$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa File: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (raw, json) Hash identifier: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI= Subject key identifier: 20:48:17:04:1C:60:AC:4C:3E:F6:BD:1F:0D:B8:FE:42:F2:11:99:55 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 7F07730E600105ED59F5199AFE31147E374CC93A Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa Signing time: Sun 31 Aug 2025 03:00:00 +0000 ROA not before: Sun 31 Aug 2025 02:55:00 +0000 ROA not after: Sun 30 Aug 2026 03:00:00 +0000 asID: 141975 IP address blocks: 103.167.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:07:73:0e:60:01:05:ed:59:f5:19:9a:fe:31:14:7e:37:4c:c9:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Aug 31 02:55:00 2025 GMT Not After : Aug 30 03:00:00 2026 GMT Subject: CN=204817041C60AC4C3EF6BD1F0DB8FE42F2119955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f7:8a:c9:ff:f8:ed:b8:58:55:19:68:1d:a8: bd:cf:64:d8:92:7d:d6:0a:c4:72:6b:d4:06:8e:30: dd:78:a3:60:72:6e:80:3d:2b:50:dd:2c:92:79:d5: a9:97:b4:c5:5f:28:1f:d2:bb:97:3f:ee:0b:55:32: fc:76:9b:68:20:38:63:4d:a2:55:a7:01:b5:af:b5: 7b:1a:92:7d:2a:db:9e:61:c5:23:2d:c1:ac:c5:53: 94:5b:f8:de:7e:c6:8b:33:e2:03:87:2a:07:1f:3a: 6a:03:b2:0a:c6:41:ee:be:06:9b:64:2c:fc:71:3c: f5:82:25:cc:99:1e:22:34:ad:09:ed:a5:fe:75:d7: a3:72:b5:45:62:c7:ef:0e:61:ae:e1:d1:85:ca:44: d0:01:31:c6:78:1a:b2:dd:87:60:f5:c2:7d:a7:5b: 24:4d:bc:02:92:d9:f7:c0:0c:1f:44:98:a9:b7:dc: e5:36:35:24:bc:9d:42:78:a9:de:d5:4e:d5:9d:ca: 20:7e:78:67:a3:eb:c2:7e:78:3d:f6:a7:53:4c:9f: e2:c9:ec:67:30:4a:a0:34:cd:4d:af:6d:3b:ce:6a: 75:9e:0e:74:30:87:e6:91:13:80:96:b3:b3:84:09: 84:17:ec:02:8c:9a:01:df:8c:62:0d:6f:3b:35:1d: d2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:48:17:04:1C:60:AC:4C:3E:F6:BD:1F:0D:B8:FE:42:F2:11:99:55 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/23 Signature Algorithm: sha256WithRSAEncryption c7:32:fc:15:ce:9a:6a:a0:c7:aa:b6:27:10:94:a1:77:a5:33: 0e:99:38:3d:2c:11:de:0a:38:a6:04:cd:35:df:47:6b:a2:30: d1:ae:f3:c5:43:87:39:9d:6a:e9:64:64:db:fd:cb:27:9e:20: 2a:37:3b:11:5e:a9:49:3a:56:97:db:f7:74:d5:72:f8:a7:2d: 7f:b3:96:2b:47:85:29:70:cd:5e:f0:29:52:59:22:dc:56:60: 97:40:e0:e7:b4:3c:4f:d2:35:20:93:e9:22:cc:95:3d:6d:62: 02:2f:51:a3:4e:4d:43:27:32:41:ad:03:c1:0e:b8:14:c7:cb: d2:6e:d8:51:f8:4a:e1:b2:9c:0a:68:43:36:b1:0f:52:d0:70: 87:b8:29:45:d9:2c:2a:f8:48:af:21:2a:9b:43:6a:41:0e:d3: 2e:cc:58:e2:03:45:65:34:5e:35:dc:f9:34:7d:8d:b5:00:84: cd:ec:22:26:b6:9e:b5:0a:29:4c:cb:81:f3:dd:dc:79:7a:19: 52:e4:7d:a5:9b:73:26:17:ed:19:ff:5a:ec:5c:1c:1f:8a:ff: b7:2a:1f:ef:90:3f:fb:c5:0e:41:a6:e2:7e:74:06:f3:78:a5: 3f:6f:af:9c:6f:40:09:ab:a4:ed:7f:2e:20:ac:fc:30:83:17: cc:c4:c4:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfwdzDmABBe1Z9Rma/jEUfjdMyTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA4MzEwMjU1MDBaFw0yNjA4MzAwMzAwMDBaMDMxMTAvBgNV BAMTKDIwNDgxNzA0MUM2MEFDNEMzRUY2QkQxRjBEQjhGRTQyRjIxMTk5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE94rJ//jtuFhVGWgdqL3PZNiS fdYKxHJr1AaOMN14o2ByboA9K1DdLJJ51amXtMVfKB/Su5c/7gtVMvx2m2ggOGNN olWnAbWvtXsakn0q255hxSMtwazFU5Rb+N5+xosz4gOHKgcfOmoDsgrGQe6+Bptk LPxxPPWCJcyZHiI0rQntpf5116NytUVix+8OYa7h0YXKRNABMcZ4GrLdh2D1wn2n WyRNvAKS2ffADB9EmKm33OU2NSS8nUJ4qd7VTtWdyiB+eGej68J+eD32p1NMn+LJ 7GcwSqA0zU2vbTvOanWeDnQwh+aRE4CWs7OECYQX7AKMmgHfjGINbzs1HdL/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIEgXBBxgrEw+9r0fDbj+QvIRmVUwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdkLWU1MDktNDdiYS1i ZTlkLTg5NTU2ZjUzMGVhOC8wLzMxMzAzMzJlMzEzNjM3MmUzNzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6dGMA0GCSqG SIb3DQEBCwUAA4IBAQDHMvwVzppqoMeqticQlKF3pTMOmTg9LBHeCjimBM0130dr ojDRrvPFQ4c5nWrpZGTb/csnniAqNzsRXqlJOlaX2/d01XL4py1/s5YrR4UpcM1e 8ClSWSLcVmCXQODntDxP0jUgk+kizJU9bWICL1GjTk1DJzJBrQPBDrgUx8vSbthR +ErhspwKaEM2sQ9S0HCHuClF2Swq+EivISqbQ2pBDtMuzFjiA0VlNF413Pk0fY21 AITN7CImtp61CilMy4Hz3dx5ehlS5H2lm3MmF+0Z/1rsXBwfiv+3Kh/vkD/7xQ5B puJ+dAbzeKU/b6+cb0AJq6Ttfy4grPwwgxfMxMRR -----END CERTIFICATE-----Generated at Tue Sep 9 19:22:12 2025 by rpki-client