$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa File: 3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa (raw, json) Hash identifier: 1FGJd6AqSTK9oY+Kf0u0bGP0qcgnLzetRfPl9A2Bh4w= Subject key identifier: E5:46:FC:46:56:8B:0E:9F:E4:29:33:89:61:62:49:86:12:C0:37:52 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 3BC881419CFB337CBCB2AF285814E989815A7B2F Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa Signing time: Tue 26 Aug 2025 12:00:01 +0000 ROA not before: Tue 26 Aug 2025 11:55:01 +0000 ROA not after: Tue 25 Aug 2026 12:00:01 +0000 asID: 138134 IP address blocks: 103.133.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c8:81:41:9c:fb:33:7c:bc:b2:af:28:58:14:e9:89:81:5a:7b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Aug 26 11:55:01 2025 GMT Not After : Aug 25 12:00:01 2026 GMT Subject: CN=E546FC46568B0E9FE42933896162498612C03752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:99:28:a1:06:29:0d:c8:be:b4:53:bc:67:2f: 54:49:c0:1c:1f:79:3e:c4:f2:eb:ec:24:c9:ff:7c: ba:1e:36:89:be:7b:fa:2c:b4:c6:19:61:fc:48:83: 38:24:d5:2a:b6:c6:85:23:a3:5a:76:00:64:43:9a: 9d:27:e7:c2:99:52:51:ac:f8:ea:d7:fe:f6:0f:ff: d6:c8:d6:ad:65:1c:db:09:84:92:b5:e4:da:57:a6: 36:d3:a2:1c:d1:08:aa:a9:a6:49:41:27:9a:ef:ee: 0c:c1:fc:46:e9:4a:d0:2b:0d:08:b4:01:84:ce:33: 74:24:e6:f0:74:c8:24:38:97:c0:5c:36:18:a8:15: ab:a2:bb:87:5a:d5:22:bd:a2:0f:21:57:dc:3c:81: c9:89:95:af:24:99:6a:1b:43:d7:9d:cf:84:62:2e: 88:4c:a0:8f:68:0c:ac:b3:a7:73:ed:6d:6f:d7:24: d5:e5:69:f4:47:99:20:58:7c:a9:93:5e:e7:73:03: 7a:5a:1a:ed:f5:70:99:4e:b0:ad:01:a0:cf:b5:bd: 15:bb:ab:be:55:5c:1f:30:33:c4:76:e1:58:a8:77: bf:5d:6e:e0:ea:be:75:1a:73:31:61:0b:c8:f2:85: 03:a4:29:9f:80:4b:e3:b0:8f:37:be:d4:47:d3:f4: 33:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:46:FC:46:56:8B:0E:9F:E4:29:33:89:61:62:49:86:12:C0:37:52 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.60.0/22 Signature Algorithm: sha256WithRSAEncryption 97:76:d4:b3:5e:03:dc:a8:ea:85:f7:71:c2:3e:ae:8d:92:cf: 5f:1b:00:4a:b7:a4:17:e4:80:58:d8:11:f9:d9:d7:c2:a8:c5: fe:55:e9:86:c9:f2:02:0c:14:8b:27:d3:2b:7b:ca:51:ab:6f: 74:dc:ee:a9:52:c4:d0:5f:42:1c:ab:92:af:2d:5b:37:0a:27: 7d:d7:df:83:48:3c:e3:6e:dc:98:ce:b8:64:f6:90:87:26:91: 88:39:f8:4e:04:40:e9:95:bb:03:1d:e7:a0:8e:b9:d4:6b:05: 52:0c:7c:c4:81:e1:53:bd:96:c5:30:d7:c8:a3:a1:65:9f:6b: 8c:3d:e8:ac:57:1f:3a:ba:d4:5a:92:08:aa:f2:98:2a:6a:36: f7:83:77:df:d7:2a:0f:e2:0a:b4:05:24:e3:c1:ec:2c:fd:57: 22:14:e3:86:5c:ba:48:16:c6:c8:70:92:99:ee:fc:d5:31:42: ef:d6:f9:73:29:cb:11:c8:7b:92:93:9e:3b:72:87:5c:aa:96: de:54:8b:3f:22:93:6a:22:0e:d7:80:80:a8:cf:9a:8a:5f:a6: d6:ae:47:87:7e:05:64:21:dd:ed:f1:42:cc:c3:b9:80:aa:77: 84:66:b5:e9:00:fa:85:14:00:4e:87:36:3f:1f:19:8a:bf:7b: e7:16:ab:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO8iBQZz7M3y8sq8oWBTpiYFaey8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA4MjYxMTU1MDFaFw0yNjA4MjUxMjAwMDFaMDMxMTAvBgNV BAMTKEU1NDZGQzQ2NTY4QjBFOUZFNDI5MzM4OTYxNjI0OTg2MTJDMDM3NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRmSihBikNyL60U7xnL1RJwBwf eT7E8uvsJMn/fLoeNom+e/ostMYZYfxIgzgk1Sq2xoUjo1p2AGRDmp0n58KZUlGs +OrX/vYP/9bI1q1lHNsJhJK15NpXpjbTohzRCKqppklBJ5rv7gzB/EbpStArDQi0 AYTOM3Qk5vB0yCQ4l8BcNhioFauiu4da1SK9og8hV9w8gcmJla8kmWobQ9edz4Ri LohMoI9oDKyzp3PtbW/XJNXlafRHmSBYfKmTXudzA3paGu31cJlOsK0BoM+1vRW7 q75VXB8wM8R24Viod79dbuDqvnUaczFhC8jyhQOkKZ+AS+Owjze+1EfT9DOPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5Ub8RlaLDp/kKTOJYWJJhhLAN1IwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4U8MA0GCSqG SIb3DQEBCwUAA4IBAQCXdtSzXgPcqOqF93HCPq6Nks9fGwBKt6QX5IBY2BH52dfC qMX+VemGyfICDBSLJ9Mre8pRq2903O6pUsTQX0Icq5KvLVs3Cid919+DSDzjbtyY zrhk9pCHJpGIOfhOBEDplbsDHeegjrnUawVSDHzEgeFTvZbFMNfIo6Fln2uMPeis Vx86utRakgiq8pgqajb3g3ff1yoP4gq0BSTjwews/VciFOOGXLpIFsbIcJKZ7vzV MULv1vlzKcsRyHuSk547codcqpbeVIs/IpNqIg7XgICoz5qKX6bWrkeHfgVkId3t 8ULMw7mAqneEZrXpAPqFFABOhzY/HxmKv3vnFquo -----END CERTIFICATE-----Generated at Mon Sep 8 09:32:26 2025 by rpki-client