$ rpki-client -vvf repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131392e302f32342d3234203d3e20313530323131.roa File: 3130332e3139362e3131392e302f32342d3234203d3e20313530323131.roa (raw, json) Hash identifier: 9ZkiCqfJaR2Zz0Qi5RLZPH4v5HuKpySyDiWp1DDQcaA= Subject key identifier: 13:97:67:4A:40:0D:59:EA:98:AD:DC:6A:EF:1E:04:3E:AC:37:92:06 Certificate issuer: /CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Certificate serial: 649FA438EEBBBECCD218E0A0765C25CE7E11859D Authority key identifier: 69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131392e302f32342d3234203d3e20313530323131.roa Signing time: Fri 29 Aug 2025 03:00:02 +0000 ROA not before: Fri 29 Aug 2025 02:55:02 +0000 ROA not after: Fri 28 Aug 2026 03:00:02 +0000 asID: 150211 IP address blocks: 103.196.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9f:a4:38:ee:bb:be:cc:d2:18:e0:a0:76:5c:25:ce:7e:11:85:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Validity Not Before: Aug 29 02:55:02 2025 GMT Not After : Aug 28 03:00:02 2026 GMT Subject: CN=1397674A400D59EA98ADDC6AEF1E043EAC379206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:54:91:49:d8:4f:76:dd:35:29:28:af:4f:24: 18:a1:dd:31:06:35:7d:cc:ee:73:2c:8f:07:89:f7: a7:5e:44:90:f1:4f:74:8b:2d:21:01:21:4b:54:d2: 75:59:ce:a2:5f:67:9c:ab:d0:0a:94:63:a0:dc:e5: cd:2c:3f:22:62:30:f8:3f:d6:ee:61:46:31:ac:ff: 0b:4e:f8:70:20:47:cb:69:12:b1:7f:92:36:76:b0: 80:8a:00:39:b0:a3:6c:97:50:73:e8:04:03:a6:ee: 7f:d0:6a:11:83:d7:18:99:04:2c:d6:97:96:44:9b: 3e:95:34:44:ae:2f:7c:fc:0e:1f:e7:cf:6f:90:e6: 0f:52:b2:76:1a:75:3b:30:a5:10:f0:be:4b:38:81: 7b:41:6f:9a:69:93:c0:53:b8:61:24:f5:ad:bc:3d: 70:e3:e8:e5:83:33:38:e4:35:fb:27:b7:c9:c1:72: 9a:90:f7:41:a7:b5:7f:11:09:8f:1c:77:33:b8:40: db:a4:a6:96:e8:55:9e:a8:40:ad:02:b8:9a:d0:66: 7f:68:8d:86:23:8d:dc:34:26:24:2c:e5:a7:3d:e8: 97:b9:b4:9e:4a:76:76:9e:bb:b8:ca:29:45:be:30: 1c:56:9d:d3:1d:45:bf:4c:3e:09:0b:9f:03:2e:51: c2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:97:67:4A:40:0D:59:EA:98:AD:DC:6A:EF:1E:04:3E:AC:37:92:06 X509v3 Authority Key Identifier: keyid:69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131392e302f32342d3234203d3e20313530323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.119.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:60:15:a4:ac:c7:5d:62:fb:5a:03:c9:c6:39:70:33:62:d6: aa:c6:4f:67:23:96:3a:98:bc:c2:ea:23:17:2d:c1:4c:76:25: 1b:74:c2:16:fd:b9:44:57:bf:e7:85:59:8f:61:e3:3e:6e:1a: ab:5a:a8:ba:93:ef:cc:3d:81:48:c3:69:a2:a8:58:a2:49:67: 7f:83:dd:01:55:fd:ba:4e:0d:6b:41:ca:09:31:ee:a3:9f:1b: 5f:12:02:ac:51:1e:86:1a:06:b9:9e:5e:cc:2d:bc:0c:7f:3f: ac:0c:54:d8:dc:60:99:63:af:93:8c:b7:b4:f3:eb:65:67:f3: f8:1d:d2:54:0c:e0:c5:9c:91:e1:2b:e4:de:4a:b6:2f:73:29: d1:3b:e2:62:82:ff:54:9a:29:cd:2e:c5:f9:27:db:f9:bb:6e: d7:c5:81:ed:ab:b5:fc:71:34:6e:be:df:ea:2d:07:c8:e8:71: be:86:19:59:ba:7a:25:34:20:71:50:d5:19:63:8e:52:16:51: 77:7d:53:c5:2f:1f:71:a4:92:f8:82:e2:40:15:42:53:47:b6: cd:49:07:8b:b5:70:0a:42:3e:54:52:a4:b5:c2:51:e2:1a:7b: 67:cc:cb:ba:06:b1:df:84:85:c7:d9:28:42:33:22:d9:0f:74: e5:1a:e1:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZJ+kOO67vszSGOCgdlwlzn4RhZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2 QTU5QjVFNzAeFw0yNTA4MjkwMjU1MDJaFw0yNjA4MjgwMzAwMDJaMDMxMTAvBgNV BAMTKDEzOTc2NzRBNDAwRDU5RUE5OEFEREM2QUVGMUUwNDNFQUMzNzkyMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVJFJ2E923TUpKK9PJBih3TEG NX3M7nMsjweJ96deRJDxT3SLLSEBIUtU0nVZzqJfZ5yr0AqUY6Dc5c0sPyJiMPg/ 1u5hRjGs/wtO+HAgR8tpErF/kjZ2sICKADmwo2yXUHPoBAOm7n/QahGD1xiZBCzW l5ZEmz6VNESuL3z8Dh/nz2+Q5g9SsnYadTswpRDwvks4gXtBb5ppk8BTuGEk9a28 PXDj6OWDMzjkNfsnt8nBcpqQ90GntX8RCY8cdzO4QNukppboVZ6oQK0CuJrQZn9o jYYjjdw0JiQs5ac96Je5tJ5Kdnaeu7jKKUW+MBxWndMdRb9MPgkLnwMuUcJvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUE5dnSkANWeqYrdxq7x4EPqw3kgYwHwYDVR0j BBgwFoAUaf+a80ERzUY37YpstDUeUWpZtecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjQwYWJlNi04ZGVlLTRiZDEtODE0Yy0yYWYzMWEzZDljZGYvMC82OUZGOUFGMzQx MTFDRDQ2MzdFRDhBNkNCNDM1MUU1MTZBNTlCNUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2QTU5 QjVFNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NDBhYmU2LThkZWUtNGJkMS04 MTRjLTJhZjMxYTNkOWNkZi8wLzMxMzAzMzJlMzEzOTM2MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnxHcwDQYJ KoZIhvcNAQELBQADggEBADpgFaSsx11i+1oDycY5cDNi1qrGT2cjljqYvMLqIxct wUx2JRt0whb9uURXv+eFWY9h4z5uGqtaqLqT78w9gUjDaaKoWKJJZ3+D3QFV/bpO DWtBygkx7qOfG18SAqxRHoYaBrmeXswtvAx/P6wMVNjcYJljr5OMt7Tz62Vn8/gd 0lQM4MWckeEr5N5Kti9zKdE74mKC/1SaKc0uxfkn2/m7btfFge2rtfxxNG6+3+ot B8jocb6GGVm6eiU0IHFQ1RljjlIWUXd9U8UvH3GkkviC4kAVQlNHts1JB4u1cApC PlRSpLXCUeIae2fMy7oGsd+EhcfZKEIzItkPdOUa4ag= -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:44 2025 by rpki-client