$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa File: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (raw, json) Hash identifier: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A= Subject key identifier: F1:56:1B:77:6A:46:CB:9A:90:3D:BA:B2:28:7A:51:E9:B7:13:A4:1A Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 6A634378C6B8EB529CC71C5F443888E1C6F94B26 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa Signing time: Fri 29 Aug 2025 12:00:00 +0000 ROA not before: Fri 29 Aug 2025 11:55:00 +0000 ROA not after: Fri 28 Aug 2026 12:00:00 +0000 asID: 141975 IP address blocks: 103.167.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:63:43:78:c6:b8:eb:52:9c:c7:1c:5f:44:38:88:e1:c6:f9:4b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Aug 29 11:55:00 2025 GMT Not After : Aug 28 12:00:00 2026 GMT Subject: CN=F1561B776A46CB9A903DBAB2287A51E9B713A41A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:a9:83:7b:26:7c:68:ef:dc:bc:40:1d:f8: 16:67:3b:af:b5:a5:84:13:9d:6e:f0:de:d2:14:34: 0d:92:2e:da:0c:19:79:56:97:65:1e:1e:56:a8:79: 49:3a:a9:a0:fe:9e:7e:00:e3:b6:a8:6e:69:5d:e4: 2d:ad:7f:4a:fb:f5:c8:39:db:d7:d3:c0:8a:58:f4: 3e:8f:6b:8e:72:d8:91:51:62:5a:4d:c0:86:9c:5d: c7:e1:9e:5d:0f:3f:87:74:9d:0d:ae:45:c9:b6:b9: b9:db:61:8b:8a:b4:a4:2a:1b:20:ba:48:0c:61:60: a0:0a:f6:19:da:53:38:c3:fc:24:2b:c3:6c:43:5f: 46:69:1e:0c:87:ca:95:61:c9:b8:a9:14:da:1e:7e: 6d:be:15:6a:d0:a3:77:a6:25:05:48:d1:06:b9:ef: f6:12:a8:17:61:81:a3:73:8b:1c:b0:38:3f:5f:ed: 00:24:45:1d:37:89:37:cc:3e:52:54:fa:98:08:f2: 39:7e:ac:d1:f6:09:42:db:36:3a:52:f2:be:e3:87: 53:a7:b7:82:a5:55:85:1f:99:c5:da:fb:82:b1:41: 47:de:5b:bf:d8:4e:14:4b:8b:bc:4d:cd:66:18:6c: 8e:7d:b6:a3:8e:42:1b:1e:af:6f:fd:d3:71:15:6e: 79:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:56:1B:77:6A:46:CB:9A:90:3D:BA:B2:28:7A:51:E9:B7:13:A4:1A X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:f5:fc:90:37:4c:05:49:0b:16:30:13:97:77:e2:c5:35:a6: 9c:ff:7b:6c:2a:63:e0:83:2e:d6:9e:13:a1:97:33:15:44:e5: 5a:a7:c8:60:c7:5a:ab:6c:08:e0:a1:fa:e3:8c:d9:d0:92:6f: 26:06:73:81:da:9a:ce:0e:0b:f6:c9:87:6a:aa:09:d3:15:3c: 0e:88:24:59:b3:c8:5a:f7:01:7d:d4:7d:41:e6:d2:aa:35:df: 1a:30:90:fd:82:73:68:4b:2e:c3:4d:8b:46:f8:83:25:42:fb: a4:57:aa:12:35:09:a4:e0:1e:3f:95:cc:03:a3:85:c6:89:4f: 56:a6:0f:d3:33:5b:e6:4e:2d:46:b7:69:2f:64:80:fc:71:f2: 90:2e:0e:e4:de:1c:ac:42:68:6d:10:4c:3b:ee:4d:fa:b1:ef: 74:66:89:f3:ed:e8:f0:af:94:cd:80:c0:ff:6b:19:f8:a7:79: fd:6a:05:e0:90:36:e4:ee:48:9a:1d:9b:a7:10:dc:25:7f:62: 0b:a5:59:d7:d7:ae:11:ad:6c:17:8d:e6:3a:fd:be:44:2c:24: 3f:5d:70:df:70:e9:3f:07:24:6e:15:dc:42:9d:da:55:86:c1: 6e:65:6e:bc:ce:14:22:5f:0b:54:4d:12:5d:fe:24:7d:67:3c: 08:9b:a6:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUamNDeMa461KcxxxfRDiI4cb5SyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA4MjkxMTU1MDBaFw0yNjA4MjgxMjAwMDBaMDMxMTAvBgNV BAMTKEYxNTYxQjc3NkE0NkNCOUE5MDNEQkFCMjI4N0E1MUU5QjcxM0E0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykamDeyZ8aO/cvEAd+BZnO6+1 pYQTnW7w3tIUNA2SLtoMGXlWl2UeHlaoeUk6qaD+nn4A47aobmld5C2tf0r79cg5 29fTwIpY9D6Pa45y2JFRYlpNwIacXcfhnl0PP4d0nQ2uRcm2ubnbYYuKtKQqGyC6 SAxhYKAK9hnaUzjD/CQrw2xDX0ZpHgyHypVhybipFNoefm2+FWrQo3emJQVI0Qa5 7/YSqBdhgaNzixywOD9f7QAkRR03iTfMPlJU+pgI8jl+rNH2CULbNjpS8r7jh1On t4KlVYUfmcXa+4KxQUfeW7/YThRLi7xNzWYYbI59tqOOQhser2/903EVbnldAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8VYbd2pGy5qQPbqyKHpR6bcTpBowHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdkLWU1MDktNDdiYS1i ZTlkLTg5NTU2ZjUzMGVhOC8wLzMxMzAzMzJlMzEzNjM3MmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dGMA0GCSqG SIb3DQEBCwUAA4IBAQB89fyQN0wFSQsWMBOXd+LFNaac/3tsKmPggy7WnhOhlzMV ROVap8hgx1qrbAjgofrjjNnQkm8mBnOB2prODgv2yYdqqgnTFTwOiCRZs8ha9wF9 1H1B5tKqNd8aMJD9gnNoSy7DTYtG+IMlQvukV6oSNQmk4B4/lcwDo4XGiU9Wpg/T M1vmTi1Gt2kvZID8cfKQLg7k3hysQmhtEEw77k36se90Zonz7ejwr5TNgMD/axn4 p3n9agXgkDbk7kiaHZunENwlf2ILpVnX164RrWwXjeY6/b5ELCQ/XXDfcOk/ByRu FdxCndpVhsFuZW68zhQiXwtUTRJd/iR9ZzwIm6Yc -----END CERTIFICATE-----Generated at Tue Sep 9 19:22:13 2025 by rpki-client