$ rpki-client -vvf repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32342d3234203d3e20313530323131.roa File: 3130332e3139362e3131382e302f32342d3234203d3e20313530323131.roa (raw, json) Hash identifier: ZStiQiNLIgsMsK4weqSRNlK9ytdK1wtKwc7rWiw2Y64= Subject key identifier: 1F:31:EE:C1:0D:14:7E:17:A4:1E:70:C7:CA:C6:75:CC:EF:46:E1:95 Certificate issuer: /CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Certificate serial: 44728C2CC36E07C21C1BED7D2C302FE349EFD23D Authority key identifier: 69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32342d3234203d3e20313530323131.roa Signing time: Fri 29 Aug 2025 04:02:30 +0000 ROA not before: Fri 29 Aug 2025 03:57:30 +0000 ROA not after: Fri 28 Aug 2026 04:02:30 +0000 asID: 150211 IP address blocks: 103.196.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:72:8c:2c:c3:6e:07:c2:1c:1b:ed:7d:2c:30:2f:e3:49:ef:d2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Validity Not Before: Aug 29 03:57:30 2025 GMT Not After : Aug 28 04:02:30 2026 GMT Subject: CN=1F31EEC10D147E17A41E70C7CAC675CCEF46E195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:59:cf:53:cb:c8:a4:5b:5a:33:dd:28:eb: 88:9d:a9:64:b6:9f:d3:dc:bc:eb:11:39:e6:8a:d0: 85:50:84:58:87:65:b1:74:75:d6:ec:b4:2d:e0:c1: 61:1d:5b:c6:ec:0c:ab:df:b2:49:3d:d0:1a:c2:05: c3:8e:7d:4e:8c:ef:32:34:17:fc:8d:f4:ef:41:d9: 19:dd:81:41:5b:63:9b:16:9b:c3:06:0c:7c:c9:95: 62:c3:70:b5:19:e7:d9:0f:eb:a6:47:69:a3:c6:fe: af:d2:3d:08:87:23:3a:59:25:7e:e2:e4:19:32:82: 00:f9:44:f0:1f:be:9c:ca:73:96:da:fb:dc:9e:07: 4f:62:bb:f4:f6:c4:0a:e5:99:8e:de:df:74:39:fc: af:7b:98:33:ac:31:ae:96:b0:d8:56:e5:4d:c7:0e: 92:86:f5:43:aa:ab:3c:f2:2a:5e:19:7f:c7:2f:6a: 40:1f:eb:3b:af:bb:70:4b:24:b8:17:af:71:f2:43: f1:0d:7f:6a:77:7e:59:6b:2f:ee:1d:eb:4f:c8:90: 1b:18:13:74:9e:e9:83:ea:c7:32:da:08:10:8b:e9: ef:fe:b2:ae:8b:16:89:d1:3d:6b:f3:10:1a:8f:10: 85:2f:0e:0c:3c:b2:13:73:3e:28:5f:0d:45:22:a8: 6a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:31:EE:C1:0D:14:7E:17:A4:1E:70:C7:CA:C6:75:CC:EF:46:E1:95 X509v3 Authority Key Identifier: keyid:69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32342d3234203d3e20313530323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.118.0/24 Signature Algorithm: sha256WithRSAEncryption 23:34:ba:61:11:b8:63:6b:ee:ce:fa:5b:22:03:59:83:80:96: 31:63:e5:1c:8c:bc:dc:a5:1b:17:5c:bc:a1:e2:0f:6a:9c:ef: 0b:3f:2c:e0:d1:a6:54:e5:e7:36:61:4a:74:98:e6:bb:2b:a2: 29:52:95:ee:1a:ea:da:15:b6:f7:68:65:d5:ab:94:d8:eb:29: c9:e2:50:92:6b:99:15:e7:0a:3a:60:43:5f:e2:a3:b9:4b:62: d6:b2:bc:5e:ad:b3:40:52:38:d4:36:d5:1a:4f:48:2c:cd:8d: 8a:1f:70:fe:e0:42:8c:53:01:2b:75:c1:13:a8:a6:c6:fe:52: b9:b7:b2:4e:60:ad:4d:9a:bc:28:10:22:7c:82:3f:6e:b7:23: 2a:4f:ae:1b:e9:82:48:85:6a:fe:ed:da:32:64:d0:b2:9e:0f: c2:6c:74:aa:20:96:6c:e8:d0:9f:61:f2:2f:39:ff:74:72:31: 7a:67:27:40:fe:ca:54:1c:5d:46:16:b8:01:b7:27:79:c5:b6: b5:0e:da:e0:b3:71:b8:f5:e2:99:d2:d8:8d:9e:67:ee:47:49: 9f:0d:dd:f6:01:96:37:11:c9:b2:fc:dc:5f:f1:ab:fa:bb:5c: e6:fb:7e:02:c9:79:91:65:4e:5a:47:fa:aa:c4:8f:13:93:0d: 3c:cd:5a:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURHKMLMNuB8IcG+19LDAv40nv0j0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2 QTU5QjVFNzAeFw0yNTA4MjkwMzU3MzBaFw0yNjA4MjgwNDAyMzBaMDMxMTAvBgNV BAMTKDFGMzFFRUMxMEQxNDdFMTdBNDFFNzBDN0NBQzY3NUNDRUY0NkUxOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEYVnPU8vIpFtaM90o64idqWS2 n9PcvOsROeaK0IVQhFiHZbF0ddbstC3gwWEdW8bsDKvfskk90BrCBcOOfU6M7zI0 F/yN9O9B2RndgUFbY5sWm8MGDHzJlWLDcLUZ59kP66ZHaaPG/q/SPQiHIzpZJX7i 5BkyggD5RPAfvpzKc5ba+9yeB09iu/T2xArlmY7e33Q5/K97mDOsMa6WsNhW5U3H DpKG9UOqqzzyKl4Zf8cvakAf6zuvu3BLJLgXr3HyQ/ENf2p3fllrL+4d60/IkBsY E3Se6YPqxzLaCBCL6e/+sq6LFonRPWvzEBqPEIUvDgw8shNzPihfDUUiqGoXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHzHuwQ0UfhekHnDHysZ1zO9G4ZUwHwYDVR0j BBgwFoAUaf+a80ERzUY37YpstDUeUWpZtecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjQwYWJlNi04ZGVlLTRiZDEtODE0Yy0yYWYzMWEzZDljZGYvMC82OUZGOUFGMzQx MTFDRDQ2MzdFRDhBNkNCNDM1MUU1MTZBNTlCNUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2QTU5 QjVFNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NDBhYmU2LThkZWUtNGJkMS04 MTRjLTJhZjMxYTNkOWNkZi8wLzMxMzAzMzJlMzEzOTM2MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnxHYwDQYJ KoZIhvcNAQELBQADggEBACM0umERuGNr7s76WyIDWYOAljFj5RyMvNylGxdcvKHi D2qc7ws/LODRplTl5zZhSnSY5rsroilSle4a6toVtvdoZdWrlNjrKcniUJJrmRXn CjpgQ1/io7lLYtayvF6ts0BSONQ21RpPSCzNjYofcP7gQoxTASt1wROopsb+Urm3 sk5grU2avCgQInyCP263IypPrhvpgkiFav7t2jJk0LKeD8JsdKoglmzo0J9h8i85 /3RyMXpnJ0D+ylQcXUYWuAG3J3nFtrUO2uCzcbj14pnS2I2eZ+5HSZ8N3fYBljcR ybL83F/xq/q7XOb7fgLJeZFlTlpH+qrEjxOTDTzNWpc= -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:48 2025 by rpki-client