$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: amdqV6lzMAC4zxO9RwYxm18VuzSqbFKiq2hPtX/elIw= Subject key identifier: 47:46:7C:7D:E5:2E:22:A1:4E:BD:38:FF:74:32:B6:7F:EF:53:59:96 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 307B2DEEC16C9A8F8450D35E6B4EE61453ED66E6 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa Signing time: Tue 26 Aug 2025 12:00:01 +0000 ROA not before: Tue 26 Aug 2025 11:55:01 +0000 ROA not after: Tue 25 Aug 2026 12:00:01 +0000 asID: 138134 IP address blocks: 103.133.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 17:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7b:2d:ee:c1:6c:9a:8f:84:50:d3:5e:6b:4e:e6:14:53:ed:66:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Aug 26 11:55:01 2025 GMT Not After : Aug 25 12:00:01 2026 GMT Subject: CN=47467C7DE52E22A14EBD38FF7432B67FEF535996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:31:0f:89:c0:48:74:80:6c:af:6a:7f:97: ca:81:ed:70:26:9b:b2:3e:36:08:34:84:4b:61:44: 38:61:29:f6:71:6b:71:77:a7:21:ad:6c:bb:aa:65: 68:e6:07:bd:dc:5d:20:2b:ea:81:73:00:ce:87:42: 82:1a:4c:7e:00:ac:73:90:d3:de:f5:86:3d:29:1a: 13:c6:90:99:a9:c2:d5:a0:88:1e:a3:56:37:d5:56: 78:0a:c2:48:40:89:9a:80:0d:b4:fd:17:f1:22:50: ac:a8:74:f3:f7:e7:79:41:ac:f2:56:35:42:19:9a: 51:9b:96:20:bf:7d:53:38:ab:87:42:af:60:5c:f5: 71:fe:8e:d5:b4:96:39:8e:df:07:ea:b4:d7:2a:80: 48:7f:4b:74:80:ed:ef:93:17:8b:de:08:8b:f3:18: 62:48:c6:d3:17:de:6c:fe:6e:2e:7b:2d:27:e3:16: 0d:67:60:e7:a4:72:17:7b:ca:1e:33:c2:7b:c5:6c: 1d:5e:9c:d2:22:31:03:92:f3:5c:02:ec:ff:13:fc: f2:78:65:bd:02:f1:be:94:32:59:5d:ab:92:44:74: 41:f6:29:2d:dd:dc:a6:fa:04:6e:9b:50:3d:5c:ed: a7:10:16:2b:c2:77:48:76:40:a4:7e:ef:38:66:a7: 99:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:46:7C:7D:E5:2E:22:A1:4E:BD:38:FF:74:32:B6:7F:EF:53:59:96 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.60.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:58:06:d5:f7:c6:eb:32:95:cc:1d:f5:64:97:3b:75:27:c8: 6c:68:9d:40:74:ef:32:b0:57:ba:26:18:db:91:45:1a:d4:0b: 37:00:ae:3c:a6:7b:3e:9c:6f:90:20:18:a5:9a:ca:ab:e7:a8: ee:5a:98:ae:7d:4e:9d:80:56:c2:85:c1:0a:b7:10:14:04:83: 8a:99:cc:9c:a5:94:ac:72:f1:38:9d:db:37:8c:7e:a4:3e:0e: c0:e5:0c:5f:2b:98:aa:ca:a2:7a:71:8b:2a:a4:a3:5c:a4:97: 97:05:7b:6e:7c:c5:9a:ec:e3:03:c7:2a:7a:2f:56:76:39:8a: 01:4d:63:9b:19:04:4f:ae:08:da:a1:2b:42:aa:56:e2:80:4c: 22:90:92:91:ce:fd:e6:7b:04:e1:ed:d5:2d:c2:29:bc:78:4a: 83:a2:b6:79:d2:d9:0f:8e:c1:c2:96:c3:68:02:f1:3e:50:6d: 56:a8:91:66:a6:8c:56:dc:ac:39:75:70:18:dc:1b:01:a5:9f: 69:ae:5c:23:ea:7b:59:c7:79:b8:34:31:8e:ea:e0:75:ce:ba: 3c:5d:a6:17:95:54:bb:33:c0:6b:64:a7:59:90:3d:37:b1:e8: 57:ee:df:96:8f:3e:88:7e:61:c2:96:87:40:95:16:46:be:de: 49:1f:e3:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMHst7sFsmo+EUNNea07mFFPtZuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA4MjYxMTU1MDFaFw0yNjA4MjUxMjAwMDFaMDMxMTAvBgNV BAMTKDQ3NDY3QzdERTUyRTIyQTE0RUJEMzhGRjc0MzJCNjdGRUY1MzU5OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6cTEPicBIdIBsr2p/l8qB7XAm m7I+Ngg0hEthRDhhKfZxa3F3pyGtbLuqZWjmB73cXSAr6oFzAM6HQoIaTH4ArHOQ 0971hj0pGhPGkJmpwtWgiB6jVjfVVngKwkhAiZqADbT9F/EiUKyodPP353lBrPJW NUIZmlGbliC/fVM4q4dCr2Bc9XH+jtW0ljmO3wfqtNcqgEh/S3SA7e+TF4veCIvz GGJIxtMX3mz+bi57LSfjFg1nYOekchd7yh4zwnvFbB1enNIiMQOS81wC7P8T/PJ4 Zb0C8b6UMlldq5JEdEH2KS3d3Kb6BG6bUD1c7acQFivCd0h2QKR+7zhmp5lxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR0Z8feUuIqFOvTj/dDK2f+9TWZYwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U8MA0GCSqG SIb3DQEBCwUAA4IBAQA9WAbV98brMpXMHfVklzt1J8hsaJ1AdO8ysFe6JhjbkUUa 1As3AK48pns+nG+QIBilmsqr56juWpiufU6dgFbChcEKtxAUBIOKmcycpZSscvE4 nds3jH6kPg7A5QxfK5iqyqJ6cYsqpKNcpJeXBXtufMWa7OMDxyp6L1Z2OYoBTWOb GQRPrgjaoStCqlbigEwikJKRzv3mewTh7dUtwim8eEqDorZ50tkPjsHClsNoAvE+ UG1WqJFmpoxW3Kw5dXAY3BsBpZ9prlwj6ntZx3m4NDGO6uB1zro8XaYXlVS7M8Br ZKdZkD03sehX7t+Wjz6IfmHClodAlRZGvt5JH+Nv -----END CERTIFICATE-----Generated at Mon Sep 8 12:32:41 2025 by rpki-client