2GzgeNoh5ufDzdVUe4wHwYDVR0j BBgwFoAUaf+a80ERzUY37YpstDUeUWpZtecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjQwYWJlNi04ZGVlLTRiZDEtODE0Yy0yYWYzMWEzZDljZGYvMC82OUZGOUFGMzQx MTFDRDQ2MzdFRDhBNkNCNDM1MUU1MTZBNTlCNUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2QTU5 QjVFNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NDBhYmU2LThkZWUtNGJkMS04 MTRjLTJhZjMxYTNkOWNkZi8wLzMxMzAzMzJlMzEzOTM2MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnxHYwDQYJ KoZIhvcNAQELBQADggEBACb52A9b0jn9cktU/AQZrMz8P5hZm7dQXHetNvapMc8r 9I5wmUVylfrbWuzUlnDYkwjU6sMi9V445SRCdq7Oj5XFVAhehXZdZKYKRAlynBb3 VqgVGW1G14JzKU5wFqxenlYJ6+azKQWYGqezMEP512e4bsz6bXS+kLL+dc+mZHkf Vgt/aKlf0X8Vk+pWEfr6C+PhC46mX6JpNVfsIkXxLdbvgolBXFVQkRL0aioJ97Ob gpv85OWU57eLoIwbOxTJFnj/YNoppxDU/umKKI0kfEgNgjLqZjNfAjLL32ZLzMrT EwfHQioN1VppvfcPOFfJSQ1nHzxw3L70XccBF271e2s= -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:39 2025 by rpki-client