$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa File: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (raw, json) Hash identifier: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns= Subject key identifier: C0:B3:8F:C3:06:5C:8B:51:0E:FD:92:89:01:BA:96:26:C2:82:5A:A4 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 6B74F74B0095160B55EF3E91587B706E6744F19E Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa Signing time: Fri 29 Aug 2025 12:00:00 +0000 ROA not before: Fri 29 Aug 2025 11:55:00 +0000 ROA not after: Fri 28 Aug 2026 12:00:00 +0000 asID: 149175 IP address blocks: 103.167.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:74:f7:4b:00:95:16:0b:55:ef:3e:91:58:7b:70:6e:67:44:f1:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Aug 29 11:55:00 2025 GMT Not After : Aug 28 12:00:00 2026 GMT Subject: CN=C0B38FC3065C8B510EFD928901BA9626C2825AA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:ab:c1:a9:b0:45:66:43:93:7b:81:97:48: 1e:21:66:f3:a7:4e:0b:57:eb:e7:da:ef:43:ba:39: 60:0e:8b:a2:62:df:f9:77:c7:02:1b:ae:37:2f:ae: 23:67:ef:ac:e9:2d:fc:2c:18:a7:ee:06:7d:70:5d: 3f:88:4f:68:03:35:30:75:8b:44:e5:04:c2:2d:fb: 8b:7a:42:b5:85:98:73:f1:f7:0c:46:fb:b8:24:d1: 59:ba:e9:88:06:df:65:8f:22:11:31:5f:23:28:a6: 6e:63:22:06:03:62:45:f2:41:d4:fa:1e:ae:3d:33: 20:4a:a5:1b:18:c9:56:73:fc:ea:57:82:79:93:91: 07:46:9e:2a:bc:d7:00:ba:cd:f2:b2:9a:7a:33:b8: 75:32:5c:6f:64:92:a2:9a:18:01:fe:9e:12:a6:25: c9:45:9f:c9:d8:bf:d6:1a:9b:5f:83:5f:a5:88:26: a7:ec:1c:fa:ce:8c:48:cc:d8:11:d3:86:ed:3c:2c: a6:f4:dc:00:99:f8:6d:df:48:cf:d1:29:13:4b:78: fb:6e:3e:67:b1:04:f0:67:19:2c:61:98:bd:bb:e1: 04:04:40:da:d6:05:f9:d2:02:6b:c9:21:d2:10:97: 05:9c:c2:03:81:ae:ee:ae:e5:a6:9a:64:7c:55:65: fa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B3:8F:C3:06:5C:8B:51:0E:FD:92:89:01:BA:96:26:C2:82:5A:A4 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.71.0/24 Signature Algorithm: sha256WithRSAEncryption 80:b8:bf:43:ed:77:27:c2:68:04:d8:f6:92:14:d5:6e:cb:62: 76:a9:e4:b9:1a:c2:f1:2e:8c:72:55:77:13:1b:4f:b6:5d:04: 19:f1:35:7d:c6:75:83:49:f6:b3:18:6d:d1:0d:6a:18:08:7b: 1f:82:35:00:ab:16:1f:ed:a4:3f:39:13:4a:8a:a7:5d:25:fa: 02:08:be:be:4c:37:28:53:38:43:a9:61:43:78:d3:e3:0c:4c: 1c:48:0d:76:cb:1a:ec:7c:98:89:ca:19:79:ac:6e:f9:eb:de: d0:82:e8:e4:37:76:fe:61:55:6d:06:eb:5d:fc:07:f3:10:49: 1b:37:df:f0:cf:b4:96:f6:d9:d3:c2:e1:c9:d3:50:d5:d2:19: b1:ae:03:d4:7d:fd:75:5b:ec:c6:6f:e2:6e:94:76:b5:cb:c6: e8:75:cf:0d:d7:3f:c1:55:30:3f:0f:cb:dc:a9:b4:17:6c:64: ba:73:ba:e2:54:7b:ea:0e:82:88:e8:e5:31:2c:25:8a:c4:f0: cc:f0:70:31:39:72:fe:b6:c8:e9:b2:d5:5c:b4:dc:bd:8f:85: a4:d7:98:e9:3d:c9:36:74:cd:8c:e7:45:b5:02:a4:03:9d:fc: 97:07:dc:8e:e4:a9:d7:c1:96:73:5c:61:91:3d:2d:37:50:8e: ea:a2:17:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa3T3SwCVFgtV7z6RWHtwbmdE8Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA4MjkxMTU1MDBaFw0yNjA4MjgxMjAwMDBaMDMxMTAvBgNV BAMTKEMwQjM4RkMzMDY1QzhCNTEwRUZEOTI4OTAxQkE5NjI2QzI4MjVBQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGVKvBqbBFZkOTe4GXSB4hZvOn TgtX6+fa70O6OWAOi6Ji3/l3xwIbrjcvriNn76zpLfwsGKfuBn1wXT+IT2gDNTB1 i0TlBMIt+4t6QrWFmHPx9wxG+7gk0Vm66YgG32WPIhExXyMopm5jIgYDYkXyQdT6 Hq49MyBKpRsYyVZz/OpXgnmTkQdGniq81wC6zfKymnozuHUyXG9kkqKaGAH+nhKm JclFn8nYv9Yam1+DX6WIJqfsHPrOjEjM2BHThu08LKb03ACZ+G3fSM/RKRNLePtu PmexBPBnGSxhmL274QQEQNrWBfnSAmvJIdIQlwWcwgOBru6u5aaaZHxVZfp5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwLOPwwZci1EO/ZKJAbqWJsKCWqQwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdkLWU1MDktNDdiYS1i ZTlkLTg5NTU2ZjUzMGVhOC8wLzMxMzAzMzJlMzEzNjM3MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzEzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dHMA0GCSqG SIb3DQEBCwUAA4IBAQCAuL9D7XcnwmgE2PaSFNVuy2J2qeS5GsLxLoxyVXcTG0+2 XQQZ8TV9xnWDSfazGG3RDWoYCHsfgjUAqxYf7aQ/ORNKiqddJfoCCL6+TDcoUzhD qWFDeNPjDEwcSA12yxrsfJiJyhl5rG75697QgujkN3b+YVVtButd/AfzEEkbN9/w z7SW9tnTwuHJ01DV0hmxrgPUff11W+zGb+JulHa1y8bodc8N1z/BVTA/D8vcqbQX bGS6c7riVHvqDoKI6OUxLCWKxPDM8HAxOXL+tsjpstVctNy9j4Wk15jpPck2dM2M 50W1AqQDnfyXB9yO5KnXwZZzXGGRPS03UI7qohfo -----END CERTIFICATE-----Generated at Tue Sep 9 09:12:52 2025 by rpki-client