$ rpki-client -vvf repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/3130332e3137372e3135332e302f32342d3234203d3e20313437313539.roa File: 3130332e3137372e3135332e302f32342d3234203d3e20313437313539.roa (raw, json) Hash identifier: HPAI2gh/1HuKjzOsiopIeCg4F+M7JZClMF/J1ZpnE0M= Subject key identifier: 1F:96:C1:AA:B0:54:0D:F1:C6:23:77:CA:07:D3:1C:0A:63:6E:E7:23 Certificate issuer: /CN=061A692BFC16B119C1D8FDB07C81CDE0FFEA2159 Certificate serial: 4292D774690118B1DEF4CE0A634C7F479801724B Authority key identifier: 06:1A:69:2B:FC:16:B1:19:C1:D8:FD:B0:7C:81:CD:E0:FF:EA:21:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/3130332e3137372e3135332e302f32342d3234203d3e20313437313539.roa Signing time: Fri 29 Aug 2025 01:00:00 +0000 ROA not before: Fri 29 Aug 2025 00:55:00 +0000 ROA not after: Fri 28 Aug 2026 01:00:00 +0000 asID: 147159 IP address blocks: 103.177.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.crl rsync://repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 08:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:92:d7:74:69:01:18:b1:de:f4:ce:0a:63:4c:7f:47:98:01:72:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061A692BFC16B119C1D8FDB07C81CDE0FFEA2159 Validity Not Before: Aug 29 00:55:00 2025 GMT Not After : Aug 28 01:00:00 2026 GMT Subject: CN=1F96C1AAB0540DF1C62377CA07D31C0A636EE723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:92:d5:69:f5:77:c3:af:75:70:81:7f:7a: 6a:24:ce:f5:ec:5c:4e:ad:21:5a:c0:f7:04:cf:41: 0b:24:db:7c:f3:5a:7d:8d:71:b2:c0:23:21:82:36: 33:c2:39:54:ca:7b:2e:45:28:2d:d4:29:15:ab:38: 73:23:63:61:e7:65:ab:a2:23:43:a6:6b:15:d5:53: 15:cd:e6:d6:e6:a9:8e:f4:e8:58:e1:53:98:0b:ff: 1e:e9:e6:3b:b1:0c:ef:44:58:ea:5c:ad:3b:b2:7a: 3e:13:cc:af:ee:2f:9f:0a:56:6b:5b:f0:ad:0a:0f: 47:c0:f6:08:89:e1:ec:91:5f:5f:f7:1f:19:22:82: d3:f6:6d:56:ff:15:fe:92:cd:37:0b:18:ca:d8:6e: eb:0a:7a:54:3f:7f:61:60:fc:f8:32:0b:22:46:49: 02:5a:48:7e:72:5f:b4:4e:19:5a:38:c2:2d:f8:66: 2c:e1:33:a6:2a:a0:0a:98:6f:a2:51:df:89:4c:1b: 19:0a:3c:4c:9d:22:eb:16:c4:af:3e:a9:fd:04:11: 19:75:b1:ef:06:e9:e0:61:f5:85:28:f4:fc:0a:ae: e1:46:3f:0d:5b:f1:89:f6:0f:10:d6:9e:84:76:5e: ec:f6:90:d1:e4:f0:db:08:e1:8c:a1:21:61:a8:d2: 64:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:96:C1:AA:B0:54:0D:F1:C6:23:77:CA:07:D3:1C:0A:63:6E:E7:23 X509v3 Authority Key Identifier: keyid:06:1A:69:2B:FC:16:B1:19:C1:D8:FD:B0:7C:81:CD:E0:FF:EA:21:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061A692BFC16B119C1D8FDB07C81CDE0FFEA2159.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c731fb27-6133-47ea-b7cc-2227e04ca265/0/3130332e3137372e3135332e302f32342d3234203d3e20313437313539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.153.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:a1:60:7b:af:f5:c8:f9:f0:90:d8:39:47:b2:ec:8b:8f:37: e9:1e:f8:3a:45:42:4a:e6:bb:48:55:e3:1b:ff:8d:11:dc:5f: ca:37:e3:df:ce:1b:a3:91:98:b6:70:e8:24:f3:98:ed:55:bf: 9f:0d:4d:d3:d8:13:ce:34:8f:5d:f2:f8:df:9c:fb:72:3f:ea: ce:b9:b6:46:33:b9:84:52:b9:9c:44:51:8c:a1:93:4a:90:7e: 0e:67:6f:d7:26:3e:eb:84:90:bb:ea:f0:db:2e:2b:f5:31:70: d7:49:da:ac:eb:61:61:6e:cc:91:e3:9f:66:32:ca:7e:f7:97: 31:a1:76:d8:53:3a:13:49:fe:c8:0d:c5:1a:68:b4:b7:b9:6d: 82:eb:9e:f5:5b:16:2e:6a:0d:18:2d:07:c5:c0:44:a1:d2:9c: 92:4e:4f:68:08:6d:f3:06:e1:02:08:47:7b:25:b9:d2:73:7d: b6:e4:15:84:18:63:84:ae:e8:3b:bb:54:89:af:be:66:95:4f: 6c:c5:9b:94:67:5e:1e:40:72:33:46:2d:5b:90:7d:94:15:3d: 98:41:56:3f:9d:e5:5c:97:4b:40:74:f1:51:dc:e0:06:69:e2: b1:29:e9:0a:07:2d:73:86:6b:a3:1b:6b:f8:01:9d:ce:2a:63: b7:85:c0:b6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQpLXdGkBGLHe9M4KY0x/R5gBckswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYxQTY5MkJGQzE2QjExOUMxRDhGREIwN0M4MUNERTBG RkVBMjE1OTAeFw0yNTA4MjkwMDU1MDBaFw0yNjA4MjgwMTAwMDBaMDMxMTAvBgNV BAMTKDFGOTZDMUFBQjA1NDBERjFDNjIzNzdDQTA3RDMxQzBBNjM2RUU3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFNJLVafV3w691cIF/emokzvXs XE6tIVrA9wTPQQsk23zzWn2NcbLAIyGCNjPCOVTKey5FKC3UKRWrOHMjY2HnZaui I0OmaxXVUxXN5tbmqY706FjhU5gL/x7p5juxDO9EWOpcrTuyej4TzK/uL58KVmtb 8K0KD0fA9giJ4eyRX1/3HxkigtP2bVb/Ff6SzTcLGMrYbusKelQ/f2Fg/PgyCyJG SQJaSH5yX7ROGVo4wi34ZizhM6YqoAqYb6JR34lMGxkKPEydIusWxK8+qf0EERl1 se8G6eBh9YUo9PwKruFGPw1b8Yn2DxDWnoR2Xuz2kNHk8NsI4YyhIWGo0mTXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUH5bBqrBUDfHGI3fKB9McCmNu5yMwHwYDVR0j BBgwFoAUBhppK/wWsRnB2P2wfIHN4P/qIVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzMxZmIyNy02MTMzLTQ3ZWEtYjdjYy0yMjI3ZTA0Y2EyNjUvMC8wNjFBNjkyQkZD MTZCMTE5QzFEOEZEQjA3QzgxQ0RFMEZGRUEyMTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDYxQTY5MkJGQzE2QjExOUMxRDhGREIwN0M4MUNERTBGRkVB MjE1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3MzFmYjI3LTYxMzMtNDdlYS1i N2NjLTIyMjdlMDRjYTI2NS8wLzMxMzAzMzJlMzEzNzM3MmUzMTM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsZkwDQYJ KoZIhvcNAQELBQADggEBABuhYHuv9cj58JDYOUey7IuPN+ke+DpFQkrmu0hV4xv/ jRHcX8o349/OG6ORmLZw6CTzmO1Vv58NTdPYE840j13y+N+c+3I/6s65tkYzuYRS uZxEUYyhk0qQfg5nb9cmPuuEkLvq8NsuK/UxcNdJ2qzrYWFuzJHjn2Yyyn73lzGh dthTOhNJ/sgNxRpotLe5bYLrnvVbFi5qDRgtB8XARKHSnJJOT2gIbfMG4QIIR3sl udJzfbbkFYQYY4Su6Du7VImvvmaVT2zFm5RnXh5AcjNGLVuQfZQVPZhBVj+d5VyX S0B08VHc4AZp4rEp6QoHLXOGa6Mba/gBnc4qY7eFwLY= -----END CERTIFICATE-----Generated at Mon Sep 8 09:43:50 2025 by rpki-client